git.ipfire.org Git - thirdparty/kernel/linux.git/commit

author	Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
	Thu, 13 Nov 2025 23:37:39 +0000 (15:37 -0800)
committer	Sean Christopherson <seanjc@google.com>
	Wed, 19 Nov 2025 00:22:40 +0000 (16:22 -0800)
commit	aba7de6088be5a3b5d766c5f7fdb5d0790ff8f13
tree	3678b5d0a5ab27d9a52f37920225c7a3d5bf8eab	tree \| snapshot
parent	844afc1af3a9d98dc8c246855c3aac410be36bef	commit \| diff

x86/bugs: Use VM_CLEAR_CPU_BUFFERS in VMX as well

TSA mitigation:

d8010d4ba43e ("x86/bugs: Add a Transient Scheduler Attacks mitigation")

introduced VM_CLEAR_CPU_BUFFERS for guests on AMD CPUs. Currently on Intel
CLEAR_CPU_BUFFERS is being used for guests which has a much broader scope
(kernel->user also).

Make mitigations on Intel consistent with TSA. This would help handling the
guest-only mitigations better in future.

Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
[sean: make CLEAR_CPU_BUF_VM mutually exclusive with the MMIO mitigation]
Acked-by: Borislav Petkov (AMD) <bp@alien8.de>
Reviewed-by: Brendan Jackman <jackmanb@google.com>
Link: https://patch.msgid.link/20251113233746.1703361-3-seanjc@google.com
Signed-off-by: Sean Christopherson <seanjc@google.com>

arch/x86/kernel/cpu/bugs.c		diff \| blob \| blame \| history
arch/x86/kvm/vmx/vmenter.S		diff \| blob \| blame \| history