git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Thomas Gleixner <tglx@linutronix.de>
	Mon, 18 Feb 2019 21:04:08 +0000 (22:04 +0100)
committer	Ben Hutchings <ben@decadent.org.uk>
	Wed, 22 May 2019 22:15:22 +0000 (23:15 +0100)
commit	4d592481957f21571771566d31f0479b6e74c7ce
tree	67f811198914f9f5bcd6489440018da93cc339e8	tree \| snapshot
parent	d42d393c637277c6b94ee33258365e6d50528045	commit \| diff

x86/speculation/mds: Add mitigation control for MDS

commit bc1241700acd82ec69fde98c5763ce51086269f8 upstream.

Now that the mitigations are in place, add a command line parameter to
control the mitigation, a mitigation selector function and a SMT update
mechanism.

This is the minimal straight forward initial implementation which just
provides an always on/off mode. The command line parameter is:

mds=[full|off]

This is consistent with the existing mitigations for other speculative
hardware vulnerabilities.

The idle invocation is dynamically updated according to the SMT state of
the system similar to the dynamic update of the STIBP mitigation. The idle
mitigation is limited to CPUs which are only affected by MSBDS and not any
other variant, because the other variants cannot be mitigated on SMT
enabled systems.

Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Reviewed-by: Borislav Petkov <bp@suse.de>
Reviewed-by: Jon Masters <jcm@redhat.com>
Tested-by: Jon Masters <jcm@redhat.com>
[bwh: Backported to 3.16:
- Drop " __ro_after_init"
- Adjust filename, context]
Signed-off-by: Ben Hutchings <ben@decadent.org.uk>

Documentation/kernel-parameters.txt		diff \| blob \| blame \| history
arch/x86/include/asm/processor.h		diff \| blob \| blame \| history
arch/x86/kernel/cpu/bugs.c		diff \| blob \| blame \| history