From mboxrd@z Thu Jan 1 00:00:00 1970 From: Norbert Manthey Subject: Re: [PATCH SpectreV1+L1TF v6 3/9] x86/hvm: block speculative out-of-bound accesses Date: Mon, 18 Feb 2019 15:47:06 +0100 Message-ID: References: <1c2b8322-1b66-ccc6-9ba9-e86eafb0227a@amazon.de> <1549633489-12724-1-git-send-email-nmanthey@amazon.de> <1549633489-12724-4-git-send-email-nmanthey@amazon.de> <5C4ED1D402000078002119E6@prv1-mh.provo.novell.com> <9C03B9BA0200004637554D14@prv1-mh.provo.novell.com> <00FAA7AF020000F8B1E090C7@prv1-mh.provo.novell.com> <0101E7AF020000F8B1E090C7@prv1-mh.provo.novell.com> <5C532AC00200007800212EA2@prv1-mh.provo.novell.com> <01CCAAAF02000039B1E090C7@prv1-mh.provo.novell.com> <01CE6AAF02000039B1E090C7@prv1-mh.provo.novell.com> <5C62C9600200007800215EA7@prv1-mh.provo.novell.com> <64fdf4b6-69be-d262-b4e4-1dd0d424a777@amazon.de> <5C62D4CC0200007800215F79@prv1-mh.provo.novell.com> <5C667E830200007800216E73@prv1-mh.provo.novell.com> <2c93384c-bca4-c38e-ecf8-877d16637068@amazon.de> <5C66A6880200007800216FA7@prv1-mh.provo.novell.com> Mime-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Return-path: Received: from all-amaz-eas1.inumbo.com ([34.197.232.57] helo=us1-amaz-eas2.inumbo.com) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1gvkCa-0003bB-BR for xen-devel@lists.xenproject.org; Mon, 18 Feb 2019 14:47:24 +0000 In-Reply-To: <5C66A6880200007800216FA7@prv1-mh.provo.novell.com> Content-Language: en-US List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-devel-bounces@lists.xenproject.org Sender: "Xen-devel" To: Jan Beulich Cc: Juergen Gross , Tim Deegan , Stefano Stabellini , Wei Liu , Konrad Rzeszutek Wilk , George Dunlap , Andrew Cooper , Ian Jackson , Dario Faggioli , Martin Pohlack , wipawel@amazon.de, Julien Grall , David Woodhouse , "Martin Mazein(amazein)" , xen-devel , Julian Stecklina , Bjoern Doebel List-Id: xen-devel@lists.xenproject.org T24gMi8xNS8xOSAxMjo0NiwgSmFuIEJldWxpY2ggd3JvdGU6Cj4+Pj4gT24gMTUuMDIuMTkgYXQg MTE6NTAsIDxubWFudGhleUBhbWF6b24uZGU+IHdyb3RlOgo+PiBPbiAyLzE1LzE5IDA5OjU1LCBK YW4gQmV1bGljaCB3cm90ZToKPj4+Pj4+IE9uIDE1LjAyLjE5IGF0IDA5OjA1LCA8bm1hbnRoZXlA YW1hem9uLmRlPiB3cm90ZToKPj4+PiBPbiAyLzEyLzE5IDE1OjE0LCBKYW4gQmV1bGljaCB3cm90 ZToKPj4+Pj4+Pj4gT24gMTIuMDIuMTkgYXQgMTU6MDUsIDxubWFudGhleUBhbWF6b24uZGU+IHdy b3RlOgo+Pj4+Pj4gT24gMi8xMi8xOSAxNDoyNSwgSmFuIEJldWxpY2ggd3JvdGU6Cj4+Pj4+Pj4+ Pj4gT24gMDguMDIuMTkgYXQgMTQ6NDQsIDxubWFudGhleUBhbWF6b24uZGU+IHdyb3RlOgo+Pj4+ Pj4+PiBAQCAtNDEwNCw2ICs0MTA4LDEyIEBAIHN0YXRpYyBpbnQgaHZtb3Bfc2V0X3BhcmFtKAo+ Pj4+Pj4+PiAgICAgIGlmICggYS5pbmRleCA+PSBIVk1fTlJfUEFSQU1TICkKPj4+Pj4+Pj4gICAg ICAgICAgcmV0dXJuIC1FSU5WQUw7Cj4+Pj4+Pj4+ICAKPj4+Pj4+Pj4gKyAgICAvKgo+Pj4+Pj4+ PiArICAgICAqIE1ha2Ugc3VyZSB0aGUgZ3Vlc3QgY29udHJvbGxlZCB2YWx1ZSBhLmluZGV4IGlz IGJvdW5kZWQgZXZlbiBkdXJpbmcKPj4+Pj4+Pj4gKyAgICAgKiBzcGVjdWxhdGl2ZSBleGVjdXRp b24uCj4+Pj4+Pj4+ICsgICAgICovCj4+Pj4+Pj4+ICsgICAgYS5pbmRleCA9IGFycmF5X2luZGV4 X25vc3BlYyhhLmluZGV4LCBIVk1fTlJfUEFSQU1TKTsKPj4+Pj4+Pj4gKwo+Pj4+Pj4+PiAgICAg IGQgPSByY3VfbG9ja19kb21haW5fYnlfYW55X2lkKGEuZG9taWQpOwo+Pj4+Pj4+PiAgICAgIGlm ICggZCA9PSBOVUxMICkKPj4+Pj4+Pj4gICAgICAgICAgcmV0dXJuIC1FU1JDSDsKPj4+Pj4+Pj4g QEAgLTQzNzAsNiArNDM4MCwxMiBAQCBzdGF0aWMgaW50IGh2bW9wX2dldF9wYXJhbSgKPj4+Pj4+ Pj4gICAgICBpZiAoIGEuaW5kZXggPj0gSFZNX05SX1BBUkFNUyApCj4+Pj4+Pj4+ICAgICAgICAg IHJldHVybiAtRUlOVkFMOwo+Pj4+Pj4+PiAgCj4+Pj4+Pj4+ICsgICAgLyoKPj4+Pj4+Pj4gKyAg ICAgKiBNYWtlIHN1cmUgdGhlIGd1ZXN0IGNvbnRyb2xsZWQgdmFsdWUgYS5pbmRleCBpcyBib3Vu ZGVkIGV2ZW4gZHVyaW5nCj4+Pj4+Pj4+ICsgICAgICogc3BlY3VsYXRpdmUgZXhlY3V0aW9uLgo+ Pj4+Pj4+PiArICAgICAqLwo+Pj4+Pj4+PiArICAgIGEuaW5kZXggPSBhcnJheV9pbmRleF9ub3Nw ZWMoYS5pbmRleCwgSFZNX05SX1BBUkFNUyk7Cj4+Pj4+Pj4gLi4uIHRoZSB1c2VmdWxuZXNzIG9m IHRoZXNlIHR3by4gVG8gbWFrZSBmb3J3YXJkIHByb2dyZXNzIGl0IG1heQo+Pj4+Pj4+IGJlIHdv cnRod2hpbGUgdG8gc3BsaXQgb2ZmIHRoZXNlIHR3byBjaGFuZ2VzIGludG8gYSBzZXBhcmF0ZSBw YXRjaC4KPj4+Pj4+PiBJZiB5b3UncmUgZmluZSB3aXRoIHRoaXMsIEkgY291bGQgc3RyaXAgdGhl c2UgdHdvIGJlZm9yZSBjb21taXR0aW5nLAo+Pj4+Pj4+IGluIHdoaWNoIGNhc2UgdGhlIHJlbWFp bmluZyBjaGFuZ2UgaXMKPj4+Pj4+PiBSZXZpZXdlZC1ieTogSmFuIEJldWxpY2ggPGpiZXVsaWNo QHN1c2UuY29tPgo+Pj4+Pj4gVGFraW5nIGFwYXJ0IHRoZSBjb21taXQgaXMgZmluZSB3aXRoIG1l LiBJIHdpbGwgc3VibWl0IGEgZm9sbG93IHVwCj4+Pj4+PiBjaGFuZ2UgdGhhdCBkb2VzIG5vdCB1 cGRhdGUgdGhlIHZhbHVlcyBidXQgZml4ZXMgdGhlIHJlYWRzLgo+Pj4+PiBBcyBwb2ludGVkIG91 dCBkdXJpbmcgdGhlIHY1IGRpc2N1c3Npb24sIEknbSB1bmNvbnZpbmNlZCB0aGF0IGlmCj4+Pj4+ IHlvdSBkbyBzbyB0aGUgY29tcGlsZXIgY2FuJ3QgcmUtaW50cm9kdWNlIHRoZSBpc3N1ZSB2aWEg Q1NFLiBJJ2QKPj4+Pj4gcmVhbGx5IGxpa2UgYSByZWxpYWJsZSBzb2x1dGlvbiB0byBiZSBkZXRl cm1pbmVkIGZpcnN0Lgo+Pj4+IEkgY2Fubm90IGdpdmUgYSBndWFyYW50ZWUgd2hhdCBmdXR1cmUg Y29tcGlsZXJzIG1pZ2h0IGRvLiBGdXJ0aGVybW9yZSwgSQo+Pj4+IGRvIG5vdCB3YW50IHRvIHdh aXQgdW50aWwgYWxsL21vc3QgY29tcGlsZXJzIHNoaXAgd2l0aCBzdWNoIGEKPj4+PiBjb250cm9s bGFibGUgZ3VhcmFudGVlLgo+Pj4gR3VhcmFudGVlPyBGdXR1cmUgY29tcGlsZXJzIGFyZSAoaG9w ZWZ1bGx5KSBnb2luZyB0byBnZXQgYmV0dGVyIGF0Cj4+PiBvcHRpbWl6aW5nLCBhbmQgaGVuY2Ug YXJlIChhZ2FpbiBob3BlZnVsbHkpIGdvaW5nIHRvIGZpbmQgbW9yZQo+Pj4gb3Bwb3J0dW5pdGll cyBmb3IgQ1NFLiBTbyB0aGUgcHJvYmxlbSBpcyBnb2luZyB0byBnZXQgd29yc2UgcmF0aGVyCj4+ PiB0aGFuIGJldHRlciwgYW5kIHRoZSBjaGFuZ2VzIHlvdSdyZSBwcm9wb3NpbmcgdG8gcmUtaW5z dGF0ZSBhcmUKPj4+IHRoZXJlZm9yZSBtb3JlIGxpa2UgZmFsc2UgcHJvbWlzZXMuCj4+IEkgZG8g bm90IHdhbnQgdG8gZGl2ZSBpbnRvIGNvbXBpbGVycyBmdXR1cmUgaGVyZS4gSSB3b3VsZCBsaWtl IHRvIGZpeAo+PiB0aGUgaXNzdWUgZm9yIHRvZGF5cyBjb21waWxlcnMgbm93IGFuZCBub3Qgd2Fp dCB1bnRpbCBjb21waWxlcnMgZXZvbHZlZAo+PiBvbmUgd2F5IG9yIGFub3RoZXIuIEZvciB0aGlz IHBhdGNoLCB0aGUgcmVsZXZhbnQgaW5mb3JtYXRpb24gaXMgd2hldGhlcgo+PiBpdCBzaG91bGQg Z28gaW4gbGlrZSB0aGlzLCBvciB3aGV0aGVyIHlvdSB3YW50IG1lIHRvIHByb3RlY3QgYWxsIHRo ZQo+PiByZWFkcyBpbnN0ZWFkLiBJcyB0aGVyZSBtb3JlIGRhdGEgSSBzaGFsbCBwcm92aWRlIHRv IGhlbHAgbWFrZSB0aGlzCj4+IGRlY2lzaW9uPwo+IEkgdW5kZXJzdGFuZCB0aGF0IHlvdSdyZSBu b3QgaGFwcHkgd2l0aCB3aGF0IEkndmUgc2FpZCwgYW5kIHlvdSdyZQo+IHVubGlrZWx5IHRvIGJl Y29tZSBhbnkgaGFwcGllciB3aXRoIHdoYXQgSSdsbCBhZGQuIEJ1dCBwbGVhc2UKPiB1bmRlcnN0 YW5kIHRoYXQgX2lmXyB3ZSBtYWtlIGFueSBjaGFuZ2VzIHRvIGFkZHJlc3MgaXNzdWVzIHdpdGgK PiBzcGVjdWxhdGlvbiwgdGhlIGdvYWwgaGFzIHRvIGJlIHRoYXQgd2UgZG9uJ3QgaGF2ZSB0byBj b21lIGJhY2sKPiBhbiByZS1pbnZlc3RpZ2F0ZSBhZnRlciBldmVyeSBuZXcgY29tcGlsZXIgcmVs ZWFzZS4KPgo+IEV2ZW4gYmV5b25kIHRoYXQgLSBpZiwgYXMgeW91IHNheSwgd2UnZCBsaW1pdCBv dXJzZWx2ZXMgdG8gY3VycmVudAo+IGNvbXBpbGVycywgZGlkIHlvdSBjaGVjayB0aGF0IGFsbCBv ZiB0aGVtIGF0IGFueSBvcHRpbWl6YXRpb24gbGV2ZWwKPiBvciB3aXRoIGFueSBvdGhlciBmbGFn cyBwYXNzZWQgd2hpY2ggbWF5IGFmZmVjdCBjb2RlIGdlbmVyYXRpb24KPiBwcm9kdWNlIG5vbi12 dWxuZXJhYmxlIGNvZGU/IEFuZCBpbiBwYXJ0aWN1bGFyIGNvbnNpZGVyaW5nIHRoZQo+IGNhc2Ug aGVyZSBuZXZlciByZWNvZ25pemUgQ1NFIHBvdGVudGlhbCB3aGVyZSB3ZSB3b3VsZCBsaWtlIHRo ZW0KPiBub3QgdG8/Cj4KPiBBIGNvZGUgY2hhbmdlIGlzLCBpbW8sIG5vdCBldmVuIHdvcnRod2hp bGUgY29uc2lkZXJpbmcgdG8gYmUgcHV0Cj4gaW4gaWYgaXQgaXMgc29sZWx5IGJhc2VkIG9uIHRo ZSBvYnNlcnZhdGlvbnMgbWFkZSB3aXRoIGEgbGltaXRlZCBzZXQKPiBvZiBjb21waWxlcnMgYW5k L29yIG9wdGlvbnMuIFRoaXMgbWlnaHQgaW5kZWVkIGhlbHAgeW91LCBpZiB5b3UKPiBjYXJlIG9u bHkgYWJvdXQgb25lIHNwZWNpZmljIGVudmlyb25tZW50LiBCdXQgYnkgcHV0dGluZyB0aGlzIGlu Cj4gKGFuZCBwZXJoYXBzIGV2ZW4gYmFja3BvcnRpbmcgaXQpIHdlJ3JlIHNvcnQgb2Ygc3RhdGlu ZyB0aGF0IHRoZQo+IGlzc3VlIGlzIHVuZGVyIGNvbnRyb2wgKHRvIHRoZSBiZXN0IG9mIG91ciBh YmlsaXRpZXMsIGFuZCBmb3IgdGhlIGdpdmVuCj4gYXJlYSBvZiBjb2RlKS4gRm9yIGV2ZXJ5b25l LgpJIGRvIG5vdCBzZWUgaG93IGEgZml4IGZvciBwcm9ibGVtcyBsaWtlIHRoZSBkaXNjdXNzZWQg b25lIGNvdWxkIGVudGVyCnRoZSBjb2RlIGJhc2UgZ2l2ZW4gdGhlIGFib3ZlIGNvbmRpdGlvbnMu IEhvd2V2ZXIsIGZvciB0aGlzIHZlcnkKc3BlY2lmaWMgZml4LCB0aGVyZSBmb3J0dW5hdGVseSBp cyBhIGNvbXBhcmlzb24gd3J0IGEgY29uc3RhbnQsIGFuZAp0aGVyZSBhcmUgbWFueSBpbnN0cnVj dGlvbnMgdW50aWwgdGhlIHBvdGVudGlhbCBzcGVjdWxhdGl2ZSBvdXQtb2YtYm91bmQKYWNjZXNz IG1pZ2h0IGhhcHBlbiwgc28gdGhhdCBub3QgZml4aW5nIHRoZSB0d28gYWJvdmUgYWNjZXNzIGlz IGZpbmUgZm9yCm1lLiBXaGlsZSBJIGNhbm5vdCBndWFyYW50ZWUgdGhhdCBpdCBpcyBub3QgcG9z c2libGUsIHdlIGRpZCBub3QgbWFuYWdlCnRvIGNvbWUgdXAgd2l0aCBhIFBvQyBmb3IgdGhlc2Ug dHdvIHBsYWNlcyB3aXRoIHRoZSBlZmZvcnQgd2UgcHV0IGludG8gdGhpcy4KPiBTbywgdG8gYW5z d2VyIHlvdXIgcXVlc3Rpb246IEZyb20gd2hhdCB3ZSBrbm93LCB3ZSBzaW1wbHkKPiBjYW4ndCB0 YWtlIGEgZGVjaXNpb24sIGF0IGxlYXN0IG5vdCBiZXR3ZWVuIHRoZSB0d28gcHJvcG9zZWQKPiB2 YXJpYW50cyBvZiBob3cgdG8gY2hhbmdlIHRoZSBjb2RlLiBJZiB0aGVyZSB3YXMgYSB2YXJpYW50 IHRoYXQKPiBmaXJtbHkgd29ya2VkLCB0aGVuIHRoZXJlIHdvdWxkIG5vdCBldmVuIGJlIGEgbmVl ZCBmb3IgYW55Cj4gZGlzY3Vzc2lvbi4gQW5kIGFnYWluIGZyb20gd2hhdCB3ZSBrbm93LCB0aGVy ZSBpcyBvbmUKPiByZXF1aXJlbWVudCB0aGF0IG5lZWQgdG8gYmUgZnVsZmlsbGVkIGZvciBhIGNo YW5nZSB0byBiZQo+IGNvbnNpZGVyZWQgImZpcm1seSB3b3JraW5nIjogVGhlIGluZGV4IG5lZWRz IHRvIGJlIGluIGEgcmVnaXN0ZXIuCj4gVGhlcmUgbXVzdCBub3QgYmUgYSB3YXkgZm9yIHRoZSBj b21waWxlciB0byB1bmRlcm1pbmUgdGhpcywKPiBiZSBpdCBieSBDU0Ugb3IgYW55IG90aGVyIG1l YW5zLgo+Cj4gQ29uc2lkZXJpbmcgY2hhbmdlcyBkb25lIGVsc2V3aGVyZSwgb2YgY291cnNlIHRo aXMgbWF5IGJlCj4gdGFrZW4gd2l0aCBhIGdyYWluIG9mIHNhbHQuIEluIG90aGVyIHBsYWNlcyB3 ZSBhbHNvIGV4cGVjdCB0aGUKPiBjb21waWxlciB0byBub3QgZW1pdCB1bnJlYXNvbmFibGUgY29k ZSAoZS5nLiBuZWVkbGVzc2x5Cj4gc3BpbGxpbmcgcmVnaXN0ZXJzIHRvIG1lbW9yeSBqdXN0IHRv IHRoZW4gcmVsb2FkIHRoZW0pLiBCdXQKPiB3aGlsZSB0aGF0J3MgKGltbykgYSBmaW5lIGV4cGVj dGF0aW9uIHRvIGhhdmUgd2hlbiBhbiBhcnJheQo+IGluZGV4IGlzIHVzZWQganVzdCBvbmNlLCBp dCBpcyB1bmF2b2lkYWJseSBtb3JlIGNvbXBsaWNhdGVkIGluCj4gdGhlIGNhc2UgaGVyZSBhcyB3 ZWxsIGFzIGluIHRoZSBncmFudCB0YWJsZSBvbmUuCgpVbmxlc3MgeW91IG91dGxpbmUgYSBwYXRo IGZvcndhcmQgdG8gZml4IHRoZSBhYm92ZSB0d28gZ2FkZ2V0cywgSSB3aWxsCm5vdCBpbmNsdWRl IHRoZSBhYm92ZSBodW5rcyBpbiB0aGUgbmV4dCB2ZXJzaW9uIG9mIHRoZSBzZXJpZXMuCgpCZXN0 LApOb3JiZXJ0CgoKCgoKQW1hem9uIERldmVsb3BtZW50IENlbnRlciBHZXJtYW55IEdtYkgKS3Jh dXNlbnN0ci4gMzgKMTAxMTcgQmVybGluCkdlc2NoYWVmdHNmdWVocmVyOiBDaHJpc3RpYW4gU2No bGFlZ2VyLCBSYWxmIEhlcmJyaWNoClVzdC1JRDogREUgMjg5IDIzNyA4NzkKRWluZ2V0cmFnZW4g YW0gQW10c2dlcmljaHQgQ2hhcmxvdHRlbmJ1cmcgSFJCIDE0OTE3MyBCCgpfX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fXwpYZW4tZGV2ZWwgbWFpbGluZyBsaXN0 Clhlbi1kZXZlbEBsaXN0cy54ZW5wcm9qZWN0Lm9yZwpodHRwczovL2xpc3RzLnhlbnByb2plY3Qu b3JnL21haWxtYW4vbGlzdGluZm8veGVuLWRldmVs