Commit 2184c429 authored Apr 08, 2025 by Josh Poimboeuf Committed by Greg Kroah-Hartman May 02, 2025

x86/bugs: Don't fill RSB on context switch with eIBRS



[ Upstream commit 27ce8299 ]

User->user Spectre v2 attacks (including RSB) across context switches
are already mitigated by IBPB in cond_mitigation(), if enabled globally
or if either the prev or the next task has opted in to protection.  RSB
filling without IBPB serves no purpose for protecting user space, as
indirect branches are still vulnerable.

User->kernel RSB attacks are mitigated by eIBRS.  In which case the RSB
filling on context switch isn't needed, so remove it.

Suggested-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Josh Poimboeuf <jpoimboe@kernel.org>
Signed-off-by: Ingo Molnar <mingo@kernel.org>
Reviewed-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Reviewed-by: Amit Shah <amit.shah@amd.com>
Reviewed-by: Nikolay Borisov <nik.borisov@suse.com>
Link: https://lore.kernel.org/r/98cdefe42180358efebf78e3b80752850c7a3e1b.1744148254.git.jpoimboe@kernel.org


Signed-off-by: Sasha Levin <sashal@kernel.org>

parent 3b2efa56

Show whitespace changes

Inline Side-by-side

CodeLinaro @codelinaro
mentioned in commit 9e207186
· Nov 05, 2025

mentioned in commit 9e207186

mentioned in commit 9e207186c74578f0ef1872467740ab30f74abe6d

Toggle commit list

Please to comment