Re: [PATCH v4 10/11] x86/bugs: Remove GDS Force Kconfig option

From: Daniel Sneddon
Date: Mon Jul 29 2024 - 13:09:29 EST


On 7/29/24 09:40, Breno Leitao wrote:
> Remove the MITIGATION_GDS_FORCE Kconfig option, which aggressively disables
> AVX as a mitigation for Gather Data Sampling (GDS) vulnerabilities. This
> option is not widely used by distros.
>
> While removing the Kconfig option, retain the runtime configuration
> ability through the `gather_data_sampling=force` kernel parameter. This
> allows users to still enable this aggressive mitigation if needed,
> without baking it into the kernel configuration.
>
> This change simplifies the kernel configuration while maintaining
> flexibility for runtime mitigation choices.
>
> Cc: Daniel Sneddon <daniel.sneddon@xxxxxxxxxxxxxxx>
> Suggested-by: Borislav Petkov <bp@xxxxxxxxx>
> Signed-off-by: Breno Leitao <leitao@xxxxxxxxxx>

LGTM. Feel free to add a Reviewed-by from me.