From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <stable-owner@vger.kernel.org>
Received: from mga06.intel.com ([134.134.136.31]:4805 "EHLO mga06.intel.com"
        rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP
        id S1725903AbeKUL0e (ORCPT <rfc822;stable@vger.kernel.org>);
        Wed, 21 Nov 2018 06:26:34 -0500
Subject: Re: [Patch v6 12/16] x86/speculation: Add 'seccomp' Spectre v2 app to
 app protection mode
To: Jiri Kosina <jikos@kernel.org>
Cc: Thomas Gleixner <tglx@linutronix.de>,
        Linus Torvalds <torvalds@linux-foundation.org>,
        Tom Lendacky <thomas.lendacky@amd.com>,
        Ingo Molnar <mingo@redhat.com>,
        Peter Zijlstra <peterz@infradead.org>,
        Josh Poimboeuf <jpoimboe@redhat.com>,
        Andrea Arcangeli <aarcange@redhat.com>,
        David Woodhouse <dwmw@amazon.co.uk>,
        Andi Kleen <ak@linux.intel.com>,
        Dave Hansen <dave.hansen@intel.com>,
        Casey Schaufler <casey.schaufler@intel.com>,
        Asit Mallick <asit.k.mallick@intel.com>,
        Arjan van de Ven <arjan@linux.intel.com>,
        Jon Masters <jcm@redhat.com>,
        Waiman Long <longman9394@gmail.com>,
        Greg KH <gregkh@linuxfoundation.org>,
        Dave Stewart <david.c.stewart@intel.com>,
        linux-kernel@vger.kernel.org, x86@kernel.org,
        stable@vger.kernel.org
References: <cover.1542757030.git.tim.c.chen@linux.intel.com>
 <fc2524a59454509f505e120b0b63d60efcadfc98.1542757030.git.tim.c.chen@linux.intel.com>
 <nycvar.YFH.7.76.1811210142540.21108@cbobk.fhfr.pm>
From: Tim Chen <tim.c.chen@linux.intel.com>
Message-ID: <79be3a64-9f25-a1e2-6926-baea677ccdb6@linux.intel.com>
Date: Tue, 20 Nov 2018 16:54:32 -0800
MIME-Version: 1.0
In-Reply-To: <nycvar.YFH.7.76.1811210142540.21108@cbobk.fhfr.pm>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Sender: stable-owner@vger.kernel.org
List-ID: <stable.vger.kernel.org>

On 11/20/2018 04:44 PM, Jiri Kosina wrote:
> On Tue, 20 Nov 2018, Tim Chen wrote:
> 
>> diff --git a/Documentation/admin-guide/kernel-parameters.txt b/Documentation/admin-guide/kernel-parameters.txt
>> index d2255f7..89b193c 100644
>> --- a/Documentation/admin-guide/kernel-parameters.txt
>> +++ b/Documentation/admin-guide/kernel-parameters.txt
>> @@ -4227,12 +4227,17 @@
>>  				  and STIBP mitigations against Spectre V2 attacks.
>>  				  If the CPU is not vulnerable, "off" is selected.
>>  				  If the CPU is vulnerable, the default mitigation
>> -				  is "prctl".
>> +				  is architecture and Kconfig dependent. See below.
>>  			prctl   - Enable mitigations per thread by restricting
>>  				  indirect branch speculation via prctl.
>>  				  Mitigation for a thread is not enabled by default to
>>  				  avoid mitigation overhead. The state of
>>  				  of the control is inherited on fork.
>> +			seccomp - Same as "prctl" above, but all seccomp threads
>> +				  will disable SSB unless they explicitly opt out.
> 
> As Dave already pointed out elsewhere -- the "SSB" here is probably a 
> copy/paste error. It should read something along the lines of "... will 
> restrict indirect branch speculation ..."
> 

Thanks.  Should have caught it.

Tim