From mboxrd@z Thu Jan 1 00:00:00 1970 From: Greg KH Subject: Re: [RESEND] Spectre-v2 (IBPB/IBRS) and SSBD fixes for 4.4.y Date: Tue, 7 Aug 2018 15:49:34 +0200 Message-ID: <20180807134934.GA16837@kroah.com> References: <153156030832.10043.13438231886571087086.stgit@srivatsa-ubuntu> <8a87a705-97c0-eb3d-8878-8ffe052f065d@csail.mit.edu> Mime-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Return-path: Received: from all-amaz-eas1.inumbo.com ([34.197.232.57]) by lists.xenproject.org with esmtp (Exim 4.89) (envelope-from ) id 1fn2Mo-00029b-9Y for xen-devel@lists.xenproject.org; Tue, 07 Aug 2018 13:49:42 +0000 Content-Disposition: inline In-Reply-To: <8a87a705-97c0-eb3d-8878-8ffe052f065d@csail.mit.edu> List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-devel-bounces@lists.xenproject.org Sender: "Xen-devel" To: "Srivatsa S. Bhat" Cc: Dave Hansen , catalin.marinas@arm.com, Wanpeng Li , Andi Kleen , linux-tip-commits@vger.kernel.org, Piotr Luc , Mel Gorman , "Van De Ven, Arjan" , xen-devel , Alexander Sergeyev , Brian Gerst , Andy Lutomirski , =?iso-8859-1?Q?Micka=EBlSala=FCn?= , Thomas Gleixner , Joe Konno , Laura Abbott , Will Drewry , LKML , Jia Zhang , Andrew Morton , Linus Torvalds , David Woodhouse , srinidhir@vmware.com, KarimAllah Ahmed List-Id: xen-devel@lists.xenproject.org T24gRnJpLCBBdWcgMDMsIDIwMTggYXQgMDQ6MjA6MzFQTSAtMDcwMCwgU3JpdmF0c2EgUy4gQmhh dCB3cm90ZToKPiBPbiA4LzIvMTggMzoyMiBQTSwgS2VlcyBDb29rIHdyb3RlOgo+ID4gT24gVGh1 LCBBdWcgMiwgMjAxOCBhdCAxMjoyMiBQTSwgU3JpdmF0c2EgUy4gQmhhdAo+ID4gPHNyaXZhdHNh QGNzYWlsLm1pdC5lZHU+IHdyb3RlOgo+ID4+IE9uIDcvMjYvMTggNDowOSBQTSwgS2VlcyBDb29r IHdyb3RlOgo+ID4+PiBPbiBUdWUsIEp1bCAyNCwgMjAxOCBhdCAzOjAyIFBNLCBKaXJpIEtvc2lu YSA8amlrb3NAa2VybmVsLm9yZz4gd3JvdGU6Cj4gPj4+PiBPbiBUdWUsIDI0IEp1bCAyMDE4LCBT cml2YXRzYSBTLiBCaGF0IHdyb3RlOgo+ID4+Pj4KPiA+Pj4+PiBIb3dldmVyLCBpZiB5b3UgYXJl IHByb3Bvc2luZyB0aGF0IHlvdSdkIGxpa2UgdG8gY29udHJpYnV0ZSB0aGUgZW5oYW5jZWQKPiA+ Pj4+PiBQVEkvU3BlY3RyZSAodXBzdHJlYW0pIHBhdGNoZXMgZnJvbSB0aGUgU0xFUyA0LjQgdHJl ZSB0byA0LjQgc3RhYmxlLCBhbmQKPiA+Pj4+PiBoYXZlIHRoZW0gbWVyZ2VkIGluc3RlYWQgb2Yg dGhpcyBwYXRjaCBzZXJpZXMsIHRoZW4gSSB3b3VsZCBjZXJ0YWlubHkKPiA+Pj4+PiB3ZWxjb21l IGl0IQo+ID4+Pj4KPiA+Pj4+IEknZCBpbiBwcmluY2lwbGUgbG92ZSB1cyB0byBwdXNoIGV2ZXJ5 dGhpbmcgYmFjayB0byA0LjQsIGJ1dCB0aGVyZSBhcmUgYQo+ID4+Pj4gZmV3IHJlYXNvbnMgKCop IHdoeSB0aGF0J3Mgbm90IGhhcHBlbmluZyBzaG9ydGx5Lgo+ID4+Pj4KPiA+Pj4+IEFueXdheSwg dG8gcG9pbnQgb3V0IGV4cGxpY2l0bHkgd2hhdCdzIHJlYWxseSBuZWVkZWQgZm9yIHRob3NlIGZv bGtzCj4gPj4+PiBydW5uaW5nIDQuNC1zdGFibGUgYW5kIHJlbHlpbmcgb24gUFRJIHByb3ZpZGlu ZyBUaGUgUmVhbCBUaGluZyhUTSksIGl0J3MKPiA+Pj4+IGVpdGhlciBhIDQuNC1zdGFibGUgcG9y dCBvZgo+ID4+Pj4KPiA+Pj4+ICAgICAgICAgaHR0cDovL2tlcm5lbC5zdXNlLmNvbS9jZ2l0L2tl cm5lbC1zb3VyY2UvcGxhaW4vcGF0Y2hlcy5zdXNlL3g4Ni1lbnRyeS02NC11c2UtYS1wZXItY3B1 LXRyYW1wb2xpbmUtc3RhY2sucGF0Y2g/aWQ9MzQyOGE3N2IwMmIxYmEwM2U0NWQ4ZmMzNTJlYzM1 MDQyOWY1N2ZjNwo+ID4+Pj4KPiA+Pj4+IG9yIG1ha2luZyBUSFJFQURJTkZPX0dGUCBpbXBseSBf X0dGUF9aRVJPLgo+ID4+Pgo+ID4+PiBUaGlzIGlzIHRydWUgaW4gTGludXMncyB0cmVlIG5vdy4g U2hvdWxkIGJlIHRyaXZpYWwgdG8gYmFja3BvcnQ6Cj4gPj4+IGh0dHBzOi8vZ2l0Lmtlcm5lbC5v cmcvbGludXMvZTAxZTgwNjM0ZWNkZAo+ID4+Pgo+ID4+Cj4gPj4gSGkgSmlyaSwgS2VlcywKPiA+ Pgo+ID4+IFRoYW5rIHlvdSBmb3Igc3VnZ2VzdGluZyB0aGUgcGF0Y2ghIEkgaGF2ZSBhdHRhY2hl ZCB0aGUgKGxvY2FsbHkKPiA+PiB0ZXN0ZWQpIDQuNCBhbmQgNC45IGJhY2twb3J0cyBvZiB0aGF0 IHBhdGNoIHdpdGggdGhpcyBtYWlsLiAoVGhlCj4gPj4gbWFpbmxpbmUgY29tbWl0IGFwcGxpZXMg Y2xlYW5seSBvbiA0LjE0KS4KPiA+Pgo+ID4+IEdyZWcsIGNvdWxkIHlvdSBwbGVhc2UgY29uc2lk ZXIgaW5jbHVkaW5nIHRoZW0gaW4gc3RhYmxlIDQuNCwgNC45Cj4gPj4gYW5kIDQuMTQ/Cj4gPiAK PiA+IEkgZG9uJ3QgdGhpbmsgeW91ciB2NC45IGlzIHN1ZmZpY2llbnQ6IGl0IGxlYXZlcyB0aGUg dm1hcHBlZCBzdGFjawo+ID4gdW5jbGVhcmVkLiB2NC45IG5lZWRzIGNhMTgyNTUxODU3ICgia21l bWxlYWs6IGNsZWFyIHN0YWxlIHBvaW50ZXJzCj4gPiBmcm9tIHRhc2sgc3RhY2tzIikgaW5jbHVk ZWQgaW4gdGhlIGJhY2twb3J0IChyZWFsbHksIGp1c3QgYWRkaW5nIHRoZQo+ID4gbWVtc2V0KCkp Lgo+ID4gCj4gCj4gQWgsIEkgc2VlLCB0aGFuayB5b3UhIEkgaGF2ZSBhdHRhY2hlZCB0aGUgdXBk YXRlZCBwYXRjaHNldCBmb3IgNC45Cj4gd2l0aCB0aGlzIG1haWwuCj4gCj4gPiBPdGhlcndpc2Us IHl1cCwgbG9va3MgZ29vZC4KPiA+IAo+IFRoYW5rIHlvdSBmb3IgcmV2aWV3aW5nIHRoZSBwYXRj aGVzIQo+ICAKPiBSZWdhcmRzLAo+IFNyaXZhdHNhCj4gVk13YXJlIFBob3RvbiBPUwoKVGhlc2Ug d29yayBmb3IgNC45LCBkbyB5b3UgYWxzbyBoYXZlIGEgc2V0IGZvciA0LjQ/Cgp0aGFua3MsCgpn cmVnIGstaAoKX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18K WGVuLWRldmVsIG1haWxpbmcgbGlzdApYZW4tZGV2ZWxAbGlzdHMueGVucHJvamVjdC5vcmcKaHR0 cHM6Ly9saXN0cy54ZW5wcm9qZWN0Lm9yZy9tYWlsbWFuL2xpc3RpbmZvL3hlbi1kZXZlbA== From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-pl0-f72.google.com (mail-pl0-f72.google.com [209.85.160.72]) by kanga.kvack.org (Postfix) with ESMTP id 3DCEA6B0003 for ; Tue, 7 Aug 2018 09:49:42 -0400 (EDT) Received: by mail-pl0-f72.google.com with SMTP id w1-v6so10643094plq.8 for ; Tue, 07 Aug 2018 06:49:42 -0700 (PDT) Received: from mail.linuxfoundation.org (mail.linuxfoundation.org. [140.211.169.12]) by mx.google.com with ESMTPS id n70-v6si1479004pfa.320.2018.08.07.06.49.40 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Tue, 07 Aug 2018 06:49:40 -0700 (PDT) Date: Tue, 7 Aug 2018 15:49:34 +0200 From: Greg KH Subject: Re: [RESEND] Spectre-v2 (IBPB/IBRS) and SSBD fixes for 4.4.y Message-ID: <20180807134934.GA16837@kroah.com> References: <153156030832.10043.13438231886571087086.stgit@srivatsa-ubuntu> <8a87a705-97c0-eb3d-8878-8ffe052f065d@csail.mit.edu> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <8a87a705-97c0-eb3d-8878-8ffe052f065d@csail.mit.edu> Sender: owner-linux-mm@kvack.org List-ID: To: "Srivatsa S. Bhat" Cc: Kees Cook , Jiri Kosina , "# 3.4.x" , Denys Vlasenko , Bo Gan , Konrad Rzeszutek Wilk , Borislav Petkov , Thomas Gleixner , Ricardo Neri , Tom Lendacky , Andi Kleen , linux-tip-commits@vger.kernel.org, Jia Zhang , Josh Poimboeuf , xen-devel , =?utf-8?B?S3LEjW3DocWZ?= , Peter Zijlstra , Andy Lutomirski , Arnaldo Carvalho de Melo , Sherry Hurwitz , LKML , Shuah Khan , Oleg Nesterov , Linus Torvalds , David Woodhouse , KarimAllah Ahmed , Borislav Petkov , Dave Hansen , Dominik Brodowski , Quentin Casasnovas , Joerg Roedel , Alexander Shishkin , Kyle Huey , Will Drewry , Andrey Ryabinin , "H. Peter Anvin" , Brian Gerst , Kristen Carlson Accardi , Thomas Garnier , Andrew Morton , Joe Konno , kvm , Piotr Luc , Boris Ostrovsky , Jan Beulich , Arjan van de Ven , Alexander Kuleshov , Juergen Gross , Ross Zwisler , =?iso-8859-1?Q?J=F6rg?= Otte , Tim Chen , Alexander Sergeyev , Josh Triplett , Alan Cox , Tony Luck , Laura Abbott , Dave Hansen , Ingo Molnar , Mike Galbraith , Rik van Riel , "Kirill A. Shutemov" , Alexey Makhalov , Dave Hansen , ashok.raj@intel.com, Mel Gorman , =?iso-8859-1?Q?Micka=EBlSala=FCn?= , Fenghua Yu , "Matt Helsley (VMware)" , Vince Weaver , Prarit Bhargava , Steven Rostedt , Dan Williams , Jim Mattson , Dave Young , linux-edac , Jon Masters , Andy Lutomirski , Paolo Bonzini , Arnd Bergmann , Linux-MM , Jiri Olsa , "Van De Ven, Arjan" , sironi@amazon.de, Frederic Weisbecker , Kyle Huey , Alexander Popov , Andy Shevchenko , Nadav Amit , Yazen Ghannam , Wanpeng Li , Stephane Eranian , David Woodhouse , srivatsab@vmware.com, srinidhir@vmware.com, khlebnikov@yandex-team.ru, catalin.marinas@arm.com On Fri, Aug 03, 2018 at 04:20:31PM -0700, Srivatsa S. Bhat wrote: > On 8/2/18 3:22 PM, Kees Cook wrote: > > On Thu, Aug 2, 2018 at 12:22 PM, Srivatsa S. Bhat > > wrote: > >> On 7/26/18 4:09 PM, Kees Cook wrote: > >>> On Tue, Jul 24, 2018 at 3:02 PM, Jiri Kosina wrote: > >>>> On Tue, 24 Jul 2018, Srivatsa S. Bhat wrote: > >>>> > >>>>> However, if you are proposing that you'd like to contribute the enhanced > >>>>> PTI/Spectre (upstream) patches from the SLES 4.4 tree to 4.4 stable, and > >>>>> have them merged instead of this patch series, then I would certainly > >>>>> welcome it! > >>>> > >>>> I'd in principle love us to push everything back to 4.4, but there are a > >>>> few reasons (*) why that's not happening shortly. > >>>> > >>>> Anyway, to point out explicitly what's really needed for those folks > >>>> running 4.4-stable and relying on PTI providing The Real Thing(TM), it's > >>>> either a 4.4-stable port of > >>>> > >>>> http://kernel.suse.com/cgit/kernel-source/plain/patches.suse/x86-entry-64-use-a-per-cpu-trampoline-stack.patch?id=3428a77b02b1ba03e45d8fc352ec350429f57fc7 > >>>> > >>>> or making THREADINFO_GFP imply __GFP_ZERO. > >>> > >>> This is true in Linus's tree now. Should be trivial to backport: > >>> https://git.kernel.org/linus/e01e80634ecdd > >>> > >> > >> Hi Jiri, Kees, > >> > >> Thank you for suggesting the patch! I have attached the (locally > >> tested) 4.4 and 4.9 backports of that patch with this mail. (The > >> mainline commit applies cleanly on 4.14). > >> > >> Greg, could you please consider including them in stable 4.4, 4.9 > >> and 4.14? > > > > I don't think your v4.9 is sufficient: it leaves the vmapped stack > > uncleared. v4.9 needs ca182551857 ("kmemleak: clear stale pointers > > from task stacks") included in the backport (really, just adding the > > memset()). > > > > Ah, I see, thank you! I have attached the updated patchset for 4.9 > with this mail. > > > Otherwise, yup, looks good. > > > Thank you for reviewing the patches! > > Regards, > Srivatsa > VMware Photon OS These work for 4.9, do you also have a set for 4.4? thanks, greg k-h