# git rev-parse -q --verify 7e1ed4da4a16e035a76001461fbd75c453b73206^{commit} 7e1ed4da4a16e035a76001461fbd75c453b73206 already have revision, skipping fetch # git checkout -q -f -B kisskb 7e1ed4da4a16e035a76001461fbd75c453b73206 # git clean -qxdf # < git log -1 # commit 7e1ed4da4a16e035a76001461fbd75c453b73206 # Author: Breno Leitao # Date: Wed Jan 30 10:46:00 2019 -0200 # # powerpc/ptrace: Mitigate potential Spectre v1 # # 'regno' is directly controlled by user space, hence leading to a potential # exploitation of the Spectre variant 1 vulnerability. # # On PTRACE_SETREGS and PTRACE_GETREGS requests, user space passes the # register number that would be read or written. This register number is # called 'regno' which is part of the 'addr' syscall parameter. # # This 'regno' value is checked against the maximum pt_regs structure size, # and then used to dereference it, which matches the initial part of a # Spectre v1 (and Spectre v1.1) attack. The dereferenced value, then, # is returned to userspace in the GETREGS case. # # This patch sanitizes 'regno' before using it to dereference pt_reg. # # Notice that given that speculation windows are large, the policy is # to kill the speculation on the first load and not worry if it can be # completed with a dependent load/store [1]. # # [1] https://marc.info/?l=linux-kernel&m=152449131114778&w=2 # # Signed-off-by: Breno Leitao # Acked-by: Gustavo A. R. Silva # Signed-off-by: Michael Ellerman # < /opt/cross/kisskb/br-aarch64-glibc-2016.08-613-ge98b4dd/bin/aarch64-linux-gcc --version # < /opt/cross/kisskb/br-aarch64-glibc-2016.08-613-ge98b4dd/bin/aarch64-linux-ld --version # < git log --format=%s --max-count=1 7e1ed4da4a16e035a76001461fbd75c453b73206 # < make -s -j 48 ARCH=arm64 O=/kisskb/build/powerpc-next_arm64-defconfig_arm64-gcc5.4 CROSS_COMPILE=/opt/cross/kisskb/br-aarch64-glibc-2016.08-613-ge98b4dd/bin/aarch64-linux- defconfig # make -s -j 48 ARCH=arm64 O=/kisskb/build/powerpc-next_arm64-defconfig_arm64-gcc5.4 CROSS_COMPILE=/opt/cross/kisskb/br-aarch64-glibc-2016.08-613-ge98b4dd/bin/aarch64-linux- arch/arm64/Makefile:27: ld does not support --fix-cortex-a53-843419; kernel may be susceptible to erratum arch/arm64/Makefile:40: LSE atomics not supported by binutils /kisskb/src/arch/arm64/boot/dts/rockchip/rk3399-gru-bob.dts:25.9-29.5: Warning (graph_port): /edp-panel/ports: graph port node name should be 'port' /kisskb/src/arch/arm64/boot/dts/rockchip/rk3399-gru-kevin.dts:46.9-50.5: Warning (graph_port): /edp-panel/ports: graph port node name should be 'port' /kisskb/src/arch/arm64/boot/dts/rockchip/rk3399-sapphire-excavator.dts:94.9-98.5: Warning (graph_port): /edp-panel/ports: graph port node name should be 'port' In file included from /kisskb/src/include/linux/rwsem.h:16:0, from /kisskb/src/include/linux/notifier.h:15, from /kisskb/src/include/linux/clk.h:17, from /kisskb/src/drivers/tty/serial/sh-sci.c:24: /kisskb/src/drivers/tty/serial/sh-sci.c: In function 'sci_submit_rx': /kisskb/src/include/linux/spinlock.h:279:3: warning: 'flags' may be used uninitialized in this function [-Wmaybe-uninitialized] _raw_spin_unlock_irqrestore(lock, flags); \ ^ /kisskb/src/drivers/tty/serial/sh-sci.c:1338:16: note: 'flags' was declared here unsigned long flags; ^ Completed OK # rm -rf /kisskb/build/powerpc-next_arm64-defconfig_arm64-gcc5.4 # Build took: 0:03:43.206417