arm64: entry: Restore tramp_map_kernel ISB

mirror of https://github.com/hardkernel/linux.git synced 2026-06-06 19:08:57 +09:00

Summit reports that the BHB backports for v4.9 prevent vulnerable
platforms from booting when CONFIG_RANDOMIZE_BASE is enabled.

This is because the trampoline code takes a translation fault when
accessing the data page, because the TTBR write hasn't been completed
by an ISB before the access is made.

Upstream has a complex erratum workaround for QCOM_FALKOR_E1003 in
this area, which removes the ISB when the workaround has been applied.
v4.9 lacks this workaround, but should still have the ISB.

Restore the barrier.

Fixes: aee10c2dd0 ("arm64: entry: Add macro for reading symbol addresses from the trampoline")
Reported-by: Sumit Gupta <sumitg@nvidia.com>
Tested-by: Sumit Gupta <sumitg@nvidia.com>
Cc: <stable@vger.kernel.org>
Signed-off-by: James Morse <james.morse@arm.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

This commit is contained in:

James Morse

2022-07-14 17:22:25 +01:00

committed by

Chris

parent 2ada6417ca

commit b1e8cbed72

1 changed files with 1 additions and 0 deletions

									
										1

arch/arm64/kernel/entry.S
									
												View File
												
				@@ -1139,6 +1139,7 @@ __ni_sys_trace:

					b	.

				2:

					tramp_map_kernel	x30

					isb

					tramp_data_read_var	x30, vectors

					prfm	plil1strm, [x30, #(1b - \vector_start)]

					msr	vbar_el1, x30

arm64: entry: Restore tramp_map_kernel ISB

1 arch/arm64/kernel/entry.S Unescape Escape View File

1

arch/arm64/kernel/entry.S

View File