review.tizen.org Git - platform/kernel/linux-rpi.git/commit

author	Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
	Thu, 10 Mar 2022 22:02:09 +0000 (14:02 -0800)
committer	Borislav Petkov <bp@suse.de>
	Mon, 11 Apr 2022 07:58:40 +0000 (09:58 +0200)
commit	400331f8ffa3bec5c561417e5eec6848464e9160
tree	a13d7ac52030156c867f812614e3ccf75b5c6ea5	tree \| snapshot
parent	258f3b8c3210b03386e4ad92b4bd8652b5c1beb3	commit \| diff

x86/tsx: Disable TSX development mode at boot

A microcode update on some Intel processors causes all TSX transactions
to always abort by default[*]. Microcode also added functionality to
re-enable TSX for development purposes. With this microcode loaded, if
tsx=on was passed on the cmdline, and TSX development mode was already
enabled before the kernel boot, it may make the system vulnerable to TSX
Asynchronous Abort (TAA).

To be on safer side, unconditionally disable TSX development mode during
boot. If a viable use case appears, this can be revisited later.

[*]: Intel TSX Disable Update for Selected Processors, doc ID: 643557

[ bp: Drop unstable web link, massage heavily. ]

Suggested-by: Andrew Cooper <andrew.cooper3@citrix.com>
Suggested-by: Borislav Petkov <bp@alien8.de>
Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Borislav Petkov <bp@suse.de>
Tested-by: Neelima Krishnan <neelima.krishnan@intel.com>
Cc: <stable@vger.kernel.org>
Link: https://lore.kernel.org/r/347bd844da3a333a9793c6687d4e4eb3b2419a3e.1646943780.git.pawan.kumar.gupta@linux.intel.com

arch/x86/include/asm/msr-index.h		diff \| blob \| history
arch/x86/kernel/cpu/common.c		diff \| blob \| history
arch/x86/kernel/cpu/cpu.h		diff \| blob \| history
arch/x86/kernel/cpu/intel.c		diff \| blob \| history
arch/x86/kernel/cpu/tsx.c		diff \| blob \| history
tools/arch/x86/include/asm/msr-index.h		diff \| blob \| history