git.baikalelectronics.ru Git - kernel.git/commit

Merge tag 'seccomp-v5.16-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/kees/linux

Pull seccomp updates from Kees Cook:
"These are x86-specific, but I carried these since they're also
  seccomp-specific.

  This flips the defaults for spec_store_bypass_disable and
  spectre_v2_user from "seccomp" to "prctl", as enough time has passed
  to allow system owners to have updated the defensive stances of their
  various workloads, and it's long overdue to unpessimize seccomp
  threads.

  Extensive rationale and details are in Andrea's main patch.

  Summary:

   - set spec_store_bypass_disable & spectre_v2_user to prctl (Andrea Arcangeli)"

* tag 'seccomp-v5.16-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/kees/linux:
  x86: deduplicate the spectre_v2_user documentation
  x86: change default to spec_store_bypass_disable=prctl spectre_v2_user=prctl

author	Linus Torvalds <torvalds@linux-foundation.org>
	Tue, 2 Nov 2021 00:25:09 +0000 (17:25 -0700)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Tue, 2 Nov 2021 00:25:09 +0000 (17:25 -0700)
commit	89bc2e5d1d74536aa4ab3d4fd1a68490c1e3182b
tree	c8e29819f14df30cb062daf996fbea02610599c3	tree \| snapshot
parent	72171834d0ecf7ced8f91ed433378d4ec9391ac7	commit \| diff
parent	d26aec98522ed3a4b565d2a5d611a877627b9c9d	commit \| diff

Documentation/admin-guide/kernel-parameters.txt	diff1 \|	diff2 \|	blob \| history
arch/x86/kernel/cpu/bugs.c	diff1 \|	diff2 \|	blob \| history