On Mon, 29 Sep 2014, Andy Lutomirski wrote: > On Mon, Sep 29, 2014 at 11:59 AM, Thomas Gleixner <t...@linutronix.de> wrote: > > On Mon, 29 Sep 2014, Andy Lutomirski wrote: > >> Presumably interrupt delivery clears NT. I haven't spotted where that's > >> documented yet. > > > > Nope, that's unrelated. > > If it weren't the case, then we'd be totally screwed. Fortunately, it > is. I found it: SDM Volume 3 6.12.1.2 says: > > (On calls to exception and interrupt > handlers, the processor also clears the VM, RF, and NT flags in the > EFLAGS register, > after they are saved on the stack.)
Sorry, I misunderstood your question. And yes on exception and interrupt entry it is cleared. Otherwise the whole feature would not work at all ... But that's why I'm really not worried about it. While we can mask out the stupid bit easily, it does not provide any value except protecting silly userspace from rightfully raised exceptions. When I first saw that patch, I was worried about the security impact, but after staring long enough at the SDM and the code, the only way it can explode is when returning to user space. It cannot explode in the kernel. So in IA-32e it creates a #GP otherwise it falls over the return to NULL (TSS.back_link). So what? Thanks, tglx -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/