[PATCH v3 1/6] arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17

[PATCH v3 0/6] 32bit ARM branch predictor hardening · Marc Zyngier <hidden> · 2018-01-25
[PATCH v3 1/6] arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17 · Marc Zyngier <hidden> · 2018-01-25
[PATCH v3 1/6] arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17 · f.fainelli@gmail.com (Florian Fainelli) · 2018-01-26
[PATCH v3 1/6] arm: Add BTB invalidation on switch_mm for Cortex-A9, A12 and A17 · Marc Zyngier <hidden> · 2018-01-30
[PATCH v3 2/6] arm: Invalidate BTB on prefetch abort outside of user mapping on Cortex A8, A9, A12 and A17 · Marc Zyngier <hidden> · 2018-01-25
[PATCH v3 2/6] arm: Invalidate BTB on prefetch abort outside of user mapping on Cortex A8, A9, A12 and A17 · festevam@gmail.com (Fabio Estevam) · 2018-01-31
[PATCH v3 3/6] arm: KVM: Invalidate BTB on guest exit for Cortex-A12/A17 · Marc Zyngier <hidden> · 2018-01-25
[PATCH v3 3/6] arm: KVM: Invalidate BTB on guest exit for Cortex-A12/A17 · Christoffer Dall <hidden> · 2018-01-26
[PATCH v3 3/6] arm: KVM: Invalidate BTB on guest exit for Cortex-A12/A17 · robin.murphy@arm.com (Robin Murphy) · 2018-01-26
[PATCH v3 3/6] arm: KVM: Invalidate BTB on guest exit for Cortex-A12/A17 · Marc Zyngier <hidden> · 2018-01-31
[PATCH v3 3/6] arm: KVM: Invalidate BTB on guest exit for Cortex-A12/A17 · robin.murphy@arm.com (Robin Murphy) · 2018-01-31
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · Marc Zyngier <hidden> · 2018-01-25
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · Christoffer Dall <hidden> · 2018-01-26
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · Marc Zyngier <hidden> · 2018-01-26
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · f.fainelli@gmail.com (Florian Fainelli) · 2018-01-26
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · Marc Zyngier <hidden> · 2018-01-26
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · robin.murphy@arm.com (Robin Murphy) · 2018-01-26
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · f.fainelli@gmail.com (Florian Fainelli) · 2018-01-27
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · Marc Zyngier <hidden> · 2018-01-28
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · f.fainelli@gmail.com (Florian Fainelli) · 2018-01-29
[PATCH v3 4/6] arm: Add icache invalidation on switch_mm for Cortex-A15 · Marc Zyngier <hidden> · 2018-01-29
[PATCH v3 5/6] arm: Invalidate icache on prefetch abort outside of user mapping on Cortex-A15 · Marc Zyngier <hidden> · 2018-01-25
[PATCH v3 6/6] arm: KVM: Invalidate icache on guest exit for Cortex-A15 · Marc Zyngier <hidden> · 2018-01-25
[PATCH v3 0/6] 32bit ARM branch predictor hardening · Christoffer Dall <hidden> · 2018-01-26
[PATCH v3 0/6] 32bit ARM branch predictor hardening · andre.przywara@arm.com (Andre Przywara) · 2018-01-26
[PATCH v3 0/6] 32bit ARM branch predictor hardening · guohanjun@huawei.com (Hanjun Guo) · 2018-01-29
[PATCH v3 0/6] 32bit ARM branch predictor hardening · nm@ti.com (Nishanth Menon) · 2018-01-29
[PATCH v3 0/6] 32bit ARM branch predictor hardening · guohanjun@huawei.com (Hanjun Guo) · 2018-01-31
[PATCH v3 0/6] 32bit ARM branch predictor hardening · f.fainelli@gmail.com (Florian Fainelli) · 2018-01-31
[PATCH v3 0/6] 32bit ARM branch predictor hardening · Marc Zyngier <hidden> · 2018-01-31
[PATCH v3 0/6] 32bit ARM branch predictor hardening · andre.przywara@arm.com (André Przywara) · 2018-01-31
[PATCH v3 0/6] 32bit ARM branch predictor hardening · f.fainelli@gmail.com (Florian Fainelli) · 2018-01-31

STALE3044d

From: f.fainelli@gmail.com (Florian Fainelli)
Date: 2018-01-26 20:44:16

On 01/25/2018 07:21 AM, Marc Zyngier wrote:

In order to avoid aliasing attacks against the branch predictor,
some implementations require to invalidate the BTB when switching
from one user context to another.

For this, we reuse the existing implementation for Cortex-A8, and
apply it to A9, A12 and A17.

Should this read: and apply it to A8, A9, A12 and A17

quoted hunk ↗ jump to hunk

Signed-off-by: Marc Zyngier <redacted>
---
 arch/arm/mm/proc-v7-2level.S |  4 ++--
 arch/arm/mm/proc-v7-3level.S |  6 ++++++
 arch/arm/mm/proc-v7.S        | 30 +++++++++++++++---------------
 3 files changed, 23 insertions(+), 17 deletions(-)

diff --git a/arch/arm/mm/proc-v7-2level.S b/arch/arm/mm/proc-v7-2level.S
index c6141a5435c3..0422e58b74e8 100644
--- a/arch/arm/mm/proc-v7-2level.S
+++ b/arch/arm/mm/proc-v7-2level.S

@@ -41,7 +41,7 @@
  *	even on Cortex-A8 revisions not affected by 430973.
  *	If IBE is not set, the flush BTAC/BTB won't do anything.
  */
-ENTRY(cpu_ca8_switch_mm)
+ENTRY(cpu_v7_btbinv_switch_mm)
 #ifdef CONFIG_MMU
 	mov	r2, #0
 	mcr	p15, 0, r2, c7, c5, 6		@ flush BTAC/BTB

@@ -66,7 +66,7 @@ ENTRY(cpu_v7_switch_mm)
 #endif
 	bx	lr
 ENDPROC(cpu_v7_switch_mm)
-ENDPROC(cpu_ca8_switch_mm)
+ENDPROC(cpu_v7_btbinv_switch_mm)
 
 /*
  *	cpu_v7_set_pte_ext(ptep, pte)

diff --git a/arch/arm/mm/proc-v7-3level.S b/arch/arm/mm/proc-v7-3level.S
index 7d16bbc4102b..934272e1fa08 100644
--- a/arch/arm/mm/proc-v7-3level.S
+++ b/arch/arm/mm/proc-v7-3level.S

@@ -54,6 +54,11 @@
  * Set the translation table base pointer to be pgd_phys (physical address of
  * the new TTB).
  */
+ENTRY(cpu_v7_btbinv_switch_mm)
+#ifdef CONFIG_MMU
+	mov	r2, #0
+	mcr	p15, 0, r2, c7, c5, 6			@ flush BTAC/BTB
+#endif
 ENTRY(cpu_v7_switch_mm)
 #ifdef CONFIG_MMU
 	mmid	r2, r2

@@ -64,6 +69,7 @@ ENTRY(cpu_v7_switch_mm)
 #endif
 	ret	lr
 ENDPROC(cpu_v7_switch_mm)
+ENDPROC(cpu_v7_btbinv_switch_mm)
 
 #ifdef __ARMEB__
 #define rl r3

diff --git a/arch/arm/mm/proc-v7.S b/arch/arm/mm/proc-v7.S
index 01d64c0b2563..0a14967fd400 100644
--- a/arch/arm/mm/proc-v7.S
+++ b/arch/arm/mm/proc-v7.S

@@ -159,18 +159,18 @@ ENDPROC(cpu_v7_do_resume)
 #endif
 
 /*
- * Cortex-A8
+ * Cortex-A8/A12/A17 that require a BTB invalidation on switch_mm

Should this read Cortex-A8/A9/A12/A17?
-- 
Florian

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help