fix CVE-2017-5715 reporting when IBRS_FW is enabled

[ghost]

Hi there,

I noticed that spectre-meltdown-checker has been reporting my system as vulnerable since version 0.45 or so and with these changes it reports it correctly. Please, correct me if I'm wrong.

Before:

After:

Greeting,
Gabriel Francisco

[speed47]

Tanks for your PR, indeed it seems it has changed in recent Linux versions:

$ git grep IBRS_FW v6.0 v6.10 -- arch/x86/kernel/cpu/bugs.c
v6.0:arch/x86/kernel/cpu/bugs.c:                setup_force_cpu_cap(X86_FEATURE_USE_IBRS_FW);
v6.0:arch/x86/kernel/cpu/bugs.c:                       boot_cpu_has(X86_FEATURE_USE_IBRS_FW) ? ", IBRS_FW" : "",
v6.10:arch/x86/kernel/cpu/bugs.c:               setup_force_cpu_cap(X86_FEATURE_USE_IBRS_FW);
v6.10:arch/x86/kernel/cpu/bugs.c:                         boot_cpu_has(X86_FEATURE_USE_IBRS_FW) ? "; IBRS_FW" : "",

They replaced the "," by a ";". I can't seem to be able to adjust your PR: can you modify it to replace grep -q ', IBRS_FW' by grep -q '[,;] IBRS_FW'? This will account for all cases!

[ghost]

Sure! Thanks for the recommendation. I changed it to match colon or semicolon in both cases. Is that right?