mirrors/linux
2
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2026-05-09 17:17:04 -04:00
Code Issues Packages Projects Releases Wiki Activity
1,073,588 Commits 1 Branch 929 Tags
0de05d056afdb00eca8c7bbb0c79a3438daf700c
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Josh Poimboeuf 0de05d056a x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT 
The commit

   44a3918c82 ("x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting")

added a warning for the "eIBRS + unprivileged eBPF" combination, which
has been shown to be vulnerable against Spectre v2 BHB-based attacks.

However, there's no warning about the "eIBRS + LFENCE retpoline +
unprivileged eBPF" combo. The LFENCE adds more protection by shortening
the speculation window after a mispredicted branch. That makes an attack
significantly more difficult, even with unprivileged eBPF. So at least
for now the logic doesn't warn about that combination.

But if you then add SMT into the mix, the SMT attack angle weakens the
effectiveness of the LFENCE considerably.

So extend the "eIBRS + unprivileged eBPF" warning to also include the
"eIBRS + LFENCE + unprivileged eBPF + SMT" case.

  [ bp: Massage commit message. ]

Suggested-by: Alyssa Milburn <alyssa.milburn@linux.intel.com>
Signed-off-by: Josh Poimboeuf <jpoimboe@redhat.com>
Signed-off-by: Borislav Petkov <bp@suse.de>
2022-03-05 09:30:47 +01:00
arch
x86/speculation: Warn about eIBRS + LFENCE + Unprivileged eBPF + SMT
2022-03-05 09:30:47 +01:00
block
block/wbt: fix negative inflight counter when remove scsi device
2022-02-17 07:54:03 -07:00
certs
certs: Fix build error when CONFIG_MODULE_SIG_KEY is empty
2022-01-23 00:08:44 +09:00
crypto
crypto: af_alg - get rid of alg_memory_allocated
2022-02-15 14:29:04 +00:00
Documentation
x86/speculation: Update link to AMD speculation whitepaper
2022-02-28 18:37:12 +01:00
drivers
Merge tag 'edac_urgent_for_v5.17_rc5' of git://git.kernel.org/pub/scm/linux/kernel/git/ras/ras
2022-02-20 12:04:14 -08:00
fs
Merge tag 'fs.mount_setattr.v5.17-rc4' of git://git.kernel.org/pub/scm/linux/kernel/git/brauner/linux
2022-02-20 11:01:47 -08:00
include
x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting
2022-02-21 10:21:47 +01:00
init
lib/stackdepot: allow optional init and stack_table allocation by kvmalloc()
2022-01-22 08:33:37 +02:00
ipc
ipc/sem: do not sleep with a spin lock held
2022-02-04 09:25:05 -08:00
kernel
x86/speculation: Include unprivileged eBPF status in Spectre v2 mitigation reporting
2022-02-21 10:21:47 +01:00
lib
lib/crypto: blake2s: avoid indirect calls to compression function for Clang CFI
2022-02-04 19:22:32 +01:00
LICENSES
LICENSES/LGPL-2.1: Add LGPL-2.1-or-later as valid identifiers
2021-12-16 14:33:10 +01:00
mm
mm: don't try to NUMA-migrate COW pages that have other uses
2022-02-17 08:57:47 -08:00
net
ipv6: fix data-race in fib6_info_hw_flags_set / fib6_purge_rt
2022-02-17 09:48:24 -08:00
samples
samples/seccomp: Adjust sample to also provide kill option
2022-02-10 19:09:12 -08:00
scripts
kconfig: fix failing to generate auto.conf
2022-02-12 23:24:19 +09:00
security
Merge tag 'integrity-v5.17-fix' of git://git.kernel.org/pub/scm/linux/kernel/git/zohar/linux-integrity
2022-02-07 09:55:14 -08:00
sound
ASoC: intel: skylake: Set max DMA segment size
2022-02-17 09:39:44 +01:00
tools
x86/speculation: Rename RETPOLINE_AMD to RETPOLINE_LFENCE
2022-02-21 10:21:28 +01:00
usr
kbuild: remove include/linux/cyclades.h from header file check
2022-01-27 08:51:08 +01:00
virt
Merge tag 'for-linus' of git://git.kernel.org/pub/scm/virt/kvm/kvm
2022-01-28 19:00:26 +02:00
.clang-format
genirq/msi: Make interrupt allocation less convoluted
2021-12-16 22:22:20 +01:00
.cocciconfig
.get_maintainer.ignore
Opt out of scripts/get_maintainer.pl
2019-05-16 10:53:40 -07:00
.gitattributes
.gitattributes: use 'dts' diff driver for dts files
2019-12-04 19:44:11 -08:00
.gitignore
.gitignore: ignore only top-level modules.builtin
2021-05-02 00:43:35 +09:00
.mailmap
mailmap: update Christian Brauner's email address
2022-02-01 11:21:31 -08:00
COPYING
COPYING: state that all contributions really are covered by this file
2020-02-10 13:32:20 -08:00
CREDITS
MAINTAINERS: Removing Ohad from remoteproc/rpmsg maintenance
2021-12-08 10:09:40 -07:00
Kbuild
kbuild: rename hostprogs-y/always to hostprogs/always-y
2020-02-04 01:53:07 +09:00
Kconfig
kbuild: ensure full rebuild when the compiler is updated
2020-05-12 13:28:33 +09:00
MAINTAINERS
Merge branch 'i2c/for-current' of git://git.kernel.org/pub/scm/linux/kernel/git/wsa/linux
2022-02-20 11:23:48 -08:00
Makefile
Linux 5.17-rc5
2022-02-20 13:07:20 -08:00
README
Drop all 00-INDEX files from Documentation/
2018-09-09 15:08:58 -06:00

README 

Linux kernel
============

There are several guides for kernel developers and users. These guides can
be rendered in a number of formats, like HTML and PDF. Please read
Documentation/admin-guide/README.rst first.

In order to build the documentation, use ``make htmldocs`` or
``make pdfdocs``.  The formatted documentation can also be read online at:

    https://www.kernel.org/doc/html/latest/

There are various text files in the Documentation/ subdirectory,
several of them using the Restructured Text markup notation.

Please read the Documentation/process/changes.rst file, as it contains the
requirements for building and running the kernel, and information about
the problems which may result by upgrading your kernel.
Description
No description provided
Readme 3.4 GiB
Languages
C 97%
Assembly 1%
Shell 0.6%
Rust 0.5%
Python 0.4%
Other 0.3%