Yeah I saw those (it's the same link that ll1025 provided, but what is puzzling is that lots of Windows sites started to report that the performance hit from Windows 10 disappeared with build 1809 and they cannot all have run pre-skylake cpu:s one would imagine. Then as of Cascade Lake, Intel added eIBRS, so this is basically just a Skylake problem (on the Intel side).

Mitigating Spectre variant 2 with Retpoline on Windows - Microsoft Tech Community

He didn't reject it because of performance his argument was that no one will probably use it because of the performance hit. At least that's how I understand it.

Although I also think that this shouldn't be of concern for the kernel devs. Just supply the most secure code possible and give people the chance to opt out.

Thanks! Looking that the entire discussion three on the patch it seems like performance was not the only reason why it was rejected, Linus had many comments on the patch doing many weird stuff that was never mentioned in the initial post on how and what the patch was for and I can also note that Amazon never address them. Interestingly both Intel and AMD in the end (as of zen 3 and Cascade Lake(?)) did exactly what Torvalds told them to do here, which is to automatically call IBRS in the hardware when you switch to ring 0 (aka the eIBRS).

The big question is that Windows really uses, they seem to have been used both retpolines and IBRS, but if they used IBRS already in 2018 then they must have taken a huge performance hit on the CPU:s without eIBRS, did no one cry over that or was/is it not enabled by default on all systems?

edit: ok so to make things more complex it looks like Microsoft went the same route as Linux in 2019 in that they replaced IBRS with retpolines in build 1809 of Windows 10. So I wonder if anyone have actually tried to run retbleed on Windows or if it's only assumed that it isn't vulnerable (on CPU:s without eIBRS).

My response with sources is en-route but requires approval because it has all of the sources.

I literally got them by googling the above phrases, checking the bleepingcomputer article and its link to the intel advisory, the lkml response by Torvalds, and Microsoft's own write-up on Spectre v2 Mitigations.

But since you want me to deliver them, you get to wait until my post is approved.

Oh good grief, talk about lazy.
Intel provided the patchset. Linus rejected it, in part for performance reasons. See the bottom, to quote:

And yet here we are, adding IBRS to kernel 5.19 via commit 6ad0ad2bf8a6, when Windows added it years ago and was unaffected by retbleed because of it:
and
EDIT: Also interesting is discussion from others on IBRS, which boils down to whether a "theoretical issue" is worth patching. Linus and others seemed to have settled on no, despite Intel and AWS engineers making it clear that IBRS was still necessary.

You said that multiple times but faild to prove it anywhere.

No you didn't.

The only thing I found so far is Linus ranting about intel not fixing their CPU's and let the kernel dev's fix intels errors.
And I'm totaly with this argument.

Funny, then, that AMD identified IBRS as one of two mitigations against Spectre v2 (CVE-2017-5715) in their technical guidance. (page 5, section 5, paragraph 2), and reference it as a feature supported by their processors (page 2, "Presence").

But the mitigation that defeats it-- IBRS-- was recommended by Intel in 2018 to both Microsoft and Linux, and patchsets were proposed. Torvalds rejected them partly because of performance. Microsoft implemented them, which is why Retbleed did not affect Windows (noted by Intel, among others).

I've provided links elsewhere in this thread, but googling the following should get you some sources:

• Windows IBRS retbleed
• Linux IBRS 2018 Torvalds

Zen 4 have IBRS, it's enabled automatically when you enter ring 0 and disabled once you exit. Spectre V2 can be exploited by another process running on a sibling processor so only doing mitigation when scheduling processes is not enough to mitigate it. Also Michael runs a single process for each benchmark so the number of context switched due to scheduling should be quite low (though he doesn't pin threads to cores so some scheduling does happen within the same process of course).

IBPB is used to protect from the scheduling issue as you write, but are there enough such cases in benchmarks of single processes at a time to create this type of overhead? Unsure if IBPB can be disabled while keeping the repolines/IBRS but if that is the case then it would be interesting to see a run of that to figure this out, because if AMD doesn't do a real barrier with IBPB then things can get real ugly here and it would be a strange path of them to take.

edit: I also fail to see how this would benefit them in mitigations=on vs off since this is benchmark runs, aka the entire machine only runs a single application so there would be no benefit from "oh this is a new application so lets do retraining" since it's the same application and also retraining from scratch is what every cpu have to do after IBPB anyway so I still fail to see how this could explain it.