x86/bugs: Don't fill RSB on VMEXIT with eIBRS+retpoline - kernel

diff options

author	Josh Poimboeuf <[email protected]>	2025-04-08 21:47:33 +0000
committer	Ingo Molnar <[email protected]>	2025-04-09 10:41:55 +0000
commit	18bae0dfec15b24ec14ca17dc18603372f5f254f (patch)
tree	32855ad9816301f74424af456152276859eb2f9e /rust/helpers/platform.c
parent	x86/bugs: Fix RSB clearing in indirect_branch_prediction_barrier() (diff)
download	kernel-18bae0dfec15b24ec14ca17dc18603372f5f254f.tar.gz kernel-18bae0dfec15b24ec14ca17dc18603372f5f254f.zip

x86/bugs: Don't fill RSB on VMEXIT with eIBRS+retpoline

eIBRS protects against guest->host RSB underflow/poisoning attacks. Adding retpoline to the mix doesn't change that. Retpoline has a balanced CALL/RET anyway. So the current full RSB filling on VMEXIT with eIBRS+retpoline is overkill. Disable it or do the VMEXIT_LITE mitigation if needed. Suggested-by: Pawan Gupta <[email protected]> Signed-off-by: Josh Poimboeuf <[email protected]> Signed-off-by: Ingo Molnar <[email protected]> Reviewed-by: Pawan Gupta <[email protected]> Reviewed-by: Amit Shah <[email protected]> Reviewed-by: Nikolay Borisov <[email protected]> Cc: Paolo Bonzini <[email protected]> Cc: Vitaly Kuznetsov <[email protected]> Cc: Sean Christopherson <[email protected]> Cc: David Woodhouse <[email protected]> Link: https://lore.kernel.org/r/84a1226e5c9e2698eae1b5ade861f1b8bf3677dc.1744148254.git.jpoimboe@kernel.org

Diffstat (limited to 'rust/helpers/platform.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: