Received: by 2002:ad5:4acb:0:0:0:0:0 with SMTP id n11csp1106359imw; Thu, 14 Jul 2022 17:45:19 -0700 (PDT) X-Google-Smtp-Source: AGRyM1s/HWtIyW4zEqAoPodImxAGrVNak4E2Y3B++wzeFyP/3oYVqYQBmiSTL4lndvlWW0CMHPQf X-Received: by 2002:a05:6402:201:b0:431:665f:11f1 with SMTP id t1-20020a056402020100b00431665f11f1mr15601186edv.378.1657845919130; Thu, 14 Jul 2022 17:45:19 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1657845919; cv=none; d=google.com; s=arc-20160816; b=WVCAkmwEBunB3bWX3Q5tHKmdIYRDA2CPnzLfq/LsCfr0LAPSiQMHFVEgm7Zm1Ui4Q8 kt+Jt3UHL+iV6BSbIkhJOH2f2VEOLEzqrJF00gIMH5ufD7FASE93bhBCBK+3efM0WzlC VxteVyW8firV1fZrKaelu1yY3Bb3io+csi3oumAQiS8ccyImXIlNguSoQXrbi+xjmSGu nEIDpiXP9kUw7GkKRDP8zYIZKSPAJe1Ll2AVpmi81aRogD3U62h7U7kDpeB8BnnqL3Js aS3z3XcowZ/AEgjJ8ewUeHQ/aP/P8vZY3yBKqHk+dh7a03P8/dOAH2lHE3wZ6mjpLZ7P c6SQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:to:subject:message-id:date:from:mime-version :dkim-signature; bh=2y/bRWdrE6PknWUfOr49D67DacrQqJC2LFsgWNk0Y08=; b=Jf4CX6aeD5LrIWGvSyb+a/1XMZtPQwfnsXtTIdkX2UzWNO8hG8spS1yYew5edXTdTI Kh1yalbtfVotlQq60JZkMmp6zdgbJpQJ68Ka0GGIZJqypenWwTSwzbZjKZPEoBWl0cD2 +hmIMgWXT1fZ/3vnECK3JnHKeryv+vaRfn5OAPC/fDKTSNFnjWW5I3x6ir8nybGtSFF+ sTWcv5nNh7j3hRRJ5hapBDMe4RD1xbnGhKgeELO8V0/3Q18cPHlp0enZQEVSJl96J7Az /Air4s+e6wFFjc9ud+W2rxPPI+b/nsQAbPg8Qxz0JwXtUYGe4vWLpSCu/uyAuP6vSMJs OkZg== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=bVvFSjYP; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id m14-20020a056402430e00b0043a7a08bba0si3754030edc.370.2022.07.14.17.44.54; Thu, 14 Jul 2022 17:45:19 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@google.com header.s=20210112 header.b=bVvFSjYP; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=google.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S239913AbiGOAaO (ORCPT + 99 others); Thu, 14 Jul 2022 20:30:14 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:54744 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S232627AbiGOAaN (ORCPT ); Thu, 14 Jul 2022 20:30:13 -0400 Received: from mail-oi1-x22a.google.com (mail-oi1-x22a.google.com [IPv6:2607:f8b0:4864:20::22a]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 04CDA67CB6 for ; Thu, 14 Jul 2022 17:30:11 -0700 (PDT) Received: by mail-oi1-x22a.google.com with SMTP id bb16so4340988oib.11 for ; Thu, 14 Jul 2022 17:30:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20210112; h=mime-version:from:date:message-id:subject:to; bh=2y/bRWdrE6PknWUfOr49D67DacrQqJC2LFsgWNk0Y08=; b=bVvFSjYP1AC38tnyGp0DkBPhExptuvki0alnKs1ljCDwyAF6r8UywkndRWlo7r59+A qL/1Na4Rg95/gvkG51UfSyYcXEm3XlMeQ3xJYETlQ+LCkORddgYXdtALN8U7+VkvAzcB +pcApIohOVp60Y0UdzBsxxTiW0eHZGeXAY6VlaGGRBdD4UPwx/1uXq8lcLRPyMT7GcH+ p1t3NgnRW3yJCVuFON61NE637EqeJCil6tbYznSCNvYj5fZkRBz0VukVNqxfnuGik59x oCwslppN3iTbO+yMIaKOxrP3Rg+AScPnJrOu5/woBDcsvZAF1nAQowOT5XdAq7zzJ/WU X/Bw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=2y/bRWdrE6PknWUfOr49D67DacrQqJC2LFsgWNk0Y08=; b=hggipKjrbwiP3ea9GM2ZB/BHMu3B1e+uBY0CQ2Kb1Qd80FAKYTLXZXezn3x+OOBCQH nD3HkPCqonTi9Z692kY17SQEVcLxJdi8oXJ3tpZ2PCrrqFSNxYTo6n2IMCIflqaQeoTG J9PD7JDs/yvpH0Fenh8jYCWwp61/faeSHZUIT7uSNV0QYBDe1s9eq9JRMfwzV51wyGIz Voc6Zl/6QkYZsuByq96EOxAHTnxWiNOJqk0XBzVsDFw+0vSyOfWmSqAZxDaeq3g+165S RKhHkyl9loT9DeCxvm5NN1Cy9fLix1/PC4ezs7WJPte//g53o75Etf1ciZlsrOkTd1lX llqw== X-Gm-Message-State: AJIora/93IQYOv40Fgnr1k2YVfutaANnn/540L9CVRYUU2UCBxgysHUR BzgTRfaZk87ZdEBXmtRX7rTAHEoNvWACk0NzadP9inJ+W761Gg== X-Received: by 2002:a05:6808:2124:b0:335:7483:f62d with SMTP id r36-20020a056808212400b003357483f62dmr8905045oiw.112.1657845009367; Thu, 14 Jul 2022 17:30:09 -0700 (PDT) MIME-Version: 1.0 From: Jim Mattson Date: Thu, 14 Jul 2022 17:29:58 -0700 Message-ID: Subject: Retbleed (RSBA vs BTC) To: LKML Content-Type: text/plain; charset="UTF-8" X-Spam-Status: No, score=-17.6 required=5.0 tests=BAYES_00,DKIMWL_WL_MED, DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF, ENV_AND_HDR_SPF_MATCH,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE,SPF_PASS, T_SCC_BODY_TEXT_LINE,USER_IN_DEF_DKIM_WL,USER_IN_DEF_SPF_WL autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org What is the value in conflating the Intel and AMD findings under the same moniker (arch/x86/kernel/cpu/common.c)? The vulnerabilities seem quite different to me. The Intel CPUs tagged with RETBLEED should already report RSBA. The paper just highlights this previously disclosed vulnerability. Or are there Intel CPUs subject to Retbleed that don't report RSBA, and I'm just confused? On the AMD side, however, Branch Type Confusion is a much bigger deal. All instructions are subject to steering by BTI, not just returns with an empty RSB. Don't these two vulnerabilities deserve separate names (and don't we already have a name for the first one)? Tangentially, I believe that the following line is wrong: VULNBL_INTEL_STEPPINGS(SKYLAKE_X, X86_STEPPING_ANY, MMIO | RETBLEED), Steppings 5, 6, and 7 are "Cascade Lake," with eIBRS, and I don't think Cascade Lake suffers from RSBA.