git.baikalelectronics.ru Git - kernel.git/commit

Merge tag 'seccomp-v5.16-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/kees/linux

Pull seccomp updates from Kees Cook:
"These are x86-specific, but I carried these since they're also
  seccomp-specific.

  This flips the defaults for spec_store_bypass_disable and
  spectre_v2_user from "seccomp" to "prctl", as enough time has passed
  to allow system owners to have updated the defensive stances of their
  various workloads, and it's long overdue to unpessimize seccomp
  threads.

  Extensive rationale and details are in Andrea's main patch.

  Summary:

   - set spec_store_bypass_disable & spectre_v2_user to prctl (Andrea Arcangeli)"

* tag 'seccomp-v5.16-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/kees/linux:
  x86: deduplicate the spectre_v2_user documentation
  x86: change default to spec_store_bypass_disable=prctl spectre_v2_user=prctl

author	Linus Torvalds <torvalds@linux-foundation.org>
	Tue, 2 Nov 2021 00:25:09 +0000 (17:25 -0700)
committer	Linus Torvalds <torvalds@linux-foundation.org>
	Tue, 2 Nov 2021 00:25:09 +0000 (17:25 -0700)
commit	cdb3bb4104dce20ae6795efa60647d76d5c7779b
tree	c8e29819f14df30cb062daf996fbea02610599c3	tree \| snapshot
parent	0d5207c2ff76673d15c9c266bc5aa0ad0adeb1bc	commit \| diff
parent	98a52a7de6e9ba725643da53440ccd52de6290ed	commit \| diff

Documentation/admin-guide/kernel-parameters.txt	diff1 \|	diff2 \|	blob \| history
arch/x86/kernel/cpu/bugs.c	diff1 \|	diff2 \|	blob \| history