Re: [RFC PATCH] x86/bugs: Remove 'force' options for retbleed/ITS

From: Borislav Petkov
Date: Thu Jun 26 2025 - 11:13:18 EST

Next message: Frank Li: "Re: [PATCH v3 2/2] media: i2c: Add ON Semiconductor AP1302 ISP driver"
Previous message: Hans Zhang: "Re: [PATCH v2 00/13] PCI: dwc: Refactor register access with dw_pcie_clear_and_set_dword helper"
In reply to: Peter Zijlstra: "Re: [RFC PATCH] x86/bugs: Remove 'force' options for retbleed/ITS"
Next in thread: Nikolay Borisov: "Re: [RFC PATCH] x86/bugs: Remove 'force' options for retbleed/ITS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, Jun 26, 2025 at 04:40:47PM +0200, Peter Zijlstra wrote:
> Testing; I use these things for testing. Makes I don't have to run on
> affected hardware, I can just force the feature on and inspect the code
> and ensures it runs.
>
> If you use force, you get to keep all pieces -- no warranties.

Right, I don't have a good feeling when "force" makes a machine unmitigated
all of a sudden.

And we're not screaming nearly as loud as possible when =force is supplied and
for such a thing we probably should even taint the kernel.

I'd prefer if we don't expose =force options to the general public but make
them depend on CONFIG_DEBUG_KERNEL perhaps.

IOW, too dangerous.

--
Regards/Gruss,
Boris.

https://people.kernel.org/tglx/notes-about-netiquette

Next message: Frank Li: "Re: [PATCH v3 2/2] media: i2c: Add ON Semiconductor AP1302 ISP driver"
Previous message: Hans Zhang: "Re: [PATCH v2 00/13] PCI: dwc: Refactor register access with dw_pcie_clear_and_set_dword helper"
In reply to: Peter Zijlstra: "Re: [RFC PATCH] x86/bugs: Remove 'force' options for retbleed/ITS"
Next in thread: Nikolay Borisov: "Re: [RFC PATCH] x86/bugs: Remove 'force' options for retbleed/ITS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]