x86/bugs: Provide boot parameters for the spec_store_bypass_disable mitigation

			allow data leaks with this option, which is equivalent

			to spectre_v2=off.

	nospec_store_bypass_disable

			[HW] Disable all mitigations for the Speculative Store Bypass vulnerability

	noxsave		[BUGS=X86] Disables x86 extended register state save

			and restore using xsave. The kernel will fallback to

			enabling legacy floating-point and sse state.

			Not specifying this option is equivalent to

			spectre_v2=auto.

	spec_store_bypass_disable=

			[HW] Control Speculative Store Bypass (SSB) Disable mitigation

			(Speculative Store Bypass vulnerability)

			Certain CPUs are vulnerable to an exploit against a

			a common industry wide performance optimization known

			as "Speculative Store Bypass" in which recent stores

			to the same memory location may not be observed by

			later loads during speculative execution. The idea

			is that such stores are unlikely and that they can

			be detected prior to instruction retirement at the

			end of a particular speculation execution window.

			In vulnerable processors, the speculatively forwarded

			store can be used in a cache side channel attack, for

			example to read memory to which the attacker does not

			directly have access (e.g. inside sandboxed code).

			This parameter controls whether the Speculative Store

			Bypass optimization is used.

			on     - Unconditionally disable Speculative Store Bypass

			off    - Unconditionally enable Speculative Store Bypass

			auto   - Kernel detects whether the CPU model contains an

				 implementation of Speculative Store Bypass and

				 picks the most appropriate mitigation

			Not specifying this option is equivalent to

			spec_store_bypass_disable=auto.

	spia_io_base=	[HW,MTD]

	spia_fio_base=

	spia_pedr=

#define X86_FEATURE_USE_IBPB		( 7*32+21) /* "" Indirect Branch Prediction Barrier enabled */

#define X86_FEATURE_USE_IBRS_FW		( 7*32+22) /* "" Use IBRS during runtime firmware calls */

#define X86_FEATURE_SPEC_STORE_BYPASS_DISABLE	( 7*32+23) /* "" Disable Speculative Store Bypass. */

/* Virtualization flags: Linux defined, word 8 */

#define X86_FEATURE_TPR_SHADOW		( 8*32+ 0) /* Intel TPR Shadow */

extern void x86_spec_ctrl_set_guest(u64);

extern void x86_spec_ctrl_restore_host(u64);

/* The Speculative Store Bypass disable variants */

enum ssb_mitigation {

	SPEC_STORE_BYPASS_NONE,

	SPEC_STORE_BYPASS_DISABLE,

};

extern char __indirect_thunk_start[];

extern char __indirect_thunk_end[];

#include <asm/intel-family.h>

static void __init spectre_v2_select_mitigation(void);

static void __init ssb_select_mitigation(void);

/*

 * Our boot-time value of the SPEC_CTRL MSR. We read it once so that any

	/* Select the proper spectre mitigation before patching alternatives */

	spectre_v2_select_mitigation();

	/*

	 * Select proper mitigation for any exposure to the Speculative Store

	 * Bypass vulnerability.

	 */

	ssb_select_mitigation();

#ifdef CONFIG_X86_32

	/*

	 * Check whether we are able to run this kernel safely on SMP.

	}

}

#undef pr_fmt

#define pr_fmt(fmt)	"Speculative Store Bypass: " fmt

static enum ssb_mitigation ssb_mode = SPEC_STORE_BYPASS_NONE;

/* The kernel command line selection */

enum ssb_mitigation_cmd {

	SPEC_STORE_BYPASS_CMD_NONE,

	SPEC_STORE_BYPASS_CMD_AUTO,

	SPEC_STORE_BYPASS_CMD_ON,

};

static const char *ssb_strings[] = {

	[SPEC_STORE_BYPASS_NONE]	= "Vulnerable",

	[SPEC_STORE_BYPASS_DISABLE]	= "Mitigation: Speculative Store Bypass disabled"

};

static const struct {

	const char *option;

	enum ssb_mitigation_cmd cmd;

} ssb_mitigation_options[] = {

	{ "auto",	SPEC_STORE_BYPASS_CMD_AUTO }, /* Platform decides */

	{ "on",		SPEC_STORE_BYPASS_CMD_ON },   /* Disable Speculative Store Bypass */

	{ "off",	SPEC_STORE_BYPASS_CMD_NONE }, /* Don't touch Speculative Store Bypass */

};

static enum ssb_mitigation_cmd __init ssb_parse_cmdline(void)

{

	enum ssb_mitigation_cmd cmd = SPEC_STORE_BYPASS_CMD_AUTO;

	char arg[20];

	int ret, i;

	if (cmdline_find_option_bool(boot_command_line, "nospec_store_bypass_disable")) {

		return SPEC_STORE_BYPASS_CMD_NONE;

	} else {

		ret = cmdline_find_option(boot_command_line, "spec_store_bypass_disable",

					  arg, sizeof(arg));

		if (ret < 0)

			return SPEC_STORE_BYPASS_CMD_AUTO;

		for (i = 0; i < ARRAY_SIZE(ssb_mitigation_options); i++) {

			if (!match_option(arg, ret, ssb_mitigation_options[i].option))

				continue;

			cmd = ssb_mitigation_options[i].cmd;

			break;

		}

		if (i >= ARRAY_SIZE(ssb_mitigation_options)) {

			pr_err("unknown option (%s). Switching to AUTO select\n", arg);

			return SPEC_STORE_BYPASS_CMD_AUTO;

		}

	}

	return cmd;

}

static enum ssb_mitigation_cmd __init __ssb_select_mitigation(void)

{

	enum ssb_mitigation mode = SPEC_STORE_BYPASS_NONE;

	enum ssb_mitigation_cmd cmd;

	if (!boot_cpu_has(X86_FEATURE_RDS))

		return mode;

	cmd = ssb_parse_cmdline();

	if (!boot_cpu_has_bug(X86_BUG_SPEC_STORE_BYPASS) &&

	    (cmd == SPEC_STORE_BYPASS_CMD_NONE ||

	     cmd == SPEC_STORE_BYPASS_CMD_AUTO))

		return mode;

	switch (cmd) {

	case SPEC_STORE_BYPASS_CMD_AUTO:

	case SPEC_STORE_BYPASS_CMD_ON:

		mode = SPEC_STORE_BYPASS_DISABLE;

		break;

	case SPEC_STORE_BYPASS_CMD_NONE:

		break;

	}

	if (mode != SPEC_STORE_BYPASS_NONE)

		setup_force_cpu_cap(X86_FEATURE_SPEC_STORE_BYPASS_DISABLE);

	return mode;

}

static void ssb_select_mitigation()

{

	ssb_mode = __ssb_select_mitigation();

	if (boot_cpu_has_bug(X86_BUG_SPEC_STORE_BYPASS))

		pr_info("%s\n", ssb_strings[ssb_mode]);

}

#undef pr_fmt

#ifdef CONFIG_SYSFS

			       boot_cpu_has(X86_FEATURE_USE_IBRS_FW) ? ", IBRS_FW" : "",

			       spectre_v2_module_string());

	case X86_BUG_SPEC_STORE_BYPASS:

		return sprintf(buf, "%s\n", ssb_strings[ssb_mode]);

	default:

		break;

	}