Received: by 10.223.176.46 with SMTP id f43csp2907909wra; Mon, 22 Jan 2018 05:31:16 -0800 (PST) X-Google-Smtp-Source: AH8x227x37UNVZO2DFm4NK8hIS764IWFlPSUAituGuf/7diHmnXZrYkGo3fHRiWRQ493dh7Sga0h X-Received: by 2002:a17:902:bf05:: with SMTP id bi5-v6mr3711016plb.32.1516627875967; Mon, 22 Jan 2018 05:31:15 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1516627875; cv=none; d=google.com; s=arc-20160816; b=Kb/l9AqsrwJAKMmm2JoMww2HsvNCuPXS4J5PwpB67sOD4g0fJqdLwGyUOO5zCdGkUE 7Y/LKQo3nyAeOMHQ38PDE1eX23UQHi5qnN5GgD0pg0AU860oqUNn6EF3FJzMutfr5/EW sF1YqEiFvEgpVcuXC0gH+6EsY6Z5kPVGL38sZlY+FXpT9qbPBmENDgm63i/N9NmbyvM2 H+Es9pcAW74ABl1mWbfp4Wg2qLHwDdGshZwMQilzFb1xUH//0Bi6wTfCmfB+mimeGeOF dXaq5M2ebZSsV9A5X42gZ4P6dQZLECHEd3gRH9yDZHyHqZWWfRZQ7AYMCRfoEYgm5iU2 JyVQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:arc-authentication-results; bh=zHwUrb755oOqwNS9FuJJUvrlXyKxlExRDE/zvy27J3g=; b=aX3skXKFFqarkRaqRs/tD5brGBcclsSAP/FupLomIQ1NRFpD+C81QzwwLqJSETfkcD 9EfEhePg/6DVXKEmyC7w0GTXa2D0N5CnN965RGRaWuDxE4A0LZEUlL4lGDoFuJu/+wIK nNgl2JNxDUqxP112CDcrvMFn/5v67YTpmDtNmX2ysCSAEcLIrSKZLA1FkBD1TnPRRd7s wGQriMMtT4p3wJhoWtDbSfAYwLeD+u7ks2olKI1a/fqtUzHsnsY8w5mLlBdG5SB9gILj nvQkbDgbvht6rcEYC0CLrO8uG5SV2RxlyhYgtWbwBxObH77TgiKX7yXt9CddfOK5jqwm t9ig== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id 32-v6si3488905pla.164.2018.01.22.05.31.01; Mon, 22 Jan 2018 05:31:15 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751231AbeAVNaT (ORCPT + 99 others); Mon, 22 Jan 2018 08:30:19 -0500 Received: from mail.linuxfoundation.org ([140.211.169.12]:55678 "EHLO mail.linuxfoundation.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1751004AbeAVNaR (ORCPT ); Mon, 22 Jan 2018 08:30:17 -0500 Received: from localhost (LFbn-1-12258-90.w90-92.abo.wanadoo.fr [90.92.71.90]) by mail.linuxfoundation.org (Postfix) with ESMTPSA id 27500BC4; Mon, 22 Jan 2018 13:30:16 +0000 (UTC) Date: Mon, 22 Jan 2018 14:30:16 +0100 From: Greg Kroah-Hartman To: Borislav Petkov Cc: Peter Zijlstra , Thomas Gleixner , KarimAllah Ahmed , linux-kernel@vger.kernel.org, Andi Kleen , Andrea Arcangeli , Andy Lutomirski , Arjan van de Ven , Ashok Raj , Asit Mallick , Dan Williams , Dave Hansen , David Woodhouse , "H . Peter Anvin" , Ingo Molnar , Janakarajan Natarajan , Joerg Roedel , Jun Nakajima , Laura Abbott , Linus Torvalds , Masami Hiramatsu , Paolo Bonzini , Radim =?utf-8?B?S3LEjW3DocWZ?= , Tim Chen , Tom Lendacky , kvm@vger.kernel.org, x86@kernel.org Subject: Re: [RFC 05/10] x86/speculation: Add basic IBRS support infrastructure Message-ID: <20180122133016.GC3829@kroah.com> References: <1516476182-5153-1-git-send-email-karahmed@amazon.de> <1516476182-5153-6-git-send-email-karahmed@amazon.de> <20180121145655.ddme3w6kzxthu6al@pd.tnic> <20180122095153.GB2228@hirez.programming.kicks-ass.net> <20180122120617.32jwptg6it32p4do@pd.tnic> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20180122120617.32jwptg6it32p4do@pd.tnic> User-Agent: Mutt/1.9.2 (2017-12-15) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Mon, Jan 22, 2018 at 01:06:18PM +0100, Borislav Petkov wrote: > On Mon, Jan 22, 2018 at 10:51:53AM +0100, Peter Zijlstra wrote: > > That wouldn't be enough; AFAIU there's people with this stuff already > > flashed in their BIOS. So the kernel needs to deal with it one way or > > another. > > Not a lot we can do there except maybe disable IBRS on those and users > can go and complain to their BIOS vendor to give them a downgrade or > they can downgrade themselves. > > If we had free BIOS, this would've been a whole different story... We kind of do, you can submit patches to UEFI, but I doubt that the processor-specific portions are actually present in the Tianocore code to be able to be patched. What about LinuxBoot , does it too take over too late in the boot process to control this? thanks, greg k-h