Re: [PATCH v4 10/11] x86/bugs: Remove GDS Force Kconfig option

From: Daniel Sneddon
Date: Mon Jul 29 2024 - 13:09:29 EST

Next message: Junio C Hamano: "[ANNOUNCE] Git v2.46.0"
Previous message: Jason A. Donenfeld: "[PATCH] selftests/vDSO: don't #include sodium header in chacha test"
In reply to: Breno Leitao: "[PATCH v4 10/11] x86/bugs: Remove GDS Force Kconfig option"
Next in thread: tip-bot2 for Breno Leitao: "[tip: x86/bugs] x86/bugs: Remove GDS Force Kconfig option"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 7/29/24 09:40, Breno Leitao wrote:
> Remove the MITIGATION_GDS_FORCE Kconfig option, which aggressively disables
> AVX as a mitigation for Gather Data Sampling (GDS) vulnerabilities. This
> option is not widely used by distros.
>
> While removing the Kconfig option, retain the runtime configuration
> ability through the `gather_data_sampling=force` kernel parameter. This
> allows users to still enable this aggressive mitigation if needed,
> without baking it into the kernel configuration.
>
> This change simplifies the kernel configuration while maintaining
> flexibility for runtime mitigation choices.
>
> Cc: Daniel Sneddon <daniel.sneddon@xxxxxxxxxxxxxxx>
> Suggested-by: Borislav Petkov <bp@xxxxxxxxx>
> Signed-off-by: Breno Leitao <leitao@xxxxxxxxxx>

LGTM. Feel free to add a Reviewed-by from me.

Next message: Junio C Hamano: "[ANNOUNCE] Git v2.46.0"
Previous message: Jason A. Donenfeld: "[PATCH] selftests/vDSO: don't #include sodium header in chacha test"
In reply to: Breno Leitao: "[PATCH v4 10/11] x86/bugs: Remove GDS Force Kconfig option"
Next in thread: tip-bot2 for Breno Leitao: "[tip: x86/bugs] x86/bugs: Remove GDS Force Kconfig option"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]