[Xen-devel,v4,0/7] xen/arm32: Branch predictor hardening (XSA-254 variant 2)

Message ID	20180202141925.19387-1-julien.grall@linaro.org
Headers	show Delivered-To: patch@linaro.org Received-SPF: pass (google.com: best guess record for domain of xen-devel-bounces@lists.xenproject.org designates 192.237.175.120 as permitted sender) client-ip=192.237.175.120; From: Julien Grall <julien.grall@linaro.org> To: xen-devel@lists.xen.org Date: Fri, 2 Feb 2018 14:19:18 +0000 Message-Id: <20180202141925.19387-1-julien.grall@linaro.org> Cc: sstabellini@kernel.org, Julien Grall <julien.grall@linaro.org>, andre.przywara@linaro.org Subject: [Xen-devel] [PATCH v4 0/7] xen/arm32: Branch predictor hardening (XSA-254 variant 2) Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-devel-bounces@lists.xenproject.org Sender: "Xen-devel" <xen-devel-bounces@lists.xenproject.org>
Series	xen/arm32: Branch predictor hardening (XSA-254 variant 2) \| expand [Xen-devel,v4,0/7] xen/arm32: Branch predictor hardening (XSA-254 variant 2) [Xen-devel,v4,1/7] xen/arm32: entry: Consolidate DEFINE_TRAP_ENTRY_* macros [Xen-devel,v4,2/7] xen/arm32: Add missing MIDR values for Cortex-A17 and A12 [Xen-devel,v4,3/7] xen/arm32: entry: Add missing trap_reset entry [Xen-devel,v4,4/7] xen/arm32: Add skeleton to harden branch predictor aliasing attacks [Xen-devel,v4,5/7] xen/arm32: Invalidate BTB on guest exit for Cortex A17 and 12 [Xen-devel,v4,6/7] xen/arm32: Invalidate icache on guest exist for Cortex-A15 [Xen-devel,v4,7/7] xen/arm32: entry: Document the purpose of r11 in the traps handler

Message ID

20180202141925.19387-1-julien.grall@linaro.org

Headers

Received-SPF: pass (google.com: best guess record for domain of
	xen-devel-bounces@lists.xenproject.org designates
	192.237.175.120 as permitted sender)
	client-ip=192.237.175.120; 
From: Julien Grall <julien.grall@linaro.org>
To: xen-devel@lists.xen.org
Date: Fri,  2 Feb 2018 14:19:18 +0000
Message-Id: <20180202141925.19387-1-julien.grall@linaro.org>
Cc: sstabellini@kernel.org, Julien Grall <julien.grall@linaro.org>,
	andre.przywara@linaro.org
Subject: [Xen-devel] [PATCH v4 0/7] xen/arm32: Branch predictor hardening
	(XSA-254 variant 2)
Precedence: list
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: xen-devel-bounces@lists.xenproject.org
Sender: "Xen-devel" <xen-devel-bounces@lists.xenproject.org>

Series

xen/arm32: Branch predictor hardening (XSA-254 variant 2) | expand

Message

Julien Grall Feb. 2, 2018, 2:19 p.m. UTC

Hi all,

This series provides a skeleton for mitigating branch predictor hardening for
arm32 on exception entry.

It also implements mitigation for Cortex-A12, A15 and A17. SoC vendors with
affected CPUs are strongly encouraged to update.

For more information about the impact of this issue and the software mitigations
for Arm processors, please see http://www.arm.com/security-update.

Cheers,

Julien Grall (7):
  xen/arm32: entry: Consolidate DEFINE_TRAP_ENTRY_* macros
  xen/arm32: Add missing MIDR values for Cortex-A17 and A12
  xen/arm32: entry: Add missing trap_reset entry
  xen/arm32: Add skeleton to harden branch predictor aliasing attacks
  xen/arm32: Invalidate BTB on guest exit for Cortex A17 and 12
  xen/arm32: Invalidate icache on guest exist for Cortex-A15
  xen/arm32: entry: Document the purpose of r11 in the traps handler

 xen/arch/arm/Kconfig            |   3 +
 xen/arch/arm/arm32/entry.S      | 147 +++++++++++++++++++++++++++++++++-------
 xen/arch/arm/arm32/traps.c      |   5 ++
 xen/arch/arm/cpuerrata.c        |  62 +++++++++++++++++
 xen/include/asm-arm/processor.h |   4 ++
 5 files changed, 196 insertions(+), 25 deletions(-)

Comments

Stefano Stabellini Feb. 2, 2018, 7:38 p.m. UTC | #1

Committed, thanks

On Fri, 2 Feb 2018, Julien Grall wrote:
> Hi all,
> 
> This series provides a skeleton for mitigating branch predictor hardening for
> arm32 on exception entry.
> 
> It also implements mitigation for Cortex-A12, A15 and A17. SoC vendors with
> affected CPUs are strongly encouraged to update.
> 
> For more information about the impact of this issue and the software mitigations
> for Arm processors, please see http://www.arm.com/security-update.
> 
> Cheers,
> 
> Julien Grall (7):
>   xen/arm32: entry: Consolidate DEFINE_TRAP_ENTRY_* macros
>   xen/arm32: Add missing MIDR values for Cortex-A17 and A12
>   xen/arm32: entry: Add missing trap_reset entry
>   xen/arm32: Add skeleton to harden branch predictor aliasing attacks
>   xen/arm32: Invalidate BTB on guest exit for Cortex A17 and 12
>   xen/arm32: Invalidate icache on guest exist for Cortex-A15
>   xen/arm32: entry: Document the purpose of r11 in the traps handler
> 
>  xen/arch/arm/Kconfig            |   3 +
>  xen/arch/arm/arm32/entry.S      | 147 +++++++++++++++++++++++++++++++++-------
>  xen/arch/arm/arm32/traps.c      |   5 ++
>  xen/arch/arm/cpuerrata.c        |  62 +++++++++++++++++
>  xen/include/asm-arm/processor.h |   4 ++
>  5 files changed, 196 insertions(+), 25 deletions(-)
> 
> -- 
> 2.11.0
>