git.ipfire.org Git - thirdparty/kernel/stable.git/commit

x86/its: Add "vmexit" option to skip mitigation on some CPUs

commit 2665281a07e19550944e8354a2024635a7b2714a upstream.

Ice Lake generation CPUs are not affected by guest/host isolation part of
ITS. If a user is only concerned about KVM guests, they can now choose a
new cmdline option "vmexit" that will not deploy the ITS mitigation when
CPU is not affected by guest/host isolation. This saves the performance
overhead of ITS mitigation on Ice Lake gen CPUs.

When "vmexit" option selected, if the CPU is affected by ITS guest/host
isolation, the default ITS mitigation is deployed.

Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Dave Hansen <dave.hansen@linux.intel.com>
Reviewed-by: Josh Poimboeuf <jpoimboe@kernel.org>
Reviewed-by: Alexandre Chartre <alexandre.chartre@oracle.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

author	Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
	Mon, 18 Nov 2024 17:53:12 +0000 (09:53 -0800)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sun, 18 May 2025 06:21:26 +0000 (08:21 +0200)
commit	139c0b8318c2ea8afd2f12b6401466c6010286da
tree	9e035ba3e8a79e3e1be625b8dbd02bcfa326912d	tree
parent	b1701fee52d1d68d1e12ad140b3551435a8e9fe7	commit \| diff

Documentation/admin-guide/kernel-parameters.txt		diff \| blob \| blame \| history
arch/x86/include/asm/cpufeatures.h		diff \| blob \| blame \| history
arch/x86/kernel/cpu/bugs.c		diff \| blob \| blame \| history
arch/x86/kernel/cpu/common.c		diff \| blob \| blame \| history