lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <20250325161653.GAZ-LW9WpsQrJgWx16@fat_crate.local>
Date: Tue, 25 Mar 2025 17:16:53 +0100
From: Borislav Petkov <bp@...en8.de>
To: Linus Torvalds <torvalds@...ux-foundation.org>
Cc: x86-ml <x86@...nel.org>, lkml <linux-kernel@...r.kernel.org>
Subject: [GIT PULL] x86/bugs for v6.15

Hi Linus,

please pull the x86 spec mitigations updates for v6.15.

Thx.

---

The following changes since commit d082ecbc71e9e0bf49883ee4afd435a77a5101b6:

  Linux 6.14-rc4 (2025-02-23 12:32:57 -0800)

are available in the Git repository at:

  git://git.kernel.org/pub/scm/linux/kernel/git/tip/tip tags/x86_bugs_for_v6.15

for you to fetch changes up to 98fdaeb296f51ef08e727a7cc72e5b5c864c4f4d:

  x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2 (2025-03-03 12:48:41 +0100)

----------------------------------------------------------------
- Some preparatory work to convert the mitigations machinery to mitigating
  attack vectors instead of single vulnerabilities

- Untangle and remove a now unneeded X86_FEATURE_USE_IBPB flag

- Add support for a Zen5-specific SRSO mitigation

- Cleanups and minor improvements

----------------------------------------------------------------
Borislav Petkov (1):
      x86/bugs: KVM: Add support for SRSO_MSR_FIX

Breno Leitao (2):
      x86/bugs: Use the cpu_smt_possible() helper instead of open-coded code
      x86/bugs: Make spectre user default depend on MITIGATION_SPECTRE_V2

David Kaplan (3):
      x86/bugs: Add X86_BUG_SPECTRE_V2_USER
      x86/bugs: Relocate mds/taa/mmio/rfds defines
      x86/bugs: Add AUTO mitigations for mds/taa/mmio/rfds

Yosry Ahmed (6):
      x86/bugs: Move the X86_FEATURE_USE_IBPB check into callers
      x86/mm: Remove X86_FEATURE_USE_IBPB checks in cond_mitigation()
      x86/bugs: Remove the X86_FEATURE_USE_IBPB check in ib_prctl_set()
      x86/bugs: Use a static branch to guard IBPB on vCPU switch
      KVM: nVMX: Always use IBPB to properly virtualize IBRS
      x86/bugs: Remove X86_FEATURE_USE_IBPB

 Documentation/admin-guide/hw-vuln/srso.rst      |  13 +++
 Documentation/admin-guide/kernel-parameters.txt |   2 +
 arch/x86/include/asm/cpufeatures.h              |   6 +-
 arch/x86/include/asm/msr-index.h                |   1 +
 arch/x86/include/asm/nospec-branch.h            |   4 +-
 arch/x86/include/asm/processor.h                |   1 +
 arch/x86/kernel/cpu/bugs.c                      | 121 +++++++++++++++---------
 arch/x86/kernel/cpu/common.c                    |   4 +-
 arch/x86/kvm/svm/svm.c                          |   9 +-
 arch/x86/kvm/vmx/vmx.c                          |   3 +-
 arch/x86/lib/msr.c                              |   2 +
 arch/x86/mm/tlb.c                               |   3 +-
 tools/arch/x86/include/asm/cpufeatures.h        |   1 -
 13 files changed, 118 insertions(+), 52 deletions(-)


-- 
Regards/Gruss,
    Boris.

https://people.kernel.org/tglx/notes-about-netiquette

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ