Received: by 2002:a25:ab43:0:0:0:0:0 with SMTP id u61csp446703ybi; Fri, 24 May 2019 06:22:21 -0700 (PDT) X-Google-Smtp-Source: APXvYqwbsNDb/d2g1V8p7pzergHa75BDzbVce74sEnSiQ2VLBDouPxKHH830p0tOH11IH1kIGT1b X-Received: by 2002:a17:90a:d995:: with SMTP id d21mr9545455pjv.56.1558704141819; Fri, 24 May 2019 06:22:21 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1558704141; cv=none; d=google.com; s=arc-20160816; b=UkweWUbP8srdiIM1X40rlLv18ziIJhvsiiPDrsKBBqGwwjq00FwMBYsE5iaeOm1FTu 0k50eS8JvlRp9Cvqwx09FYoisFzktVUDD1GXnRe3MMki63MLOcMegt+/uA1cwMmrPA+K QoNHDP/KJfN9To5HUVnJdubWfSk5gmcXlrRGFon2e3m5DICl5qgrRORE/YLHXwNDdcqh lwdaiv5GAwFAUV93cLkoR9JcotPv/vNwWuVQf6aSA123T1PawaBlYuxZBnzDkXanWBIm VGpUBBC6T7P0ORC8rsD8mibx0TxiGGsXyKFmXwQzo/yf9eja5tKZjvz6nV9FrVJUFxsE z6tQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:cc:to:subject:message-id:date:from :mime-version:dkim-signature; bh=jzQHkJ/pBgBZFWEflJGA8oAilvAER1cbh7aG0kbKgEg=; b=NoFEXrxBly2hKqDYKwS9sRl+6Cc1pZ2dzonRs4RnE/w9bGTWUMvAhZvM+2X7Pi2Q3u NHzgx0GW9zR7A02hs8NG0SudObJRFvIIsv/MW3leizeZcoiREiWyBleM5orBT9oYLr45 3FgQcOABHD3I6pvbjIZrKvUeLMdIagffvWZTTvBU0w16OYfw0q1GRLRcCzapaRmlM1+u pUJZvvxISiZrcnxMVrscIA6UfarGesgpCqVSgahTqUgHfIrlKV1QbNlxtDSuJCheGZ2p C0XeO5adCUhCQFL7nAYTwgqJweZ57xue2TKb/QNv0CsnsNMlB3WynpDSugasFNsPmAA0 bsSA== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@cloud.ionos.com header.s=google header.b=XmzyFhnq; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id f61si3892303pje.44.2019.05.24.06.22.04; Fri, 24 May 2019 06:22:21 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@cloud.ionos.com header.s=google header.b=XmzyFhnq; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2391601AbfEXNTr (ORCPT + 99 others); Fri, 24 May 2019 09:19:47 -0400 Received: from mail-wr1-f47.google.com ([209.85.221.47]:34972 "EHLO mail-wr1-f47.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2391124AbfEXNTq (ORCPT ); Fri, 24 May 2019 09:19:46 -0400 Received: by mail-wr1-f47.google.com with SMTP id m3so10020803wrv.2 for ; Fri, 24 May 2019 06:19:45 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cloud.ionos.com; s=google; h=mime-version:from:date:message-id:subject:to:cc; bh=jzQHkJ/pBgBZFWEflJGA8oAilvAER1cbh7aG0kbKgEg=; b=XmzyFhnq54xA5wcGkqE0Kvl/lYMjYymazK+mvs1c0g90yx8Lg8+hKjcbUD0i055Xg2 hxMdOSOlLn7r4TLzQ92lSmTMiJyy+9KsbJ6D1v2pdC6Ih1AkeU8PiHvXwLzjbsLMW1hG HOsmR9ks7c8FKeHQRKqg2OYj/2RVVh331YB0Gl2H7aJ0T85Btyo3YEq8/4ZPbPfsXs0W uxsMjSkxdRF7Nm8GXW1X5tZCHW6fc/7lXIpKroYqmw8Jb/tRvmec1/1s6SEVhKv3XhyP uAbnHnJojuMdq3mWZA2byZwGVuGvAxY5Wp2y5//PHuyRWnBNvItQ3feaMVdJTOQ9fJOO TTzA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to:cc; bh=jzQHkJ/pBgBZFWEflJGA8oAilvAER1cbh7aG0kbKgEg=; b=XowwSK3gbPhyUiiZxznFh/Zh0xS6rX4evI99fO3ia1p8xWhnBA2Y9ZAQEkjIBZbORE EFjS/kVYg5YNRcrlBleUpcNTeon0ZYQIdBqV5rhmSE2+OtWwcxdlH1s8iVbFRsmVMML4 fPxi5HSdiHNOfcIY6uU5+esGu7lDWO1HA3HNw7LSYhG9pYKSIOEUNA+/I6nKzNindrC+ EcjEpkqBsog1qQ9UgB1odOgamZMseAoYHEkYyQBpJj3Nl3KFR3aBaguNjLBcyen6By6L KtwbMzpcC7UKoDShuM88KzhESBSjgPfOmMzDn+/Vp//S+tPBxH1JH+U00l41865V3bWk gtwQ== X-Gm-Message-State: APjAAAWZqiZdIsQzQ+GtKYHmrKCmTo5GUamtouQucYWrdQBbvw/h7RxW D7ujdGqpqjxquTgt+wxwZ7xLztRUlsINa29ewoiyPl5SCoN33Q== X-Received: by 2002:a5d:440d:: with SMTP id z13mr2119880wrq.263.1558703985074; Fri, 24 May 2019 06:19:45 -0700 (PDT) MIME-Version: 1.0 From: Jinpu Wang Date: Fri, 24 May 2019 15:19:34 +0200 Message-ID: Subject: Is 2nd Generation Intel(R) Xeon(R) Processors (Formerly Cascade Lake) affected by MDS To: Thomas Gleixner , Greg Kroah-Hartman , tony.luck@intel.com, Arjan van de Ven Cc: linux-kernel@vger.kernel.org, Elmar Gerdes Content-Type: text/plain; charset="UTF-8" Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org Resend with plain text, and remove confidential unnecessary signature. sorry for spam. Hi Thomas, hi Greg, hi Tony, hi Arjan, hi other expert on the list I noticed on our Cascade lake with 4.14.120, the kernel is reporting vulnerable: jwang@ps401a-912:~$ head /sys/devices/system/cpu/vulnerabilities/mds Vulnerable: Clear CPU buffers attempted, no microcode; SMT vulnerable But according to INTEL, they have built the mitigation in hardware for Cascade Lake: https://www.intel.com/content/www/us/en/architecture-and-technology/engineering-new-protections-into-hardware.html We are using latest microcode from debian: https://metadata.ftp-master.debian.org/changelogs//non-free/i/intel-microcode/intel-microcode_3.20190514.1~deb9u1_changelog lscpu: jwang@ps401a-912:~$ lscpu Architecture: x86_64 CPU op-mode(s): 32-bit, 64-bit Byte Order: Little Endian CPU(s): 96 On-line CPU(s) list: 0-95 Thread(s) per core: 2 Core(s) per socket: 24 Socket(s): 2 NUMA node(s): 2 Vendor ID: GenuineIntel CPU family: 6 Model: 85 Model name: Intel(R) Xeon(R) Platinum 8268 CPU @ 2.90GHz Stepping: 5 CPU MHz: 3228.226 CPU max MHz: 3900.0000 CPU min MHz: 1000.0000 BogoMIPS: 5800.00 Virtualization: VT-x L1d cache: 32K L1i cache: 32K L2 cache: 1024K L3 cache: 33792K NUMA node0 CPU(s): 0-23,48-71 NUMA node1 CPU(s): 24-47,72-95 Flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe syscall nx pdpe1gb rdtscp lm constant_tsc art arch_perfmon pebs bts rep_good nopl xtopology nonstop_tsc cpuid aperfmperf pni pclmulqdq dtes64 monitor ds_cpl vmx smx est tm2 ssse3 sdbg fma cx16 xtpr pdcm pcid dca sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand lahf_lm abm 3dnowprefetch cpuid_fault epb cat_l3 cdp_l3 invpcid_single intel_ppin ssbd mba ibrs ibpb stibp tpr_shadow vnmi flexpriority ept vpid fsgsbase tsc_adjust bmi1 hle avx2 smep bmi2 erms invpcid rtm cqm mpx rdt_a avx512f avx512dq rdseed adx smap clflushopt clwb intel_pt avx512cd avx512bw avx512vl xsaveopt xsavec xgetbv1 xsaves cqm_llc cqm_occup_llc cqm_mbm_total cqm_mbm_local dtherm ida arat pln pts pku ospke flush_l1d arch_capabilities Clearly we want to buy Cascade Lake if the hardware mitigations are in place, but the information on the internet is quite limited and misleading. Could anyone of you could clarify it for us? Does it mean 4.14.120 is missing patches for detecting Cascade Lake mitigation, Or maybe only small set of cascade lake has mitigation? Or the community/intel are not sure about it yet? Looking forward for your reply. Thanks, -- Jack Wang Linux Kernel Developer