dgit.raspbian.org Git - linux.git/commit

author	Peter Zijlstra <peterz@infradead.org>
	Wed, 16 Feb 2022 19:57:01 +0000 (20:57 +0100)
committer	Salvatore Bonaccorso <carnil@debian.org>
	Mon, 7 Mar 2022 21:06:21 +0000 (21:06 +0000)
commit	f82271bee1507f89263db97f26647970d560f17c
tree	e800fbb29b31ea6553bd372c399631ab117232dc	tree \| snapshot
parent	95cfed11a2cefda11763e1eeaa5bb0f9da1d6688	commit \| diff

[PATCH 3/9] x86/speculation: Add eIBRS + Retpoline options

commit 1e19da8522c81bf46b335f84137165741e0d82b7 upstream.

Thanks to the chaps at VUsec it is now clear that eIBRS is not
sufficient, therefore allow enabling of retpolines along with eIBRS.

Add spectre_v2=eibrs, spectre_v2=eibrs,lfence and
spectre_v2=eibrs,retpoline options to explicitly pick your preferred
means of mitigation.

Since there's new mitigations there's also user visible changes in
/sys/devices/system/cpu/vulnerabilities/spectre_v2 to reflect these
new mitigations.

[ bp: Massage commit message, trim error messages,
do more precise eIBRS mode checking. ]

Co-developed-by: Josh Poimboeuf <jpoimboe@redhat.com>
Signed-off-by: Josh Poimboeuf <jpoimboe@redhat.com>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Signed-off-by: Borislav Petkov <bp@suse.de>
Reviewed-by: Patrick Colp <patrick.colp@oracle.com>
Reviewed-by: Thomas Gleixner <tglx@linutronix.de>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Gbp-Pq: Topic bugfix/x86/bhb
Gbp-Pq: Name 0003-x86-speculation-Add-eIBRS-Retpoline-options.patch

arch/x86/include/asm/nospec-branch.h		diff \| blob \| history
arch/x86/kernel/cpu/bugs.c		diff \| blob \| history