www.infradead.org Git - users/hch/misc.git/commit

author	Yosry Ahmed <yosry.ahmed@linux.dev>
	Thu, 27 Feb 2025 01:27:10 +0000 (01:27 +0000)
committer	Ingo Molnar <mingo@kernel.org>
	Thu, 27 Feb 2025 09:57:20 +0000 (10:57 +0100)
commit	80dacb080461edfc1d854721ee6933a4cfa3b602
tree	4479b3c8bf6184f2c4a28ba5efa09b262c021a05	tree
parent	bd9a8542ceccce1b1d5d5fd5e47be57fe42f9bb9	commit \| diff

x86/bugs: Use a static branch to guard IBPB on vCPU switch

Instead of using X86_FEATURE_USE_IBPB to guard the IBPB execution in KVM
when a new vCPU is loaded, introduce a static branch, similar to
switch_mm_*_ibpb.

This makes it obvious in spectre_v2_user_select_mitigation() what
exactly is being toggled, instead of the unclear X86_FEATURE_USE_IBPB
(which will be shortly removed). It also provides more fine-grained
control, making it simpler to change/add paths that control the IBPB in
the vCPU switch path without affecting other IBPBs.

Signed-off-by: Yosry Ahmed <yosry.ahmed@linux.dev>
Signed-off-by: Ingo Molnar <mingo@kernel.org>
Acked-by: Josh Poimboeuf <jpoimboe@kernel.org>
Acked-by: Sean Christopherson <seanjc@google.com>
Link: https://lore.kernel.org/r/20250227012712.3193063-5-yosry.ahmed@linux.dev

arch/x86/include/asm/nospec-branch.h		diff \| blob \| history
arch/x86/kernel/cpu/bugs.c		diff \| blob \| history
arch/x86/kvm/svm/svm.c		diff \| blob \| history
arch/x86/kvm/vmx/vmx.c		diff \| blob \| history