Add detailed notes on mitigating ret2spec

google / safeside

Understand and mitigate software-observable side-channels

BSD 3-Clause "New" or "Revised" License

494 stars 54 forks source link

Add detailed notes on mitigating ret2spec #148

Closed mmdriley closed 3 years ago

mmdriley commented 3 years ago

I got this wrong in my Blackhat talk (slide 20). This is my way to atone.

Content is based on docs and correspondence with AMD and Intel.

mmdriley commented 3 years ago

/cc @vsrinivas

mmdriley commented 3 years ago

Thank you for the quick review!

I'm going to stick with "return stack buffer" for simplicity. AMD uses RSB in their "managing speculation" doc, and I'm comfortable leaving out the ARM term since this doc is x86-specific.

ssbr commented 3 years ago

P.S. this reinforces my view that we should consider having a blog.