This is a note to let you know that I've just added the patch titled x86/retpoline: Do the necessary fixup to the Zen3/4 srso return thunk for !SRSO to the 6.6-stable tree which can be found at: http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=summary The filename of the patch is: x86-retpoline-do-the-necessary-fixup-to-the-zen3-4-srso-return-thunk-for-srso.patch and it can be found in the queue-6.6 subdirectory. If you, or anyone else, feels it should not be added to the stable tree, please let <stable@xxxxxxxxxxxxxxx> know about it. >From 0e110732473e14d6520e49d75d2c88ef7d46fe67 Mon Sep 17 00:00:00 2001 From: "Borislav Petkov (AMD)" <bp@xxxxxxxxx> Date: Tue, 2 Apr 2024 16:05:49 +0200 Subject: x86/retpoline: Do the necessary fixup to the Zen3/4 srso return thunk for !SRSO From: Borislav Petkov (AMD) <bp@xxxxxxxxx> commit 0e110732473e14d6520e49d75d2c88ef7d46fe67 upstream. The srso_alias_untrain_ret() dummy thunk in the !CONFIG_MITIGATION_SRSO case is there only for the altenative in CALL_UNTRAIN_RET to have a symbol to resolve. However, testing with kernels which don't have CONFIG_MITIGATION_SRSO enabled, leads to the warning in patch_return() to fire: missing return thunk: srso_alias_untrain_ret+0x0/0x10-0x0: eb 0e 66 66 2e WARNING: CPU: 0 PID: 0 at arch/x86/kernel/alternative.c:826 apply_returns (arch/x86/kernel/alternative.c:826 Put in a plain "ret" there so that gcc doesn't put a return thunk in in its place which special and gets checked. In addition: ERROR: modpost: "srso_alias_untrain_ret" [arch/x86/kvm/kvm-amd.ko] undefined! make[2]: *** [scripts/Makefile.modpost:145: Module.symvers] Chyba 1 make[1]: *** [/usr/src/linux-6.8.3/Makefile:1873: modpost] Chyba 2 make: *** [Makefile:240: __sub-make] Chyba 2 since !SRSO builds would use the dummy return thunk as reported by petr.pisar@xxxxxxxx, https://bugzilla.kernel.org/show_bug.cgi?id=218679. Reported-by: kernel test robot <oliver.sang@xxxxxxxxx> Closes: https://lore.kernel.org/oe-lkp/202404020901.da75a60f-oliver.sang@xxxxxxxxx Signed-off-by: Borislav Petkov (AMD) <bp@xxxxxxxxx> Link: https://lore.kernel.org/all/202404020901.da75a60f-oliver.sang@xxxxxxxxx/ Signed-off-by: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx> Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx> --- arch/x86/lib/retpoline.S | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) --- a/arch/x86/lib/retpoline.S +++ b/arch/x86/lib/retpoline.S @@ -222,8 +222,11 @@ SYM_CODE_END(srso_return_thunk) #define JMP_SRSO_UNTRAIN_RET "ud2" /* Dummy for the alternative in CALL_UNTRAIN_RET. */ SYM_CODE_START(srso_alias_untrain_ret) - RET + ANNOTATE_UNRET_SAFE + ret + int3 SYM_FUNC_END(srso_alias_untrain_ret) +__EXPORT_THUNK(srso_alias_untrain_ret) #endif /* CONFIG_CPU_SRSO */ #ifdef CONFIG_CPU_UNRET_ENTRY Patches currently in stable-queue which might be from bp@xxxxxxxxx are queue-6.6/x86-cpu-amd-get-rid-of-amd_erratum_1054.patch queue-6.6/drm-i915-pre-populate-the-cursor-physical-dma-addres.patch queue-6.6/x86-srso-improve-i-cache-locality-for-alias-mitigation.patch queue-6.6/x86-bugs-fix-the-srso-mitigation-on-zen3-4.patch queue-6.6/x86-retpoline-do-the-necessary-fixup-to-the-zen3-4-srso-return-thunk-for-srso.patch queue-6.6/x86-srso-disentangle-rethunk-dependent-options.patch queue-6.6/x86-cpu-amd-move-the-div0-bug-detection-to-the-zen1-.patch queue-6.6/x86-cpu-amd-carve-out-the-erratum-1386-fix.patch queue-6.6/x86-nospec-refactor-untrain_ret.patch queue-6.6/mm-treewide-replace-pud_large-with-pud_leaf.patch queue-6.6/x86-cpu-amd-add-x86_feature_zen1.patch queue-6.6/x86-cpu-amd-add-zenx-generations-flags.patch queue-6.6/x86-cpu-amd-move-erratum-1076-fix-into-the-zen1-init.patch queue-6.6/x86-cpu-amd-move-zenbleed-check-to-the-zen2-init-fun.patch