From mboxrd@z Thu Jan 1 00:00:00 1970 From: Norbert Manthey Subject: Re: [PATCH SpectreV1+L1TF v5 3/9] x86/hvm: block speculative out-of-bound accesses Date: Fri, 1 Feb 2019 15:06:50 +0100 Message-ID: <7e9d89f4-f2ba-05a6-7ecf-1fc3e9dc5738@amazon.de> References: <1548772997-32742-1-git-send-email-nmanthey@amazon.de> <1548772997-32742-4-git-send-email-nmanthey@amazon.de> <5C4ED1D402000078002119E6@prv1-mh.provo.novell.com> <9C03B9BA0200004637554D14@prv1-mh.provo.novell.com> <00FAA7AF020000F8B1E090C7@prv1-mh.provo.novell.com> <00F867AF020000F8B1E090C7@prv1-mh.provo.novell.com> <5C5320140200007800212DE1@prv1-mh.provo.novell.com> <87d875f7-c756-e864-b6d7-cb43dcc8e2de@citrix.com> <5C54021D020000780021308A@prv1-mh.provo.novell.com> Mime-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Return-path: Received: from us1-rack-dfw2.inumbo.com ([104.130.134.6]) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1gpZTJ-0004jB-NB for xen-devel@lists.xenproject.org; Fri, 01 Feb 2019 14:07:09 +0000 In-Reply-To: <5C54021D020000780021308A@prv1-mh.provo.novell.com> Content-Language: en-US List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-devel-bounces@lists.xenproject.org Sender: "Xen-devel" To: Jan Beulich , Andrew Cooper Cc: Juergen Gross , Stefano Stabellini , Wei Liu , Konrad Rzeszutek Wilk , George Dunlap , Tim Deegan , Ian Jackson , Dario Faggioli , Martin Pohlack , Julien Grall , David Woodhouse , "Martin Mazein(amazein)" , xen-devel , Julian Stecklina , Bjoern Doebel List-Id: xen-devel@lists.xenproject.org T24gMi8xLzE5IDA5OjIzLCBKYW4gQmV1bGljaCB3cm90ZToKPj4+PiBPbiAzMS4wMS4xOSBhdCAy MTowMiwgPGFuZHJldy5jb29wZXIzQGNpdHJpeC5jb20+IHdyb3RlOgo+PiBPbiAzMS8wMS8yMDE5 IDE2OjE5LCBKYW4gQmV1bGljaCB3cm90ZToKPj4+PiBAQCAtNDEwNCw2ICs0MTA4LDEyIEBAIHN0 YXRpYyBpbnQgaHZtb3Bfc2V0X3BhcmFtKAo+Pj4+ICAgICAgaWYgKCBhLmluZGV4ID49IEhWTV9O Ul9QQVJBTVMgKQo+Pj4+ICAgICAgICAgIHJldHVybiAtRUlOVkFMOwo+Pj4+ICAKPj4+PiArICAg IC8qCj4+Pj4gKyAgICAgKiBNYWtlIHN1cmUgdGhlIGd1ZXN0IGNvbnRyb2xsZWQgdmFsdWUgYS5p bmRleCBpcyBib3VuZGVkIGV2ZW4gZHVyaW5nCj4+Pj4gKyAgICAgKiBzcGVjdWxhdGl2ZSBleGVj dXRpb24uCj4+Pj4gKyAgICAgKi8KPj4+PiArICAgIGEuaW5kZXggPSBhcnJheV9pbmRleF9ub3Nw ZWMoYS5pbmRleCwgSFZNX05SX1BBUkFNUyk7Cj4+PiBJJ2QgbGlrZSB0byBjb21lIGJhY2sgdG8g dGhpcyBtb2RlbCBvZiB1cGRhdGluZyBsb2NhbCB2YXJpYWJsZXM6Cj4+PiBJcyB0aGlzIHJlYWxs eSBzYWZlIHRvIGRvPyBJZiBzdWNoIGEgdmFyaWFibGUgbGl2ZXMgaW4gbWVtb3J5Cj4+PiAod2hp Y2ggaGVyZSBpdCBxdWl0ZSBsaWtlbHkgZG9lcyksIGRvZXMgc3BlY3VsYXRpb24gYWx3YXlzCj4+ PiByZWNvZ25pemUgdGhlIHVwZGF0ZSB0byB0aGUgdmFsdWU/IFdvdWxkbid0IGl0IHJhdGhlciBy ZWFkCj4+PiB3aGF0J3MgY3VycmVudGx5IGluIHRoYXQgc2xvdCwgYW5kIHJlLWRvIHRoZSBjYWxj dWxhdGlvbiBpbiBjYXNlCj4+PiBhIHN1YnNlcXVlbnQgd3JpdGUgaGFwcGVucz8gKEkga25vdyBJ IGRpZCBzdWdnZXN0IGRvaW5nIHNvCj4+PiBlYXJsaWVyIG9uLCBzbyBJIGFwb2xvZ2l6ZSBpZiB0 aGlzIHJlc3VsdHMgaW4geW91IGhhdmluZyB0byBnbwo+Pj4gYmFjayB0byBzb21lIGVhcmxpZXIg dXNlZCBtb2RlbC4pCj4+IEknbSBhZnJhaWQgdGhhdCBpcyBhIHZlcnkgY29tcGxpY2F0ZWQgc2V0 IG9mIHF1ZXN0aW9ucyB0byBhbnN3ZXIuCj4+Cj4+IFRoZSBwcm9jZXNzb3IgbmVlZHMgdG8gdHJh Y2sgd3JpdGU9PnJlYWQgZGVwZW5kZW5jaWVzIHRvIGF2b2lkIHdhc3RpbmcgYQo+PiBsYXJnZSBx dWFudGl0eSBvZiB0aW1lIGRvaW5nIGVycm9uZW91cyBzcGVjdWxhdGlvbiwgdGhlcmVmb3JlIGl0 IGRvZXMuIAo+PiBQZW5kaW5nIHdyaXRlcyB3aGljaCBoYXZlIGhhcHBlbmVkIHVuZGVyIHNwZWN1 bGF0aW9uIGFyZSBmb3J3YXJkZWQgdG8KPj4gZGVwZW5kYW50IGluc3RydWN0aW9ucy4KPj4KPj4g VGhpcyBiZWhhdmlvdXIgaXMgd2hhdCBnaXZlcyByaXNlIHRvIEJvdW5kcyBDaGVjayBCeXBhc3Mg U3RvcmUgLSBhIGhhbGYKPj4gc3BlY3RyZS12MSBnYWRnZXQgYnV0IHdpdGggYSBzdG9yZSByYXRo ZXIgdGhhbiBhIHdyaXRlLiAgWW91IGNhbiBlLmcuCj4+IHNwZWN1bGF0aXZlbHkgbW9kaWZ5IHRo ZSByZXR1cm4gYWRkcmVzcyBvbiB0aGUgc3RhY2ssIGFuZCBoaWphY2sKPj4gc3BlY3VsYXRpb24g dG8gYW4gYXR0YWNrZXIgY29udHJvbGxlZCBhZGRyZXNzIGZvciBhIGJyaWVmIHBlcmlvZCBvZgo+ PiB0aW1lLiAgSWYgdGhlIHNwZWN1bGF0aW9uIHdpbmRvdyBpcyBsb25nIGVub3VnaCwgdGhlIHBy b2Nlc3NvciBmaXJzdAo+PiBmb2xsb3dzIHRoZSBSU0IvUkFTIChjb3JyZWN0bHkpLCB0aGVuIGxh dGVyIG5vdGljZXMgdGhhdCB0aGUgcmVhbCB2YWx1ZQo+PiBvbiB0aGUgc3RhY2sgd2FzIGRpZmZl cmVudCwgZGlzY2FyZHMgdGhlIHNwZWN1bGF0aW9uIGZyb20gdGhlIFJTQi9SQVMKPj4gYW5kIHVz ZXMgdGhlIGF0dGFja2VyIGNvbnRyb2xsZWQgdmFsdWUgaW5zdGVhZCwgdGhlbiBldmVudHVhbGx5 IG5vdGljZXMKPj4gdGhhdCBhbGwgb2YgdGhpcyB3YXMgYm9ndXMgYW5kIHJld2luZHMgYmFjayB0 byB0aGUgb3JpZ2luYWwgYnJhbmNoLgo+Pgo+PiBBbm90aGVyIGNvcm5lciBjYXNlIGlzIFNwZWN1 bGF0aXZlIFN0b3JlIEJ5cGFzcywgd2hlcmUgbWVtb3J5Cj4+IGRpc2FtYmlndWF0aW9uIHNwZWN1 bGF0aW9uIGNhbiBtaXNzIHRoZSBmYWN0IHRoYXQgdGhlcmUgaXMgYSByZWFsCj4+IHdyaXRlPT5y ZWFkIGRlcGVuZGVuY3ksIGFuZCBjYXVzZSBzcGVjdWxhdGlvbiB1c2luZyB0aGUgb2xkZXIgc3Rh bGUKPj4gdmFsdWUgZm9yIGEgcGVyaW9kIG9mIHRpbWUuCj4+Cj4+Cj4+IEFzIHRvIG92ZXJhbGwg c2FmZXR5LCBhcnJheV9pbmRleF9ub3NwZWMoKSBvbmx5IHdvcmtzIGFzIGludGVuZGVkIHdoZW4K Pj4gdGhlIGluZGV4IHJlbWFpbnMgaW4gYSByZWdpc3RlciBiZXR3ZWVuIHRoZSBjbXAvc2JiIHdo aWNoIGJvdW5kcyBpdAo+PiB1bmRlciBzcGVjdWxhdGlvbiwgYW5kIHRoZSBhcnJheSBhY2Nlc3Mu ICBUaGVyZSBpcyBubyB3YXkgdG8gZ3VhcmFudGVlCj4+IHRoaXMgcHJvcGVydHksIGFzIHRoZSBj b21waWxlciBjYW4gc3BpbGwgYW55IHZhbHVlIGlmIGl0IHRoaW5rcyBpdCBuZWVkcyB0by4KPj4K Pj4gVGhlIGdlbmVyYWwgc2FmZXR5IG9mIHRoZSBjb25zdHJ1Y3QgcmVsaWVzIG9uIHRoZSBmYWN0 IHRoYXQgYW4KPj4gb3B0aW1pc2luZyBjb21waWxlciB3aWxsIGRvIGl0cyB2ZXJ5IGJlc3QgdG8g YXZvaWQgc3BpbGxpbmcgdmFyaWFibGUgdG8KPj4gdGhlIHN0YWNrLgo+ICJJdHMgdmVyeSBiZXN0 IiBtYXkgYmUgZXh0cmVtZWx5IGxpbWl0ZWQgd2l0aCBlbm91Z2ggdmFyaWFibGVzLgo+IEV2ZW4g aWYgd2Ugd2VyZSB0byBhbm5vdGF0ZSB0aGVtIHdpdGggdGhlICJyZWdpc3RlciIga2V5d29yZCwK PiB0aGF0IHN0aWxsIHdvdWxkbid0IGhlbHAsIGFzIHRoYXQncyBvbmx5IGEgaGludC4gV2Ugc2lt cGx5IGhhdmUgbm8KPiB3YXkgdG8gY29udHJvbCB3aGljaCB2YXJpYWJsZXMgdGhlIGNvbXBpbGVy IHdhbnRzIHRvIGhvbGQgaW4KPiByZWdpc3RlcnMuIEkgZGFyZSB0byBndWVzcyB0aGF0IGluIHRo ZSBwYXJ0aWN1bGFyIGV4YW1wbGUgYWJvdmUKPiBpdCdzIHJhdGhlciB1bmxpa2VseSB0byBiZSBw dXQgaW4gYSByZWdpc3Rlci4KPgo+IEluIGFueSBldmVudCBpdCBsb29rcyBsaWtlIHlvdSBzdXBw b3J0IG15IHN1c3BpY2lvbiB0aGF0IGVhcmxpZXIKPiBjb21tZW50cyBvZiBtaW5lIG1heSBoYXZl IGRyaXZlbiB0aGluZ3MgaW50byBhIGxlc3Mgc2FmZQo+IGRpcmVjdGlvbiwgYW5kIHdlIGluc3Rl YWQgbmVlZCB0byBhY2NlcHQgdGhlIG1vcmUgaGVhdnkKPiBjbHV0dGVyIG9mIHNjYXR0ZXJpbmcg YXJvdW5kIGFycmF5X3thY2Nlc3MsaW5kZXh9X25vc3BlYygpCj4gYXQgYWxsIHVzZSBzaXRlcyBp bnN0ZWFkIG9mIGxhdGNoaW5nIHRoZSByZXN1bHQgb2YKPiBhcnJheV9pbmRleF9ub3NwZWMoKSBp bnRvIHdoYXRldmVyIHNoYXBlIG9mIGxvY2FsIHZhcmlhYmxlLgo+Cj4gV2hpY2ggcmFpc2VzIGFu b3RoZXIgaW50ZXJlc3RpbmcgcXVlc3Rpb246IENhbid0IENTRSBhbmQKPiBhbGlrZSBnZXQgaW4g dGhlIHdheSBoZXJlPyBPUFRJTUlaRVJfSElERV9WQVIoKSBleHBhbmRzCj4gdG8gYSBub24tdm9s YXRpbGUgYXNtKCkgKGFuZCBhcyBwZXIgcmVtYXJrcyBlbHNld2hlcmUgSSdtCj4gdW5jb252aW5j ZWQgYWRkaW5nIHZvbGF0aWxlIHdvdWxkIGFjdHVhbGx5IGhlbHApLCBzbyB0aGUKPiBjb21waWxl ciByZWNvZ25pemluZyB0aGUgc2FtZSBtdWx0aXBsZSB0aW1lcyAocGVyaGFwcyBpbiBhCj4gbG9v cCkgY291bGQgbWFrZSBpdCBkZWNpZGUgdG8gY2FsY3VsYXRlIHRoZSB0aGluZyBqdXN0IG9uY2Uu Cj4gYXJyYXlfaW5kZXhfbWFza19ub3NwZWMoKSBpbiBlZmZlY3QgaXMgYSBwdXJlIChhbmQgYWN0 dWFsbHkKPiBldmVuIGNvbnN0KSBmdW5jdGlvbiwgYW5kIHRoZSBsYWNrIG9mIGEgcmVzcGVjdGl2 ZSBhdHRyaWJ1dGUKPiBkb2Vzbid0IG1ha2UgdGhlIGNvbXBpbGVyIG5vdCB0cmVhdCBpdCBhcyBz dWNoIGlmIGl0IHJlY29nbml6ZWQKPiB0aGUgZmFjdC4gKEluIGVmZmVjdCB3aGF0IEkgaGFkIGFz a2VkIE5vcmJlcnQgdG8gZG8gdG8gbGltaXQKPiB0aGUgY2x1dHRlciB3YXMganVzdCBDU0Ugd2hp Y2ggdGhlIGNvbXBpbGVyIG1heSBvciBtYXkgbm90Cj4gaGF2ZSByZWNvZ25pemVkIGFueXdheS4g SU9XIEknbSBub3QgY29udmluY2VkIGdvaW5nIGJhY2sKPiB3b3VsZCBhY3R1YWxseSBidXkgdXMg YW55dGhpbmcuKQoKU28gdGhpcyBtZWFucyBJIHNob3VsZCBzdGljayB0byB0aGUgY3VycmVudCBh cHByb2FjaCBhbmQgY29udGludWUKdXBkYXRpbmcgdmFyaWFibGVzIGFmdGVyIHRoZWlyIGJvdW5k IGNoZWNrIHdpdGggYW4gYXJyYXlfaW5kZXhfbm9zcGVjCmNhbGwsIGNvcnJlY3Q/CgpCZXN0LApO b3JiZXJ0CgoKCgoKQW1hem9uIERldmVsb3BtZW50IENlbnRlciBHZXJtYW55IEdtYkgKS3JhdXNl bnN0ci4gMzgKMTAxMTcgQmVybGluCkdlc2NoYWVmdHNmdWVocmVyOiBDaHJpc3RpYW4gU2NobGFl Z2VyLCBSYWxmIEhlcmJyaWNoClVzdC1JRDogREUgMjg5IDIzNyA4NzkKRWluZ2V0cmFnZW4gYW0g QW10c2dlcmljaHQgQ2hhcmxvdHRlbmJ1cmcgSFJCIDE0OTE3MyBCCgpfX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fXwpYZW4tZGV2ZWwgbWFpbGluZyBsaXN0Clhl bi1kZXZlbEBsaXN0cy54ZW5wcm9qZWN0Lm9yZwpodHRwczovL2xpc3RzLnhlbnByb2plY3Qub3Jn L21haWxtYW4vbGlzdGluZm8veGVuLWRldmVs