x86/speculation/mds: Clear CPU buffers on exit to user

commit 04dcbdb8057827b043b3c71aa397c4c63e67d086 upstream Add a static key which controls the invocation of the CPU buffer clear mechanism on exit to user space and add the call into prepare_exit_to_usermode() and do_nmi() right before actually returning. Add documentation which kernel to user space transition this covers and explain why some corner cases are not mitigated. Signed-off-by: Thomas Gleixner <tglx@linutronix.de> Reviewed-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Reviewed-by: Borislav Petkov <bp@suse.de> Reviewed-by: Frederic Weisbecker <frederic@kernel.org> Reviewed-by: Jon Masters <jcm@redhat.com> Tested-by: Jon Masters <jcm@redhat.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
author: Thomas Gleixner <tglx@linutronix.de> 2019-02-18 23:42:51 +0100
committer: Greg Kroah-Hartman <gregkh@linuxfoundation.org> 2019-05-14 19:17:55 +0200
commit: e4fa775b56060bb5c26ca3a951163794e81619f6 (patch)
tree: a48e89c7e4cdced3e8fa0f39f7728c3542170f5e /arch/x86/kernel/cpu
parent: 1f7c31be1e04e6727d7a0bfc7d39f9ac8cc72572 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/arch/x86/kernel/cpu/bugs.c b/arch/x86/kernel/cpu/bugs.c
index e5258bd64200..2a69046cc38c 100644
--- a/arch/x86/kernel/cpu/bugs.c
+++ b/arch/x86/kernel/cpu/bugs.c
@@ -61,6 +61,9 @@ DEFINE_STATIC_KEY_FALSE(switch_mm_cond_ibpb);
 /* Control unconditional IBPB in switch_mm() */
 DEFINE_STATIC_KEY_FALSE(switch_mm_always_ibpb);
 
+/* Control MDS CPU buffer clear before returning to user space */
+DEFINE_STATIC_KEY_FALSE(mds_user_clear);
+
 void __init check_bugs(void)
 {
 	identify_boot_cpu();
author	Thomas Gleixner <tglx@linutronix.de>	2019-02-18 23:42:51 +0100
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2019-05-14 19:17:55 +0200
commit	e4fa775b56060bb5c26ca3a951163794e81619f6 (patch)
tree	a48e89c7e4cdced3e8fa0f39f7728c3542170f5e /arch/x86/kernel/cpu
parent	1f7c31be1e04e6727d7a0bfc7d39f9ac8cc72572 (diff)