Received: by 2002:a25:c593:0:0:0:0:0 with SMTP id v141csp1138118ybe; Fri, 6 Sep 2019 12:26:30 -0700 (PDT) X-Google-Smtp-Source: APXvYqwy66orHGXAmQ7EPj55CpqbJn/4fwP2WSNl0rcd3pqp/aw6EVCHfdqRhaNIJZ6XsZ60uN7z X-Received: by 2002:a17:902:563:: with SMTP id 90mr10559071plf.13.1567797990641; Fri, 06 Sep 2019 12:26:30 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1567797990; cv=none; d=google.com; s=arc-20160816; b=J8DJaKJg3gO7HhX4O/g3ompKZ2N3eRp6TFiY8FNzC2PTw4tEuxsg5iRD1Iuyw09+Ld dXQsRtmfN5Df5BI4thLSHBFyY7/9zRBXoMyo9icSiV7PWZIgndUsI1BgaNvDxcIAYOnM eyn1m2uGY+HtZ01nY0qraAYcQ6rH0MsQYWygb5HlTVbXpSPThvs3dt6EEbjzYRZ0gSjj 5XschuksdMQ0OEKfEku7StXVskrnbYy1xCvp/of45EfOPS/BuNguokh9pWj1Pn6QYsgk IhTb5D6sNaKsb4ooHLBj5nwDp5BJIb/sPpxAVUDrb2CO+dUXj12y5mb2jWdkGqEOJBNN pw8g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:cc :to:from:date:dkim-signature; bh=qFCKmF98sxj89IxjUAyQ/fJTX4Sbri4zk3r9SCHTo9s=; b=Ui3qPUpDjLDFDQntvtsM3/QsBQz7P+MpVOGMzPKkgrREF+okUIm7bupRLdZrOF6CnE gVxKo/cc1sWCFLL0McHENgcNAI/pPxXusQaYlkfCEAHoX6QkojMYA0Ey/HZZkLkEZPjk nt017g/GEk8OPe2XsxSlhThwHk+aQxVfSLg5obZ24FgGXSbwXiTNYuG/NL6mN7oxVAkw gG4/fuHfRZS12n65Dv0NITcI3f023FyDRQTj8kSpsmq0PyxrpSQXiZt1DxKnKOcKtxtD RRqbYOupLIBhKo0oIItOFx5Rj7P3RNjZ72mWFpFdlqz1E95SOYNSeuZMdcpKDH/DHlx5 0XRQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@erdfelt.com header.s=default header.b=GxRJcKNK; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id j18si5061617pgb.60.2019.09.06.12.26.14; Fri, 06 Sep 2019 12:26:30 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@erdfelt.com header.s=default header.b=GxRJcKNK; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2394593AbfIFOsv (ORCPT + 99 others); Fri, 6 Sep 2019 10:48:51 -0400 Received: from out.bound.email ([141.193.244.10]:38215 "EHLO out.bound.email" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1730799AbfIFOsv (ORCPT ); Fri, 6 Sep 2019 10:48:51 -0400 X-Greylist: delayed 490 seconds by postgrey-1.27 at vger.kernel.org; Fri, 06 Sep 2019 10:48:50 EDT Received: from mail.sventech.com (localhost [127.0.0.1]) by out.bound.email (Postfix) with ESMTP id C36368A30DF; Fri, 6 Sep 2019 07:40:39 -0700 (PDT) Received: by mail.sventech.com (Postfix, from userid 1000) id A540016001D9; Fri, 6 Sep 2019 07:40:39 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=erdfelt.com; s=default; t=1567780839; bh=qFCKmF98sxj89IxjUAyQ/fJTX4Sbri4zk3r9SCHTo9s=; h=Date:From:To:Cc:Subject:References:In-Reply-To:From; b=GxRJcKNKVbvW9eXHrii2JC70Hd94BQyeseRNJnztRKicbLXvWI78VbJ4PzUF/39I2 yEnhhgK5GpiflbbM8LVUrqC8jBwfum1ec70kfJfNb+e5NM8eXw5uq+y/nKUOZaF6MY crcKcughqT5gkEh85T3nY0oRBjQOlviwroRmkQuw= Date: Fri, 6 Sep 2019 07:40:39 -0700 From: Johannes Erdfelt To: Thomas Gleixner Cc: "Raj, Ashok" , Borislav Petkov , Boris Ostrovsky , Mihai Carabas , "H. Peter Anvin" , Ingo Molnar , Jon Grimm , kanth.ghatraju@oracle.com, konrad.wilk@oracle.com, patrick.colp@oracle.com, Tom Lendacky , x86-ml , linux-kernel@vger.kernel.org Subject: Re: [PATCH] x86/microcode: Add an option to reload microcode even if revision is unchanged Message-ID: <20190906144039.GA29569@sventech.com> References: <20190829130213.GA23510@araj-mobl1.jf.intel.com> <20190903164630.GF11641@zn.tnic> <41cee473-321c-2758-032a-ccf0f01359dc@oracle.com> <20190905002132.GA26568@otc-nc-03> <20190905072029.GB19246@zn.tnic> <20190905194044.GA3663@otc-nc-03> <20190905222706.GA4422@otc-nc-03> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.11.4 (2019-03-13) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Fri, Sep 06, 2019, Thomas Gleixner wrote: > What your customers are asking for is a receipe for disaster. They can > check the safety of late loading forever, it will not magically become safe > because they do so. > > If you want late loading, then the whole approach needs to be reworked from > ground up. You need to make sure that all CPUs are in a safe state, > i.e. where switching of CPU feature bits of all sorts can be done with the > guarantee that no CPU will return to the wrong code path after coming out > of safe state and that any kernel internal state which depends on the > previous set of CPU feature bits has been mopped up and switched over > before CPUs are released. You say that switching of CPU feature bits is problematic, but adding new features should result only in a warning ("x86/CPU: CPU features have changed after loading microcode, but might not take effect."). Removing a CPU feature bit could be problematic. Other than HLE being removed on Haswell (which the kernel shouldn't use anyway), have there been any other cases? I ask because we have successfully used late microcode loading on tens of thousands of hosts. I'm a bit worried to see that there is a push to remove a feature that we currently rely on. JE