git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Josh Poimboeuf <jpoimboe@kernel.org>
	Tue, 8 Apr 2025 21:47:34 +0000 (14:47 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 2 May 2025 05:44:37 +0000 (07:44 +0200)
commit	b6a2cd26bcb96037a20e61d2c87c7e5568a7c7b9
tree	8509089776efefd050797437e8f6de84a30a0eb6	tree
parent	a71d88ae28efa2716c9261f401ed1a7e99c1977c	commit \| diff

x86/bugs: Don't fill RSB on context switch with eIBRS

[ Upstream commit 27ce8299bc1ec6df8306073785ff82b30b3cc5ee ]

User->user Spectre v2 attacks (including RSB) across context switches
are already mitigated by IBPB in cond_mitigation(), if enabled globally
or if either the prev or the next task has opted in to protection. RSB
filling without IBPB serves no purpose for protecting user space, as
indirect branches are still vulnerable.

User->kernel RSB attacks are mitigated by eIBRS. In which case the RSB
filling on context switch isn't needed, so remove it.

Suggested-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Josh Poimboeuf <jpoimboe@kernel.org>
Signed-off-by: Ingo Molnar <mingo@kernel.org>
Reviewed-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Reviewed-by: Amit Shah <amit.shah@amd.com>
Reviewed-by: Nikolay Borisov <nik.borisov@suse.com>
Link: https://lore.kernel.org/r/98cdefe42180358efebf78e3b80752850c7a3e1b.1744148254.git.jpoimboe@kernel.org
Signed-off-by: Sasha Levin <sashal@kernel.org>

arch/x86/kernel/cpu/bugs.c		diff \| blob \| blame \| history
arch/x86/mm/tlb.c		diff \| blob \| blame \| history