git.baikalelectronics.ru Git - kernel.git/commit

author	Josh Poimboeuf <jpoimboe@redhat.com>
	Fri, 25 Feb 2022 22:32:28 +0000 (14:32 -0800)
committer	Borislav Petkov <bp@suse.de>
	Sat, 5 Mar 2022 08:30:47 +0000 (09:30 +0100)
commit	9bb71f4766d50013b7deadb5a4afdd1a754f4049
tree	5d7e315e4956d1294428564823b3a0e01fa25609	tree \| snapshot
parent	70d3a17adbfe3f5550e6d79c61ec4d24735ea7d8	commit \| diff

x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT

The commit

57e4ff4f9c43 ("x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting")

added a warning for the "eIBRS + unprivileged eBPF" combination, which
has been shown to be vulnerable against Spectre v2 BHB-based attacks.

However, there's no warning about the "eIBRS + LFENCE retpoline +
unprivileged eBPF" combo. The LFENCE adds more protection by shortening
the speculation window after a mispredicted branch. That makes an attack
significantly more difficult, even with unprivileged eBPF. So at least
for now the logic doesn't warn about that combination.

But if you then add SMT into the mix, the SMT attack angle weakens the
effectiveness of the LFENCE considerably.

So extend the "eIBRS + unprivileged eBPF" warning to also include the
"eIBRS + LFENCE + unprivileged eBPF + SMT" case.

[ bp: Massage commit message. ]

Suggested-by: Alyssa Milburn <alyssa.milburn@linux.intel.com>
Signed-off-by: Josh Poimboeuf <jpoimboe@redhat.com>
Signed-off-by: Borislav Petkov <bp@suse.de>