git.ipfire.org Git - thirdparty/kernel/stable.git/commit

x86/its: Add "vmexit" option to skip mitigation on some CPUs

commit 2665281a07e19550944e8354a2024635a7b2714a upstream.

Ice Lake generation CPUs are not affected by guest/host isolation part of
ITS. If a user is only concerned about KVM guests, they can now choose a
new cmdline option "vmexit" that will not deploy the ITS mitigation when
CPU is not affected by guest/host isolation. This saves the performance
overhead of ITS mitigation on Ice Lake gen CPUs.

When "vmexit" option selected, if the CPU is affected by ITS guest/host
isolation, the default ITS mitigation is deployed.

Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Dave Hansen <dave.hansen@linux.intel.com>
Reviewed-by: Josh Poimboeuf <jpoimboe@kernel.org>
Reviewed-by: Alexandre Chartre <alexandre.chartre@oracle.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

author	Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
	Mon, 18 Nov 2024 17:53:12 +0000 (09:53 -0800)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Sun, 18 May 2025 06:24:11 +0000 (08:24 +0200)
commit	61bed1ddb2127501c0bb4cf967538b556755601b
tree	5b8f3ab403bbae5e88c1ed96d098a0107043f3ac	tree
parent	f7ef7f6ccf2bc3909ef5e50cbe9edf2bac71e1bd	commit \| diff

Documentation/admin-guide/kernel-parameters.txt		diff \| blob \| blame \| history
arch/x86/include/asm/cpufeatures.h		diff \| blob \| blame \| history
arch/x86/kernel/cpu/bugs.c		diff \| blob \| blame \| history
arch/x86/kernel/cpu/common.c		diff \| blob \| blame \| history