Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752774AbeADS5P (ORCPT + 1 other); Thu, 4 Jan 2018 13:57:15 -0500 Received: from mx1.redhat.com ([209.132.183.28]:59992 "EHLO mx1.redhat.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1752215AbeADS5O (ORCPT ); Thu, 4 Jan 2018 13:57:14 -0500 Date: Thu, 4 Jan 2018 19:57:12 +0100 From: Andrea Arcangeli To: Borislav Petkov Cc: Dave Hansen , Tim Chen , Thomas Gleixner , Andy Lutomirski , Linus Torvalds , Greg KH , Andi Kleen , Arjan Van De Ven , linux-kernel@vger.kernel.org Subject: Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature Message-ID: <20180104185712.GN13348@redhat.com> References: <4d4b3752e8e533201c6983d8473eea95c747ea33.1515086770.git.tim.c.chen@linux.intel.com> <20180104183345.od2o4hsfu2tv6nc4@pd.tnic> <20180104185219.wji527snw6xzggak@pd.tnic> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20180104185219.wji527snw6xzggak@pd.tnic> User-Agent: Mutt/1.9.2 (2017-12-15) X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.39]); Thu, 04 Jan 2018 18:57:14 +0000 (UTC) Sender: linux-kernel-owner@vger.kernel.org List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Return-Path: On Thu, Jan 04, 2018 at 07:52:19PM +0100, Borislav Petkov wrote: > So why not "IBRS always" or off? No need for the "IBRS only in the > kernel" setting. Because it's slower (or much slower depending on how much stuff the microcode has to disable in the CPU to provide IBSR) and you only need that kind of protection in kernel if you've PTI enabled already. ibrs 1 (not 2) is the current default because of that.