subject:"\[Patch v3 13\/13\] x86\/speculation\: Create PRCTL interface to restrict indirect branch speculation"

Re: [Patch v3 13/13] x86/speculation: Create PRCTL interface to restrict indirect branch speculation

2018-10-18 Thread Thomas Gleixner

On Wed, 17 Oct 2018, Tim Chen wrote: > --- a/Documentation/admin-guide/kernel-parameters.txt > +++ b/Documentation/admin-guide/kernel-parameters.txt > @@ -4196,7 +4196,10 @@ > lite - turn on mitigation for non-dumpable >processes (i.e. protec

Re: [Patch v3 13/13] x86/speculation: Create PRCTL interface to restrict indirect branch speculation

2018-10-17 Thread Randy Dunlap

On 10/17/18 10:59 AM, Tim Chen wrote: > > Signed-off-by: Tim Chen > --- > Documentation/admin-guide/kernel-parameters.txt | 5 +- > Documentation/userspace-api/spec_ctrl.rst | 10 +++ > arch/x86/kernel/cpu/bugs.c | 85 > - > include/linux/sche

[Patch v3 13/13] x86/speculation: Create PRCTL interface to restrict indirect branch speculation

2018-10-17 Thread Tim Chen

Create PRCTL interface to restrict an application's indirect branch speculation. This will protect the application against spectre v2 attack from another application. Invocations: Check indirect branch speculation status with - prctl(PR_GET_SPECULATION_CTRL, PR_INDIR_BRANCH, 0, 0, 0); Enable ind