-
Notifications
You must be signed in to change notification settings - Fork 331
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
arm64: Mitigate CVE 2017-5715 (aka Spectre v2)
Define an alternative exit vector. This exit vector will be used if SMCCC_ARCH_WORKAROUND_1 is available, and makes the assumption that mitigations are required if the workaround is available. Technically, the mitigations takes place in the monitor, its implementation depends on the processor. Refer [1]. Similarly to KVM, Jailhouse calls the monitor's mitigation on each exit: IRQs and guest aborts. [1] https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability Signed-off-by: Ralf Ramsauer <ralf.ramsauer@oth-regensburg.de> Signed-off-by: Jan Kiszka <jan.kiszka@siemens.com>
- Loading branch information
1 parent
ea924a3
commit f6a60e6
Showing
4 changed files
with
52 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters