Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1751368AbeADXr2 (ORCPT <rfc822;ralf@linux-mips.org> + 1 other);
        Thu, 4 Jan 2018 18:47:28 -0500
Received: from mail-sn1nam01on0054.outbound.protection.outlook.com ([104.47.32.54]:11950
        "EHLO NAM01-SN1-obe.outbound.protection.outlook.com"
        rhost-flags-OK-OK-OK-FAIL) by vger.kernel.org with ESMTP
        id S1751243AbeADXrW (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Thu, 4 Jan 2018 18:47:22 -0500
Authentication-Results: spf=none (sender IP is )
 smtp.mailfrom=Thomas.Lendacky@amd.com; 
Subject: Re: Avoid speculative indirect calls in kernel
To: David Woodhouse <dwmw2@infradead.org>,
        Andrew Cooper <andrew.cooper3@citrix.com>,
        Paolo Bonzini <pbonzini@redhat.com>,
        "pavel@ucw.cz" <pavel@ucw.cz>
Cc: "tim.c.chen@linux.intel.com" <tim.c.chen@linux.intel.com>,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        "torvalds@linux-foundation.org" <torvalds@linux-foundation.org>,
        "tglx@linutronix.de" <tglx@linutronix.de>,
        "andi@firstfloor.org" <andi@firstfloor.org>,
        "gnomes@lxorguk.ukuu.org.uk" <gnomes@lxorguk.ukuu.org.uk>,
        "dave.hansen@intel.com" <dave.hansen@intel.com>,
        "gregkh@linux-foundation.org" <gregkh@linux-foundation.org>,
        Andrea Arcangeli <aarcange@redhat.com>
References: <20180103230934.15788-1-andi@firstfloor.org>
 <CA+55aFzCocoK+4kxAUEhaxxba4RTv3ewBmhiZ8Osc9iDkBtCEQ@mail.gmail.com>
 <e64025e6-9c4f-703d-cb69-29eeb9cc16bd@redhat.com> <20180104114231.GB1702@amd>
 <1515066469.12987.112.camel@amazon.co.uk>
 <94b12025-b27c-04d2-8726-c07a3af6b265@redhat.com>
 <7a3584c6-0c00-d807-5130-13d1f4b34102@citrix.com>
 <1515079777.12987.149.camel@amazon.co.uk>
 <1515082507.12987.159.camel@infradead.org>
 <cc2711b0-0278-986f-0fe9-9a993506c47d@amd.com>
 <1515096331.29312.35.camel@infradead.org>
From: Tom Lendacky <thomas.lendacky@amd.com>
Message-ID: <d28f9218-4234-3173-d9ab-1873c8c3ef75@amd.com>
Date: Thu, 4 Jan 2018 17:47:15 -0600
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101
 Thunderbird/52.5.2
MIME-Version: 1.0
In-Reply-To: <1515096331.29312.35.camel@infradead.org>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 8bit
X-Originating-IP: [165.204.78.1]
X-ClientProxiedBy: MWHPR22CA0056.namprd22.prod.outlook.com (10.171.142.18) To
 CY4PR12MB1143.namprd12.prod.outlook.com (10.168.164.135)
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 470580dc-e144-4db4-506b-08d553cd7efd
X-MS-Office365-Filtering-HT: Tenant
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:(4534020)(4602075)(4627115)(201703031133081)(201702281549075)(5600026)(4604075)(48565401081)(2017052603307)(7153060);SRVR:CY4PR12MB1143;
X-Microsoft-Exchange-Diagnostics: 1;CY4PR12MB1143;3:Y+fSOgS2P+drvkFH+id8125c5NePOZAivHHTq06PNyH3iK4n1eM70vsnMyEggZwPFIlpOryg57KRYVYGxGxOoRPzsCcTlNd4PhtWtUP0aIw7v7FAYMjQNvTbe1tZ5PyW6Sy5BrfiGjH1NslzaFc/a+fjwVI5slyspj3oG1hfA0OGF6hx9YjmnSZ6hwG8T3IPzJyUKkvQN3X83ta/H5blOF34ukbAUX1SjSEMKAP1DySeWywwgqkRYjM9rfdM+Isn;25:rJZZbJHOSlkdl81FN5ZQ6pBZxPrSKvS8k51cipzV3hNELRfMSIbSaE8NHFRGZq3m9n5Rh6UaeRZLcvnPtuxJtCSUILjQc1D3HEF7zvmjLPU9mwohdlDmUEFVyU0i9Y7PNlEy2Sh7LOqlmpOuMKCWKTqv/BMlKXnQUv5JNajDbFYUDaOlnVXWWCuMRIS6TlPASFqYmfw4DXLkRiPBWhKHaroaGsxAf3ire3RgSeLyVysWcdw3RS2YSKXlquW6lQIbz/O4pP2brlZzrCl0e8J+aMQdvCkX535GoT2UumJbWPOPxqVsC6xYMFFS1fAFVdBk2QYcXE1tkEEHSFRimYOGoA==;31:9Iyjk4YTUY7Pkr9RplY2Iy/Uu/dyQIMpq3e7uUdu2QfdqwJ2skilRvd3kOTu4uv0nEnPNQdL0VDvZpqUwlMBAhH4JQY04cvPAbiWaZ36ub3qbm8UXW8nutuZzMZg3cfeNOJXgkE0OTD0dg5hGkSi6h6s/LmSRdjc9wFUFK5wOD+eP8AsBPNcinFPq4HZN3aUZ7wchr4+CJ4ujxBdcAdWjgNikuki/nrUQZziFb0+NkM=
X-MS-TrafficTypeDiagnostic: CY4PR12MB1143:
X-Microsoft-Exchange-Diagnostics: 1;CY4PR12MB1143;20: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;4:uRKNxeCCuwTZh+SIr3NzxU47okqYd466XfmRENaO1sYid3yYcVjMkmG3QYVw4Tdaxs7CakFvmVFT/PFQeZ4EI5Ngem6TNF12tZ2fLO+w4Hs2HtzVpgrdqDZ1t/fhrSl09kHzQk+iyanbvuAn/pD4npj+7ix3b8IeTOjOLYH/2t8ymNVlMX203OTsWLUIZiQFdwKiD1ce8f4YX/rDIyWuFwHu3unnsTCRiykk4DE6akJNmS6sVBUvJI2trg8CSr03xtZSA4oLMTu2zkNQ22VaL+/vJbtjdaR84i2wLDdnrrf059bE117sfiNQ+STSKNw+zLN4dUoXuPmnKvIHluTkgQ==
X-Microsoft-Antispam-PRVS: <CY4PR12MB114305778C12041E576AEEB8EC1F0@CY4PR12MB1143.namprd12.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(767451399110)(146755900322472);
X-Exchange-Antispam-Report-CFA-Test: BCL:0;PCL:0;RULEID:(6040470)(2401047)(8121501046)(5005006)(10201501046)(93006095)(93001095)(3231023)(944501075)(3002001)(6055026)(6041268)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(20161123558120)(20161123564045)(20161123562045)(6072148)(201708071742011);SRVR:CY4PR12MB1143;BCL:0;PCL:0;RULEID:(100000803101)(100110400095);SRVR:CY4PR12MB1143;
X-Forefront-PRVS: 054231DC40
X-Forefront-Antispam-Report: SFV:NSPM;SFS:(10009020)(6049001)(346002)(376002)(39860400002)(396003)(366004)(39380400002)(24454002)(377424004)(199004)(189003)(2870700001)(77096006)(31686004)(6486002)(5660300001)(2906002)(4326008)(229853002)(90366009)(6246003)(6306002)(65826007)(81166006)(31696002)(6666003)(53936002)(86362001)(2950100002)(25786009)(386003)(53546011)(3260700006)(305945005)(65956001)(65806001)(7416002)(6116002)(8666007)(66066001)(3846002)(81156014)(7736002)(110136005)(8936002)(50466002)(58126008)(54906003)(47776003)(97736004)(68736007)(16576012)(16526018)(316002)(76176011)(8676002)(478600001)(966005)(2501003)(72206003)(93886005)(105586002)(52146003)(52116002)(83506002)(106356001)(2486003)(59450400001)(36756003)(23676004)(64126003);DIR:OUT;SFP:1101;SCL:1;SRVR:CY4PR12MB1143;H:[10.236.65.116];FPR:;SPF:None;PTR:InfoNoRecords;A:1;MX:1;LANG:en;
X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtDWTRQUjEyTUIxMTQzOzIzOmVWYUt5NWg5RjVFNHI2SWJ3NTM5bkFtUklz?=
 =?utf-8?B?VjNmRTFrNkQvR0d0NVRCYklRVUZ1a0l0TGtCajdDOWJ2U1lRdUxBMHpzVXRW?=
 =?utf-8?B?ZUVjMGdCWUtZVi9VQ01Ua0RHM0MzQWVDTjczMUsxNTJxVE1ZSHl1K0oyd21M?=
 =?utf-8?B?NkFEMDVTOW9GL1pkbUJ4V3FodlJiZDRGMEJWbjdabzhjb3dRdXhBdnZ4a2RC?=
 =?utf-8?B?OGpJMXc5VzhQbndoWm5SKzM3QitaSHBEMWZ1K0piMjVteDVRSS9SL25FdXBz?=
 =?utf-8?B?U3dlSEN4SWFWc3VBaE1JR1pzSmtxRFZscTEzS1FGZGd4aGFSbjUrSjh4VXFx?=
 =?utf-8?B?MmYyNFdYNndPM2E4M05zYnV2V1krbXV2RUNuR0pQMFFtMGtFdlJPSWg2emls?=
 =?utf-8?B?S0dVN3JKWGF6MG56OHJuU2I1b0lwTmlOZ1pzUE5vTUhHeXNGQ0k1KzNIWnZD?=
 =?utf-8?B?K2V6M1lMWWk2Yjlya1pwWURPTlRNSStocTlmdjVleWNuaXcwb0VlcG9kUUpy?=
 =?utf-8?B?WEJOL0o0ZU5qSU5Fd0FtMk9ka0FONGZGaVRCakt1RVB4UnZKRTZMblB3L0dw?=
 =?utf-8?B?WmkyRExwNExNSlVvNXBLdTFFcE4zNjlnNlBwZUpHQ3lEUmVJazhTdzJNUnpI?=
 =?utf-8?B?WHdtZzN3T0VPSTJXRU1UcGc3TFJVT1h5dVdvbWd6U1dXQWJhc3g4UjNuSFlY?=
 =?utf-8?B?M0FRQkNsb1J1SDBjeEQ0RkdnYkJCVGdKd1V0a1EzbkM0eTBtN2swblp5RDJL?=
 =?utf-8?B?UEhNZ2wxS09TVU5GeFJiVVdXRjBxOHJxdVo5enJ4cWs4cjA3MlJld0dIZWtV?=
 =?utf-8?B?UGxmMzhNckJPaTRSbEJxOGQ5eDB3eFJRUEp4TkpEN1hJUjlRLzU4NjNHT2V3?=
 =?utf-8?B?NmRMaVhUQzBVQzVMRkJZMGp3WEFvUlpKM0p3eXF3MUQwdWZIYm44bzhZNXA2?=
 =?utf-8?B?YWFVZGRXSEpYbXlDdHAySFd1TFcwOHIwZDkvaVhNSEdlWk5WcDFXTi9TNi96?=
 =?utf-8?B?ZHUvdUNHQjk4TWloOUcvSTFoY2M2NnYvQVUzcnZTT0kweUdvQmV2N1NKckVI?=
 =?utf-8?B?cGhwNXN0M1FRZkI1T2RnUjB4VjhQazYyekZvVyt5dGc2YzkyUTNUOE5tNXVN?=
 =?utf-8?B?a2ZqTHBGcWE3MTQzR1RxV0ZldWptbUg4cVAvM1l4RkZCb1lVbjQ5anBXSm92?=
 =?utf-8?B?dUcvY2ZsK2JOUkNpZkhsVXdsVU9SNzFZKzBsM1FrRnI4bTZMT2dydEJiVEVa?=
 =?utf-8?B?aFJPR2JmRXAzdnRwREFib3c2blpzQ21GME5Na2lwNzkrRXlNcFllMTZQSkxO?=
 =?utf-8?B?ZGJadHVFNEZteVpqZ0E4VjZDUkppRSsyRFBlalB0YzIzVllDSGRlOHI2ZGxx?=
 =?utf-8?B?aGoxVDlMQW1jc1dOYkFOR2Qrdi9VREVTY254TEV1QTA3bGIwdWpwbk96allj?=
 =?utf-8?B?UVU1T3hhbWxGUXBLcDlvOGhRdFFxbjIvSExrN3B0ZnhVS3llbDBJUWNnU2wx?=
 =?utf-8?B?WnpLU0E5RlRzc1hMWDVWaVNSbWE4RU00a0xUWVhBS1cxQWZwRHFtYi9lVmdx?=
 =?utf-8?B?YVdPR2ZyRFhCUmZ5L2lZL2ZETG1lOVJ3dHVjWkVUc2E4dHJqV3dkVWtpYzRE?=
 =?utf-8?B?d1ZIUEpRclMxRU1aTER1NkNuTnBwZjBNZVVNbm5PRTljNzlOMnd6dmthM3B5?=
 =?utf-8?B?WW8wK3VkZlk5ckl1Mld2RFBFWGk1elpsMUxHeWdDR3hRTmVxanNRREVUcms0?=
 =?utf-8?B?aGdYbzRhRHJKVzcwUEhZUS9EODRHTDFpSjJObUNlQ3Q3UUFjRHUxQlFHQi9u?=
 =?utf-8?B?YzQxNWFLRk9xV0RSRnpjZHFhWjIydVlEVmVPOGhaSG1PY1Jib214cnV1UGJT?=
 =?utf-8?B?TURUWkozOFgrbkVMZForYXNqNnhJR0FEWGlGZ2ZNdHRPVDNPT1NBN2RuMHNH?=
 =?utf-8?B?RUlTNEJJQmIyTzFUWHl5SkxKLy9LS25qbWtZSTErVmxhaTVYbVpFc05WUVo0?=
 =?utf-8?B?M3NHT2c5T05SQUZyUGZnV05lUFJ5MDZMNUwwdHBVYzJLN1l4S2NqYUhQSHY5?=
 =?utf-8?B?S3BuYWlCUWIvemRycHpjY2NzYXdYS1YwNTlDaTl4YWYzZVM2VG5VMndQUmNo?=
 =?utf-8?B?K29UbVdLRnhoNnlpcWR1R2hQRjIrYVNxOUdZNlFzU2s1ZU5vVEp4MUhBUTA2?=
 =?utf-8?B?aTJra2NuWnVHZGVISUd2UUMxVVZBPT0=?=
X-Microsoft-Exchange-Diagnostics: 1;CY4PR12MB1143;6:Nh8W67KpbkCsiIIfdTxSadyWd3WqfYTFNcH82XA/3fAnH6jOlCMKGPy2LtAgC5qjLvHVrrIkSsKLQKlsE47PbwKK5oCcWfHoEnWsIPdHjcAcwgYHH6paMEe69jcGAsGXnSbj0h0xCM9UMiP/3NRhsyvBxVmNOLMpL2HFLR4LGmA2l+vbK/pwOrCkkCrNxyOujLCTPwuY7sca9k/7HxxtScy5UeX97Gt4Jwok4K3qByZxX1HVgUwMCoYbXnyq713Ulif3qurS8DHeft0bjKbdYeGiL3RRRP7JoIcFkhc+FILUAaQUdRQLLlUPvhx8Zb4BwE/ZUiWtb1JG7E1SIhydreczeQwTT683ZFAqiE4uZBc=;5:3YG1RN0dPqQwJ9WqB5a88c7KzofF7CmEsNLJVOxUt5cx+0k9HkAdjBFvk6d5uMYHa8zB5TyjNIdHxAwJBjMnBCx1qkLqh5uRZ24YKXXldGPH8/5eFAze7kZd/qFF51JqokT+t20L82AZhLT6AIMP/InwkB9M/9JzNmetl55lYZM=;24:m67xp37HAm7yNLXUthZde8YJTf1FFwLqAvzSLpvioV0iVw0we4ubJVIxzemxuyUUUkCFqdIBa5s6XXqKZubedTDBo6oKnrCGbi2JEe439HA=;7:gGQE5ju3XST0XCFP/1rCIaroT2wfr6SVBFMLJeriGc+ZvyjZkFFwTIh5HRuOc8C3RVELu8QhszF1SQ1mKbJ2pdYgqvj6JIT3I62l0sOn5shMbcBi8WvuXnC1Gf0iXvQ7D+EYOoIulvySraUiH6cRNVrjftft4AyEEs7ERRTAOQZbPRpjdYk3Nhy8mRIgAmTX/6r5mw0MPhS5ZVjn96o5QOXHHknp60dmZn32YQARaENt1dzFNMq3Iq7NMd8Y95I3
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1;CY4PR12MB1143;20:+93E4tP9FXj4vq9DJalXE8k07+Wr1wk1U5ew4ml9LPXHsEzj/7by2sxkr6aESKU22OebHRUkA5xA1L/zjSqe59Q/KhEbBpOQKaiALmimFzCHlYVwpGgORrLHaU7QgmrMB3bxyC4sqmeT35MMeKJKx2Ua5gaMbt9YQ7gLIltm0g6XYffFTjxeaT2qAcnGGIKnnO63xqrUXR2ZEQ4y5WB0LBCIJeATGs76hkjPXosJMSsS6OBTRHHcGgv4nwnG2z9r
X-OriginatorOrg: amd.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 04 Jan 2018 23:47:19.2349 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 470580dc-e144-4db4-506b-08d553cd7efd
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 3dd8961f-e488-4e60-8e11-a82d994e183d
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY4PR12MB1143
Sender: linux-kernel-owner@vger.kernel.org
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>

On 1/4/2018 2:05 PM, David Woodhouse wrote:
> On Thu, 2018-01-04 at 14:00 -0600, Tom Lendacky wrote:
>> Yes, lfence is sufficient.  As long as the target is in the register
>> before the lfence and we jump through the register all is good, i.e.:
> 
> Thanks. Can I have a Reviewed-by: for this then please:

Reviewed-by: Tom Lendacky <thomas.lendacky@amd.com>

While this works, a more efficient way to do the lfence support would be
to not use the retpoline in this case.  Changing the indirect jumps to
do the "mov [rax], rax; lfence; jmp *rax" sequence would be quicker. I'm
not sure if this is feasible given the need to do a retpoline if you can't
use lfence, though.

Thanks,
Tom

> 
> http://git.infradead.org/users/dwmw2/linux-retpoline.git/commitdiff/08d9eda03
> 
> From: David Woodhouse <dwmw@amazon.co.uk>
> Date: Thu, 4 Jan 2018 20:01:53 +0000
> Subject: [PATCH] x86/retpoline: Simplify AMD variant of retpoline thunk
> 
> On AMD (which is X86_FEATURE_K8), just the lfence is sufficient.
> 
> Signed-off-by: David Woodhouse <dwmw@amazon.co.uk>
> ---
>  arch/x86/lib/retpoline.S | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
> 
> diff --git a/arch/x86/lib/retpoline.S b/arch/x86/lib/retpoline.S
> index bbdda5cc136e..26070976bff0 100644
> --- a/arch/x86/lib/retpoline.S
> +++ b/arch/x86/lib/retpoline.S
> @@ -11,7 +11,7 @@
>  
>  ENTRY(__x86.indirect_thunk.\reg)
>  	CFI_STARTPROC
> -	ALTERNATIVE "call 2f", __stringify(jmp *%\reg), X86_BUG_NO_RETPOLINE
> +	ALTERNATIVE_2 "call 2f", __stringify(lfence;jmp *%\reg), X86_FEATURE_K8, __stringify(jmp *%\reg), X86_BUG_NO_RETPOLINE
>  1:
>  	lfence
>  	jmp	1b
> -- 
> 2.14.3
>