[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Xen-devel] [RESEND] Spectre-v2 (IBPB/IBRS) and SSBD fixes for 4.4.y
- To: Greg KH <gregkh@xxxxxxxxxxxxxxxxxxx>
- From: "Srivatsa S. Bhat" <srivatsa@xxxxxxxxxxxxx>
- Date: Mon, 23 Jul 2018 10:27:10 -0700
- Cc: Dave Hansen <dave@xxxxxxxx>, Wanpeng Li <kernellwp@xxxxxxxxx>, ak@xxxxxxxxxxxxxxx, linux-tip-commits@xxxxxxxxxxxxxxx, Piotr Luc <piotr.luc@xxxxxxxxx>, Mel Gorman <mgorman@xxxxxxx>, arjan.van.de.ven@xxxxxxxxx, xen-devel@xxxxxxxxxxxxxxxxxxxx, Alexander Sergeyev <sergeev917@xxxxxxxxx>, Brian Gerst <brgerst@xxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxx>, MickaëlSalaün <mic@xxxxxxxxxxx>, Thomas Gleixner <tglx@xxxxxxxxxxxxx>, Joe Konno <joe.konno@xxxxxxxxxxxxxxx>, Laura Abbott <labbott@xxxxxxxxxxxxxxxxx>, Will Drewry <wad@xxxxxxxxxxxx>, Jiri Kosina <jkosina@xxxxxxx>, linux-kernel@xxxxxxxxxxxxxxx, Jia Zhang <qianyue.zj@xxxxxxxxxxxxxxx>, Andrew Morton <akpm@xxxxxxxxxxxxxxxxxxxx>, torvalds@xxxxxxxxxxxxxxxxxxxx, dwmw@xxxxxxxxxxxx, karahmed@xxxxxxxxx, dave.hansen@xxxxxxxxxxxxxxx, linux@xxxxxxxxxxxxxxxxxxxx, Bo Gan <ganb@xxxxxxxxxx>, Andrey Ryabinin <ryabinin.a.a@xxxxxxxxx>, Kristen Carlson Accardi <kristen@xxxxxxxxxxxxxxx>, Nadav Amit <nadav.amit@xxxxxxxxx>, Ingo Molnar <mingo@xxxxxxxxxx>, Prarit Bhargava <prarit@xxxxxxxxxx>, Shuah Khan <shuahkh@xxxxxxxxxxxxxxx>, Ross Zwisler <ross.zwisler@xxxxxxxxxxxxxxx>, Borislav Petkov <bp@xxxxxxx>, Tom Lendacky <thomas.lendacky@xxxxxxx>, Rik van Riel <riel@xxxxxxxxxx>, Denys Vlasenko <dvlasenk@xxxxxxxxxx>, boris.ostrovsky@xxxxxxxxxx, arjan@xxxxxxxxxxxxxxx, Tony Luck <tony.luck@xxxxxxxxx>, Vince Weaver <vincent.weaver@xxxxxxxxx>, Mike Galbraith <efault@xxxxxx>, Yazen Ghannam <Yazen.Ghannam@xxxxxxx>, Kyle Huey <me@xxxxxxxxxxxx>, Sherry Hurwitz <sherry.hurwitz@xxxxxxx>, tim.c.chen@xxxxxxxxxxxxxxx, Thomas Garnier <thgarnie@xxxxxxxxxx>, gnomes@xxxxxxxxxxxxxxxxxxx, Alexander Shishkin <alexander.shishkin@xxxxxxxxxxxxxxx>, Frederic Weisbecker <fweisbec@xxxxxxxxx>, dave.hansen@xxxxxxxxx, Jan Beulich <jbeulich@xxxxxxxx>, srivatsab@xxxxxxxxxx, ashok.raj@xxxxxxxxx, Jörg Otte <jrg.otte@xxxxxxxxx>, Jim Mattson <jmattson@xxxxxxxxxx>, Alexander Popov <alpopov@xxxxxxxxxxxxxx>, Fenghua Yu <fenghua.yu@xxxxxxxxx>, Kees Cook <keescook@xxxxxxxxxxxx>, Arnd Bergmann <arnd@xxxxxxxx>, Ricardo Neri <ricardo.neri-calderon@xxxxxxxxxxxxxxx>, Josh Triplett <josh@xxxxxxxxxxxxxxxx>, rostedt@xxxxxxxxxxx, Quentin Casasnovas <quentin.casasnovas@xxxxxxxxxx>, Borislav Petkov <bp@xxxxxxxxx>, Stephane Eranian <eranian@xxxxxxxxxx>, Dan Williams <dan.j.williams@xxxxxxxxx>, Kyle Huey <khuey@xxxxxxxxxxxx>, Oleg Nesterov <oleg@xxxxxxxxxx>, Andy Lutomirski <luto@xxxxxxxxxxxxxx>, "Kirill A. Shutemov" <kirill.shutemov@xxxxxxxxxxxxxxx>, kvm <kvm@xxxxxxxxxxxxxxx>, Krčmář <rkrcmar@xxxxxxxxxx>, Peter Zijlstra <peterz@xxxxxxxxxxxxx>, Alexey Makhalov <amakhalov@xxxxxxxxxx>, linux-mm@xxxxxxxxx, "H. Peter Anvin" <hpa@xxxxxxxxx>, Jiri Olsa <jolsa@xxxxxxxxxx>, Alexander Kuleshov <kuleshovmail@xxxxxxxxx>, sironi@xxxxxxxxx, Joerg Roedel <joro@xxxxxxxxxx>, Jon Masters <jcm@xxxxxxxxxx>, Dave Young <dyoung@xxxxxxxxxx>, Arnaldo Carvalho de Melo <acme@xxxxxxxxxx>, Josh Poimboeuf <jpoimboe@xxxxxxxxxx>, Andy Shevchenko <andriy.shevchenko@xxxxxxxxxxxxxxx>, "Matt Helsley \(VMware\)" <matt.helsley@xxxxxxxxx>, linux-edac <linux-edac@xxxxxxxxxxxxxxx>, Juergen Gross <jgross@xxxxxxxx>, stable@xxxxxxxxxxxxxxx, Paolo Bonzini <pbonzini@xxxxxxxxxx>, David Woodhouse <dwmw2@xxxxxxxxxxxxx>
- Delivery-date: Mon, 23 Jul 2018 17:28:42 +0000
- List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
On 7/23/18 4:26 AM, Greg KH wrote:
> On Sat, Jul 14, 2018 at 02:25:43AM -0700, Srivatsa S. Bhat wrote:
>> Hi Greg,
>>
>> This patch series is a backport of the Spectre-v2 fixes (IBPB/IBRS)
>> and patches for the Speculative Store Bypass vulnerability to 4.4.y
>> (they apply cleanly on top of 4.4.140).
>>
>> I used 4.9.y as my reference when backporting to 4.4.y (as I thought
>> that would minimize the amount of fixing up necessary). Unfortunately
>> I had to skip the KVM fixes for these vulnerabilities, as the KVM
>> codebase is drastically different in 4.4 as compared to 4.9. (I tried
>> my best to backport them initially, but wasn't confident that they
>> were correct, so I decided to drop them from this series).
>>
>> You'll notice that the initial few patches in this series include
>> cleanups etc., that are non-critical to IBPB/IBRS/SSBD. Most of these
>> patches are aimed at getting the cpufeature.h vs cpufeatures.h split
>> into 4.4, since a lot of the subsequent patches update these headers.
>> On my first attempt to backport these patches to 4.4.y, I had actually
>> tried to do all the updates on the cpufeature.h file itself, but it
>> started getting very cumbersome, so I resorted to backporting the
>> cpufeature.h vs cpufeatures.h split and their dependencies as well. I
>> think apart from these initial patches, the rest of the patchset
>> doesn't have all that much noise.
>>
>> This patchset has been tested on both Intel and AMD machines (Intel
>> Xeon CPU E5-2660 v4 and AMD EPYC 7281 16-Core Processor, respectively)
>> with updated microcode. All the patch backports have been
>> independently reviewed by Matt Helsley, Alexey Makhalov and Bo Gan.
>>
>> I would appreciate if you could kindly consider these patches for
>> review and inclusion in a future 4.4.y release.
>
> Given no one has complained about these yet, I've queued them all up,
> including the 2 extra ones you sent afterward.
>
Great! Thank you very much!
> Let's see what breaks :)
>
Hehe :)
Regards,
Srivatsa
VMware Photon OS
_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel
|
