need TAA mitigation
We need some mitigation for CVE-2019-11135 aka TSX Asynchronous Abort
Updated by John Levon over 2 years ago
I tested this on a suitable Cascade Lake machine that has newer microcode. On booting I confirmed that all CPUs had the new microcode, the x86 featureset looked good, and that a test program that tried TSX despite it not being present in CPUID was aborted in the correct fashion. I also booted on other systems and verified they booted OK, as well as setting x86_disable_taa to check that worked OK too.
Updated by Electric Monk over 2 years ago
- Status changed from New to Closed
- % Done changed from 0 to 100
commit e25cb0e77ab84d3147918b8aef1f5161fbccb30e Author: John Levon <email@example.com> Date: 2020-01-15T10:15:29.000Z 11967 need TAA mitigation Portions contributed by: Robert Mustacchi <firstname.lastname@example.org> Reviewed by: Dan McDonald <email@example.com> Approved by: Richard Lowe <firstname.lastname@example.org>