Received: by 2002:ad5:474a:0:0:0:0:0 with SMTP id i10csp2025943imu; Sun, 18 Nov 2018 14:04:12 -0800 (PST) X-Google-Smtp-Source: AJdET5d7or1tTPjqIXz4ECpSHdi3hXl8VhHLa793leZDbJRIlzVio2ktesvWIpPa5SGn0G38hL/0 X-Received: by 2002:a62:9683:: with SMTP id s3mr13108687pfk.60.1542578651982; Sun, 18 Nov 2018 14:04:11 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1542578651; cv=none; d=google.com; s=arc-20160816; b=s+6Wur1IQm/9FfGApMWg6uOMUyhaXmjlFwkCy9pECtdPtrDFzfmi+hzH9tAJBkI6zu o5Gm3EAVUNYCKVTNNpNgnDur5iAMdGYRfpDXRGghoh2eTIeEwfe3fFynAOTdrpJFHHNr uEThEv5wCnsLaLOyzYUmOs/NIPqidkrR5XkyAJcZBeExPrzm8Z/Pb9pNQUUUpi8i5pN/ PriRUAk6u3+cPl3L793ts14Cop+UfgBDUoKY+E4O1uz9ONhW1/drIDv8Vf8/E9pojrgW GJljD4cou6DiySQlxZDIzDi+4I+uOgkqjig3uFSNun/gkYR+ASKxc99dE9McHG84743A /uaw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date; bh=HIETtpdQBHzlUcQEs3aqg409SoVVjQr/rKEYvnhL4NI=; b=N+lHzibz3C4+GtdwJ4Fv58qkANZl4AOGdb8FRa1YJrDB4xJxJ7MBJeZlFBqYKMLlpP 8rRtXsthSKiq3h/PEqW+OpiYoRifbeigMNfnHD6BoprPIlRBC38Gv4s9lLFZa8fguk1c BQ/VMRd+jFY7xJ5PbiK+Q4oYrQ6MzlOMAMhWmNqFOnUjGbLO0R4GY+nvnIri9roO+aPL 2SrcYLrlj/tHzKuCLA4iX1gLLe3ZZUEMI7gTpLoKmTHbWDdWm5AuBE+OHknI9qhJcWhw FvgpCObMabcMIgN6Vqn+sZVgkSM0r23VjvHrmUUKv5SXr56+mmVH2Du3aRPMcqlkc3yh yrsA== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id z16-v6si39063474pfd.259.2018.11.18.14.03.56; Sun, 18 Nov 2018 14:04:11 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1726950AbeKSIYr (ORCPT + 99 others); Mon, 19 Nov 2018 03:24:47 -0500 Received: from wtarreau.pck.nerim.net ([62.212.114.60]:44969 "EHLO 1wt.eu" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1725826AbeKSIYr (ORCPT ); Mon, 19 Nov 2018 03:24:47 -0500 Received: (from willy@localhost) by pcw.home.local (8.15.2/8.15.2/Submit) id wAILxUsY011133; Sun, 18 Nov 2018 22:59:30 +0100 Date: Sun, 18 Nov 2018 22:59:30 +0100 From: Willy Tarreau To: Jiri Kosina Cc: Linus Torvalds , Thomas Gleixner , Peter Zijlstra , Josh Poimboeuf , Andrea Arcangeli , David Woodhouse , Andi Kleen , Tim Chen , Casey Schaufler , Linux List Kernel Mailing , the arch/x86 maintainers , stable@vger.kernel.org Subject: Re: STIBP by default.. Revert? Message-ID: <20181118215930.GA11126@1wt.eu> References: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.6.1 (2016-04-27) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Sun, Nov 18, 2018 at 10:49:44PM +0100, Jiri Kosina wrote: > odds are that people > who don't care about spectrev2 already have 'nospectre_v2' on their > command-line, so they are fine as well. FWIW in our appliances, we never modify the boot loader's cmdline in field, we only provide new kernel+rootfs images. We've however disabled the config options for all this class of vulnerabilities. As long as it remains possible to disable the new ones using config options only, that's not an issue for me. Cheers, Willy