kernel / kernel-source

Clone
Source Code
GIT

Blame patches.suse/x86-speculation-Add-a-common-function-for-MD_CLEAR-mitigation-update.patch

ALP-current ALP-current-GA ALP-current-RT ALP-current-RT-GA SLE12-SP5 SLE12-SP5-AZURE SLE12-SP5-RT SLE15-SP2-EB SLE15-SP3-RT-LTSS SLE15-SP4-RT-LTSS SLE15-SP5 SLE15-SP5-AZURE SLE15-SP5-RT SLE15-SP6 SLE15-SP6-AZURE SLE15-SP6-AZURE-GA SLE15-SP6-GA SLE15-SP6-RT SLE15-SP6-RT-GA linux-next master packaging scripts slowroll stable vanilla
  1.   5da3dcaeccd99d29f61d6b3d8acb1a8b74592df0
  2.   patches.suse
  3.   x86-speculation-Add-a-common-function-for-MD_CLEAR-mitigation-update.patch
Blob History Raw
Borislav Petkov a863a7 
From: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Borislav Petkov a863a7 
Date: Thu, 19 May 2022 20:28:10 -0700
Borislav Petkov a863a7 
Subject: x86/speculation: Add a common function for MD_CLEAR mitigation update
Borislav Petkov a863a7 
Git-commit: f52ea6c26953fed339aa4eae717ee5c2133c7ff2
Borislav Petkov a863a7 
Git-repo: git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git
Borislav Petkov a863a7 
Patch-mainline: Queued in tip for v5.19
Borislav Petkov a863a7 
References: bsc#1199650 CVE-2022-21166 CVE-2022-21127 CVE-2022-21123 CVE-2022-21125 CVE-2022-21180
Borislav Petkov a863a7
Borislav Petkov a863a7 
Processor MMIO Stale Data mitigation uses similar mitigation as MDS and
Borislav Petkov a863a7 
TAA. In preparation for adding its mitigation, add a common function to
Borislav Petkov a863a7 
update all mitigations that depend on MD_CLEAR.
Borislav Petkov a863a7
Borislav Petkov a863a7 
  [ bp: Add a newline in md_clear_update_mitigation() to separate
Borislav Petkov a863a7 
    statements better. ]
Borislav Petkov a863a7
Borislav Petkov a863a7 
Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Borislav Petkov a863a7 
Signed-off-by: Borislav Petkov <bp@suse.de>
Borislav Petkov a863a7 
---
Borislav Petkov a863a7 
 arch/x86/kernel/cpu/bugs.c |   59 +++++++++++++++++++++++++--------------------
Borislav Petkov a863a7 
 1 file changed, 33 insertions(+), 26 deletions(-)
Borislav Petkov a863a7
Borislav Petkov a863a7 
--- a/arch/x86/kernel/cpu/bugs.c
Borislav Petkov a863a7 
+++ b/arch/x86/kernel/cpu/bugs.c
Borislav Petkov a863a7 
@@ -41,7 +41,7 @@ static void __init spectre_v2_select_mit
Borislav Petkov a863a7 
 static void __init ssb_select_mitigation(void);
Borislav Petkov a863a7 
 static void __init l1tf_select_mitigation(void);
Borislav Petkov a863a7 
 static void __init mds_select_mitigation(void);
Borislav Petkov a863a7 
-static void __init mds_print_mitigation(void);
Borislav Petkov a863a7 
+static void __init md_clear_update_mitigation(void);
Borislav Petkov a863a7 
 static void __init taa_select_mitigation(void);
Borislav Petkov a863a7 
 static void __init srbds_select_mitigation(void);
Borislav Petkov a863a7
Borislav Petkov a863a7 
@@ -114,10 +114,10 @@ void __init check_bugs(void)
Borislav Petkov a863a7 
 	srbds_select_mitigation();
Borislav Petkov a863a7
Borislav Petkov a863a7 
 	/*
Borislav Petkov a863a7 
-	 * As MDS and TAA mitigations are inter-related, print MDS
Borislav Petkov a863a7 
-	 * mitigation until after TAA mitigation selection is done.
Borislav Petkov a863a7 
+	 * As MDS and TAA mitigations are inter-related, update and print their
Borislav Petkov a863a7 
+	 * mitigation after TAA mitigation selection is done.
Borislav Petkov a863a7 
 	 */
Borislav Petkov a863a7 
-	mds_print_mitigation();
Borislav Petkov a863a7 
+	md_clear_update_mitigation();
Borislav Petkov a863a7
Borislav Petkov a863a7 
 	arch_smt_update();
Borislav Petkov a863a7
Borislav Petkov a863a7 
@@ -258,14 +258,6 @@ static void __init mds_select_mitigation
Borislav Petkov a863a7 
 	}
Borislav Petkov a863a7 
 }
Borislav Petkov a863a7
Borislav Petkov a863a7 
-static void __init mds_print_mitigation(void)
Borislav Petkov a863a7 
-{
Borislav Petkov a863a7 
-	if (!boot_cpu_has_bug(X86_BUG_MDS) || cpu_mitigations_off())
Borislav Petkov a863a7 
-		return;
Borislav Petkov a863a7 
-
Borislav Petkov a863a7 
-	pr_info("%s\n", mds_strings[mds_mitigation]);
Borislav Petkov a863a7 
-}
Borislav Petkov a863a7 
-
Borislav Petkov a863a7 
 static int __init mds_cmdline(char *str)
Borislav Petkov a863a7 
 {
Borislav Petkov a863a7 
 	if (!boot_cpu_has_bug(X86_BUG_MDS))
Borislav Petkov a863a7 
@@ -313,7 +305,7 @@ static void __init taa_select_mitigation
Borislav Petkov a863a7 
 	/* TSX previously disabled by tsx=off */
Borislav Petkov a863a7 
 	if (!boot_cpu_has(X86_FEATURE_RTM)) {
Borislav Petkov a863a7 
 		taa_mitigation = TAA_MITIGATION_TSX_DISABLED;
Borislav Petkov a863a7 
-		goto out;
Borislav Petkov a863a7 
+		return;
Borislav Petkov a863a7 
 	}
Borislav Petkov a863a7
Borislav Petkov a863a7 
 	if (cpu_mitigations_off()) {
Borislav Petkov a863a7 
@@ -327,7 +319,7 @@ static void __init taa_select_mitigation
Borislav Petkov a863a7 
 	 */
Borislav Petkov a863a7 
 	if (taa_mitigation == TAA_MITIGATION_OFF &&
Borislav Petkov a863a7 
 	    mds_mitigation == MDS_MITIGATION_OFF)
Borislav Petkov a863a7 
-		goto out;
Borislav Petkov a863a7 
+		return;
Borislav Petkov a863a7
Borislav Petkov a863a7 
 	if (boot_cpu_has(X86_FEATURE_MD_CLEAR))
Borislav Petkov a863a7 
 		taa_mitigation = TAA_MITIGATION_VERW;
Borislav Petkov a863a7 
@@ -359,18 +351,6 @@ static void __init taa_select_mitigation
Borislav Petkov a863a7
Borislav Petkov a863a7 
 	if (taa_nosmt || cpu_mitigations_auto_nosmt())
Borislav Petkov a863a7 
 		cpu_smt_disable(false);
Borislav Petkov a863a7 
-
Borislav Petkov a863a7 
-	/*
Borislav Petkov a863a7 
-	 * Update MDS mitigation, if necessary, as the mds_user_clear is
Borislav Petkov a863a7 
-	 * now enabled for TAA mitigation.
Borislav Petkov a863a7 
-	 */
Borislav Petkov a863a7 
-	if (mds_mitigation == MDS_MITIGATION_OFF &&
Borislav Petkov a863a7 
-	    boot_cpu_has_bug(X86_BUG_MDS)) {
Borislav Petkov a863a7 
-		mds_mitigation = MDS_MITIGATION_FULL;
Borislav Petkov a863a7 
-		mds_select_mitigation();
Borislav Petkov a863a7 
-	}
Borislav Petkov a863a7 
-out:
Borislav Petkov a863a7 
-	pr_info("%s\n", taa_strings[taa_mitigation]);
Borislav Petkov a863a7 
 }
Borislav Petkov a863a7
Borislav Petkov a863a7 
 static int __init tsx_async_abort_parse_cmdline(char *str)
Borislav Petkov a863a7 
@@ -395,6 +375,33 @@ static int __init tsx_async_abort_parse_
Borislav Petkov a863a7 
 early_param("tsx_async_abort", tsx_async_abort_parse_cmdline);
Borislav Petkov a863a7
Borislav Petkov a863a7 
 #undef pr_fmt
Borislav Petkov a863a7 
+#define pr_fmt(fmt)     "" fmt
Borislav Petkov a863a7 
+
Borislav Petkov a863a7 
+static void __init md_clear_update_mitigation(void)
Borislav Petkov a863a7 
+{
Borislav Petkov a863a7 
+	if (cpu_mitigations_off())
Borislav Petkov a863a7 
+		return;
Borislav Petkov a863a7 
+
Borislav Petkov a863a7 
+	if (!static_key_enabled(&mds_user_clear))
Borislav Petkov a863a7 
+		goto out;
Borislav Petkov a863a7 
+
Borislav Petkov a863a7 
+	/*
Borislav Petkov a863a7 
+	 * mds_user_clear is now enabled. Update MDS mitigation, if
Borislav Petkov a863a7 
+	 * necessary.
Borislav Petkov a863a7 
+	 */
Borislav Petkov a863a7 
+	if (mds_mitigation == MDS_MITIGATION_OFF &&
Borislav Petkov a863a7 
+	    boot_cpu_has_bug(X86_BUG_MDS)) {
Borislav Petkov a863a7 
+		mds_mitigation = MDS_MITIGATION_FULL;
Borislav Petkov a863a7 
+		mds_select_mitigation();
Borislav Petkov a863a7 
+	}
Borislav Petkov a863a7 
+out:
Borislav Petkov a863a7 
+	if (boot_cpu_has_bug(X86_BUG_MDS))
Borislav Petkov a863a7 
+		pr_info("MDS: %s\n", mds_strings[mds_mitigation]);
Borislav Petkov a863a7 
+	if (boot_cpu_has_bug(X86_BUG_TAA))
Borislav Petkov a863a7 
+		pr_info("TAA: %s\n", taa_strings[taa_mitigation]);
Borislav Petkov a863a7 
+}
Borislav Petkov a863a7 
+
Borislav Petkov a863a7 
+#undef pr_fmt
Borislav Petkov a863a7 
 #define pr_fmt(fmt)	"SRBDS: " fmt
Borislav Petkov a863a7
Borislav Petkov a863a7 
 enum srbds_mitigations {
Powered by Pagure 5.13.3
DocumentationAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.