git.baikalelectronics.ru Git - kernel.git/commit

x86/tsx: Disable TSX development mode at boot

commit a484a14fae00b00a2af7cfe3a817e0f57ca0e946 upstream.

A microcode update on some Intel processors causes all TSX transactions
to always abort by default[*]. Microcode also added functionality to
re-enable TSX for development purposes. With this microcode loaded, if
tsx=on was passed on the cmdline, and TSX development mode was already
enabled before the kernel boot, it may make the system vulnerable to TSX
Asynchronous Abort (TAA).

To be on safer side, unconditionally disable TSX development mode during
boot. If a viable use case appears, this can be revisited later.

[*]: Intel TSX Disable Update for Selected Processors, doc ID: 643557

[ bp: Drop unstable web link, massage heavily. ]

Suggested-by: Andrew Cooper <andrew.cooper3@citrix.com>
Suggested-by: Borislav Petkov <bp@alien8.de>
Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Borislav Petkov <bp@suse.de>
Tested-by: Neelima Krishnan <neelima.krishnan@intel.com>
Cc: <stable@vger.kernel.org>
Link: https://lore.kernel.org/r/347bd844da3a333a9793c6687d4e4eb3b2419a3e.1646943780.git.pawan.kumar.gupta@linux.intel.com
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

author	Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
	Thu, 10 Mar 2022 22:02:09 +0000 (14:02 -0800)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Wed, 20 Apr 2022 07:34:20 +0000 (09:34 +0200)
commit	3f4fc769d72d2b3096ab1a0eead9897acc76ad54
tree	44426a4cb6e003b4029ec4f574b635e73e963422	tree \| snapshot
parent	78137cdd998c86b02251fc92ade1a9a9854275c1	commit \| diff

arch/x86/include/asm/msr-index.h		diff \| blob \| history
arch/x86/kernel/cpu/common.c		diff \| blob \| history
arch/x86/kernel/cpu/cpu.h		diff \| blob \| history
arch/x86/kernel/cpu/intel.c		diff \| blob \| history
arch/x86/kernel/cpu/tsx.c		diff \| blob \| history
tools/arch/x86/include/asm/msr-index.h		diff \| blob \| history