1 // SPDX-License-Identifier: GPL-2.0-only
3 * Contains CPU specific errata definitions
5 * Copyright (C) 2014 ARM Ltd.
8 #include <linux/arm-smccc.h>
9 #include <linux/psci.h>
10 #include <linux/types.h>
11 #include <linux/cpu.h>
13 #include <asm/cputype.h>
14 #include <asm/cpufeature.h>
16 static bool __maybe_unused
17 is_affected_midr_range(const struct arm64_cpu_capabilities *entry, int scope)
19 const struct arm64_midr_revidr *fix;
20 u32 midr = read_cpuid_id(), revidr;
22 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
23 if (!is_midr_in_range(midr, &entry->midr_range))
26 midr &= MIDR_REVISION_MASK | MIDR_VARIANT_MASK;
27 revidr = read_cpuid(REVIDR_EL1);
28 for (fix = entry->fixed_revs; fix && fix->revidr_mask; fix++)
29 if (midr == fix->midr_rv && (revidr & fix->revidr_mask))
35 static bool __maybe_unused
36 is_affected_midr_range_list(const struct arm64_cpu_capabilities *entry,
39 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
40 return is_midr_in_range_list(read_cpuid_id(), entry->midr_range_list);
43 static bool __maybe_unused
44 is_kryo_midr(const struct arm64_cpu_capabilities *entry, int scope)
48 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
50 model = read_cpuid_id();
51 model &= MIDR_IMPLEMENTOR_MASK | (0xf00 << MIDR_PARTNUM_SHIFT) |
52 MIDR_ARCHITECTURE_MASK;
54 return model == entry->midr_range.model;
58 has_mismatched_cache_type(const struct arm64_cpu_capabilities *entry,
61 u64 mask = arm64_ftr_reg_ctrel0.strict_mask;
62 u64 sys = arm64_ftr_reg_ctrel0.sys_val & mask;
63 u64 ctr_raw, ctr_real;
65 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
68 * We want to make sure that all the CPUs in the system expose
69 * a consistent CTR_EL0 to make sure that applications behaves
70 * correctly with migration.
72 * If a CPU has CTR_EL0.IDC but does not advertise it via CTR_EL0 :
74 * 1) It is safe if the system doesn't support IDC, as CPU anyway
75 * reports IDC = 0, consistent with the rest.
77 * 2) If the system has IDC, it is still safe as we trap CTR_EL0
78 * access on this CPU via the ARM64_HAS_CACHE_IDC capability.
80 * So, we need to make sure either the raw CTR_EL0 or the effective
81 * CTR_EL0 matches the system's copy to allow a secondary CPU to boot.
83 ctr_raw = read_cpuid_cachetype() & mask;
84 ctr_real = read_cpuid_effective_cachetype() & mask;
86 return (ctr_real != sys) && (ctr_raw != sys);
90 cpu_enable_trap_ctr_access(const struct arm64_cpu_capabilities *__unused)
92 u64 mask = arm64_ftr_reg_ctrel0.strict_mask;
94 /* Trap CTR_EL0 access on this CPU, only if it has a mismatch */
95 if ((read_cpuid_cachetype() & mask) !=
96 (arm64_ftr_reg_ctrel0.sys_val & mask))
97 sysreg_clear_set(sctlr_el1, SCTLR_EL1_UCT, 0);
100 atomic_t arm64_el2_vector_last_slot = ATOMIC_INIT(-1);
102 #include <asm/mmu_context.h>
103 #include <asm/cacheflush.h>
105 DEFINE_PER_CPU_READ_MOSTLY(struct bp_hardening_data, bp_hardening_data);
107 #ifdef CONFIG_KVM_INDIRECT_VECTORS
108 extern char __smccc_workaround_1_smc_start[];
109 extern char __smccc_workaround_1_smc_end[];
111 static void __copy_hyp_vect_bpi(int slot, const char *hyp_vecs_start,
112 const char *hyp_vecs_end)
114 void *dst = lm_alias(__bp_harden_hyp_vecs_start + slot * SZ_2K);
117 for (i = 0; i < SZ_2K; i += 0x80)
118 memcpy(dst + i, hyp_vecs_start, hyp_vecs_end - hyp_vecs_start);
120 __flush_icache_range((uintptr_t)dst, (uintptr_t)dst + SZ_2K);
123 static void install_bp_hardening_cb(bp_hardening_cb_t fn,
124 const char *hyp_vecs_start,
125 const char *hyp_vecs_end)
127 static DEFINE_RAW_SPINLOCK(bp_lock);
131 * enable_smccc_arch_workaround_1() passes NULL for the hyp_vecs
132 * start/end if we're a guest. Skip the hyp-vectors work.
134 if (!hyp_vecs_start) {
135 __this_cpu_write(bp_hardening_data.fn, fn);
139 raw_spin_lock(&bp_lock);
140 for_each_possible_cpu(cpu) {
141 if (per_cpu(bp_hardening_data.fn, cpu) == fn) {
142 slot = per_cpu(bp_hardening_data.hyp_vectors_slot, cpu);
148 slot = atomic_inc_return(&arm64_el2_vector_last_slot);
149 BUG_ON(slot >= BP_HARDEN_EL2_SLOTS);
150 __copy_hyp_vect_bpi(slot, hyp_vecs_start, hyp_vecs_end);
153 __this_cpu_write(bp_hardening_data.hyp_vectors_slot, slot);
154 __this_cpu_write(bp_hardening_data.fn, fn);
155 raw_spin_unlock(&bp_lock);
158 #define __smccc_workaround_1_smc_start NULL
159 #define __smccc_workaround_1_smc_end NULL
161 static void install_bp_hardening_cb(bp_hardening_cb_t fn,
162 const char *hyp_vecs_start,
163 const char *hyp_vecs_end)
165 __this_cpu_write(bp_hardening_data.fn, fn);
167 #endif /* CONFIG_KVM_INDIRECT_VECTORS */
169 #include <uapi/linux/psci.h>
170 #include <linux/arm-smccc.h>
171 #include <linux/psci.h>
173 static void call_smc_arch_workaround_1(void)
175 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_WORKAROUND_1, NULL);
178 static void call_hvc_arch_workaround_1(void)
180 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_WORKAROUND_1, NULL);
183 static void qcom_link_stack_sanitization(void)
187 asm volatile("mov %0, x30 \n"
195 static bool __nospectre_v2;
196 static int __init parse_nospectre_v2(char *str)
198 __nospectre_v2 = true;
201 early_param("nospectre_v2", parse_nospectre_v2);
205 * 0: No workaround required
206 * 1: Workaround installed
208 static int detect_harden_bp_fw(void)
210 bp_hardening_cb_t cb;
211 void *smccc_start, *smccc_end;
212 struct arm_smccc_res res;
213 u32 midr = read_cpuid_id();
215 if (psci_ops.smccc_version == SMCCC_VERSION_1_0)
218 switch (psci_ops.conduit) {
219 case PSCI_CONDUIT_HVC:
220 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID,
221 ARM_SMCCC_ARCH_WORKAROUND_1, &res);
222 switch ((int)res.a0) {
224 /* Firmware says we're just fine */
227 cb = call_hvc_arch_workaround_1;
228 /* This is a guest, no need to patch KVM vectors */
237 case PSCI_CONDUIT_SMC:
238 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID,
239 ARM_SMCCC_ARCH_WORKAROUND_1, &res);
240 switch ((int)res.a0) {
242 /* Firmware says we're just fine */
245 cb = call_smc_arch_workaround_1;
246 smccc_start = __smccc_workaround_1_smc_start;
247 smccc_end = __smccc_workaround_1_smc_end;
258 if (((midr & MIDR_CPU_MODEL_MASK) == MIDR_QCOM_FALKOR) ||
259 ((midr & MIDR_CPU_MODEL_MASK) == MIDR_QCOM_FALKOR_V1))
260 cb = qcom_link_stack_sanitization;
262 if (IS_ENABLED(CONFIG_HARDEN_BRANCH_PREDICTOR))
263 install_bp_hardening_cb(cb, smccc_start, smccc_end);
268 DEFINE_PER_CPU_READ_MOSTLY(u64, arm64_ssbd_callback_required);
270 int ssbd_state __read_mostly = ARM64_SSBD_KERNEL;
271 static bool __ssb_safe = true;
273 static const struct ssbd_options {
277 { "force-on", ARM64_SSBD_FORCE_ENABLE, },
278 { "force-off", ARM64_SSBD_FORCE_DISABLE, },
279 { "kernel", ARM64_SSBD_KERNEL, },
282 static int __init ssbd_cfg(char *buf)
289 for (i = 0; i < ARRAY_SIZE(ssbd_options); i++) {
290 int len = strlen(ssbd_options[i].str);
292 if (strncmp(buf, ssbd_options[i].str, len))
295 ssbd_state = ssbd_options[i].state;
301 early_param("ssbd", ssbd_cfg);
303 void __init arm64_update_smccc_conduit(struct alt_instr *alt,
304 __le32 *origptr, __le32 *updptr,
309 BUG_ON(nr_inst != 1);
311 switch (psci_ops.conduit) {
312 case PSCI_CONDUIT_HVC:
313 insn = aarch64_insn_get_hvc_value();
315 case PSCI_CONDUIT_SMC:
316 insn = aarch64_insn_get_smc_value();
322 *updptr = cpu_to_le32(insn);
325 void __init arm64_enable_wa2_handling(struct alt_instr *alt,
326 __le32 *origptr, __le32 *updptr,
329 BUG_ON(nr_inst != 1);
331 * Only allow mitigation on EL1 entry/exit and guest
332 * ARCH_WORKAROUND_2 handling if the SSBD state allows it to
335 if (arm64_get_ssbd_state() == ARM64_SSBD_KERNEL)
336 *updptr = cpu_to_le32(aarch64_insn_gen_nop());
339 void arm64_set_ssbd_mitigation(bool state)
341 if (!IS_ENABLED(CONFIG_ARM64_SSBD)) {
342 pr_info_once("SSBD disabled by kernel configuration\n");
346 if (this_cpu_has_cap(ARM64_SSBS)) {
348 asm volatile(SET_PSTATE_SSBS(0));
350 asm volatile(SET_PSTATE_SSBS(1));
354 switch (psci_ops.conduit) {
355 case PSCI_CONDUIT_HVC:
356 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_WORKAROUND_2, state, NULL);
359 case PSCI_CONDUIT_SMC:
360 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_WORKAROUND_2, state, NULL);
369 static bool has_ssbd_mitigation(const struct arm64_cpu_capabilities *entry,
372 struct arm_smccc_res res;
373 bool required = true;
375 bool this_cpu_safe = false;
377 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
379 if (cpu_mitigations_off())
380 ssbd_state = ARM64_SSBD_FORCE_DISABLE;
382 /* delay setting __ssb_safe until we get a firmware response */
383 if (is_midr_in_range_list(read_cpuid_id(), entry->midr_range_list))
384 this_cpu_safe = true;
386 if (this_cpu_has_cap(ARM64_SSBS)) {
393 if (psci_ops.smccc_version == SMCCC_VERSION_1_0) {
394 ssbd_state = ARM64_SSBD_UNKNOWN;
400 switch (psci_ops.conduit) {
401 case PSCI_CONDUIT_HVC:
402 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID,
403 ARM_SMCCC_ARCH_WORKAROUND_2, &res);
406 case PSCI_CONDUIT_SMC:
407 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID,
408 ARM_SMCCC_ARCH_WORKAROUND_2, &res);
412 ssbd_state = ARM64_SSBD_UNKNOWN;
421 case SMCCC_RET_NOT_SUPPORTED:
422 ssbd_state = ARM64_SSBD_UNKNOWN;
427 /* machines with mixed mitigation requirements must not return this */
428 case SMCCC_RET_NOT_REQUIRED:
429 pr_info_once("%s mitigation not required\n", entry->desc);
430 ssbd_state = ARM64_SSBD_MITIGATED;
433 case SMCCC_RET_SUCCESS:
438 case 1: /* Mitigation not required on this CPU */
449 switch (ssbd_state) {
450 case ARM64_SSBD_FORCE_DISABLE:
451 arm64_set_ssbd_mitigation(false);
455 case ARM64_SSBD_KERNEL:
457 __this_cpu_write(arm64_ssbd_callback_required, 1);
458 arm64_set_ssbd_mitigation(true);
462 case ARM64_SSBD_FORCE_ENABLE:
463 arm64_set_ssbd_mitigation(true);
473 switch (ssbd_state) {
474 case ARM64_SSBD_FORCE_DISABLE:
475 pr_info_once("%s disabled from command-line\n", entry->desc);
478 case ARM64_SSBD_FORCE_ENABLE:
479 pr_info_once("%s forced from command-line\n", entry->desc);
486 /* known invulnerable cores */
487 static const struct midr_range arm64_ssb_cpus[] = {
488 MIDR_ALL_VERSIONS(MIDR_CORTEX_A35),
489 MIDR_ALL_VERSIONS(MIDR_CORTEX_A53),
490 MIDR_ALL_VERSIONS(MIDR_CORTEX_A55),
494 #ifdef CONFIG_ARM64_ERRATUM_1463225
495 DEFINE_PER_CPU(int, __in_cortex_a76_erratum_1463225_wa);
498 has_cortex_a76_erratum_1463225(const struct arm64_cpu_capabilities *entry,
501 u32 midr = read_cpuid_id();
502 /* Cortex-A76 r0p0 - r3p1 */
503 struct midr_range range = MIDR_RANGE(MIDR_CORTEX_A76, 0, 0, 3, 1);
505 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
506 return is_midr_in_range(midr, &range) && is_kernel_in_hyp_mode();
510 static void __maybe_unused
511 cpu_enable_cache_maint_trap(const struct arm64_cpu_capabilities *__unused)
513 sysreg_clear_set(sctlr_el1, SCTLR_EL1_UCI, 0);
516 #define CAP_MIDR_RANGE(model, v_min, r_min, v_max, r_max) \
517 .matches = is_affected_midr_range, \
518 .midr_range = MIDR_RANGE(model, v_min, r_min, v_max, r_max)
520 #define CAP_MIDR_ALL_VERSIONS(model) \
521 .matches = is_affected_midr_range, \
522 .midr_range = MIDR_ALL_VERSIONS(model)
524 #define MIDR_FIXED(rev, revidr_mask) \
525 .fixed_revs = (struct arm64_midr_revidr[]){{ (rev), (revidr_mask) }, {}}
527 #define ERRATA_MIDR_RANGE(model, v_min, r_min, v_max, r_max) \
528 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, \
529 CAP_MIDR_RANGE(model, v_min, r_min, v_max, r_max)
531 #define CAP_MIDR_RANGE_LIST(list) \
532 .matches = is_affected_midr_range_list, \
533 .midr_range_list = list
535 /* Errata affecting a range of revisions of given model variant */
536 #define ERRATA_MIDR_REV_RANGE(m, var, r_min, r_max) \
537 ERRATA_MIDR_RANGE(m, var, r_min, var, r_max)
539 /* Errata affecting a single variant/revision of a model */
540 #define ERRATA_MIDR_REV(model, var, rev) \
541 ERRATA_MIDR_RANGE(model, var, rev, var, rev)
543 /* Errata affecting all variants/revisions of a given a model */
544 #define ERRATA_MIDR_ALL_VERSIONS(model) \
545 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, \
546 CAP_MIDR_ALL_VERSIONS(model)
548 /* Errata affecting a list of midr ranges, with same work around */
549 #define ERRATA_MIDR_RANGE_LIST(midr_list) \
550 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, \
551 CAP_MIDR_RANGE_LIST(midr_list)
553 /* Track overall mitigation state. We are only mitigated if all cores are ok */
554 static bool __hardenbp_enab = true;
555 static bool __spectrev2_safe = true;
557 int get_spectre_v2_workaround_state(void)
559 if (__spectrev2_safe)
560 return ARM64_BP_HARDEN_NOT_REQUIRED;
562 if (!__hardenbp_enab)
563 return ARM64_BP_HARDEN_UNKNOWN;
565 return ARM64_BP_HARDEN_WA_NEEDED;
569 * List of CPUs that do not need any Spectre-v2 mitigation at all.
571 static const struct midr_range spectre_v2_safe_list[] = {
572 MIDR_ALL_VERSIONS(MIDR_CORTEX_A35),
573 MIDR_ALL_VERSIONS(MIDR_CORTEX_A53),
574 MIDR_ALL_VERSIONS(MIDR_CORTEX_A55),
579 * Track overall bp hardening for all heterogeneous cores in the machine.
580 * We are only considered "safe" if all booted cores are known safe.
582 static bool __maybe_unused
583 check_branch_predictor(const struct arm64_cpu_capabilities *entry, int scope)
587 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
589 /* If the CPU has CSV2 set, we're safe */
590 if (cpuid_feature_extract_unsigned_field(read_cpuid(ID_AA64PFR0_EL1),
591 ID_AA64PFR0_CSV2_SHIFT))
594 /* Alternatively, we have a list of unaffected CPUs */
595 if (is_midr_in_range_list(read_cpuid_id(), spectre_v2_safe_list))
598 /* Fallback to firmware detection */
599 need_wa = detect_harden_bp_fw();
603 __spectrev2_safe = false;
605 if (!IS_ENABLED(CONFIG_HARDEN_BRANCH_PREDICTOR)) {
606 pr_warn_once("spectrev2 mitigation disabled by kernel configuration\n");
607 __hardenbp_enab = false;
612 if (__nospectre_v2 || cpu_mitigations_off()) {
613 pr_info_once("spectrev2 mitigation disabled by command line option\n");
614 __hardenbp_enab = false;
619 pr_warn_once("ARM_SMCCC_ARCH_WORKAROUND_1 missing from firmware\n");
620 __hardenbp_enab = false;
623 return (need_wa > 0);
626 #ifdef CONFIG_HARDEN_EL2_VECTORS
628 static const struct midr_range arm64_harden_el2_vectors[] = {
629 MIDR_ALL_VERSIONS(MIDR_CORTEX_A57),
630 MIDR_ALL_VERSIONS(MIDR_CORTEX_A72),
636 #ifdef CONFIG_ARM64_WORKAROUND_REPEAT_TLBI
638 static const struct midr_range arm64_repeat_tlbi_cpus[] = {
639 #ifdef CONFIG_QCOM_FALKOR_ERRATUM_1009
640 MIDR_RANGE(MIDR_QCOM_FALKOR_V1, 0, 0, 0, 0),
642 #ifdef CONFIG_ARM64_ERRATUM_1286807
643 MIDR_RANGE(MIDR_CORTEX_A76, 0, 0, 3, 0),
650 #ifdef CONFIG_CAVIUM_ERRATUM_27456
651 const struct midr_range cavium_erratum_27456_cpus[] = {
652 /* Cavium ThunderX, T88 pass 1.x - 2.1 */
653 MIDR_RANGE(MIDR_THUNDERX, 0, 0, 1, 1),
654 /* Cavium ThunderX, T81 pass 1.0 */
655 MIDR_REV(MIDR_THUNDERX_81XX, 0, 0),
660 #ifdef CONFIG_CAVIUM_ERRATUM_30115
661 static const struct midr_range cavium_erratum_30115_cpus[] = {
662 /* Cavium ThunderX, T88 pass 1.x - 2.2 */
663 MIDR_RANGE(MIDR_THUNDERX, 0, 0, 1, 2),
664 /* Cavium ThunderX, T81 pass 1.0 - 1.2 */
665 MIDR_REV_RANGE(MIDR_THUNDERX_81XX, 0, 0, 2),
666 /* Cavium ThunderX, T83 pass 1.0 */
667 MIDR_REV(MIDR_THUNDERX_83XX, 0, 0),
672 #ifdef CONFIG_QCOM_FALKOR_ERRATUM_1003
673 static const struct arm64_cpu_capabilities qcom_erratum_1003_list[] = {
675 ERRATA_MIDR_REV(MIDR_QCOM_FALKOR_V1, 0, 0),
678 .midr_range.model = MIDR_QCOM_KRYO,
679 .matches = is_kryo_midr,
685 #ifdef CONFIG_ARM64_WORKAROUND_CLEAN_CACHE
686 static const struct midr_range workaround_clean_cache[] = {
687 #if defined(CONFIG_ARM64_ERRATUM_826319) || \
688 defined(CONFIG_ARM64_ERRATUM_827319) || \
689 defined(CONFIG_ARM64_ERRATUM_824069)
690 /* Cortex-A53 r0p[012]: ARM errata 826319, 827319, 824069 */
691 MIDR_REV_RANGE(MIDR_CORTEX_A53, 0, 0, 2),
693 #ifdef CONFIG_ARM64_ERRATUM_819472
694 /* Cortex-A53 r0p[01] : ARM errata 819472 */
695 MIDR_REV_RANGE(MIDR_CORTEX_A53, 0, 0, 1),
701 #ifdef CONFIG_ARM64_ERRATUM_1418040
703 * - 1188873 affects r0p0 to r2p0
704 * - 1418040 affects r0p0 to r3p1
706 static const struct midr_range erratum_1418040_list[] = {
707 /* Cortex-A76 r0p0 to r3p1 */
708 MIDR_RANGE(MIDR_CORTEX_A76, 0, 0, 3, 1),
709 /* Neoverse-N1 r0p0 to r3p1 */
710 MIDR_RANGE(MIDR_NEOVERSE_N1, 0, 0, 3, 1),
715 const struct arm64_cpu_capabilities arm64_errata[] = {
716 #ifdef CONFIG_ARM64_WORKAROUND_CLEAN_CACHE
718 .desc = "ARM errata 826319, 827319, 824069, 819472",
719 .capability = ARM64_WORKAROUND_CLEAN_CACHE,
720 ERRATA_MIDR_RANGE_LIST(workaround_clean_cache),
721 .cpu_enable = cpu_enable_cache_maint_trap,
724 #ifdef CONFIG_ARM64_ERRATUM_832075
726 /* Cortex-A57 r0p0 - r1p2 */
727 .desc = "ARM erratum 832075",
728 .capability = ARM64_WORKAROUND_DEVICE_LOAD_ACQUIRE,
729 ERRATA_MIDR_RANGE(MIDR_CORTEX_A57,
734 #ifdef CONFIG_ARM64_ERRATUM_834220
736 /* Cortex-A57 r0p0 - r1p2 */
737 .desc = "ARM erratum 834220",
738 .capability = ARM64_WORKAROUND_834220,
739 ERRATA_MIDR_RANGE(MIDR_CORTEX_A57,
744 #ifdef CONFIG_ARM64_ERRATUM_843419
746 /* Cortex-A53 r0p[01234] */
747 .desc = "ARM erratum 843419",
748 .capability = ARM64_WORKAROUND_843419,
749 ERRATA_MIDR_REV_RANGE(MIDR_CORTEX_A53, 0, 0, 4),
750 MIDR_FIXED(0x4, BIT(8)),
753 #ifdef CONFIG_ARM64_ERRATUM_845719
755 /* Cortex-A53 r0p[01234] */
756 .desc = "ARM erratum 845719",
757 .capability = ARM64_WORKAROUND_845719,
758 ERRATA_MIDR_REV_RANGE(MIDR_CORTEX_A53, 0, 0, 4),
761 #ifdef CONFIG_CAVIUM_ERRATUM_23154
763 /* Cavium ThunderX, pass 1.x */
764 .desc = "Cavium erratum 23154",
765 .capability = ARM64_WORKAROUND_CAVIUM_23154,
766 ERRATA_MIDR_REV_RANGE(MIDR_THUNDERX, 0, 0, 1),
769 #ifdef CONFIG_CAVIUM_ERRATUM_27456
771 .desc = "Cavium erratum 27456",
772 .capability = ARM64_WORKAROUND_CAVIUM_27456,
773 ERRATA_MIDR_RANGE_LIST(cavium_erratum_27456_cpus),
776 #ifdef CONFIG_CAVIUM_ERRATUM_30115
778 .desc = "Cavium erratum 30115",
779 .capability = ARM64_WORKAROUND_CAVIUM_30115,
780 ERRATA_MIDR_RANGE_LIST(cavium_erratum_30115_cpus),
784 .desc = "Mismatched cache type (CTR_EL0)",
785 .capability = ARM64_MISMATCHED_CACHE_TYPE,
786 .matches = has_mismatched_cache_type,
787 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM,
788 .cpu_enable = cpu_enable_trap_ctr_access,
790 #ifdef CONFIG_QCOM_FALKOR_ERRATUM_1003
792 .desc = "Qualcomm Technologies Falkor/Kryo erratum 1003",
793 .capability = ARM64_WORKAROUND_QCOM_FALKOR_E1003,
794 .matches = cpucap_multi_entry_cap_matches,
795 .match_list = qcom_erratum_1003_list,
798 #ifdef CONFIG_ARM64_WORKAROUND_REPEAT_TLBI
800 .desc = "Qualcomm erratum 1009, ARM erratum 1286807",
801 .capability = ARM64_WORKAROUND_REPEAT_TLBI,
802 ERRATA_MIDR_RANGE_LIST(arm64_repeat_tlbi_cpus),
805 #ifdef CONFIG_ARM64_ERRATUM_858921
807 /* Cortex-A73 all versions */
808 .desc = "ARM erratum 858921",
809 .capability = ARM64_WORKAROUND_858921,
810 ERRATA_MIDR_ALL_VERSIONS(MIDR_CORTEX_A73),
814 .capability = ARM64_HARDEN_BRANCH_PREDICTOR,
815 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM,
816 .matches = check_branch_predictor,
818 #ifdef CONFIG_HARDEN_EL2_VECTORS
820 .desc = "EL2 vector hardening",
821 .capability = ARM64_HARDEN_EL2_VECTORS,
822 ERRATA_MIDR_RANGE_LIST(arm64_harden_el2_vectors),
826 .desc = "Speculative Store Bypass Disable",
827 .capability = ARM64_SSBD,
828 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM,
829 .matches = has_ssbd_mitigation,
830 .midr_range_list = arm64_ssb_cpus,
832 #ifdef CONFIG_ARM64_ERRATUM_1418040
834 .desc = "ARM erratum 1418040",
835 .capability = ARM64_WORKAROUND_1418040,
836 ERRATA_MIDR_RANGE_LIST(erratum_1418040_list),
839 #ifdef CONFIG_ARM64_ERRATUM_1165522
841 /* Cortex-A76 r0p0 to r2p0 */
842 .desc = "ARM erratum 1165522",
843 .capability = ARM64_WORKAROUND_1165522,
844 ERRATA_MIDR_RANGE(MIDR_CORTEX_A76, 0, 0, 2, 0),
847 #ifdef CONFIG_ARM64_ERRATUM_1463225
849 .desc = "ARM erratum 1463225",
850 .capability = ARM64_WORKAROUND_1463225,
851 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM,
852 .matches = has_cortex_a76_erratum_1463225,
859 ssize_t cpu_show_spectre_v1(struct device *dev, struct device_attribute *attr,
862 return sprintf(buf, "Mitigation: __user pointer sanitization\n");
865 ssize_t cpu_show_spectre_v2(struct device *dev, struct device_attribute *attr,
868 switch (get_spectre_v2_workaround_state()) {
869 case ARM64_BP_HARDEN_NOT_REQUIRED:
870 return sprintf(buf, "Not affected\n");
871 case ARM64_BP_HARDEN_WA_NEEDED:
872 return sprintf(buf, "Mitigation: Branch predictor hardening\n");
873 case ARM64_BP_HARDEN_UNKNOWN:
875 return sprintf(buf, "Vulnerable\n");
879 ssize_t cpu_show_spec_store_bypass(struct device *dev,
880 struct device_attribute *attr, char *buf)
883 return sprintf(buf, "Not affected\n");
885 switch (ssbd_state) {
886 case ARM64_SSBD_KERNEL:
887 case ARM64_SSBD_FORCE_ENABLE:
888 if (IS_ENABLED(CONFIG_ARM64_SSBD))
890 "Mitigation: Speculative Store Bypass disabled via prctl\n");
893 return sprintf(buf, "Vulnerable\n");
projects / linux.git / blob