www.infradead.org Git - users/jedix/linux-maple.git/commit

author	Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
	Fri, 2 Feb 2018 03:56:00 +0000 (22:56 -0500)
committer	Jack Vogel <jack.vogel@oracle.com>
	Thu, 8 Feb 2018 18:15:34 +0000 (10:15 -0800)
commit	7ad7b4320ab9b014cea0a5e606f7d7c5abfbcc92
tree	be948f38735d20feaf68a0974f202bd8ce150d49	tree
parent	8bd6ae65f98a1190b1a3000955d6137012a67c7f	commit \| diff

x86/spectre_v2: Add VMEXIT_FILL_RSB instead of RETPOLINE

The backport of "x86/retpoline: Fill return stack buffer on vmexit"
made the full stuffing of RSB only enabled if the kernel had
selected X86_FEATURE_RETPOLINE.

But if we are using IBRS we still want the full RSB stuffing
as it was prior to the backport.

Since we have both retpoline and ibrs wanting it we introduce
a new feature to enable the common mitigation that both of them
need.

Orabug: 27477743
CVE: CVE-2017-5715

Signed-off-by: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
Reviewed-by: Darren Kenny <darren.kenny@oracle.com>

arch/x86/include/asm/cpufeature.h		diff \| blob \| history
arch/x86/include/asm/nospec-branch.h		diff \| blob \| history
arch/x86/kernel/cpu/bugs_64.c		diff \| blob \| history