Received: by 2002:a05:6a10:8c0a:0:0:0:0 with SMTP id go10csp1510674pxb; Mon, 22 Feb 2021 04:02:26 -0800 (PST) X-Google-Smtp-Source: ABdhPJyymGptZDUEOjIxBLs4fUHMdHN75dw0c4X95zQNDUaWNizrs4eV/8NIadw1ZHPrc1AgVZsu X-Received: by 2002:a17:906:71c7:: with SMTP id i7mr12860749ejk.401.1613995345837; Mon, 22 Feb 2021 04:02:25 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1613995345; cv=none; d=google.com; s=arc-20160816; b=0uy7hYHHEYdfUcA1iO9i1jHsjEJ407ss6hOP2xxK1VqfKpPqHzRyzXlzoFI6mauh3P sy+NlhwrS8kuRPDDJ7Q2BI4nrLrAEOCL/7RkdzP+xnoTNkx5Nv7k6bz2QbCRUAdDshYV oREvgES4Sh8qB2V6ulb8NeCLdBVJ+qrG8miHPHTTJTr5ViM96F4qLcEnOa5ge25ap+rn yI/EcSPSI8jyLtxlXytLfH0E+9rUsQC5VC5oRX2iwKJTpr1vDvAvLF3RX7cQyGe5RmkE ssij8VlBvfoq78xN9SHSOvZdfsWNGV3np76O1b32GxdvA3OW0IVTBJ7lZbJKiwzyxUxX bWog== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:user-agent:in-reply-to:content-disposition :mime-version:references:message-id:subject:cc:to:from:date :dkim-signature; bh=qiAtrFYvIoMxOT8QskfR/FbFol7C3E/NogjLOmXERpY=; b=tRw4IAaWwXF+vZALM2qTHc1m9lTmfcPLN3Axj6f6dk2M1k4mxrEyRszoGHROwcvLG9 290PIxPt9XdE4d+D2wfXHpFmXz5A+wgtYhy0BdiF7PZgaDZoDQDG9frduKHvy60ag0pZ gZUlhBXRAIhAUqjEKu12oHowUwJ4AbpdXlTU5xCUjVjeLJVJiyS3Ju98JX4SFr/JpnoH cGdoc0lzr1mc44lxGNnUJq1VrgX+cGF8rP1QwpDcJVAAQE+hLWMuYla/MrM7NvAAAGBo Gx41l61V9ddsMk/WElPatdurxGZtKuaNjtDVv/10HQraWsa/rw6CPbwDoBqURbO0xuh3 +UMA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=MEtBdS+p; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id s9si11910888edr.275.2021.02.22.04.02.03; Mon, 22 Feb 2021 04:02:25 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=k20201202 header.b=MEtBdS+p; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S230155AbhBVL7N (ORCPT + 99 others); Mon, 22 Feb 2021 06:59:13 -0500 Received: from mail.kernel.org ([198.145.29.99]:42402 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S230105AbhBVL7H (ORCPT ); Mon, 22 Feb 2021 06:59:07 -0500 Received: by mail.kernel.org (Postfix) with ESMTPSA id 4914A64E15; Mon, 22 Feb 2021 11:58:20 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=k20201202; t=1613995104; bh=cX6+zcAFvYLB9KQP4npgFv9p/Y9T3UFAefLKaAVJ7cA=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=MEtBdS+pzZVBPR9ZfrHvwUbU8LRoQz7FCSZ16Ws+XJQEGovFiXQj0n6bcaFJadohy QzV37B4gnkaa1wRZY0DBHM2Y9vYSwdb9ITEyVkeDkTnC/xPn9uextV4FkzGIcKWJR+ dJrUhg8x7sR8Okocjn0cLzGuy1nMW0YOTn2YiADr5DEtzNVlUiFi/dppws4uCUpbCr 2oQ/u39Uwjm1LWPZEISNNeZ7XtAZWPhrUdMINVz5qmj3v/mokXgde1++ClEeRllpdX YOJCy+1h9hqYCONnAjuzHHCJTgqWY14/Zep5CfTvo/Tlo1tyLMY22L1dG1zxP5RRR9 43oHdPbH9KTyQ== Date: Mon, 22 Feb 2021 11:58:16 +0000 From: Will Deacon To: Jian Cai Cc: ndesaulniers@google.com, manojgupta@google.com, llozano@google.com, clang-built-linux@googlegroups.com, Nathan Chancellor , David Laight , Russell King , Catalin Marinas , James Morris , "Serge E. Hallyn" , Arnd Bergmann , Masahiro Yamada , Kees Cook , Ard Biesheuvel , Andreas =?iso-8859-1?Q?F=E4rber?= , Ingo Molnar , Linus Walleij , Marc Zyngier , Andrew Morton , Mike Rapoport , Mark Rutland , David Brazdil , James Morse , linux-arm-kernel@lists.infradead.org, linux-kernel@vger.kernel.org, linux-security-module@vger.kernel.org Subject: Re: [PATCH v4] ARM: Implement SLS mitigation Message-ID: <20210222115816.GA8605@willie-the-truck> References: <20210219201852.3213914-1-jiancai@google.com> <20210219230841.875875-1-jiancai@google.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20210219230841.875875-1-jiancai@google.com> User-Agent: Mutt/1.10.1 (2018-07-13) Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Feb 19, 2021 at 03:08:13PM -0800, Jian Cai wrote: > This patch adds CONFIG_HARDEN_SLS_ALL that can be used to turn on > -mharden-sls=all, which mitigates the straight-line speculation > vulnerability, speculative execution of the instruction following some > unconditional jumps. Notice -mharden-sls= has other options as below, > and this config turns on the strongest option. > > all: enable all mitigations against Straight Line Speculation that are implemented. > none: disable all mitigations against Straight Line Speculation. > retbr: enable the mitigation against Straight Line Speculation for RET and BR instructions. > blr: enable the mitigation against Straight Line Speculation for BLR instructions. > > Links: > https://reviews.llvm.org/D93221 > https://reviews.llvm.org/D81404 > https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation > https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions#SLS2 > > Suggested-by: Manoj Gupta > Suggested-by: Nick Desaulniers > Suggested-by: Nathan Chancellor > Suggested-by: David Laight > Suggested-by: Will Deacon > Reviewed-by: Nathan Chancellor > Signed-off-by: Jian Cai > --- Please can you reply to my previous questions? https://lore.kernel.org/linux-arm-kernel/20210217094859.GA3706@willie-the-truck/ (apologies if you did, but I don't see them in the archive or my inbox) Will