diff options
| author | Hao Wu <hao.a.wu@intel.com> | 2018-09-13 15:11:35 +0800 |
|---|---|---|
| committer | Hao Wu <hao.a.wu@intel.com> | 2018-11-15 13:13:44 +0800 |
| commit | 17c81a6b48fefda3e30fd904d4755522bca48c50 (patch) | |
| tree | 80029e5e749fc75e9ee5aa21187a3155bca7aab6 /MdePkg/Library/BaseLib/X64/ReadGs.asm | |
| parent | 3e8a51b577ba69022f33ed66a4ee55d1e3e80931 (diff) | |
| download | edk2-17c81a6b48fefda3e30fd904d4755522bca48c50.tar.gz | |
MdePkg/BaseLib: Add new AsmLfence API
REF:https://bugzilla.tianocore.org/show_bug.cgi?id=1193
This commit will add a new BaseLib API AsmLfence(). This API will perform
a serializing operation on all load-from-memory instructions that were
issued prior to the call of this function. Please note that this API is
only available on IA-32 and x64.
The purpose of adding this API is to mitigate of the [CVE-2017-5753]
Bounds Check Bypass issue when untrusted data are being processed within
SMM. More details can be referred at the 'Bounds check bypass mitigation'
section at the below link:
https://software.intel.com/security-software-guidance/insights/host-firmware-speculative-execution-side-channel-mitigation
Cc: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Cc: Leif Lindholm <leif.lindholm@linaro.org>
Cc: Michael D Kinney <michael.d.kinney@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Hao Wu <hao.a.wu@intel.com>
Reviewed-by: Jiewen Yao <jiewen.yao@intel.com>
Reviewed-by: Liming Gao <liming.gao@intel.com>
Acked-by: Laszlo Ersek <lersek@redhat.com>
Regression-tested-by: Laszlo Ersek <lersek@redhat.com>
(cherry picked from commit 2ecd829972f8553de83fbf943c5b89863999d7c8)
Diffstat (limited to 'MdePkg/Library/BaseLib/X64/ReadGs.asm')
0 files changed, 0 insertions, 0 deletions