fix(security): optimisations for CVE-2022-23960

author Bipin Ravi <bipin.ravi@arm.com>

Thu, 13 Oct 2022 22:25:51 +0000 (17:25 -0500)

committer Bipin Ravi <bipin.ravi@arm.com>

Wed, 26 Oct 2022 21:45:12 +0000 (16:45 -0500)
author Bipin Ravi <bipin.ravi@arm.com>
Thu, 13 Oct 2022 22:25:51 +0000 (17:25 -0500)
committer Bipin Ravi <bipin.ravi@arm.com>
Wed, 26 Oct 2022 21:45:12 +0000 (16:45 -0500)
diff --git a/include/arch/aarch64/asm_macros.S b/include/arch/aarch64/asm_macros.S

index 7706cd831b2ce0aff9fe137a2624da2e003a97bc..66c39e5f1e84bf2d3043994b492343f2c4a7977d 100644 (file)
--- a/include/arch/aarch64/asm_macros.S
+++ b/include/arch/aarch64/asm_macros.S
@@ -214,6 +214,19 @@
         ret
         .endm
  
+       /*
+        * Macro for using speculation barrier instruction introduced by
+        * FEAT_SB, if it's enabled.
+        */
+       .macro speculation_barrier
+#if ENABLE_FEAT_SB
+       sb
+#else
+       dsb     sy
+       isb
+#endif
+       .endm
+
         /*
          * Macro for mitigating against speculative execution beyond ERET. Uses the
          * speculation barrier instruction introduced by FEAT_SB, if it's enabled.
diff --git a/lib/cpus/aarch64/wa_cve_2022_23960_bhb.S b/lib/cpus/aarch64/wa_cve_2022_23960_bhb.S

index e0e41cc47ccf1aa4f32444a3642d3747c277a7ad..ceb93f1390807ecfe45ea5c53cf4097b18a9ff4c 100644 (file)
--- a/lib/cpus/aarch64/wa_cve_2022_23960_bhb.S
+++ b/lib/cpus/aarch64/wa_cve_2022_23960_bhb.S
@@ -9,11 +9,11 @@
  #if WORKAROUND_CVE_2022_23960
         /*
          * This macro applies the mitigation for CVE-2022-23960.
-         * The macro saves x2-x3 to the CPU context.
+         * The macro saves x2 to the CPU context.
           * SP should point to the CPU context.
          */
         .macro  apply_cve_2022_23960_bhb_wa _bhb_loop_count
-       stp     x2, x3, [sp, #CTX_GPREGS_OFFSET + CTX_GPREG_X2]
+       str     x2, [sp, #CTX_GPREGS_OFFSET + CTX_GPREG_X2]
  
         /* CVE-BHB-NUM loop count */
         mov     x2, \_bhb_loop_count
@@ -24,8 +24,7 @@
  2:
         subs    x2, x2, #1
         bne     1b
-       dsb     sy
-       isb
-       ldp     x2, x3, [sp, #CTX_GPREGS_OFFSET + CTX_GPREG_X2]
+       speculation_barrier
+       ldr     x2, [sp, #CTX_GPREGS_OFFSET + CTX_GPREG_X2]
         .endm
  #endif /* WORKAROUND_CVE_2022_23960 */
author	Bipin Ravi <bipin.ravi@arm.com>
	Thu, 13 Oct 2022 22:25:51 +0000 (17:25 -0500)
committer	Bipin Ravi <bipin.ravi@arm.com>
	Wed, 26 Oct 2022 21:45:12 +0000 (16:45 -0500)
include/arch/aarch64/asm_macros.S		patch \| blob \| history
lib/cpus/aarch64/wa_cve_2022_23960_bhb.S		patch \| blob \| history