review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Thomas Gleixner <tglx@linutronix.de>
	Thu, 15 Sep 2022 11:11:24 +0000 (13:11 +0200)
committer	Peter Zijlstra <peterz@infradead.org>
	Mon, 17 Oct 2022 14:41:13 +0000 (16:41 +0200)
commit	eaf44c816ed8d1ef94c354e3ed47d53cd5a5cb13
tree	b9e072355d06dea0077131300ee961c149234789	tree \| snapshot
parent	e81dc127ef69887c72735a3e3868930e2bf313ed	commit \| diff

x86/modules: Add call patching

As for the builtins create call thunks and patch the call sites to call the
thunk on Intel SKL CPUs for retbleed mitigation.

Note, that module init functions are ignored for sake of simplicity because
loading modules is not something which is done in high frequent loops and
the attacker has not really a handle on when this happens in order to
launch a matching attack. The depth tracking will still work for calls into
the builtins and because the call is not accounted it will underflow faster
and overstuff, but that's mitigated by the saturating counter and the side
effect is only temporary.

Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Link: https://lore.kernel.org/r/20220915111147.575673066@infradead.org

arch/x86/include/asm/alternative.h		diff \| blob \| history
arch/x86/kernel/callthunks.c		diff \| blob \| history
arch/x86/kernel/module.c		diff \| blob \| history