Received: by 10.223.176.46 with SMTP id f43csp4783617wra;
        Tue, 23 Jan 2018 14:50:52 -0800 (PST)
X-Google-Smtp-Source: AH8x224XK6KcarWWHtgy6dB/FyKhY43uSWYinh9DrgbdZQxN6jf5+aKcSzfXiVunRB6q4km5QeS2
X-Received: by 10.107.14.199 with SMTP id 190mr5856503ioo.43.1516747852109;
        Tue, 23 Jan 2018 14:50:52 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1516747852; cv=none;
        d=google.com; s=arc-20160816;
        b=iMqDBp2p/Cz+Bp3NmYhfFdCBMo1cT3CsG/7EOsYTV6e1KtgCwcGP0Qh0Immr7/5ctE
         HJxZqCnv+eBjXcudOxyvFwW24Uyq12BsZ//GOKeS4bHfhto1ADolLSaKf5CAibILHHY3
         FjyEJzBQ/IiSajOp2050yBsrDGd6Zm797ZfHlamb5sEAZu96BB1rkx9kmybaZ8NpN989
         l5cpB31qomvS1NYa+owX3dbrurWforMfkbzLuD2IEibSbNSx4ebQpyvlL/JVHoIwZ67z
         Wi8WVst7V3Cmtq+xKUaWboPzeaDzPuxffwMWxX26MwjcmrgfJMiIuHVnp+wW7vC5xPlv
         1taQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date:arc-authentication-results;
        bh=5A9Mlk3+S7V2tBhc/eT6N40JCzOnaixLAF0iiLJR5ks=;
        b=CXrRLaFy/jp/a/jrkemvR82G9trE3Lv8JTRwKnvuXp9P7qLe9QSDcJ6FevKYpAQynW
         HHFhTrEeIwLKgZZCl+a+ngDLLs53YksW/JHKg7d+wEDvScyVh5u4gUSVZOyxkfwx1xqW
         YIu+wSVhuON5/lDjWDpwaJzLkB0E1hBKquoGru/YW5P1Dlwvbrknwzl2qd/5JgyJsNoL
         0BUos4y08eKB5aFLfxH6jbQM8XYXsXyus4cIpGEn28WQE93ZBD4vjp/9/kcba7iFD0cG
         q8SLkEcT79MVaie1nEpxb9BZbRUJctRBMdBx1mzIax4S9MXGhtT7H2MmrD6hkwfkN+kn
         BGHA==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id l191si9231764itb.95.2018.01.23.14.50.35;
        Tue, 23 Jan 2018 14:50:52 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S932363AbeAWWuH (ORCPT <rfc822;marvinzhang.kernel@gmail.com>
        + 99 others); Tue, 23 Jan 2018 17:50:07 -0500
Received: from mga04.intel.com ([192.55.52.120]:16635 "EHLO mga04.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S932267AbeAWWuG (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Tue, 23 Jan 2018 17:50:06 -0500
X-Amp-Result: UNKNOWN
X-Amp-Original-Verdict: FILE UNKNOWN
X-Amp-File-Uploaded: False
Received: from orsmga004.jf.intel.com ([10.7.209.38])
  by fmsmga104.fm.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 23 Jan 2018 14:50:05 -0800
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.46,403,1511856000"; 
   d="scan'208";a="168604257"
Received: from tassilo.jf.intel.com (HELO tassilo.localdomain) ([10.7.201.35])
  by orsmga004.jf.intel.com with ESMTP; 23 Jan 2018 14:50:04 -0800
Received: by tassilo.localdomain (Postfix, from userid 1000)
        id 1E82B300D79; Tue, 23 Jan 2018 14:49:56 -0800 (PST)
Date:   Tue, 23 Jan 2018 14:49:56 -0800
From:   Andi Kleen <ak@linux.intel.com>
To:     Tom Lendacky <thomas.lendacky@amd.com>
Cc:     "Woodhouse, David" <dwmw@amazon.co.uk>,
        Andy Lutomirski <luto@amacapital.net>,
        KarimAllah Ahmed <karahmed@amazon.de>,
        linux-kernel@vger.kernel.org,
        Andrea Arcangeli <aarcange@redhat.com>,
        Andy Lutomirski <luto@kernel.org>,
        Arjan van de Ven <arjan@linux.intel.com>,
        Ashok Raj <ashok.raj@intel.com>,
        Asit Mallick <asit.k.mallick@intel.com>,
        Borislav Petkov <bp@suse.de>,
        Dan Williams <dan.j.williams@intel.com>,
        Dave Hansen <dave.hansen@intel.com>,
        Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
        "H . Peter Anvin" <hpa@zytor.com>, Ingo Molnar <mingo@redhat.com>,
        Janakarajan Natarajan <Janakarajan.Natarajan@amd.com>,
        Joerg Roedel <joro@8bytes.org>,
        Jun Nakajima <jun.nakajima@intel.com>,
        Laura Abbott <labbott@redhat.com>,
        Linus Torvalds <torvalds@linux-foundation.org>,
        Masami Hiramatsu <mhiramat@kernel.org>,
        Paolo Bonzini <pbonzini@redhat.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Radim =?utf-8?B?S3LEjW3DocWZ?= <rkrcmar@redhat.com>,
        Thomas Gleixner <tglx@linutronix.de>,
        Tim Chen <tim.c.chen@linux.intel.com>, kvm@vger.kernel.org,
        x86@kernel.org, Arjan Van De Ven <arjan.van.de.ven@intel.com>
Subject: Re: [RFC 09/10] x86/enter: Create macros to restrict/unrestrict
 Indirect Branch Speculation
Message-ID: <20180123224956.GQ7844@tassilo.jf.intel.com>
References: <1516476182-5153-1-git-send-email-karahmed@amazon.de>
 <1516476182-5153-10-git-send-email-karahmed@amazon.de>
 <243BE571-AF73-44B3-8D17-193F9E07686A@amacapital.net>
 <4e01a7a9-29e4-adcc-3f53-550fb7f3d370@amd.com>
 <1516724457.9521.156.camel@amazon.co.uk>
 <fb2b5589-e14c-470e-2de0-d9da1667bace@amd.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <fb2b5589-e14c-470e-2de0-d9da1667bace@amd.com>
User-Agent: Mutt/1.9.1 (2017-09-22)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

> Not sure.  Maybe to start, the answer might be to allow it to be set for
> the ultra-paranoid, but in general don't enable it by default.  Having it
> enabled would be an alternative to someone deciding to disable SMT, since
> that would have even more of a performance impact.

I agree. A reasonable strategy would be to only enable it for
processes that have dumpable disabled. This should be already set for
high value processes like GPG, and allows others to opt-in if
they need to.

-Andi