auto,nosmt
Mitigate all CPU vulnerabilities, disabling SMT
if needed. This is for users who always want to
be fully mitigated, even if it means losing SMT.
Equivalent to: l1tf=flush,nosmt [X86]
mds=full,nosmt [X86]
tsx_async_abort=full,nosmt [X86]
mmio_stale_data=full,nosmt [X86]
l1tf=full,force is not the same as l1tf=flush,nosmt. The user should forcefully mitigate all vulnerabilities even if there aren't any known ones instead of auto detecting which ones may impact them.
https://www.kernel.org/doc/html/latest/admin-guide/kernel-parameters.html