Linux 6.1 Hardening Retpolines With Ensuring An INT3 After Every Unconditional Jump

Written by Michael Larabel in Linux Security on 5 October 2022 at 06:49 AM EDT. 1 Comment
LINUX SECURITY
The x86/core changes for Linux 6.1 have been merged and are headlined by making sure an INT3 instruction is inserted after every unconditional Retpoline jump (JMP) for the Retpolines handling on both Intel and AMD processors.

Intel engineer Peter Zijlstra authored the change to ensure an INT3 after an indirect JMP occurs. This behavior is recommended by both Intel and AMD. This Retpoline change comes after the x86 Straight Line Speculation mitigation involved adding an INT3 after function returns and indirect branches.

The INT3 x86 instruction was originally designed for use by debuggers for setting a software breakpoint / calling the debug exception handler. But using INT3 in the world of speculative execution vulnerabilities has also proven useful as part of the mitigations as a speculation trap for avoiding speculative execution past that point.


This Linux 6.1 change is basically a safeguard against being built against older compilers lacking the x86 Straight Line Speculation mitigation handling or where SLS isn't enabled. So for most users running a sane distribution/vendor kernel built with a modern compiler and SLS enabled, you won't see any difference with Linux 6.1.

More details via the x86/core pull request that has already been merged for mainline Linux 6.1.
1 Comment
Related News
New Linux Patch Lets You Force CPU Bugs/Mitigations Even When Not Vulnerable
Linux To Allow Disabling TPM PCR Integrity Protection Due To Performance Bottleneck
OpenPaX Announced As "Open-Source Alternative To GrSecurity" With Free Kernel Patch
Unauthenticated RCE Flaw With CVSS 9.9 Rating For Linux Systems Affects CUPS
Landlock Sandboxing Now Supports More Controls Around Unix Sockets
Linux 6.12 Adds Build Options For Greater Control Over CPU Security Mitigations
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs
Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal
COSMIC Alpha 4 Released For System76's Rust-Based Desktop
GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd
KDE Starts December By Landing A Number Of New Features