[RESEND,0/8] ARM: spectre-v1.1 mitigations

Message ID	1535447316-32187-1-git-send-email-julien.thierry@arm.com (mailing list archive)
Headers	show Return-Path: <linux-arm-kernel-bounces+patchwork-linux-arm=patchwork.kernel.org@lists.infradead.org> From: Julien Thierry <julien.thierry@arm.com> To: linux-arm-kernel@lists.infradead.org, linux@armlinux.org.uk Subject: [RESEND PATCH 0/8] ARM: spectre-v1.1 mitigations Date: Tue, 28 Aug 2018 10:08:28 +0100 Message-Id: <1535447316-32187-1-git-send-email-julien.thierry@arm.com> Precedence: list Cc: mark.rutland@arm.com, will.deacon@arm.com, Julien Thierry <julien.thierry@arm.com> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: "linux-arm-kernel" <linux-arm-kernel-bounces@lists.infradead.org> Errors-To: linux-arm-kernel-bounces+patchwork-linux-arm=patchwork.kernel.org@lists.infradead.org
Series	ARM: spectre-v1.1 mitigations \| expand [RESEND,0/8] ARM: spectre-v1.1 mitigations [RESEND,1/8] ARM: uaccess: Prevent speculative use of the current addr_limit [RESEND,2/8] ARM: spectre-v1.1: force address sanitizing for __put_user*() [RESEND,3/8] ARM: spectre-v1, v1.1: provide helpers for address sanitization [RESEND,4/8] ARM: spectre-v1.1: harden __copy_to_user [RESEND,5/8] ARM: signal: copy registers using __copy_to_user() [RESEND,6/8] ARM: signal: always use __copy_to_user to save iwmmxt context [RESEND,7/8] ARM: vfp: use __copy_to_user() when saving VFP state [RESEND,8/8] ARM: oabi-compat: copy oabi events using __copy_to_user()

Message ID

1535447316-32187-1-git-send-email-julien.thierry@arm.com (mailing list archive)

Headers

From: Julien Thierry <julien.thierry@arm.com>
To: linux-arm-kernel@lists.infradead.org,
	linux@armlinux.org.uk
Subject: [RESEND PATCH 0/8] ARM: spectre-v1.1 mitigations
Date: Tue, 28 Aug 2018 10:08:28 +0100
Message-Id: <1535447316-32187-1-git-send-email-julien.thierry@arm.com>
Precedence: list
Cc: mark.rutland@arm.com, will.deacon@arm.com,
 Julien Thierry <julien.thierry@arm.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "linux-arm-kernel" <linux-arm-kernel-bounces@lists.infradead.org>
Errors-To: 
 linux-arm-kernel-bounces+patchwork-linux-arm=patchwork.kernel.org@lists.infradead.org

Series

ARM: spectre-v1.1 mitigations | expand

Message

Julien Thierry Aug. 28, 2018, 9:08 a.m. UTC

Hi,

Reposting this series rebased on v4.19-rc1.

The series provides mitigations for spectre-v1.1. It is mostly mirroring
what Russell did [1], but this time for writes to user provided addresses.

* Patches 1-4 ensure user addresses used by __put_user* and
  __copy_to_user functions are sanitized before being used.

* Patches 5-8 replace some __put_user_error calls with __copy_to_user, this
  both reduces the number of time address sanitizing is performed and also
  the number of time PAN needs to be toggled.

[1] http://lists.infradead.org/pipermail/linux-arm-kernel/2018-July/589869.html

Cheers,

Julien

-->

Julien Thierry (8):
  ARM: uaccess: Prevent speculative use of the current addr_limit
  ARM: spectre-v1.1: force address sanitizing for __put_user*()
  ARM: spectre-v1,v1.1: provide helpers for address sanitization
  ARM: spectre-v1.1: harden __copy_to_user
  ARM: signal: copy registers using __copy_to_user()
  ARM: signal: always use __copy_to_user to save iwmmxt context
  ARM: vfp: use __copy_to_user() when saving VFP state
  ARM: oabi-compat: copy oabi events using __copy_to_user()

 arch/arm/include/asm/assembler.h   | 10 ++++++
 arch/arm/include/asm/thread_info.h |  4 +--
 arch/arm/include/asm/uaccess.h     | 48 ++++++++++++++++++++++++++
 arch/arm/kernel/signal.c           | 71 +++++++++++++++++++++-----------------
 arch/arm/kernel/sys_oabi-compat.c  | 10 +++---
 arch/arm/lib/copy_from_user.S      |  6 +---
 arch/arm/lib/copy_to_user.S        |  6 +++-
 arch/arm/lib/uaccess_with_memcpy.c |  3 +-
 arch/arm/vfp/vfpmodule.c           | 20 +++++------
 9 files changed, 119 insertions(+), 59 deletions(-)

--
1.9.1