From patchwork Tue Jun 12 20:24:08 2018
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Nishanth Menon <nm@ti.com>
X-Patchwork-Id: 10461211
Return-Path: 
 <linux-arm-kernel-bounces+patchwork-linux-arm=patchwork.kernel.org@lists.infradead.org>
Received: from mail.wl.linuxfoundation.org (pdx-wl-mail.web.codeaurora.org
	[172.30.200.125])
	by pdx-korg-patchwork.web.codeaurora.org (Postfix) with ESMTP id
	8274B603B4 for <patchwork-linux-arm@patchwork.kernel.org>;
	Tue, 12 Jun 2018 20:56:02 +0000 (UTC)
Received: from mail.wl.linuxfoundation.org (localhost [127.0.0.1])
	by mail.wl.linuxfoundation.org (Postfix) with ESMTP id 7B301288BF
	for <patchwork-linux-arm@patchwork.kernel.org>;
	Tue, 12 Jun 2018 20:56:02 +0000 (UTC)
Received: by mail.wl.linuxfoundation.org (Postfix, from userid 486)
	id 6F52228BD7; Tue, 12 Jun 2018 20:56:02 +0000 (UTC)
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
	pdx-wl-mail.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-2.9 required=2.0 tests=BAYES_00,DKIM_SIGNED,
	DKIM_VALID,MAILING_LIST_MULTI autolearn=ham version=3.3.1
Received: from bombadil.infradead.org (bombadil.infradead.org
	[198.137.202.133])
	(using TLSv1.2 with cipher AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by mail.wl.linuxfoundation.org (Postfix) with ESMTPS id DA7CC288BF
	for <patchwork-linux-arm@patchwork.kernel.org>;
	Tue, 12 Jun 2018 20:56:01 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
	d=lists.infradead.org; s=bombadil.20170209; h=Sender:
	Content-Transfer-Encoding:Content-Type:Cc:List-Subscribe:List-Help:List-Post:
	List-Archive:List-Unsubscribe:List-Id:MIME-Version:References:In-Reply-To:
	Message-ID:Date:Subject:To:From:Reply-To:Content-ID:Content-Description:
	Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:
	List-Owner; bh=J2IwGh3g16tpc3nSKNxrmP9u1yOeVaKNqFMwrnWHduk=;
	b=evTBkTOfMu0k/t
	wFjcdeXZa9co6/fp2cPrhVdTDsvaiUEEf8aRr2rhaRZQpj8sFah6HapH51gVcqpLOY0aPe5wYN6cy
	qvLWC1pVzDaErNHMMUhzE91+1MX2zML15IBoxieE9FJ72NhscX1JOc4//1HuLP2j3Hy3di8z+xoW2
	tg5GbvZz3sjmvGdCiVkb1NxFYEt8Y0aILfMPdr9NdB0iX4zBWRDQIJoHc4HnjtJ0lg9M7tl1vbqd9
	5hY6BPDt7yPhx/CcgxFV2LrTv1QjaNCaE69mLdbbl20XZjcduxygGsyT5FBdCHkwidBgGMZ1rfprw
	YbJNRthpLxsNsT0IZjKw==;
Received: from localhost ([127.0.0.1] helo=bombadil.infradead.org)
	by bombadil.infradead.org with esmtp (Exim 4.90_1 #2 (Red Hat Linux))
	id 1fSqKU-00043X-Vw; Tue, 12 Jun 2018 20:55:51 +0000
Received: from merlin.infradead.org ([2001:8b0:10b:1231::1])
	by bombadil.infradead.org with esmtps (Exim 4.90_1 #2 (Red Hat
	Linux)) id 1fSqIq-0001mT-Rl
	for linux-arm-kernel@bombadil.infradead.org;
	Tue, 12 Jun 2018 20:54:08 +0000
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
	d=infradead.org; s=merlin.20170209;
	h=Content-Type:MIME-Version:References:
	In-Reply-To:Message-ID:Date:Subject:CC:To:From:Sender:Reply-To:
	Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:
	Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id:
	List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive;
	bh=uuJMPpftT0qN2v3iDWzOw80+IY4nlQgBbXrNGnlcEAY=;
	b=oieiMAAi5txziJ6uILJWpYBLg
	S/FKTBJyY6jPv6YxXaG5SHsLrLwsHsZ6GkAVI9tbnz96dpAXJAyHywqckmMsqtKwRkMWXr240eTb/
	ucKnm9ve7qn3OH9BWnqsa8DvqY7kvgd3XhXTbnwyvQtzECquvNn4TNqntswm1/UY9vC++HqDmjOfU
	8wrnCUeu+NGSMJU+Hg0UNcqvUkWViV6hZU5xqBbMDSbMQfX0XuvjPFJo2NNcWMWG8f0hso9cUWmWd
	mgBDY/70HuHf0f43FF1x74sNFmNKA1libSOgJmAnuKgTr/6Ue9rtUzFHHIqStvFBgdoRz+grYH3s+
	44+j08H5Q==;
Received: from fllnx210.ext.ti.com ([198.47.19.17])
	by merlin.infradead.org with esmtps (Exim 4.90_1 #2 (Red Hat Linux))
	id 1fSpqZ-0006pk-El for linux-arm-kernel@lists.infradead.org;
	Tue, 12 Jun 2018 20:24:58 +0000
Received: from dlelxv90.itg.ti.com ([172.17.2.17])
	by fllnx210.ext.ti.com (8.15.1/8.15.1) with ESMTP id w5CKODGc002681;
	Tue, 12 Jun 2018 15:24:13 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ti.com;
	s=ti-com-17Q1; t=1528835053;
	bh=uuJMPpftT0qN2v3iDWzOw80+IY4nlQgBbXrNGnlcEAY=;
	h=From:To:CC:Subject:Date:In-Reply-To:References;
	b=ckw6LlT1m+SLXkbRTDeZT/z5PvZ9HquO1qDOo3HWEw8LZAjTU2lwMCZPHrVycbWXM
	KGf/M80ueduQaf+/B2DObtSN8xwtzEoxOwXewp7hxbgrOwoOTCP3TAzvVkNcpVr0/R
	HiRYI2eA1Yzm2OIJy3NnshPIAT4Y9sqdAEg2cDJw=
Received: from DLEE104.ent.ti.com (dlee104.ent.ti.com [157.170.170.34])
	by dlelxv90.itg.ti.com (8.14.3/8.13.8) with ESMTP id w5CKODEG011472;
	Tue, 12 Jun 2018 15:24:13 -0500
Received: from DLEE103.ent.ti.com (157.170.170.33) by DLEE104.ent.ti.com
	(157.170.170.34) with Microsoft SMTP Server (version=TLS1_2,
	cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3;
	Tue, 12 Jun 2018 15:24:12 -0500
Received: from dlep32.itg.ti.com (157.170.170.100) by DLEE103.ent.ti.com
	(157.170.170.33) with Microsoft SMTP Server (version=TLS1_0,
	cipher=TLS_RSA_WITH_AES_256_CBC_SHA) id 15.1.1466.3 via Frontend
	Transport; Tue, 12 Jun 2018 15:24:12 -0500
Received: from localhost (ileax41-snat.itg.ti.com [10.172.224.153])
	by dlep32.itg.ti.com (8.14.3/8.13.8) with ESMTP id w5CKOCLf030864;
	Tue, 12 Jun 2018 15:24:12 -0500
From: Nishanth Menon <nm@ti.com>
To: Tom Rini <trini@konsulko.com>, Russell King <linux@arm.linux.org.uk>,
	Marc Zyngier <marc.zyngier@arm.com>,
	Catalin Marinas <catalin.marinas@arm.com>,
	Will Deacon <will.deacon@arm.com>, Tony Lindgren <tony@atomide.com>
Subject: [PATCH 1/4] ARM: Introduce ability to enable ACR::IBE on Cortex-A8
	for CVE-2017-5715
Date: Tue, 12 Jun 2018 15:24:08 -0500
Message-ID: <20180612202411.29798-2-nm@ti.com>
X-Mailer: git-send-email 2.15.1
In-Reply-To: <20180612202411.29798-1-nm@ti.com>
References: <20180612202411.29798-1-nm@ti.com>
MIME-Version: 1.0
X-EXCLAIMER-MD-CONFIG: e1e8a2fd-e40a-4ac6-ac9b-f7e9cc9ee180
X-CRM114-Version: 20100106-BlameMichelson ( TRE 0.8.0 (BSD) ) MR-646709E3 
X-CRM114-CacheID: sfid-20180612_162455_591702_EE285ECD 
X-CRM114-Status: GOOD (  13.97  )
X-BeenThere: linux-arm-kernel@lists.infradead.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: <linux-arm-kernel.lists.infradead.org>
List-Unsubscribe: 
 <http://lists.infradead.org/mailman/options/linux-arm-kernel>,
	<mailto:linux-arm-kernel-request@lists.infradead.org?subject=unsubscribe>
List-Archive: <http://lists.infradead.org/pipermail/linux-arm-kernel/>
List-Post: <mailto:linux-arm-kernel@lists.infradead.org>
List-Help: <mailto:linux-arm-kernel-request@lists.infradead.org?subject=help>
List-Subscribe: 
 <http://lists.infradead.org/mailman/listinfo/linux-arm-kernel>,
	<mailto:linux-arm-kernel-request@lists.infradead.org?subject=subscribe>
Cc: Nishanth Menon <nm@ti.com>, Florian Fainelli <f.fainelli@gmail.com>,
	Ard Biesheuvel <ard.biesheuvel@linaro.org>,
	Andre Przywara <Andre.Przywara@arm.com>,
	U-Boot-Denx <u-boot@lists.denx.de>,
	Christoffer Dall <christoffer.dall@linaro.org>,
	Fabio Estevam <festevam@gmail.com>,
	Michael Nazzareno Trimarchi <michael@amarulasolutions.com>,
	Robin Murphy <robin.murphy@arm.com>,
	Marek Vasut <marek.vasut@gmail.com>,
	linux-arm-kernel@lists.infradead.org
Sender: "linux-arm-kernel" <linux-arm-kernel-bounces@lists.infradead.org>
Errors-To: 
 linux-arm-kernel-bounces+patchwork-linux-arm=patchwork.kernel.org@lists.infradead.org
X-Virus-Scanned: ClamAV using ClamSMTP

As recommended by Arm in [1], IBE[2] has to be enabled unconditionally
for BPIALL to be functional on Cortex-A8 processors. Provide a config
option for platforms to enable this option based on impact analysis
for products.

NOTE: This patch in itself is NOT the final solution, this requires:
a) Implementation of v7_arch_cp15_set_acr on SoCs which may not
   provide direct access to ACR register.
b) Operating Systems such as Linux to provide adequate workaround in the right
   locations.
c) This workaround applies to only the boot processor. It is important
   to apply workaround as necessary (context-save-restore) around low
   power context loss OR additional processors as necessary in either
   firmware support OR elsewhere in OS.

[1] https://developer.arm.com/support/security-update
[2] http://infocenter.arm.com/help/topic/com.arm.doc.ddi0344k/Bgbffjhh.html

Cc: Marc Zyngier <marc.zyngier@arm.com>
Cc: Russell King <linux@arm.linux.org.uk>
Cc: Tony Lindgren <tony@atomide.com>
Cc: Robin Murphy <robin.murphy@arm.com>
Cc: Florian Fainelli <f.fainelli@gmail.com>
Cc: Catalin Marinas <catalin.marinas@arm.com>
Cc: Will Deacon <will.deacon@arm.com>
Cc: Christoffer Dall <christoffer.dall@linaro.org>
Cc: Andre Przywara <Andre.Przywara@arm.com>
Cc: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Cc: Tom Rini <trini@konsulko.com>
Cc: Michael Nazzareno Trimarchi <michael@amarulasolutions.com>

Signed-off-by: Nishanth Menon <nm@ti.com>
Tested-by: Fabio Estevam <fabio.estevam@nxp.com>
---
 arch/arm/Kconfig           | 5 +++++
 arch/arm/cpu/armv7/start.S | 7 +++++--
 2 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/arch/arm/Kconfig b/arch/arm/Kconfig
index dde422bc5d53..9e32d5b43cb0 100644
--- a/arch/arm/Kconfig
+++ b/arch/arm/Kconfig
@@ -108,6 +108,8 @@ config SYS_ARM_MPU
 # CONFIG_ARM_ERRATA_621766
 # CONFIG_ARM_ERRATA_798870
 # CONFIG_ARM_ERRATA_801819
+# CONFIG_ARM_CORTEX_A8_CVE_2017_5715
+
 config ARM_ERRATA_430973
 	bool
 
@@ -177,6 +179,9 @@ config ARM_ERRATA_852423
 config ARM_ERRATA_855873
 	bool
 
+config ARM_CORTEX_A8_CVE_2017_5715
+	bool
+
 config CPU_ARM720T
 	bool
 	select SYS_CACHE_SHIFT_5
diff --git a/arch/arm/cpu/armv7/start.S b/arch/arm/cpu/armv7/start.S
index c996525f861e..3beaf5a93d81 100644
--- a/arch/arm/cpu/armv7/start.S
+++ b/arch/arm/cpu/armv7/start.S
@@ -252,12 +252,15 @@ skip_errata_801819:
 	pop	{r1-r5}			@ Restore the cpu info - fall through
 #endif
 
-#ifdef CONFIG_ARM_ERRATA_430973
+#if defined(CONFIG_ARM_ERRATA_430973) || defined (CONFIG_ARM_CORTEX_A8_CVE_2017_5715)
 	mrc	p15, 0, r0, c1, c0, 1	@ Read ACR
 
+#ifdef CONFIG_ARM_CORTEX_A8_CVE_2017_5715
+	orr	r0, r0, #(0x1 << 6)	@ Set IBE bit always to enable OS WA
+#else
 	cmp	r2, #0x21		@ Only on < r2p1
 	orrlt	r0, r0, #(0x1 << 6)	@ Set IBE bit
-
+#endif
 	push	{r1-r5}			@ Save the cpu info registers
 	bl	v7_arch_cp15_set_acr
 	pop	{r1-r5}			@ Restore the cpu info - fall through