On 05.10.2021 13:11, Andrew Cooper wrote:
> Branch Harden is enabled by default at compile and boot time. Invert the code
> to compile with lfence by default and nop out in the non-default case.
>
> This has several advantages. It removes 3829 patch points (in the random
> build of Xen I have
Branch Harden is enabled by default at compile and boot time. Invert the code
to compile with lfence by default and nop out in the non-default case.
This has several advantages. It removes 3829 patch points (in the random
build of Xen I have to hand) by default on boot, 70% (!) of the
