• Tom Lendacky's avatar
    x86/CPU/AMD: Clear RDRAND CPUID bit on AMD family 15h/16h · 4aa0f3b0
    Tom Lendacky authored
    commit c49a0a80 upstream.
    
    There have been reports of RDRAND issues after resuming from suspend on
    some AMD family 15h and family 16h systems. This issue stems from a BIOS
    not performing the proper steps during resume to ensure RDRAND continues
    to function properly.
    
    RDRAND support is indicated by CPUID Fn00000001_ECX[30]. This bit can be
    reset by clearing MSR C001_1004[62]. Any software that checks for RDRAND
    support using CPUID, including the kernel, will believe that RDRAND is
    not supported.
    
    Update the CPU initialization to clear the RDRAND CPUID bit for any family
    15h and 16h processor that supports RDRAND. If it is known that the family
    15h or family 16h system does not have an RDRAND resume issue or that the
    system will not be placed in suspend, the "rdrand=force" kernel parameter
    can be used to stop the clearing of the RDRAND CPUID bit.
    
    Additionally, update the suspend and resume path to save and restore the
    MSR C001_1004 value to ensure that the RDRAND CPUID setting remains in
    place after resuming from suspend.
    
    Note, that clearing the RDRAND CPUID bit does not prevent a processor
    that normally supports the RDRAND instruction from executing it. So any
    code that determined the support based on family and model won't #UD.
    Signed-off-by: default avatarTom Lendacky <thomas.lendacky@amd.com>
    Signed-off-by: default avatarBorislav Petkov <bp@suse.de>
    Cc: Andrew Cooper <andrew.cooper3@citrix.com>
    Cc: Andrew Morton <akpm@linux-foundation.org>
    Cc: Chen Yu <yu.c.chen@intel.com>
    Cc: "H. Peter Anvin" <hpa@zytor.com>
    Cc: Ingo Molnar <mingo@redhat.com>
    Cc: Jonathan Corbet <corbet@lwn.net>
    Cc: Josh Poimboeuf <jpoimboe@redhat.com>
    Cc: Juergen Gross <jgross@suse.com>
    Cc: Kees Cook <keescook@chromium.org>
    Cc: "linux-doc@vger.kernel.org" <linux-doc@vger.kernel.org>
    Cc: "linux-pm@vger.kernel.org" <linux-pm@vger.kernel.org>
    Cc: Nathan Chancellor <natechancellor@gmail.com>
    Cc: Paolo Bonzini <pbonzini@redhat.com>
    Cc: Pavel Machek <pavel@ucw.cz>
    Cc: "Rafael J. Wysocki" <rjw@rjwysocki.net>
    Cc: <stable@vger.kernel.org>
    Cc: Thomas Gleixner <tglx@linutronix.de>
    Cc: "x86@kernel.org" <x86@kernel.org>
    Link: https://lkml.kernel.org/r/7543af91666f491547bd86cebb1e17c66824ab9f.1566229943.git.thomas.lendacky@amd.comSigned-off-by: default avatarGreg Kroah-Hartman <gregkh@linuxfoundation.org>
    4aa0f3b0
Name
Last commit
Last update
..
LSM Loading commit data...
acpi Loading commit data...
hw-vuln Loading commit data...
mm Loading commit data...
pm Loading commit data...
README.rst Loading commit data...
bcache.rst Loading commit data...
binfmt-misc.rst Loading commit data...
braille-console.rst Loading commit data...
bug-bisect.rst Loading commit data...
bug-hunting.rst Loading commit data...
cgroup-v2.rst Loading commit data...
conf.py Loading commit data...
devices.rst Loading commit data...
devices.txt Loading commit data...
dynamic-debug-howto.rst Loading commit data...
ext4.rst Loading commit data...
index.rst Loading commit data...
init.rst Loading commit data...
initrd.rst Loading commit data...
java.rst Loading commit data...
kernel-parameters.rst Loading commit data...
kernel-parameters.txt Loading commit data...
md.rst Loading commit data...
module-signing.rst Loading commit data...
mono.rst Loading commit data...
parport.rst Loading commit data...
perf-security.rst Loading commit data...
ramoops.rst Loading commit data...
ras.rst Loading commit data...
reporting-bugs.rst Loading commit data...
security-bugs.rst Loading commit data...
serial-console.rst Loading commit data...
sysfs-rules.rst Loading commit data...
sysrq.rst Loading commit data...
tainted-kernels.rst Loading commit data...
thunderbolt.rst Loading commit data...
unicode.rst Loading commit data...
vga-softcursor.rst Loading commit data...