Received: by 10.223.176.5 with SMTP id f5csp3662494wra;
        Mon, 29 Jan 2018 17:11:46 -0800 (PST)
X-Google-Smtp-Source: AH8x225/M7tetLQuZMSD4AQDBsAQ5gFjuXUbPE2O09pT7TTgFW4WkmOr9jyv7GAB3wkNNH4aq0Dr
X-Received: by 10.99.115.16 with SMTP id o16mr22958391pgc.362.1517274706170;
        Mon, 29 Jan 2018 17:11:46 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1517274706; cv=none;
        d=google.com; s=arc-20160816;
        b=Sebo8mjfBUXIs+/2+sObf4MW90lg+nYd//sRYvJFchC82EwC5lB/8UBj5SqiXoDG2Q
         lxn6sMse8GE46v9ECxYdA+xV08iIMcTh1DM7qtIz7rmUeL0Ar1el9q2/8JBVHxJQYjOS
         msJIFbwc9D2/boDjDL0muiuoO2xF0gykiQwN0i9p+UxPqsCcHXZbHxWOvVYClnbjHUsy
         Qf/iDd3TGLRJs0ci+acI0xDwZX1+kPbi+b9uiNI5lDyaKw+rp26N8fap7upZ+tyWizod
         s3S4hjlOrJo/NGTRiXMj9MBnfoAnu547g0KFwWNe3chSAb/Efwf9+uVABHTmfhfp9Day
         fwNQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:user-agent:in-reply-to
         :content-disposition:mime-version:references:message-id:subject:cc
         :to:from:date:arc-authentication-results;
        bh=g/ykQ0ukQks5NIk44H5YOYSWaYUJEkAD2/IdskNY44w=;
        b=EqjuUiUBpv8xKNxQbhxdZyR+bja35SK6F1eKorzXGkf9YfA4RgYma41x7cXxFwW5so
         WNt4CV7tJds/07CW8nhmY6Bhcj0QtKr+KTGzsgSY3cHXm7gQ19XNLjv6pI/O++AoF7NF
         8u8zsk8NgY8LmY8HKmkY7Blx+Yg/wGiasr8XvXkvn7dAx3Ma9ctSzVoQ1qfi+TufRmDJ
         0zz+2cKc8mjQbCNOOKOHqBAfmlzZbpN7OMer3u78pKZhMa8yjeKJ1icHO2O39UNuUZdF
         w35WxzJMkZS7DlbZASrMhWaOFzBhp4wPdjnoPLG6YM4BIFBliiqti4JK5q/8LSki2K+h
         JgmQ==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id 62-v6si10287236plb.383.2018.01.29.17.11.30;
        Mon, 29 Jan 2018 17:11:46 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1752301AbeA3BLD (ORCPT <rfc822;vladislav.valtchev@gmail.com>
        + 99 others); Mon, 29 Jan 2018 20:11:03 -0500
Received: from mx1.redhat.com ([209.132.183.28]:41708 "EHLO mx1.redhat.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1751528AbeA3BLB (ORCPT <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 29 Jan 2018 20:11:01 -0500
Received: from smtp.corp.redhat.com (int-mx01.intmail.prod.int.phx2.redhat.com [10.5.11.11])
        (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
        (No client certificate requested)
        by mx1.redhat.com (Postfix) with ESMTPS id 651DF18B31D;
        Tue, 30 Jan 2018 01:11:01 +0000 (UTC)
Received: from localhost (ovpn-116-57.gru2.redhat.com [10.97.116.57])
        by smtp.corp.redhat.com (Postfix) with ESMTP id CC92A60499;
        Tue, 30 Jan 2018 01:11:00 +0000 (UTC)
Date:   Mon, 29 Jan 2018 23:10:59 -0200
From:   Eduardo Habkost <ehabkost@redhat.com>
To:     Jim Mattson <jmattson@google.com>
Cc:     Andi Kleen <ak@linux.intel.com>, David Dunn <ddunn@vmware.com>,
        Arjan van de Ven <arjan@linux.intel.com>,
        KarimAllah Ahmed <karahmed@amazon.de>,
        "Wilson, Matt" <msw@amazon.com>,
        "linux-kernel@vger.kernel.org" <linux-kernel@vger.kernel.org>,
        Andrea Arcangeli <aarcange@redhat.com>,
        Andy Lutomirski <luto@kernel.org>,
        Ashok Raj <ashok.raj@intel.com>,
        Asit Mallick <asit.k.mallick@intel.com>,
        Borislav Petkov <bp@suse.de>,
        Dan Williams <dan.j.williams@intel.com>,
        Dave Hansen <dave.hansen@intel.com>,
        Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
        "H . Peter Anvin" <hpa@zytor.com>, Ingo Molnar <mingo@redhat.com>,
        Janakarajan Natarajan <Janakarajan.Natarajan@amd.com>,
        Joerg Roedel <joro@8bytes.org>,
        Jun Nakajima <jun.nakajima@intel.com>,
        Laura Abbott <labbott@redhat.com>,
        Linus Torvalds <torvalds@linux-foundation.org>,
        Masami Hiramatsu <mhiramat@kernel.org>,
        Paolo Bonzini <pbonzini@redhat.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Radim =?utf-8?B?S3LEjW3DocWZ?= <rkrcmar@redhat.com>,
        Thomas Gleixner <tglx@linutronix.de>,
        Tim Chen <tim.c.chen@linux.intel.com>,
        Tom Lendacky <thomas.lendacky@amd.com>,
        "kvm@vger.kernel.org" <kvm@vger.kernel.org>,
        "x86@kernel.org" <x86@kernel.org>,
        "Dr. David Alan Gilbert" <dgilbert@redhat.com>,
        Fred Jacobs <fjacobs@vmware.com>,
        David Woodhouse <dwmw2@infradead.org>
Subject: Re: [RFC,05/10] x86/speculation: Add basic IBRS support
 infrastructure
Message-ID: <20180130011059.GB21702@localhost.localdomain>
References: <7EB9643C-D2DD-477A-90DE-05DC653D2D4B@vmware.com>
 <20180129224124.GU26209@tassilo.jf.intel.com>
 <CALMp9eQfuiXdnJkiAM3g933AUpLmhugsryhONOYo5MPATUS4rQ@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <CALMp9eQfuiXdnJkiAM3g933AUpLmhugsryhONOYo5MPATUS4rQ@mail.gmail.com>
X-Fnord: you can see the fnord
User-Agent: Mutt/1.9.1 (2017-09-22)
X-Scanned-By: MIMEDefang 2.79 on 10.5.11.11
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.5.16 (mx1.redhat.com [10.5.110.29]); Tue, 30 Jan 2018 01:11:01 +0000 (UTC)
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On Mon, Jan 29, 2018 at 02:49:51PM -0800, Jim Mattson wrote:
> And if we expect to introduce Cascade Lake into the pool in the
> future, we use a Cascade Lake model number?
> 
> It sounds like you are suggesting that we set the model number to the
> highest model number that will ever be introduced into the pool, at
> any time in the future. That approach would also fail the
> 'is_skylake_era()' test. (Not to mention that we have no idea what
> Intel's highest compatible model number will be.)

Exactly, that's why virtualization and live-migration break the
model of just checking f/m/s/microcode: the guest doesn't need to
work around bugs that are present in the current host, but the
set of bugs that could appear on any future host it can run on.

> 
> On Mon, Jan 29, 2018 at 2:41 PM, Andi Kleen <ak@linux.intel.com> wrote:
> >> Even if we expose bit to indicate that FMS matches the underlying host, when does the guest know to query that?  The VM can be moved at any point in time, including after the guest asks if FMS matches host.
> >
> > There's no way to enable these mitigations later, so if you always
> > have to enable the super set of all the mitigations for all the hosts you
> > might be migrating too.
> >
> > As of currently that means if you want to ever migrate to Skylake you should
> > set the Skylake model number and you're good.
> >
> > -Andi

-- 
Eduardo