iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/arch
History
Pawan Gupta cf1c01a5e4 x86/speculation/srbds: Update SRBDS mitigation selection 
commit 22cac9c677c95f3ac5c9244f8ca0afdc7c8afb19 upstream

Currently, Linux disables SRBDS mitigation on CPUs not affected by
MDS and have the TSX feature disabled. On such CPUs, secrets cannot
be extracted from CPU fill buffers using MDS or TAA. Without SRBDS
mitigation, Processor MMIO Stale Data vulnerabilities can be used to
extract RDRAND, RDSEED, and EGETKEY data.

Do not disable SRBDS mitigation by default when CPU is also affected by
Processor MMIO Stale Data vulnerabilities.

Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Borislav Petkov <bp@suse.de>
Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2022-06-16 13:27:59 +02:00
..
alpha
alpha: define get_cycles macro for arch-override
2022-05-30 09:33:40 +02:00
arc
ARC: entry: fix syscall_trace_exit argument
2022-04-27 13:53:55 +02:00
arm
ARM: pxa: maybe fix gpio lookup tables
2022-06-09 10:21:28 +02:00
arm64
bpf, arm64: Clear prog->jited_len along prog->jited
2022-06-14 18:32:40 +02:00
c6x
csky
csky: patch_text: Fixup last cpu should be master
2022-06-09 10:21:26 +02:00
h8300
h8300: fix PREEMPTION build, TI_PRE_COUNT undefined
2021-02-17 11:02:28 +01:00
hexagon
hexagon: clean up timer-regs.h
2021-11-26 10:39:19 +01:00
ia64
ia64: define get_cycles macro for arch-override
2022-05-30 09:33:40 +02:00
m68k
m68knommu: fix undefined reference to `_init_sp'
2022-06-14 18:32:38 +02:00
microblaze
uaccess: fix nios2 and microblaze get_user_8()
2022-04-08 14:40:08 +02:00
mips
mips: cpc: Fix refcount leak in mips_cpc_default_phys_base
2022-06-14 18:32:37 +02:00
nds32
nds32: fix access_ok() checks in get/put_user
2022-03-28 09:57:10 +02:00
nios2
nios2: use fallback for random_get_entropy() instead of zero
2022-05-30 09:33:41 +02:00
openrisc
openrisc: start CPU timer early in boot
2022-06-09 10:20:55 +02:00
parisc
parisc/stifb: Implement fb_is_primary_device()
2022-06-09 10:20:47 +02:00
powerpc
powerpc/mm: Switch obsolete dssall to .long
2022-06-14 18:32:46 +02:00
riscv
riscv: read-only pages should not be writable
2022-06-14 18:32:36 +02:00
s390
s390/gmap: voluntarily schedule during key setting
2022-06-14 18:32:44 +02:00
sh
sh: define __BIG_ENDIAN for math-emu
2021-11-26 10:39:12 +01:00
sparc
sparc: use fallback for random_get_entropy() instead of zero
2022-05-30 09:33:42 +02:00
um
um: chan_user: Fix winch_tramp() return value
2022-06-09 10:21:26 +02:00
x86
x86/speculation/srbds: Update SRBDS mitigation selection
2022-06-16 13:27:59 +02:00
xtensa
xtensa/simdisk: fix proc_read_simdisk()
2022-06-09 10:21:27 +02:00
.gitignore
Kconfig
arch/cc: Introduce a function to check for confidential computing features
2021-11-18 14:04:32 +01:00