[U-Boot] [PATCH 3/4] ARM: mach-omap2: omap5/dra7: Enable ACTLR[0] (Enable invalidates of BTB) to facilitate CVE_2017-5715 WA in OS
Marek Vasut
marek.vasut at gmail.com
Tue Jun 12 23:06:13 UTC 2018
On 06/12/2018 10:24 PM, Nishanth Menon wrote:
> Enable CVE_2017_5715 and since we have our own v7_arch_cp15_set_acr
> function to setup the bits, we are able to override the settings.
>
> Without this enabled, Linux kernel reports:
> CPU0: Spectre v2: firmware did not set auxiliary control register IBE bit, system vulnerable
>
> With this enabled, Linux kernel reports:
> CPU0: Spectre v2: using ICIALLU workaround
>
> NOTE: This by itself does not enable the workaround for CPU1 (on
> OMAP5 and DRA72/AM572 SoCs) and may require additional kernel patches.
>
> Signed-off-by: Nishanth Menon <nm at ti.com>
> ---
> arch/arm/mach-omap2/Kconfig | 1 +
> 1 file changed, 1 insertion(+)
>
> diff --git a/arch/arm/mach-omap2/Kconfig b/arch/arm/mach-omap2/Kconfig
> index 3bb1ecb58de0..77820cc8d1e4 100644
> --- a/arch/arm/mach-omap2/Kconfig
> +++ b/arch/arm/mach-omap2/Kconfig
> @@ -53,6 +53,7 @@ config OMAP54XX
> bool "OMAP54XX SoC"
> select ARM_ERRATA_798870
> select SYS_THUMB_BUILD
> + select ARM_CORTEX_A15_CVE_2017_5715
> imply NAND_OMAP_ELM
> imply NAND_OMAP_GPMC
> imply SPL_DISPLAY_PRINT
>
Can this be enabled for all CA15 systems somehow ? I am sure there are
more that are vulnerable.
--
Best regards,
Marek Vasut
More information about the U-Boot
mailing list