[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH v3 2/2] x86/xpti: Don't leak TSS-adjacent percpu data via Meltdown

  • To: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>
  • From: Jan Beulich <JBeulich@xxxxxxxx>
  • Date: Tue, 30 Jul 2019 08:46:56 +0000
  • Accept-language: en-US
  • Arc-authentication-results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=suse.com;dmarc=pass action=none header.from=suse.com;dkim=pass header.d=suse.com;arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=pk1ofjtbqdvBT6IqNV7O+i3IZk2+lu3IJTcXcbmMriI=; b=AsnF89idHfyqIvaf4hs9iivTTUupQGt3Idiyhncn8A3TvehXoM/iaY4bHgncrlOOImLtIUwsc1lYv7GW3nvf6xpZ5nLfdqNazMsgNKHfdQKRuFLoc6At4ES2QEteY1cHNCE2lGZQRGfycOU767hGGoAL2t89DeI0etVYJoUoZuURUBfnSKOHfgjREnvfgBolbqb7Rb0r6IYbz2SZGxpPCRPzM8sFo1npdh4+yFu3O54SOVwSAMKIOSnwFTT+dX3dI8dtDuCUEnF31Xz2u2WqjQjZ4qH/xsUABgwg9j6diHcr6n7yboYxf6TR2Nq56z1HV7ag1jT52MyjjyMweTS81A==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=hVNXquYWE/6+h9bDcP0gszcDIRC0yM6yK9nAS2l0zEqORZQr4ROFdqiiBiTRPw0rcx9CdEx6BccQLzqDXtxsiTJznn1KktvBs1zJbqwOet1EIw24gzxaf99Z3/HV+jVUkW4QunfOMjgRV/R7kjZ5kI2SXCt6P+HJx7JhT9RwmwSXLYSEqJaz5QXtOEdOS6tO6Y1laBZeTNA79I/XPEUbSFFWg1HY+Cl2MJ8srJSnaT1sqUmp7QIAMFaaaO7X0XW+wtIPkzDPIVBy1kIael91PI/2pjDCj4CAa0Lnr1M4weXogit0ComMkE7/ttV0zUNZzjY8wW5M8N/+PwmVBzTLlg==
  • Authentication-results: spf=none (sender IP is ) smtp.mailfrom=JBeulich@xxxxxxxx;
  • Cc: Xen-devel <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Roger Pau Monné <roger.pau@xxxxxxxxxx>
  • Delivery-date: Tue, 30 Jul 2019 08:51:45 +0000
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
  • Thread-index: AQHVRjSFfC2E6IjOF0q7sjJMHtTAKqbi2j4A
  • Thread-topic: [PATCH v3 2/2] x86/xpti: Don't leak TSS-adjacent percpu data via Meltdown
On 29.07.2019 19:38, Andrew Cooper wrote:
> --- a/xen/arch/x86/traps.c
> +++ b/xen/arch/x86/traps.c
> @@ -108,6 +108,12 @@ idt_entry_t __section(".bss.page_aligned") 
> __aligned(PAGE_SIZE)
>   /* Pointer to the IDT of every CPU. */
>   idt_entry_t *idt_tables[NR_CPUS] __read_mostly;
>   
> +/*
> + * The TSS is smaller than a page, but we give it a full page to avoid
> + * adjacent per-cpu data leaking via Meltdown when XPTI is in use.
> + */
> +DEFINE_PER_CPU_PAGE_ALIGNED(struct tss_struct, init_tss);

I assume there's a reason why you didn't introduce a wrapper
union to pad this to page size - I'd like to understand this
reason (see also my reply to patch 1) before acking both
patches.

Jan
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.