Patch "x86: set SPECTRE_BHI_ON as default" has been added to the 5.15-stable tree

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

This is a note to let you know that I've just added the patch titled

    x86: set SPECTRE_BHI_ON as default

to the 5.15-stable tree which can be found at:
    http://www.kernel.org/git/?p=linux/kernel/git/stable/stable-queue.git;a=summary

The filename of the patch is:
     x86-set-spectre_bhi_on-as-default.patch
and it can be found in the queue-5.15 subdirectory.

If you, or anyone else, feels it should not be added to the stable tree,
please let <stable@xxxxxxxxxxxxxxx> know about it.


>From foo@baz Tue Apr  9 07:32:41 PM CEST 2024
Date: Tue, 09 Apr 2024 19:32:41 +0200
To: Greg KH <gregkh@xxxxxxxxxxxxxxxxxxx>
From: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
Subject: x86: set SPECTRE_BHI_ON as default

commit 2bb69f5fc72183e1c62547d900f560d0e9334925 upstream.

Part of a merge commit from Linus that adjusted the default setting of
SPECTRE_BHI_ON.

Cc: Linus Torvalds <torvalds@xxxxxxxxxxxxxxxxxxxx>
Signed-off-by: Greg Kroah-Hartman <gregkh@xxxxxxxxxxxxxxxxxxx>
---
 arch/x86/Kconfig |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--- a/arch/x86/Kconfig
+++ b/arch/x86/Kconfig
@@ -2508,7 +2508,7 @@ config MITIGATION_RFDS
 choice
 	prompt "Clear branch history"
 	depends on CPU_SUP_INTEL
-	default SPECTRE_BHI_AUTO
+	default SPECTRE_BHI_ON
 	help
 	  Enable BHI mitigations. BHI attacks are a form of Spectre V2 attacks
 	  where the branch history buffer is poisoned to speculatively steer


Patches currently in stable-queue which might be from gregkh@xxxxxxxxxxxxxxxxxxx are

queue-5.15/usb-uas-return-enodev-when-submit-urbs-fail-with-dev.patch
queue-5.15/x86-rfds-mitigate-register-file-data-sampling-rfds.patch
queue-5.15/vfio-pci-create-persistent-intx-handler.patch
queue-5.15/tty-serial-fsl_lpuart-avoid-idle-preamble-pending-if-cts-is-enabled.patch
queue-5.15/ipv6-fix-infinite-recursion-in-fib6_dump_done.patch
queue-5.15/scsi-qla2xxx-nvme-fcp-prefer-flag-not-being-honored.patch
queue-5.15/x86-bhi-define-spec_ctrl_bhi_dis_s.patch
queue-5.15/bpf-sockmap-prevent-lock-inversion-deadlock-in-map-delete-elem.patch
queue-5.15/vboxsf-avoid-an-spurious-warning-if-load_nls_xxx-fails.patch
queue-5.15/kvm-x86-mark-target-gfn-of-emulated-atomic-instruction-as-dirty.patch
queue-5.15/documentation-hw-vuln-update-spectre-doc.patch
queue-5.15/powerpc-xor_vmx-add-mhard-float-to-cflags.patch
queue-5.15/x86-cpufeatures-add-new-word-for-scattered-features.patch
queue-5.15/tty-serial-imx-fix-broken-rs485.patch
queue-5.15/phy-tegra-xusb-add-api-to-retrieve-the-port-number-o.patch
queue-5.15/x86-cpu-support-amd-automatic-ibrs.patch
queue-5.15/of-dynamic-synchronize-of_changeset_destroy-with-the-devlink-removals.patch
queue-5.15/x86-entry_32-add-verw-just-before-userspace-transition.patch
queue-5.15/usb-core-add-hub_get-and-hub_put-routines.patch
queue-5.15/riscv-process-fix-kernel-gp-leakage.patch
queue-5.15/kvm-x86-advertise-cpuid.-eax-7-ecx-2-edx-to-userspace.patch
queue-5.15/netfilter-nf_tables-reject-constant-set-with-timeout.patch
queue-5.15/udp-prevent-local-udp-tunnel-packets-from-being-groed.patch
queue-5.15/vfio-fsl-mc-block-calling-interrupt-handler-without-trigger.patch
queue-5.15/selftests-net-gro-fwd-update-vxlan-gro-test-expectations.patch
queue-5.15/kvm-x86-update-kvm-only-leaf-handling-to-allow-for-100-kvm-only-leafs.patch
queue-5.15/slimbus-core-remove-usage-of-the-deprecated-ida_simp.patch
queue-5.15/x86-bugs-add-asm-helpers-for-executing-verw.patch
queue-5.15/netfilter-nf_tables-mark-set-as-dead-when-unbinding-anonymous-set-with-timeout.patch
queue-5.15/net-ll_temac-platform_get_resource-replaced-by-wrong-function.patch
queue-5.15/usb-port-don-t-try-to-peer-unused-usb-ports-based-on-location.patch
queue-5.15/usb-cdc-wdm-close-race-between-read-and-workqueue.patch
queue-5.15/usb-core-fix-deadlock-in-usb_deauthorize_interface.patch
queue-5.15/x86-cpufeatures-add-cpuid_lnx_5-to-track-recently-added-linux-defined-word.patch
queue-5.15/netfilter-nf_tables-reject-new-basechain-after-table-flag-update.patch
queue-5.15/scsi-lpfc-correct-size-for-wqe-for-memset.patch
queue-5.15/scsi-qla2xxx-fix-double-free-of-fcport.patch
queue-5.15/vt-fix-unicode-buffer-corruption-when-deleting-characters.patch
queue-5.15/octeontx2-af-fix-issue-with-loading-coalesced-kpu-profiles.patch
queue-5.15/bluetooth-fix-toctou-in-hci-debugfs-implementation.patch
queue-5.15/netfilter-nf_tables-flush-pending-destroy-work-before-exit_net-release.patch
queue-5.15/mm-vmscan-prevent-infinite-loop-for-costly-gfp_noio-__gfp_retry_mayfail-allocations.patch
queue-5.15/mei-me-add-arrow-lake-point-s-did.patch
queue-5.15/usb-gadget-ncm-fix-handling-of-zero-block-length-packets.patch
queue-5.15/x86-bhi-add-support-for-clearing-branch-history-at-syscall-entry.patch
queue-5.15/usb-dwc2-host-fix-remote-wakeup-from-hibernation.patch
queue-5.15/staging-vc04_services-changen-strncpy-to-strscpy_pad.patch
queue-5.15/mptcp-don-t-account-accept-of-non-mpc-client-as-fallback-to-tcp.patch
queue-5.15/driver-core-introduce-device_link_wait_removal.patch
queue-5.15/selftests-reuseaddr_conflict-add-missing-new-line-at-the-end-of-the-output.patch
queue-5.15/x86-bugs-use-sysfs_emit.patch
queue-5.15/x86-asm-differentiate-between-code-and-function-alignment.patch
queue-5.15/arm64-dts-qcom-sc7180-trogdor-mark-bluetooth-address-as-broken.patch
queue-5.15/mlxbf_gige-stop-interface-during-shutdown.patch
queue-5.15/drivers-hv-vmbus-calculate-ring-buffer-size-for-more-efficient-use-of-memory.patch
queue-5.15/xfrm-avoid-clang-fortify-warning-in-copy_to_user_tmpl.patch
queue-5.15/i40e-fix-vf-may-be-used-uninitialized-in-this-function-warning.patch
queue-5.15/kvm-svm-flush-pages-under-kvm-lock-to-fix-uaf-in-svm_register_enc_region.patch
queue-5.15/vfio-pci-disable-auto-enable-of-exclusive-intx-irq.patch
queue-5.15/x86-bugs-fix-the-srso-mitigation-on-zen3-4.patch
queue-5.15/x86-mce-make-sure-to-grab-mce_sysfs_mutex-in-set_bank.patch
queue-5.15/fs-aio-check-iocb_aio_rw-before-the-struct-aio_kiocb-conversion.patch
queue-5.15/init-open-initrd.image-with-o_largefile.patch
queue-5.15/drm-i915-gt-reset-queue_priority_hint-on-parking.patch
queue-5.15/x86-retpoline-do-the-necessary-fixup-to-the-zen3-4-srso-return-thunk-for-srso.patch
queue-5.15/vfio-pci-lock-external-intx-masking-ops.patch
queue-5.15/serial-sc16is7xx-convert-from-_raw_-to-_noinc_-regmap-functions-for-fifo.patch
queue-5.15/x86-cpu-enable-stibp-on-amd-if-automatic-ibrs-is-enabled.patch
queue-5.15/scsi-qla2xxx-prevent-command-send-on-chip-reset.patch
queue-5.15/bluetooth-hci_event-set-the-conn-encrypted-before-conn-establishes.patch
queue-5.15/exec-fix-nommu-linux_binprm-exec-in-transfer_args_to_stack.patch
queue-5.15/net-sched-act_skbmod-prevent-kernel-infoleak.patch
queue-5.15/usb-dwc2-gadget-lpm-flow-fix.patch
queue-5.15/net-stmmac-fix-rx-queue-priority-assignment.patch
queue-5.15/usb-usb-storage-prevent-divide-by-0-error-in-isd200_ata_command.patch
queue-5.15/usb-udc-remove-warning-when-queue-disabled-ep.patch
queue-5.15/x86-bhi-mitigate-kvm-by-default.patch
queue-5.15/erspan-make-sure-erspan_base_hdr-is-present-in-skb-head.patch
queue-5.15/gro-fix-ownership-transfer.patch
queue-5.15/x86-set-spectre_bhi_on-as-default.patch
queue-5.15/xen-events-close-evtchn-after-mapping-cleanup.patch
queue-5.15/hexagon-vmlinux.lds.s-handle-attributes-section.patch
queue-5.15/x86-alternatives-teach-text_poke_bp-to-patch-jcc.d32-instructions.patch
queue-5.15/alsa-hda-realtek-update-panasonic-cf-sz6-quirk-to-support-headset-with-microphone.patch
queue-5.15/udp-do-not-transition-udp-gro-fraglist-partial-checksums-to-unnecessary.patch
queue-5.15/net-rds-fix-possible-cp-null-dereference.patch
queue-5.15/kvm-x86-bail-to-userspace-if-emulation-of-atomic-user-access-faults.patch
queue-5.15/btrfs-zoned-use-zone-aware-sb-location-for-scrub.patch
queue-5.15/usb-typec-ucsi-clean-up-ucsi_cable_prop-macros.patch
queue-5.15/thermal-devfreq_cooling-fix-perf-state-when-calculate-dfc-res_util.patch
queue-5.15/mm-secretmem-fix-gup-fast-succeeding-on-secretmem-folios.patch
queue-5.15/wifi-mac80211-check-clear-fast-rx-for-non-4addr-sta-vlan-changes.patch
queue-5.15/vfio-introduce-interface-to-flush-virqfd-inject-workqueue.patch
queue-5.15/efivarfs-request-at-most-512-bytes-for-variable-names.patch
queue-5.15/locking-rwsem-disable-preemption-while-trying-for-rwsem-lock.patch
queue-5.15/mmc-core-initialize-mmc_blk_ioc_data.patch
queue-5.15/kvm-x86-export-rfds_no-and-rfds_clear-to-guests.patch
queue-5.15/x86-asm-add-_asm_rip-macro-for-x86-64-rip-suffix.patch
queue-5.15/scsi-qla2xxx-split-fce-eft-trace-control.patch
queue-5.15/x86-bhi-enumerate-branch-history-injection-bhi-bug.patch
queue-5.15/cpufreq-brcmstb-avs-cpufreq-fix-up-add-check-for-cpufreq_cpu_get-s-return-value.patch
queue-5.15/netfilter-validate-user-input-for-expected-length.patch
queue-5.15/x86-entry_64-add-verw-just-before-userspace-transition.patch
queue-5.15/x86-syscall-don-t-force-use-of-indirect-calls-for-system-calls.patch
queue-5.15/mei-me-add-arrow-lake-point-h-did.patch
queue-5.15/net-ravb-add-r-car-gen4-support.patch
queue-5.15/nvme-fix-miss-command-type-check.patch
queue-5.15/x86-alternatives-introduce-int3_emulate_jcc.patch
queue-5.15/io_uring-ensure-0-is-returned-on-file-registration-success.patch
queue-5.15/usb-dwc2-gadget-fix-exiting-from-clock-gating.patch
queue-5.15/kvm-arm64-work-out-supported-block-level-at-compile-time.patch
queue-5.15/kvm-x86-use-a-switch-statement-and-macros-in-__feature_translate.patch
queue-5.15/octeontx2-pf-check-negative-error-code-in-otx2_open.patch
queue-5.15/alsa-sh-aica-reorder-cleanup-operations-to-avoid-uaf-bugs.patch
queue-5.15/x86-mmio-disable-kvm-mitigation-when-x86_feature_clear_cpu_buf-is-set.patch
queue-5.15/i40e-fix-i40e_count_filters-to-count-only-active-new-filters.patch
queue-5.15/scsi-qla2xxx-fix-n2n-stuck-connection.patch
queue-5.15/usb-dwc2-host-fix-isoc-flow-in-ddma-mode.patch
queue-5.15/usb-typec-ucsi-ack-unsupported-commands.patch
queue-5.15/acpi-cppc-use-access_width-over-bit_width-for-system-memory-accesses.patch
queue-5.15/alsa-hda-realtek-fix-headset-mic-no-show-at-resume-back-for-lenovo-alc897-platform.patch
queue-5.15/selftests-mptcp-diag-return-ksft_fail-not-test_cnt.patch
queue-5.15/netfilter-nf_tables-disallow-anonymous-set-with-timeout-flag.patch
queue-5.15/x86-bugs-use-alternative-instead-of-mds_user_clear-static-key.patch
queue-5.15/documentation-hw-vuln-add-documentation-for-rfds.patch
queue-5.15/kvm-vmx-use-bt-jnc-i.e.-eflags.cf-to-select-vmresume-vs.-vmlaunch.patch
queue-5.15/mm-migrate-set-swap-entry-values-of-thp-tail-pages-properly.patch
queue-5.15/usb-gadget-tegra-xudc-fix-usb3-phy-retrieval-logic.patch
queue-5.15/scsi-qla2xxx-delay-i-o-abort-on-pci-error.patch
queue-5.15/kvm-arm64-limit-stage2_apply_range-batch-size-to-largest-block.patch
queue-5.15/s390-entry-align-system-call-table-on-8-bytes.patch
queue-5.15/scsi-core-fix-unremoved-procfs-host-directory-regression.patch
queue-5.15/x86-bugs-change-commas-to-semicolons-in-spectre_v2-sysfs-file.patch
queue-5.15/scsi-qla2xxx-fix-command-flush-on-cable-pull.patch
queue-5.15/nvmem-meson-efuse-fix-function-pointer-type-mismatch.patch
queue-5.15/kvm-vmx-move-verw-closer-to-vmentry-for-mds-mitigation.patch
queue-5.15/revert-x86-mm-ident_map-use-gbpages-only-where-full-gb-page-should-be-mapped.patch
queue-5.15/revert-usb-phy-generic-get-the-vbus-supply.patch
queue-5.15/tracing-use-.flush-call-to-wake-up-readers.patch
queue-5.15/arch-introduce-config_function_alignment.patch
queue-5.15/x86-static_call-add-support-for-jcc-tail-calls.patch
queue-5.15/xen-netfront-add-missing-skb_mark_for_recycle.patch
queue-5.15/speakup-fix-8bit-characters-from-direct-synth.patch
queue-5.15/vfio-platform-create-persistent-irq-handlers.patch
queue-5.15/serial-lock-console-when-calling-into-driver-before-.patch
queue-5.15/i2c-i801-avoid-potential-double-call-to-gpiod_remove_lookup_table.patch
queue-5.15/drm-i915-check-before-removing-mm-notifier.patch
queue-5.15/usb-typec-ucsi-clear-ucsi_cci_reset_complete-before-reset.patch
queue-5.15/r8169-fix-issue-caused-by-buggy-bios-on-certain-boards-with-rtl8168d.patch
queue-5.15/usb-dwc2-host-fix-hibernation-flow.patch
queue-5.15/x86-bhi-add-bhi-mitigation-knob.patch
queue-5.15/tee-optee-fix-kernel-panic-caused-by-incorrect-error-handling.patch
queue-5.15/pci-dpc-quirk-pio-log-size-for-intel-ice-lake-root-ports.patch
queue-5.15/netfilter-nf_tables-fix-potential-data-race-in-__nft_flowtable_type_get.patch
queue-5.15/udp-do-not-accept-non-tunnel-gso-skbs-landing-in-a-tunnel.patch
queue-5.15/scsi-qla2xxx-change-debug-message-during-driver-unload.patch
queue-5.15/scsi-usb-stop-using-the-scsi-pointer.patch
queue-5.15/staging-vc04_services-fix-information-leak-in-create_component.patch
queue-5.15/mmc-core-avoid-negative-index-with-array-access.patch
queue-5.15/perf-core-fix-reentry-problem-in-perf_output_read_group.patch
queue-5.15/kvm-x86-add-bhi_no.patch
queue-5.15/usb-xhci-add-error-handling-in-xhci_map_urb_for_dma.patch
queue-5.15/riscv-fix-spurious-errors-from-__get-put_kernel_nofault.patch
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Linux USB Devel]     [Linux Audio Users]     [Yosemite News]     [Linux Kernel]     [Linux SCSI]

  Powered by Linux