Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature

From: Andrea Arcangeli
Date: Thu Jan 04 2018 - 13:57:20 EST

Next message: Dave Hansen: "Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
Previous message: Borislav Petkov: "Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
In reply to: Borislav Petkov: "Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
Next in thread: Dave Hansen: "Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jan 04, 2018 at 07:52:19PM +0100, Borislav Petkov wrote:
> So why not "IBRS always" or off? No need for the "IBRS only in the
> kernel" setting.

Because it's slower (or much slower depending on how much stuff the
microcode has to disable in the CPU to provide IBSR) and you only need
that kind of protection in kernel if you've PTI enabled already.

ibrs 1 (not 2) is the current default because of that.

Next message: Dave Hansen: "Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
Previous message: Borislav Petkov: "Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
In reply to: Borislav Petkov: "Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
Next in thread: Dave Hansen: "Re: [PATCH 6/7] x86/spec_ctrl: Add sysctl knobs to enable/disable SPEC_CTRL feature"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]