[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [PATCH 5/5] xen/arm64: Implement branch predictor hardening for affected Cortex-A CPUs

To: Stefano Stabellini <sstabellini@xxxxxxxxxx>
From: Julien Grall <julien.grall@xxxxxxxxxx>
Date: Wed, 17 Jan 2018 10:52:50 +0000
Cc: andre.przywara@xxxxxxxxxx, xen-devel@xxxxxxxxxxxxx
Delivery-date: Wed, 17 Jan 2018 10:52:58 +0000
List-id: Xen developer discussion <xen-devel.lists.xenproject.org>

Hi Stefano,

On 17/01/18 00:42, Stefano Stabellini wrote:

On Tue, 16 Jan 2018, Julien Grall wrote:

  #define MIDR_RANGE(model, min, max)     \
@@ -205,6 +232,28 @@ static const struct arm_cpu_capabilities arm_errata[] = {
                     (1 << MIDR_VARIANT_SHIFT) | 2),
      },
  #endif
+#ifdef CONFIG_ARM64_HARDEN_BRANCH_PREDICTOR
+    {
+        .capability = ARM_HARDEN_BRANCH_PREDICTOR,
+        MIDR_ALL_VERSIONS(MIDR_CORTEX_A57),
+        .enable = enable_psci_bp_hardening,
+    },
+    {
+        .capability = ARM_HARDEN_BRANCH_PREDICTOR,
+        MIDR_ALL_VERSIONS(MIDR_CORTEX_A72),
+        .enable = enable_psci_bp_hardening,
+    },
+    {
+        .capability = ARM_HARDEN_BRANCH_PREDICTOR,
+        MIDR_ALL_VERSIONS(MIDR_CORTEX_A73),
+        .enable = enable_psci_bp_hardening,
+    },
+    {
+        .capability = ARM_HARDEN_BRANCH_PREDICTOR,
+        MIDR_ALL_VERSIONS(MIDR_CORTEX_A75),
+        .enable = enable_psci_bp_hardening,
+    },


We need to add a basic description in the desc field as it is printed by
update_cpu_capabilities.

desc field is not mandatory, and in that case I think the print would beconfusing. At the difference of the other errata, we have more check ininstall_bp_hardening_vec that may result to skip the hardening.

The errata here is covering all variant/revision of A75 models forsafety reason. Arm has introduced a new field ID_AA64PFR0_EL1.CSV2 totell whether a branch predictor trained in one context will affectspeculative execution in another context. This field is checked ininstall_bp_hardening_vec so you avoid to harden the vector tables andsmall performance hit.

IHMO, it would be better to have a per-CPU message ininstall_bp_hardening_vec announcing whether the vector tables has beenharden and the kind of hardening.


What do you think?

Cheers,

+#endif
      {},
  };

--

2.11.0


--
Julien Grall

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxxxxxxxxx
https://lists.xenproject.org/mailman/listinfo/xen-devel

Follow-Ups:
- Re: [Xen-devel] [PATCH 5/5] xen/arm64: Implement branch predictor hardening for affected Cortex-A CPUs
  - From: Stefano Stabellini

References:
- [Xen-devel] [PATCH 0/5] xen/arm64: Branch predictor hardening (XSA-254 variant 2)
  - From: Julien Grall
- [Xen-devel] [PATCH 5/5] xen/arm64: Implement branch predictor hardening for affected Cortex-A CPUs
  - From: Julien Grall
- Re: [Xen-devel] [PATCH 5/5] xen/arm64: Implement branch predictor hardening for affected Cortex-A CPUs
  - From: Stefano Stabellini

Prev by Date: Re: [Xen-devel] [PATCH 1/6] xen/pvshim: map vcpu_info earlier for APs
Next by Date: Re: [Xen-devel] [PATCH 2/6] xen/pvh: place the trampoline at page 0x1
Previous by thread: Re: [Xen-devel] [PATCH 5/5] xen/arm64: Implement branch predictor hardening for affected Cortex-A CPUs
Next by thread: Re: [Xen-devel] [PATCH 5/5] xen/arm64: Implement branch predictor hardening for affected Cortex-A CPUs
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.