[Xen-devel,0/5] xen/arm64: Branch predictor hardening (XSA-254 variant 2)

Message ID	20180116142337.24942-1-julien.grall@linaro.org
Headers	show Delivered-To: patch@linaro.org Received-SPF: pass (google.com: best guess record for domain of xen-devel-bounces@lists.xenproject.org designates 192.237.175.120 as permitted sender) client-ip=192.237.175.120; From: Julien Grall <julien.grall@linaro.org> To: xen-devel@lists.xen.org Date: Tue, 16 Jan 2018 14:23:32 +0000 Message-Id: <20180116142337.24942-1-julien.grall@linaro.org> Cc: sstabellini@kernel.org, Julien Grall <julien.grall@linaro.org>, andre.przywara@linaro.org Subject: [Xen-devel] [PATCH 0/5] xen/arm64: Branch predictor hardening (XSA-254 variant 2) Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: xen-devel-bounces@lists.xenproject.org Sender: "Xen-devel" <xen-devel-bounces@lists.xenproject.org>
Series	xen/arm64: Branch predictor hardening (XSA-254 variant 2) \| expand [Xen-devel,0/5] xen/arm64: Branch predictor hardening (XSA-254 variant 2) [Xen-devel,1/5] xen/arm: Introduce enable callback to enable a capabilities on each online CPU [Xen-devel,2/5] xen/arm64: Add missing MIDR values for Cortex-A72, A73 and A75 [Xen-devel,3/5] xen/arm: cpuerrata: Add MIDR_ALL_VERSIONS [Xen-devel,4/5] xen/arm64: Add skeleton to harden the branch predictor aliasing attacks [Xen-devel,5/5] xen/arm64: Implement branch predictor hardening for affected Cortex-A CPUs

Message ID

20180116142337.24942-1-julien.grall@linaro.org

Headers

Received-SPF: pass (google.com: best guess record for domain of
	xen-devel-bounces@lists.xenproject.org designates
	192.237.175.120 as permitted sender)
	client-ip=192.237.175.120; 
From: Julien Grall <julien.grall@linaro.org>
To: xen-devel@lists.xen.org
Date: Tue, 16 Jan 2018 14:23:32 +0000
Message-Id: <20180116142337.24942-1-julien.grall@linaro.org>
Cc: sstabellini@kernel.org, Julien Grall <julien.grall@linaro.org>,
	andre.przywara@linaro.org
Subject: [Xen-devel] [PATCH 0/5] xen/arm64: Branch predictor hardening
	(XSA-254 variant 2)
Precedence: list
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: xen-devel-bounces@lists.xenproject.org
Sender: "Xen-devel" <xen-devel-bounces@lists.xenproject.org>

Series

xen/arm64: Branch predictor hardening (XSA-254 variant 2) | expand

Message

Julien Grall Jan. 16, 2018, 2:23 p.m. UTC

Hi all,

This series provides a framework for mitigating branch predictor hardening on
Arm64 on exception entry.

It also implements a dummy PSCI "VERSION" call as the hook for affected
Cortex-A CPUs. This will invalidate the predictor state with the latest
Arm Trusted Firmware patches which will appear at [1] and SoC vendors
with affected CPUs are strongly encouraged to update. We plan to switch to a
more efficient, special-purpose call when it is available and the PSCI spec
has been updated accordingly.

For more information about the impact of this issue and the software mitigations
for Arm processors, please see http://www.arm.com/security-update.

[1] https://github.com/ARM-software/arm-trusted-firmware/wiki/ARM-Trusted-Firmware-Security-Advisory-TFV-6

Julien Grall (5):
  xen/arm: Introduce enable callback to enable a capabilities on each
    online CPU
  xen/arm64: Add missing MIDR values for Cortex-A72, A73 and A75
  xen/arm: cpuerrata: Add MIDR_ALL_VERSIONS
  xen/arm64: Add skeleton to harden the branch predictor aliasing
    attacks
  xen/arm64: Implement branch predictor hardening for affected Cortex-A
    CPUs

 xen/arch/arm/Kconfig             |  20 ++++
 xen/arch/arm/arm64/Makefile      |   1 +
 xen/arch/arm/arm64/bpi.S         |  89 +++++++++++++++++
 xen/arch/arm/cpuerrata.c         | 203 +++++++++++++++++++++++++++++++++++++++
 xen/arch/arm/cpufeature.c        |  29 ++++++
 xen/arch/arm/setup.c             |   1 +
 xen/arch/arm/traps.c             |   5 +-
 xen/include/asm-arm/cpuerrata.h  |   2 +
 xen/include/asm-arm/cpufeature.h |   6 +-
 xen/include/asm-arm/processor.h  |  11 ++-
 10 files changed, 363 insertions(+), 4 deletions(-)
 create mode 100644 xen/arch/arm/arm64/bpi.S