From mboxrd@z Thu Jan  1 00:00:00 1970
Return-path: <bp@suse.de>
Received: from mx2.suse.de ([195.135.220.15])	by Galois.linutronix.de with
 esmtps (TLS1.0:DHE_RSA_CAMELLIA_256_CBC_SHA1:256)	(Exim 4.80)	(envelope-from
 <bp@suse.de>)	id 1f8XLx-0006D4-FO	for speck@linutronix.de; Tue, 17 Apr 2018
 22:37:27 +0200
Received: from relay2.suse.de (charybdis-ext.suse.de [195.135.220.254])
	by mx2.suse.de (Postfix) with ESMTP id 96B55AFA8
	for <speck@linutronix.de>; Tue, 17 Apr 2018 20:37:18 +0000 (UTC)
Date: Tue, 17 Apr 2018 22:37:17 +0200
From: Borislav Petkov <bp@suse.de>
Subject: [MODERATED] Re: GPZv4
Message-ID: <20180417203717.GF3890@pd.tnic>
References: <b1ff9e5a-ae02-bf97-7ab5-d886ff17d5ca@redhat.com>
 <20180417193105.GD3890@pd.tnic>
 <476c3e0b-dde6-6e6b-2054-6e71fa2c396b@redhat.com>
MIME-Version: 1.0
In-Reply-To: <476c3e0b-dde6-6e6b-2054-6e71fa2c396b@redhat.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
To: speck@linutronix.de
List-ID: <speck.linutronix.de>

On Tue, Apr 17, 2018 at 03:56:55PM -0400, speck for Jon Masters wrote:
> Let's make sure we're talking about the right thing when we talk about
> things being on or off. I usually always talk about a performance
> feature being on or off, not a mitigation. Therefore, I read the above
> as "MD is off by default", meaning the performance feature is disabled.

I mean the opposite. MD is enabled, as it is the default setting
normally, on any CPU that has MD. So the performance feature remains
enabled.

> This is our current thinking. However, AMD disagree with this and prefer
> to leave the feature enabled by default.

Yes.

> That would mean having to (at a minimum) address all of the userspace
> exposure with prctl(), seccomp(), or other interfaces, and get that
> all done within the next month. For the actual browsers, sure, there
> will be process isolation updates.

Yes. Paranoid people can boot with mdd=3Don - meaning "memory
disambiguation disable - on"

   [ and yap, if anything, we very very quickly need to agree on one
     terminology and stick with it because the confusion will be insane...
   ]

or, in your suggested nomenclature, ssb=3Doff.

The finer-grained stuff we can do in parallel.

> So can you clarify what you meant by "off on AMD" by default?

AFAIK, AMD wants MD on by default, i.e., unchanged from the current
setting. The user who wants to buy into the perf hit and is paranoid
will be able to disable MD and thus enable the mitigation.

--=20
Regards/Gruss,
    Boris.

SUSE Linux GmbH, GF: Felix Imend=C3=B6rffer, Jane Smithard, Graham Norton, HR=
B 21284 (AG N=C3=BCrnberg)
--=20