diff --git a/UTM-Chrony.ign b/UTM-Chrony.ign
index da36c1f..5612b84 100644
--- a/UTM-Chrony.ign
+++ b/UTM-Chrony.ign
@@ -6,12 +6,15 @@
     "shouldExist": [
       "mitigations=auto,nosmt",
       "spectre_v2=on",
+      "spectre_bhi=on",
       "spec_store_bypass_disable=on",
       "tsx=off",
       "kvm.nx_huge_pages=force",
       "nosmt=force",
       "l1d_flush=on",
       "spec_rstack_overflow=safe-ret",
+      "gather_data_sampling=force",
+      "reg_file_data_sampling=on",
       "random.trust_bootloader=off",
       "random.trust_cpu=off",
       "intel_iommu=on",
diff --git a/UTM-Chrony.yml b/UTM-Chrony.yml
index e10c27f..cb4e62f 100644
--- a/UTM-Chrony.yml
+++ b/UTM-Chrony.yml
@@ -190,12 +190,15 @@ kernel_arguments:
   should_exist:
     - mitigations=auto,nosmt
     - spectre_v2=on
+    - spectre_bhi=on
     - spec_store_bypass_disable=on
     - tsx=off
     - kvm.nx_huge_pages=force
     - nosmt=force
     - l1d_flush=on
     - spec_rstack_overflow=safe-ret
+    - gather_data_sampling=force 
+    - reg_file_data_sampling=on
     - random.trust_bootloader=off
     - random.trust_cpu=off
     - intel_iommu=on
diff --git a/kargs b/kargs
index f994896..fb00bb6 100644
--- a/kargs
+++ b/kargs
@@ -14,4 +14,4 @@
 
 # This file is just incase you want to quickly copy-paste the kernel arguments into `rpm-ostree kargs`
 
-mitigations=auto,nosmt spectre_v2=on spec_store_bypass_disable=on tsx=off kvm.nx_huge_pages=force nosmt=force l1d_flush=on spec_rstack_overflow=safe-ret random.trust_bootloader=off random.trust_cpu=off intel_iommu=on amd_iommu=isolation_force efi=disable_early_pci_dma iommu=force iommu.passthrough=0 iommu.strict=1 slab_nomerge init_on_alloc=1 init_on_free=1 pti=on vsyscall=none ia32_emulation=0 page_alloc.shuffle=1 randomize_kstack_offset=on debugfs=off
\ No newline at end of file
+mitigations=auto,nosmt spectre_v2=on spectre_bhi=on spec_store_bypass_disable=on tsx=off kvm.nx_huge_pages=force nosmt=force l1d_flush=on spec_rstack_overflow=safe-ret gather_data_sampling=force reg_file_data_sampling=on random.trust_bootloader=off random.trust_cpu=off intel_iommu=on amd_iommu=force_isolation efi=disable_early_pci_dma iommu=force iommu.passthrough=0 iommu.strict=1 slab_nomerge init_on_alloc=1 init_on_free=1 pti=on vsyscall=none ia32_emulation=0 page_alloc.shuffle=1 randomize_kstack_offset=on debugfs=off lockdown=confidentiality module.sig_enforce=1 console=tty0 console=ttyS0,115200
\ No newline at end of file
diff --git a/x86-QEMU-Docker.ign b/x86-QEMU-Docker.ign
index 43aa1bc..fe7fb7a 100644
--- a/x86-QEMU-Docker.ign
+++ b/x86-QEMU-Docker.ign
@@ -6,12 +6,15 @@
     "shouldExist": [
       "mitigations=auto,nosmt",
       "spectre_v2=on",
+      "spectre_bhi=on",
       "spec_store_bypass_disable=on",
       "tsx=off",
       "kvm.nx_huge_pages=force",
       "nosmt=force",
       "l1d_flush=on",
       "spec_rstack_overflow=safe-ret",
+      "gather_data_sampling=force",
+      "reg_file_data_sampling=on",
       "random.trust_bootloader=off",
       "random.trust_cpu=off",
       "intel_iommu=on",
diff --git a/x86-QEMU-Docker.yml b/x86-QEMU-Docker.yml
index 84366c5..9a76fd0 100644
--- a/x86-QEMU-Docker.yml
+++ b/x86-QEMU-Docker.yml
@@ -270,12 +270,15 @@ kernel_arguments:
   should_exist:
     - mitigations=auto,nosmt
     - spectre_v2=on
+    - spectre_bhi=on
     - spec_store_bypass_disable=on
     - tsx=off
     - kvm.nx_huge_pages=force
     - nosmt=force
     - l1d_flush=on
     - spec_rstack_overflow=safe-ret
+    - gather_data_sampling=force 
+    - reg_file_data_sampling=on
     - random.trust_bootloader=off
     - random.trust_cpu=off
     - intel_iommu=on