From: Steven Price <steven.price@arm.com>
To: Josh Poimboeuf <jpoimboe@redhat.com>, linux-kernel@vger.kernel.org
Cc: Peter Zijlstra <peterz@infradead.org>,
Benjamin Herrenschmidt <benh@kernel.crashing.org>,
Heiko Carstens <heiko.carstens@de.ibm.com>,
Paul Mackerras <paulus@samba.org>,
"H . Peter Anvin" <hpa@zytor.com>, Ingo Molnar <mingo@kernel.org>,
Andrea Arcangeli <aarcange@redhat.com>,
linux-s390@vger.kernel.org, Michael Ellerman <mpe@ellerman.id.au>,
x86@kernel.org, Will Deacon <will.deacon@arm.com>,
Linus Torvalds <torvalds@linux-foundation.org>,
Catalin Marinas <catalin.marinas@arm.com>,
Waiman Long <longman@redhat.com>,
linux-arch@vger.kernel.org, Jon Masters <jcm@redhat.com>,
Jiri Kosina <jikos@kernel.org>, Borislav Petkov <bp@alien8.de>,
Andy Lutomirski <luto@kernel.org>,
Thomas Gleixner <tglx@linutronix.de>,
linux-arm-kernel@lists.infradead.org,
Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
Tyler Hicks <tyhicks@canonical.com>,
Martin Schwidefsky <schwidefsky@de.ibm.com>,
linuxppc-dev@lists.ozlabs.org
Subject: Re: [PATCH RFC 5/5] arm64/speculation: Add support for 'cpu_spec_mitigations=' cmdline options
Date: Fri, 5 Apr 2019 15:39:58 +0100 [thread overview]
Message-ID: <be6ba8fe-b261-668a-05b9-7fa937ae650a@arm.com> (raw)
Message-ID: <20190405143958.68mhX8hptXUHk3hwMQ9WfDPhB-0ONhSHKqYsnMrEJjs@z> (raw)
In-Reply-To: <5f70df57b19bbccc4a0d5d76134b4681c9a50b0b.1554396090.git.jpoimboe@redhat.com>
On 04/04/2019 17:44, Josh Poimboeuf wrote:
> Configure arm64 runtime CPU speculation bug mitigations in accordance
> with the 'cpu_spec_mitigations=' cmdline options. This affects
> Meltdown and Speculative Store Bypass.
>
> The default behavior is unchanged.
>
> Signed-off-by: Josh Poimboeuf <jpoimboe@redhat.com>
> ---
> Documentation/admin-guide/kernel-parameters.txt | 2 ++
> arch/arm64/kernel/cpu_errata.c | 4 ++++
> arch/arm64/kernel/cpufeature.c | 6 ++++++
> 3 files changed, 12 insertions(+)
>
> diff --git a/Documentation/admin-guide/kernel-parameters.txt b/Documentation/admin-guide/kernel-parameters.txt
> index e838af96daa4..0b54385ee7a8 100644
> --- a/Documentation/admin-guide/kernel-parameters.txt
> +++ b/Documentation/admin-guide/kernel-parameters.txt
> @@ -2553,11 +2553,13 @@
> off
> Disable all speculative CPU mitigations.
> Equivalent to: nopti [x86, powerpc]
> + kpti=0 [arm64]
> nospectre_v1 [powerpc]
> nospectre_v2 [x86, powerpc, s390]
> spectre_v2_user=off [x86]
> nobp=0 [s390]
> spec_store_bypass_disable=off [x86, powerpc]
> + ssbd=force-off [arm64]
> l1tf=off [x86]
>
> auto (default)
> diff --git a/arch/arm64/kernel/cpu_errata.c b/arch/arm64/kernel/cpu_errata.c
> index 9950bb0cbd52..db8d27e3fb1c 100644
> --- a/arch/arm64/kernel/cpu_errata.c
> +++ b/arch/arm64/kernel/cpu_errata.c
> @@ -19,6 +19,7 @@
> #include <linux/arm-smccc.h>
> #include <linux/psci.h>
> #include <linux/types.h>
> +#include <linux/cpu.h>
> #include <asm/cpu.h>
> #include <asm/cputype.h>
> #include <asm/cpufeature.h>
> @@ -385,6 +386,9 @@ static bool has_ssbd_mitigation(const struct arm64_cpu_capabilities *entry,
> return false;
> }
>
> + if (cpu_spec_mitigations == CPU_SPEC_MITIGATIONS_OFF)
> + ssbd_state = ARM64_SSBD_FORCE_DISABLE;
> +
> switch (psci_ops.conduit) {
> case PSCI_CONDUIT_HVC:
> arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID,
> diff --git a/arch/arm64/kernel/cpufeature.c b/arch/arm64/kernel/cpufeature.c
> index 4061de10cea6..4512b582d50f 100644
> --- a/arch/arm64/kernel/cpufeature.c
> +++ b/arch/arm64/kernel/cpufeature.c
> @@ -25,6 +25,7 @@
> #include <linux/stop_machine.h>
> #include <linux/types.h>
> #include <linux/mm.h>
> +#include <linux/cpu.h>
> #include <asm/cpu.h>
> #include <asm/cpufeature.h>
> #include <asm/cpu_ops.h>
> @@ -978,6 +979,11 @@ static bool unmap_kernel_at_el0(const struct arm64_cpu_capabilities *entry,
> __kpti_forced = -1;
> }
>
> + if (cpu_spec_mitigations == CPU_SPEC_MITIGATIONS_OFF) {
> + str = "cpu_spec_mitigations=off";
Might also be worth changing the initialisation of str, currently it is:
> char const *str = "command line option";
But now we have two command line options, perhaps "kpti command line
option".
Steve
> + __kpti_forced = -1;
> + }
> +
> /* Forced? */
> if (__kpti_forced) {
> pr_info_once("kernel page table isolation forced %s by %s\n",
>
next prev parent reply other threads:[~2019-04-05 14:39 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <20190404164410.FyWPYQnV_AC5qVM5C3Jcx1ysIg_8piJ6yY46gIDHjZU@z>
2019-04-04 16:44 ` [PATCH RFC 0/5] cpu/speculation: Add 'cpu_spec_mitigations=' cmdline options Josh Poimboeuf
[not found] ` <20190404164411.Gy3S4HmcWfyKhBREvXHY5FPLSwAUc9Z1y2KsB07Pmm4@z>
2019-04-04 16:44 ` [PATCH RFC 1/5] " Josh Poimboeuf
[not found] ` <20190404164908.r4AYeBs3-dkedAjA4YfFz402EZXqM30A9pdq22wsHN4@z>
2019-04-04 16:49 ` Josh Poimboeuf
[not found] ` <20190405131211.Q2NjuOAdnJlvlrA0AG2RZhInDwko2zhWKJScqKXcYKQ@z>
2019-04-05 13:12 ` Borislav Petkov
[not found] ` <20190405142048.qJvWe7mR5XJIzpc5altU1UI3DVF6Fm9Yjvd8BKsNEy4@z>
2019-04-05 14:20 ` Josh Poimboeuf
[not found] ` <20190405152059.08_dCkDXzn8b5SW1QVcJq5DyPHq85ZVw5ngPousboME@z>
2019-04-05 15:20 ` Borislav Petkov
[not found] ` <20190405160136.4tt7RfRZIEc9AAQ_k2zJ0AX2Oh1p-cAAYSJuQZnqAA0@z>
2019-04-05 16:01 ` Borislav Petkov
2019-04-05 16:18 ` Josh Poimboeuf
2019-04-10 5:48 ` Michael Ellerman
2019-04-10 8:30 ` Borislav Petkov
2019-04-10 12:10 ` Thomas Gleixner
2019-04-11 13:15 ` Josh Poimboeuf
2019-04-12 2:41 ` Michael Ellerman
2019-04-12 2:29 ` Michael Ellerman
[not found] ` <20190404164412.goQjNbtLtNK5Xhety5Y2SrWdf5jOoB1EZ0aqJLJdxHw@z>
2019-04-04 16:44 ` [PATCH RFC 2/5] x86/speculation: Add support for " Josh Poimboeuf
[not found] ` <20190405135712.h8C5NFnWFSMYwkqvOodZqwvUhkB0wm8DZ17FpWjVXoY@z>
2019-04-05 13:57 ` Borislav Petkov
[not found] ` <20190405143101.ehopmxN-UUs4udfFq_s3rur7f147JR8sKQYe2BlTfXQ@z>
2019-04-05 14:31 ` Josh Poimboeuf
[not found] ` <20190405152650.DqBCc8B5pVR8hG3DaAapjrpOZ6Bf20rzQgqS0JGbMCs@z>
2019-04-05 15:26 ` Borislav Petkov
2019-04-05 16:05 ` Josh Poimboeuf
[not found] ` <20190405151809.loO3BRPkxdSIbjhaOkHcgSzX7AEXml11-UID3nahj9s@z>
2019-04-05 15:18 ` Randy Dunlap
[not found] ` <20190405153048.O_Br143nVxVMU9csW4aOtbQpM08-f4KvQ02DvzZx_s8@z>
2019-04-05 15:30 ` Josh Poimboeuf
[not found] ` <20190404164413.IgIvLuMu4GLkDdvSHFyBaGh9dXrNjMsr8AmhWG65Rf0@z>
2019-04-04 16:44 ` [PATCH RFC 3/5] powerpc/speculation: " Josh Poimboeuf
[not found] ` <20190404194905.qR9T-btAf0BVt0YfG6H0h19JLAE1AXADvXFhopuL0f4@z>
2019-04-04 19:49 ` Jiri Kosina
[not found] ` <20190404200104.INe2nbO9Bg__dm-H_nSr2d4XkjWKVig0XnWHSYky-mk@z>
2019-04-04 20:01 ` Timothy Pearson
2019-04-10 6:06 ` Michael Ellerman
2019-04-11 4:02 ` Josh Poimboeuf
[not found] ` <20190404164414.cktiJTWLfAEnxNs2wsW9YNTw8sV7S6dkTOl6n1bXI5U@z>
2019-04-04 16:44 ` [PATCH RFC 4/5] s390/speculation: " Josh Poimboeuf
[not found] ` <20190404164415.7sB56buW6sV8GzaJvfyTl6CefUF2WNywA7izu14xWn8@z>
2019-04-04 16:44 ` [PATCH RFC 5/5] arm64/speculation: " Josh Poimboeuf
[not found] ` <20190405143958.68mhX8hptXUHk3hwMQ9WfDPhB-0ONhSHKqYsnMrEJjs@z>
2019-04-05 14:39 ` Steven Price [this message]
[not found] ` <20190405144356.9p1BhXsIjOJE5oKY8oqxUMAecWPbYA158YjKfCNCYAk@z>
2019-04-05 14:43 ` Josh Poimboeuf
[not found] ` <20190405144414.nk-UumeN0sm2XyB05ZZDspKvSwX8qAkPSsQ9oDw_tKQ@z>
2019-04-05 14:44 ` Will Deacon
2019-04-05 16:03 ` Josh Poimboeuf
[not found] ` <20190404165054.iJV6ETT60vreD-Rl1FsxCk4pKUcybxmjvQFzn5MlZDs@z>
2019-04-04 16:50 ` [PATCH RFC 0/5] cpu/speculation: Add " Waiman Long
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=be6ba8fe-b261-668a-05b9-7fa937ae650a@arm.com \
--to=steven.price@arm.com \
--cc=aarcange@redhat.com \
--cc=benh@kernel.crashing.org \
--cc=bp@alien8.de \
--cc=catalin.marinas@arm.com \
--cc=gregkh@linuxfoundation.org \
--cc=heiko.carstens@de.ibm.com \
--cc=hpa@zytor.com \
--cc=jcm@redhat.com \
--cc=jikos@kernel.org \
--cc=jpoimboe@redhat.com \
--cc=linux-arch@vger.kernel.org \
--cc=linux-arm-kernel@lists.infradead.org \
--cc=linux-kernel@vger.kernel.org \
--cc=linux-s390@vger.kernel.org \
--cc=linuxppc-dev@lists.ozlabs.org \
--cc=longman@redhat.com \
--cc=luto@kernel.org \
--cc=mingo@kernel.org \
--cc=mpe@ellerman.id.au \
--cc=paulus@samba.org \
--cc=peterz@infradead.org \
--cc=schwidefsky@de.ibm.com \
--cc=tglx@linutronix.de \
--cc=torvalds@linux-foundation.org \
--cc=tyhicks@canonical.com \
--cc=will.deacon@arm.com \
--cc=x86@kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox