Re: [PATCH v2 1/6] x86/speculation: Update Speculation Control microcode blacklist

[David Woodhouse]

On Sat, 2018-02-10 at 23:39 +0000, David Woodhouse wrote:
> 
> --- a/arch/x86/kernel/cpu/intel.c
> +++ b/arch/x86/kernel/cpu/intel.c
> @@ -123,8 +123,6 @@ static const struct sku_microcode
> spectre_bad_microcodes[] = {
> ÂÂÂÂÂÂÂÂ{ INTEL_FAM6_KABYLAKE_MOBILE,ÂÂÂ0x09,ÂÂÂ0x84 },
> ÂÂÂÂÂÂÂÂ{ INTEL_FAM6_SKYLAKE_X,ÂÂÂÂÂÂÂÂÂ0x03,ÂÂÂ0x0100013e },
> ÂÂÂÂÂÂÂÂ{ INTEL_FAM6_SKYLAKE_X,ÂÂÂÂÂÂÂÂÂ0x04,ÂÂÂ0x0200003c },
> -ÂÂÂÂÂÂÂ{ INTEL_FAM6_SKYLAKE_MOBILE,ÂÂÂÂ0x03,ÂÂÂ0xc2 },
> -ÂÂÂÂÂÂÂ{ INTEL_FAM6_SKYLAKE_DESKTOP,ÂÂÂ0x03,ÂÂÂ0xc2 },
> ÂÂÂÂÂÂÂÂ{ INTEL_FAM6_BROADWELL_CORE,ÂÂÂÂ0x04,ÂÂÂ0x28 },
> ÂÂÂÂÂÂÂÂ{ INTEL_FAM6_BROADWELL_GT3E,ÂÂÂÂ0x01,ÂÂÂ0x1b },
> ÂÂÂÂÂÂÂÂ{ INTEL_FAM6_BROADWELL_XEON_D,ÂÂ0x02,ÂÂÂ0x14 },

Arjan points out that the SKYLAKE_DESKTOP one there is premature. There
are *two* rows in Intel's table which match that CPUID (506E3).

Only *one* of them ("Skylake H/S") has cleared the 0xC2 microcode for
use, while the "Skylake E3" line still doesn't approve it. (But doesn't
explicitly list it in the "STOP deploying" column any more either,
which it probably should, and might have helped me notice.)

Ingo, Thomas: do you want to drop this patch which is already in
tip/x86/pti and have a new version with the SKYLAKE_DESKTOP no longer
removed? Or shall I send an incremental patch to add it back?

Attachment: smime.p7s
Description: S/MIME cryptographic signature