git.proxmox.com Git - mirror_ubuntu-jammy-kernel.git/commit

author	Peter Zijlstra <peterz@infradead.org>
	Tue, 14 Jun 2022 21:15:58 +0000 (23:15 +0200)
committer	Thadeu Lima de Souza Cascardo <cascardo@canonical.com>
	Tue, 19 Jul 2022 19:20:05 +0000 (16:20 -0300)
commit	44ba0d1d601ae05ed3ecc17ab3e07b5a88253bdb
tree	0d10f9e12ed3afe8ae94f9d50d97e4089c9ac033	tree
parent	ae5afe5095a97c49dae3c0e73072116404ee3247	commit \| diff

intel_idle: Disable IBRS during long idle

commit bf5835bcdb9635c97f85120dba9bfa21e111130f upstream.

Having IBRS enabled while the SMT sibling is idle unnecessarily slows
down the running sibling. OTOH, disabling IBRS around idle takes two
MSR writes, which will increase the idle latency.

Therefore, only disable IBRS around deeper idle states. Shallow idle
states are bounded by the tick in duration, since NOHZ is not allowed
for them by virtue of their short target residency.

Only do this for mwait-driven idle, since that keeps interrupts disabled
across idle, which makes disabling IBRS vs IRQ-entry a non-issue.

Note: C6 is a random threshold, most importantly C1 probably shouldn't
disable IBRS, benchmarking needed.

Suggested-by: Tim Chen <tim.c.chen@linux.intel.com>
Signed-off-by: Peter Zijlstra (Intel) <peterz@infradead.org>
Signed-off-by: Borislav Petkov <bp@suse.de>
Reviewed-by: Josh Poimboeuf <jpoimboe@kernel.org>
Signed-off-by: Borislav Petkov <bp@suse.de>
[cascardo: no CPUIDLE_FLAG_IRQ_ENABLE]
CVE-2022-29900
CVE-2022-29901
Signed-off-by: Thadeu Lima de Souza Cascardo <cascardo@canonical.com>

arch/x86/include/asm/nospec-branch.h		diff \| blob \| blame \| history
arch/x86/kernel/cpu/bugs.c		diff \| blob \| blame \| history
drivers/idle/intel_idle.c		diff \| blob \| blame \| history