Received: by 10.223.176.46 with SMTP id f43csp2907909wra;
        Mon, 22 Jan 2018 05:31:16 -0800 (PST)
X-Google-Smtp-Source: AH8x227x37UNVZO2DFm4NK8hIS764IWFlPSUAituGuf/7diHmnXZrYkGo3fHRiWRQ493dh7Sga0h
X-Received: by 2002:a17:902:bf05:: with SMTP id bi5-v6mr3711016plb.32.1516627875967;
        Mon, 22 Jan 2018 05:31:15 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1516627875; cv=none;
        d=google.com; s=arc-20160816;
        b=Kb/l9AqsrwJAKMmm2JoMww2HsvNCuPXS4J5PwpB67sOD4g0fJqdLwGyUOO5zCdGkUE
         7Y/LKQo3nyAeOMHQ38PDE1eX23UQHi5qnN5GgD0pg0AU860oqUNn6EF3FJzMutfr5/EW
         sF1YqEiFvEgpVcuXC0gH+6EsY6Z5kPVGL38sZlY+FXpT9qbPBmENDgm63i/N9NmbyvM2
         H+Es9pcAW74ABl1mWbfp4Wg2qLHwDdGshZwMQilzFb1xUH//0Bi6wTfCmfB+mimeGeOF
         dXaq5M2ebZSsV9A5X42gZ4P6dQZLECHEd3gRH9yDZHyHqZWWfRZQ7AYMCRfoEYgm5iU2
         JyVQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date:arc-authentication-results;
        bh=zHwUrb755oOqwNS9FuJJUvrlXyKxlExRDE/zvy27J3g=;
        b=aX3skXKFFqarkRaqRs/tD5brGBcclsSAP/FupLomIQ1NRFpD+C81QzwwLqJSETfkcD
         9EfEhePg/6DVXKEmyC7w0GTXa2D0N5CnN965RGRaWuDxE4A0LZEUlL4lGDoFuJu/+wIK
         nNgl2JNxDUqxP112CDcrvMFn/5v67YTpmDtNmX2ysCSAEcLIrSKZLA1FkBD1TnPRRd7s
         wGQriMMtT4p3wJhoWtDbSfAYwLeD+u7ks2olKI1a/fqtUzHsnsY8w5mLlBdG5SB9gILj
         nvQkbDgbvht6rcEYC0CLrO8uG5SV2RxlyhYgtWbwBxObH77TgiKX7yXt9CddfOK5jqwm
         t9ig==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id 32-v6si3488905pla.164.2018.01.22.05.31.01;
        Mon, 22 Jan 2018 05:31:15 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1751231AbeAVNaT (ORCPT <rfc822;aashilpatel1993@gmail.com>
        + 99 others); Mon, 22 Jan 2018 08:30:19 -0500
Received: from mail.linuxfoundation.org ([140.211.169.12]:55678 "EHLO
        mail.linuxfoundation.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1751004AbeAVNaR (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 22 Jan 2018 08:30:17 -0500
Received: from localhost (LFbn-1-12258-90.w90-92.abo.wanadoo.fr [90.92.71.90])
        by mail.linuxfoundation.org (Postfix) with ESMTPSA id 27500BC4;
        Mon, 22 Jan 2018 13:30:16 +0000 (UTC)
Date:   Mon, 22 Jan 2018 14:30:16 +0100
From:   Greg Kroah-Hartman <gregkh@linuxfoundation.org>
To:     Borislav Petkov <bp@suse.de>
Cc:     Peter Zijlstra <peterz@infradead.org>,
        Thomas Gleixner <tglx@linutronix.de>,
        KarimAllah Ahmed <karahmed@amazon.de>,
        linux-kernel@vger.kernel.org, Andi Kleen <ak@linux.intel.com>,
        Andrea Arcangeli <aarcange@redhat.com>,
        Andy Lutomirski <luto@kernel.org>,
        Arjan van de Ven <arjan@linux.intel.com>,
        Ashok Raj <ashok.raj@intel.com>,
        Asit Mallick <asit.k.mallick@intel.com>,
        Dan Williams <dan.j.williams@intel.com>,
        Dave Hansen <dave.hansen@intel.com>,
        David Woodhouse <dwmw@amazon.co.uk>,
        "H . Peter Anvin" <hpa@zytor.com>, Ingo Molnar <mingo@redhat.com>,
        Janakarajan Natarajan <Janakarajan.Natarajan@amd.com>,
        Joerg Roedel <joro@8bytes.org>,
        Jun Nakajima <jun.nakajima@intel.com>,
        Laura Abbott <labbott@redhat.com>,
        Linus Torvalds <torvalds@linux-foundation.org>,
        Masami Hiramatsu <mhiramat@kernel.org>,
        Paolo Bonzini <pbonzini@redhat.com>,
        Radim =?utf-8?B?S3LEjW3DocWZ?= <rkrcmar@redhat.com>,
        Tim Chen <tim.c.chen@linux.intel.com>,
        Tom Lendacky <thomas.lendacky@amd.com>, kvm@vger.kernel.org,
        x86@kernel.org
Subject: Re: [RFC 05/10] x86/speculation: Add basic IBRS support
 infrastructure
Message-ID: <20180122133016.GC3829@kroah.com>
References: <1516476182-5153-1-git-send-email-karahmed@amazon.de>
 <1516476182-5153-6-git-send-email-karahmed@amazon.de>
 <alpine.DEB.2.20.1801211524160.1998@nanos>
 <20180121145655.ddme3w6kzxthu6al@pd.tnic>
 <20180122095153.GB2228@hirez.programming.kicks-ass.net>
 <20180122120617.32jwptg6it32p4do@pd.tnic>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <20180122120617.32jwptg6it32p4do@pd.tnic>
User-Agent: Mutt/1.9.2 (2017-12-15)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Mon, Jan 22, 2018 at 01:06:18PM +0100, Borislav Petkov wrote:
> On Mon, Jan 22, 2018 at 10:51:53AM +0100, Peter Zijlstra wrote:
> > That wouldn't be enough; AFAIU there's people with this stuff already
> > flashed in their BIOS. So the kernel needs to deal with it one way or
> > another.
> 
> Not a lot we can do there except maybe disable IBRS on those and users
> can go and complain to their BIOS vendor to give them a downgrade or
> they can downgrade themselves.
> 
> If we had free BIOS, this would've been a whole different story...

We kind of do, you can submit patches to UEFI, but I doubt that the
processor-specific portions are actually present in the Tianocore code
to be able to be patched.

What about LinuxBoot <https://linuxboot.org>, does it too take over too
late in the boot process to control this?

thanks,

greg k-h