| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20251007182257.ywrqrrhgrtrviila@desk> Date: Tue, 7 Oct 2025 11:22:57 -0700 From: Pawan Gupta <pawan.kumar.gupta@...ux.intel.com> To: Borislav Petkov <bp@...en8.de> Cc: "Kaplan, David" <David.Kaplan@....com>, Thomas Gleixner <tglx@...utronix.de>, Peter Zijlstra <peterz@...radead.org>, Josh Poimboeuf <jpoimboe@...nel.org>, Ingo Molnar <mingo@...hat.com>, Dave Hansen <dave.hansen@...ux.intel.com>, "x86@...nel.org" <x86@...nel.org>, "H . Peter Anvin" <hpa@...or.com>, Klaus Kusche <klaus.kusche@...puterix.info>, "linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org> Subject: Re: [PATCH] x86/bugs: Qualify RETBLEED_INTEL_MSG On Mon, Oct 06, 2025 at 04:04:42PM +0200, Borislav Petkov wrote: > On Mon, Oct 06, 2025 at 01:58:55PM +0000, Kaplan, David wrote: > > Sounds rather yucky. > > I'll give it a try at some point and see how ugly it becomes... > > > What about just not calling cpu_select_mitigations() if > > CONFIG_CPU_MITIGATIONS=n? Then you won't get any print messages either I'd > > think. > > I want to not compile in that code at all if CPU_MITIGATIONS=off, actually. Even when CPU mitigations are disabled there is still some handling required for mitigations like GDS that requires a write to MSR to ensure correct behavior. So not all of bugs.c can be compiled out easily. IMO, rather than targeting the mitigation enabling code it might make more sense to compile out the actual mitigations scattered accross the kernel. This may also improve performance by reducing the code footprint, and can also help getting a cleaner disassembly.
Powered by blists - more mailing lists