1 /* 2 * Contains CPU specific errata definitions 3 * 4 * Copyright (C) 2014 ARM Ltd. 5 * 6 * This program is free software; you can redistribute it and/or modify 7 * it under the terms of the GNU General Public License version 2 as 8 * published by the Free Software Foundation. 9 * 10 * This program is distributed in the hope that it will be useful, 11 * but WITHOUT ANY WARRANTY; without even the implied warranty of 12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 13 * GNU General Public License for more details. 14 * 15 * You should have received a copy of the GNU General Public License 16 * along with this program. If not, see <http://www.gnu.org/licenses/>. 17 */ 18 19 #include <linux/arm-smccc.h> 20 #include <linux/psci.h> 21 #include <linux/types.h> 22 #include <linux/cpu.h> 23 #include <asm/cpu.h> 24 #include <asm/cputype.h> 25 #include <asm/cpufeature.h> 26 27 static bool __maybe_unused 28 is_affected_midr_range(const struct arm64_cpu_capabilities *entry, int scope) 29 { 30 const struct arm64_midr_revidr *fix; 31 u32 midr = read_cpuid_id(), revidr; 32 33 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible()); 34 if (!is_midr_in_range(midr, &entry->midr_range)) 35 return false; 36 37 midr &= MIDR_REVISION_MASK | MIDR_VARIANT_MASK; 38 revidr = read_cpuid(REVIDR_EL1); 39 for (fix = entry->fixed_revs; fix && fix->revidr_mask; fix++) 40 if (midr == fix->midr_rv && (revidr & fix->revidr_mask)) 41 return false; 42 43 return true; 44 } 45 46 static bool __maybe_unused 47 is_affected_midr_range_list(const struct arm64_cpu_capabilities *entry, 48 int scope) 49 { 50 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible()); 51 return is_midr_in_range_list(read_cpuid_id(), entry->midr_range_list); 52 } 53 54 static bool __maybe_unused 55 is_kryo_midr(const struct arm64_cpu_capabilities *entry, int scope) 56 { 57 u32 model; 58 59 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible()); 60 61 model = read_cpuid_id(); 62 model &= MIDR_IMPLEMENTOR_MASK | (0xf00 << MIDR_PARTNUM_SHIFT) | 63 MIDR_ARCHITECTURE_MASK; 64 65 return model == entry->midr_range.model; 66 } 67 68 static bool 69 has_mismatched_cache_type(const struct arm64_cpu_capabilities *entry, 70 int scope) 71 { 72 u64 mask = arm64_ftr_reg_ctrel0.strict_mask; 73 u64 sys = arm64_ftr_reg_ctrel0.sys_val & mask; 74 u64 ctr_raw, ctr_real; 75 76 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible()); 77 78 /* 79 * We want to make sure that all the CPUs in the system expose 80 * a consistent CTR_EL0 to make sure that applications behaves 81 * correctly with migration. 82 * 83 * If a CPU has CTR_EL0.IDC but does not advertise it via CTR_EL0 : 84 * 85 * 1) It is safe if the system doesn't support IDC, as CPU anyway 86 * reports IDC = 0, consistent with the rest. 87 * 88 * 2) If the system has IDC, it is still safe as we trap CTR_EL0 89 * access on this CPU via the ARM64_HAS_CACHE_IDC capability. 90 * 91 * So, we need to make sure either the raw CTR_EL0 or the effective 92 * CTR_EL0 matches the system's copy to allow a secondary CPU to boot. 93 */ 94 ctr_raw = read_cpuid_cachetype() & mask; 95 ctr_real = read_cpuid_effective_cachetype() & mask; 96 97 return (ctr_real != sys) && (ctr_raw != sys); 98 } 99 100 static void 101 cpu_enable_trap_ctr_access(const struct arm64_cpu_capabilities *__unused) 102 { 103 u64 mask = arm64_ftr_reg_ctrel0.strict_mask; 104 105 /* Trap CTR_EL0 access on this CPU, only if it has a mismatch */ 106 if ((read_cpuid_cachetype() & mask) != 107 (arm64_ftr_reg_ctrel0.sys_val & mask)) 108 sysreg_clear_set(sctlr_el1, SCTLR_EL1_UCT, 0); 109 } 110 111 atomic_t arm64_el2_vector_last_slot = ATOMIC_INIT(-1); 112 113 #include <asm/mmu_context.h> 114 #include <asm/cacheflush.h> 115 116 DEFINE_PER_CPU_READ_MOSTLY(struct bp_hardening_data, bp_hardening_data); 117 118 #ifdef CONFIG_KVM_INDIRECT_VECTORS 119 extern char __smccc_workaround_1_smc_start[]; 120 extern char __smccc_workaround_1_smc_end[]; 121 122 static void __copy_hyp_vect_bpi(int slot, const char *hyp_vecs_start, 123 const char *hyp_vecs_end) 124 { 125 void *dst = lm_alias(__bp_harden_hyp_vecs_start + slot * SZ_2K); 126 int i; 127 128 for (i = 0; i < SZ_2K; i += 0x80) 129 memcpy(dst + i, hyp_vecs_start, hyp_vecs_end - hyp_vecs_start); 130 131 __flush_icache_range((uintptr_t)dst, (uintptr_t)dst + SZ_2K); 132 } 133 134 static void install_bp_hardening_cb(bp_hardening_cb_t fn, 135 const char *hyp_vecs_start, 136 const char *hyp_vecs_end) 137 { 138 static DEFINE_RAW_SPINLOCK(bp_lock); 139 int cpu, slot = -1; 140 141 /* 142 * enable_smccc_arch_workaround_1() passes NULL for the hyp_vecs 143 * start/end if we're a guest. Skip the hyp-vectors work. 144 */ 145 if (!hyp_vecs_start) { 146 __this_cpu_write(bp_hardening_data.fn, fn); 147 return; 148 } 149 150 raw_spin_lock(&bp_lock); 151 for_each_possible_cpu(cpu) { 152 if (per_cpu(bp_hardening_data.fn, cpu) == fn) { 153 slot = per_cpu(bp_hardening_data.hyp_vectors_slot, cpu); 154 break; 155 } 156 } 157 158 if (slot == -1) { 159 slot = atomic_inc_return(&arm64_el2_vector_last_slot); 160 BUG_ON(slot >= BP_HARDEN_EL2_SLOTS); 161 __copy_hyp_vect_bpi(slot, hyp_vecs_start, hyp_vecs_end); 162 } 163 164 __this_cpu_write(bp_hardening_data.hyp_vectors_slot, slot); 165 __this_cpu_write(bp_hardening_data.fn, fn); 166 raw_spin_unlock(&bp_lock); 167 } 168 #else 169 #define __smccc_workaround_1_smc_start NULL 170 #define __smccc_workaround_1_smc_end NULL 171 172 static void install_bp_hardening_cb(bp_hardening_cb_t fn, 173 const char *hyp_vecs_start, 174 const char *hyp_vecs_end) 175 { 176 __this_cpu_write(bp_hardening_data.fn, fn); 177 } 178 #endif /* CONFIG_KVM_INDIRECT_VECTORS */ 179 180 #include <uapi/linux/psci.h> 181 #include <linux/arm-smccc.h> 182 #include <linux/psci.h> 183 184 static void call_smc_arch_workaround_1(void) 185 { 186 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_WORKAROUND_1, NULL); 187 } 188 189 static void call_hvc_arch_workaround_1(void) 190 { 191 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_WORKAROUND_1, NULL); 192 } 193 194 static void qcom_link_stack_sanitization(void) 195 { 196 u64 tmp; 197 198 asm volatile("mov %0, x30 \n" 199 ".rept 16 \n" 200 "bl . + 4 \n" 201 ".endr \n" 202 "mov x30, %0 \n" 203 : "=&r" (tmp)); 204 } 205 206 static bool __nospectre_v2; 207 static int __init parse_nospectre_v2(char *str) 208 { 209 __nospectre_v2 = true; 210 return 0; 211 } 212 early_param("nospectre_v2", parse_nospectre_v2); 213 214 /* 215 * -1: No workaround 216 * 0: No workaround required 217 * 1: Workaround installed 218 */ 219 static int detect_harden_bp_fw(void) 220 { 221 bp_hardening_cb_t cb; 222 void *smccc_start, *smccc_end; 223 struct arm_smccc_res res; 224 u32 midr = read_cpuid_id(); 225 226 if (psci_ops.smccc_version == SMCCC_VERSION_1_0) 227 return -1; 228 229 switch (psci_ops.conduit) { 230 case PSCI_CONDUIT_HVC: 231 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID, 232 ARM_SMCCC_ARCH_WORKAROUND_1, &res); 233 switch ((int)res.a0) { 234 case 1: 235 /* Firmware says we're just fine */ 236 return 0; 237 case 0: 238 cb = call_hvc_arch_workaround_1; 239 /* This is a guest, no need to patch KVM vectors */ 240 smccc_start = NULL; 241 smccc_end = NULL; 242 break; 243 default: 244 return -1; 245 } 246 break; 247 248 case PSCI_CONDUIT_SMC: 249 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID, 250 ARM_SMCCC_ARCH_WORKAROUND_1, &res); 251 switch ((int)res.a0) { 252 case 1: 253 /* Firmware says we're just fine */ 254 return 0; 255 case 0: 256 cb = call_smc_arch_workaround_1; 257 smccc_start = __smccc_workaround_1_smc_start; 258 smccc_end = __smccc_workaround_1_smc_end; 259 break; 260 default: 261 return -1; 262 } 263 break; 264 265 default: 266 return -1; 267 } 268 269 if (((midr & MIDR_CPU_MODEL_MASK) == MIDR_QCOM_FALKOR) || 270 ((midr & MIDR_CPU_MODEL_MASK) == MIDR_QCOM_FALKOR_V1)) 271 cb = qcom_link_stack_sanitization; 272 273 if (IS_ENABLED(CONFIG_HARDEN_BRANCH_PREDICTOR)) 274 install_bp_hardening_cb(cb, smccc_start, smccc_end); 275 276 return 1; 277 } 278 279 DEFINE_PER_CPU_READ_MOSTLY(u64, arm64_ssbd_callback_required); 280 281 int ssbd_state __read_mostly = ARM64_SSBD_KERNEL; 282 static bool __ssb_safe = true; 283 284 static const struct ssbd_options { 285 const char *str; 286 int state; 287 } ssbd_options[] = { 288 { "force-on", ARM64_SSBD_FORCE_ENABLE, }, 289 { "force-off", ARM64_SSBD_FORCE_DISABLE, }, 290 { "kernel", ARM64_SSBD_KERNEL, }, 291 }; 292 293 static int __init ssbd_cfg(char *buf) 294 { 295 int i; 296 297 if (!buf || !buf[0]) 298 return -EINVAL; 299 300 for (i = 0; i < ARRAY_SIZE(ssbd_options); i++) { 301 int len = strlen(ssbd_options[i].str); 302 303 if (strncmp(buf, ssbd_options[i].str, len)) 304 continue; 305 306 ssbd_state = ssbd_options[i].state; 307 return 0; 308 } 309 310 return -EINVAL; 311 } 312 early_param("ssbd", ssbd_cfg); 313 314 void __init arm64_update_smccc_conduit(struct alt_instr *alt, 315 __le32 *origptr, __le32 *updptr, 316 int nr_inst) 317 { 318 u32 insn; 319 320 BUG_ON(nr_inst != 1); 321 322 switch (psci_ops.conduit) { 323 case PSCI_CONDUIT_HVC: 324 insn = aarch64_insn_get_hvc_value(); 325 break; 326 case PSCI_CONDUIT_SMC: 327 insn = aarch64_insn_get_smc_value(); 328 break; 329 default: 330 return; 331 } 332 333 *updptr = cpu_to_le32(insn); 334 } 335 336 void __init arm64_enable_wa2_handling(struct alt_instr *alt, 337 __le32 *origptr, __le32 *updptr, 338 int nr_inst) 339 { 340 BUG_ON(nr_inst != 1); 341 /* 342 * Only allow mitigation on EL1 entry/exit and guest 343 * ARCH_WORKAROUND_2 handling if the SSBD state allows it to 344 * be flipped. 345 */ 346 if (arm64_get_ssbd_state() == ARM64_SSBD_KERNEL) 347 *updptr = cpu_to_le32(aarch64_insn_gen_nop()); 348 } 349 350 void arm64_set_ssbd_mitigation(bool state) 351 { 352 if (!IS_ENABLED(CONFIG_ARM64_SSBD)) { 353 pr_info_once("SSBD disabled by kernel configuration\n"); 354 return; 355 } 356 357 if (this_cpu_has_cap(ARM64_SSBS)) { 358 if (state) 359 asm volatile(SET_PSTATE_SSBS(0)); 360 else 361 asm volatile(SET_PSTATE_SSBS(1)); 362 return; 363 } 364 365 switch (psci_ops.conduit) { 366 case PSCI_CONDUIT_HVC: 367 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_WORKAROUND_2, state, NULL); 368 break; 369 370 case PSCI_CONDUIT_SMC: 371 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_WORKAROUND_2, state, NULL); 372 break; 373 374 default: 375 WARN_ON_ONCE(1); 376 break; 377 } 378 } 379 380 static bool has_ssbd_mitigation(const struct arm64_cpu_capabilities *entry, 381 int scope) 382 { 383 struct arm_smccc_res res; 384 bool required = true; 385 s32 val; 386 bool this_cpu_safe = false; 387 388 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible()); 389 390 if (cpu_mitigations_off()) 391 ssbd_state = ARM64_SSBD_FORCE_DISABLE; 392 393 /* delay setting __ssb_safe until we get a firmware response */ 394 if (is_midr_in_range_list(read_cpuid_id(), entry->midr_range_list)) 395 this_cpu_safe = true; 396 397 if (this_cpu_has_cap(ARM64_SSBS)) { 398 if (!this_cpu_safe) 399 __ssb_safe = false; 400 required = false; 401 goto out_printmsg; 402 } 403 404 if (psci_ops.smccc_version == SMCCC_VERSION_1_0) { 405 ssbd_state = ARM64_SSBD_UNKNOWN; 406 if (!this_cpu_safe) 407 __ssb_safe = false; 408 return false; 409 } 410 411 switch (psci_ops.conduit) { 412 case PSCI_CONDUIT_HVC: 413 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID, 414 ARM_SMCCC_ARCH_WORKAROUND_2, &res); 415 break; 416 417 case PSCI_CONDUIT_SMC: 418 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID, 419 ARM_SMCCC_ARCH_WORKAROUND_2, &res); 420 break; 421 422 default: 423 ssbd_state = ARM64_SSBD_UNKNOWN; 424 if (!this_cpu_safe) 425 __ssb_safe = false; 426 return false; 427 } 428 429 val = (s32)res.a0; 430 431 switch (val) { 432 case SMCCC_RET_NOT_SUPPORTED: 433 ssbd_state = ARM64_SSBD_UNKNOWN; 434 if (!this_cpu_safe) 435 __ssb_safe = false; 436 return false; 437 438 /* machines with mixed mitigation requirements must not return this */ 439 case SMCCC_RET_NOT_REQUIRED: 440 pr_info_once("%s mitigation not required\n", entry->desc); 441 ssbd_state = ARM64_SSBD_MITIGATED; 442 return false; 443 444 case SMCCC_RET_SUCCESS: 445 __ssb_safe = false; 446 required = true; 447 break; 448 449 case 1: /* Mitigation not required on this CPU */ 450 required = false; 451 break; 452 453 default: 454 WARN_ON(1); 455 if (!this_cpu_safe) 456 __ssb_safe = false; 457 return false; 458 } 459 460 switch (ssbd_state) { 461 case ARM64_SSBD_FORCE_DISABLE: 462 arm64_set_ssbd_mitigation(false); 463 required = false; 464 break; 465 466 case ARM64_SSBD_KERNEL: 467 if (required) { 468 __this_cpu_write(arm64_ssbd_callback_required, 1); 469 arm64_set_ssbd_mitigation(true); 470 } 471 break; 472 473 case ARM64_SSBD_FORCE_ENABLE: 474 arm64_set_ssbd_mitigation(true); 475 required = true; 476 break; 477 478 default: 479 WARN_ON(1); 480 break; 481 } 482 483 out_printmsg: 484 switch (ssbd_state) { 485 case ARM64_SSBD_FORCE_DISABLE: 486 pr_info_once("%s disabled from command-line\n", entry->desc); 487 break; 488 489 case ARM64_SSBD_FORCE_ENABLE: 490 pr_info_once("%s forced from command-line\n", entry->desc); 491 break; 492 } 493 494 return required; 495 } 496 497 /* known invulnerable cores */ 498 static const struct midr_range arm64_ssb_cpus[] = { 499 MIDR_ALL_VERSIONS(MIDR_CORTEX_A35), 500 MIDR_ALL_VERSIONS(MIDR_CORTEX_A53), 501 MIDR_ALL_VERSIONS(MIDR_CORTEX_A55), 502 {}, 503 }; 504 505 #ifdef CONFIG_ARM64_ERRATUM_1463225 506 DEFINE_PER_CPU(int, __in_cortex_a76_erratum_1463225_wa); 507 508 static bool 509 has_cortex_a76_erratum_1463225(const struct arm64_cpu_capabilities *entry, 510 int scope) 511 { 512 u32 midr = read_cpuid_id(); 513 /* Cortex-A76 r0p0 - r3p1 */ 514 struct midr_range range = MIDR_RANGE(MIDR_CORTEX_A76, 0, 0, 3, 1); 515 516 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible()); 517 return is_midr_in_range(midr, &range) && is_kernel_in_hyp_mode(); 518 } 519 #endif 520 521 static void __maybe_unused 522 cpu_enable_cache_maint_trap(const struct arm64_cpu_capabilities *__unused) 523 { 524 sysreg_clear_set(sctlr_el1, SCTLR_EL1_UCI, 0); 525 } 526 527 #define CAP_MIDR_RANGE(model, v_min, r_min, v_max, r_max) \ 528 .matches = is_affected_midr_range, \ 529 .midr_range = MIDR_RANGE(model, v_min, r_min, v_max, r_max) 530 531 #define CAP_MIDR_ALL_VERSIONS(model) \ 532 .matches = is_affected_midr_range, \ 533 .midr_range = MIDR_ALL_VERSIONS(model) 534 535 #define MIDR_FIXED(rev, revidr_mask) \ 536 .fixed_revs = (struct arm64_midr_revidr[]){{ (rev), (revidr_mask) }, {}} 537 538 #define ERRATA_MIDR_RANGE(model, v_min, r_min, v_max, r_max) \ 539 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, \ 540 CAP_MIDR_RANGE(model, v_min, r_min, v_max, r_max) 541 542 #define CAP_MIDR_RANGE_LIST(list) \ 543 .matches = is_affected_midr_range_list, \ 544 .midr_range_list = list 545 546 /* Errata affecting a range of revisions of given model variant */ 547 #define ERRATA_MIDR_REV_RANGE(m, var, r_min, r_max) \ 548 ERRATA_MIDR_RANGE(m, var, r_min, var, r_max) 549 550 /* Errata affecting a single variant/revision of a model */ 551 #define ERRATA_MIDR_REV(model, var, rev) \ 552 ERRATA_MIDR_RANGE(model, var, rev, var, rev) 553 554 /* Errata affecting all variants/revisions of a given a model */ 555 #define ERRATA_MIDR_ALL_VERSIONS(model) \ 556 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, \ 557 CAP_MIDR_ALL_VERSIONS(model) 558 559 /* Errata affecting a list of midr ranges, with same work around */ 560 #define ERRATA_MIDR_RANGE_LIST(midr_list) \ 561 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, \ 562 CAP_MIDR_RANGE_LIST(midr_list) 563 564 /* Track overall mitigation state. We are only mitigated if all cores are ok */ 565 static bool __hardenbp_enab = true; 566 static bool __spectrev2_safe = true; 567 568 /* 569 * List of CPUs that do not need any Spectre-v2 mitigation at all. 570 */ 571 static const struct midr_range spectre_v2_safe_list[] = { 572 MIDR_ALL_VERSIONS(MIDR_CORTEX_A35), 573 MIDR_ALL_VERSIONS(MIDR_CORTEX_A53), 574 MIDR_ALL_VERSIONS(MIDR_CORTEX_A55), 575 { /* sentinel */ } 576 }; 577 578 /* 579 * Track overall bp hardening for all heterogeneous cores in the machine. 580 * We are only considered "safe" if all booted cores are known safe. 581 */ 582 static bool __maybe_unused 583 check_branch_predictor(const struct arm64_cpu_capabilities *entry, int scope) 584 { 585 int need_wa; 586 587 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible()); 588 589 /* If the CPU has CSV2 set, we're safe */ 590 if (cpuid_feature_extract_unsigned_field(read_cpuid(ID_AA64PFR0_EL1), 591 ID_AA64PFR0_CSV2_SHIFT)) 592 return false; 593 594 /* Alternatively, we have a list of unaffected CPUs */ 595 if (is_midr_in_range_list(read_cpuid_id(), spectre_v2_safe_list)) 596 return false; 597 598 /* Fallback to firmware detection */ 599 need_wa = detect_harden_bp_fw(); 600 if (!need_wa) 601 return false; 602 603 __spectrev2_safe = false; 604 605 if (!IS_ENABLED(CONFIG_HARDEN_BRANCH_PREDICTOR)) { 606 pr_warn_once("spectrev2 mitigation disabled by kernel configuration\n"); 607 __hardenbp_enab = false; 608 return false; 609 } 610 611 /* forced off */ 612 if (__nospectre_v2 || cpu_mitigations_off()) { 613 pr_info_once("spectrev2 mitigation disabled by command line option\n"); 614 __hardenbp_enab = false; 615 return false; 616 } 617 618 if (need_wa < 0) { 619 pr_warn_once("ARM_SMCCC_ARCH_WORKAROUND_1 missing from firmware\n"); 620 __hardenbp_enab = false; 621 } 622 623 return (need_wa > 0); 624 } 625 626 #ifdef CONFIG_HARDEN_EL2_VECTORS 627 628 static const struct midr_range arm64_harden_el2_vectors[] = { 629 MIDR_ALL_VERSIONS(MIDR_CORTEX_A57), 630 MIDR_ALL_VERSIONS(MIDR_CORTEX_A72), 631 {}, 632 }; 633 634 #endif 635 636 #ifdef CONFIG_ARM64_WORKAROUND_REPEAT_TLBI 637 638 static const struct midr_range arm64_repeat_tlbi_cpus[] = { 639 #ifdef CONFIG_QCOM_FALKOR_ERRATUM_1009 640 MIDR_RANGE(MIDR_QCOM_FALKOR_V1, 0, 0, 0, 0), 641 #endif 642 #ifdef CONFIG_ARM64_ERRATUM_1286807 643 MIDR_RANGE(MIDR_CORTEX_A76, 0, 0, 3, 0), 644 #endif 645 {}, 646 }; 647 648 #endif 649 650 #ifdef CONFIG_CAVIUM_ERRATUM_27456 651 const struct midr_range cavium_erratum_27456_cpus[] = { 652 /* Cavium ThunderX, T88 pass 1.x - 2.1 */ 653 MIDR_RANGE(MIDR_THUNDERX, 0, 0, 1, 1), 654 /* Cavium ThunderX, T81 pass 1.0 */ 655 MIDR_REV(MIDR_THUNDERX_81XX, 0, 0), 656 {}, 657 }; 658 #endif 659 660 #ifdef CONFIG_CAVIUM_ERRATUM_30115 661 static const struct midr_range cavium_erratum_30115_cpus[] = { 662 /* Cavium ThunderX, T88 pass 1.x - 2.2 */ 663 MIDR_RANGE(MIDR_THUNDERX, 0, 0, 1, 2), 664 /* Cavium ThunderX, T81 pass 1.0 - 1.2 */ 665 MIDR_REV_RANGE(MIDR_THUNDERX_81XX, 0, 0, 2), 666 /* Cavium ThunderX, T83 pass 1.0 */ 667 MIDR_REV(MIDR_THUNDERX_83XX, 0, 0), 668 {}, 669 }; 670 #endif 671 672 #ifdef CONFIG_QCOM_FALKOR_ERRATUM_1003 673 static const struct arm64_cpu_capabilities qcom_erratum_1003_list[] = { 674 { 675 ERRATA_MIDR_REV(MIDR_QCOM_FALKOR_V1, 0, 0), 676 }, 677 { 678 .midr_range.model = MIDR_QCOM_KRYO, 679 .matches = is_kryo_midr, 680 }, 681 {}, 682 }; 683 #endif 684 685 #ifdef CONFIG_ARM64_WORKAROUND_CLEAN_CACHE 686 static const struct midr_range workaround_clean_cache[] = { 687 #if defined(CONFIG_ARM64_ERRATUM_826319) || \ 688 defined(CONFIG_ARM64_ERRATUM_827319) || \ 689 defined(CONFIG_ARM64_ERRATUM_824069) 690 /* Cortex-A53 r0p[012]: ARM errata 826319, 827319, 824069 */ 691 MIDR_REV_RANGE(MIDR_CORTEX_A53, 0, 0, 2), 692 #endif 693 #ifdef CONFIG_ARM64_ERRATUM_819472 694 /* Cortex-A53 r0p[01] : ARM errata 819472 */ 695 MIDR_REV_RANGE(MIDR_CORTEX_A53, 0, 0, 1), 696 #endif 697 {}, 698 }; 699 #endif 700 701 #ifdef CONFIG_ARM64_ERRATUM_1418040 702 /* 703 * - 1188873 affects r0p0 to r2p0 704 * - 1418040 affects r0p0 to r3p1 705 */ 706 static const struct midr_range erratum_1418040_list[] = { 707 /* Cortex-A76 r0p0 to r3p1 */ 708 MIDR_RANGE(MIDR_CORTEX_A76, 0, 0, 3, 1), 709 /* Neoverse-N1 r0p0 to r3p1 */ 710 MIDR_RANGE(MIDR_NEOVERSE_N1, 0, 0, 3, 1), 711 {}, 712 }; 713 #endif 714 715 const struct arm64_cpu_capabilities arm64_errata[] = { 716 #ifdef CONFIG_ARM64_WORKAROUND_CLEAN_CACHE 717 { 718 .desc = "ARM errata 826319, 827319, 824069, 819472", 719 .capability = ARM64_WORKAROUND_CLEAN_CACHE, 720 ERRATA_MIDR_RANGE_LIST(workaround_clean_cache), 721 .cpu_enable = cpu_enable_cache_maint_trap, 722 }, 723 #endif 724 #ifdef CONFIG_ARM64_ERRATUM_832075 725 { 726 /* Cortex-A57 r0p0 - r1p2 */ 727 .desc = "ARM erratum 832075", 728 .capability = ARM64_WORKAROUND_DEVICE_LOAD_ACQUIRE, 729 ERRATA_MIDR_RANGE(MIDR_CORTEX_A57, 730 0, 0, 731 1, 2), 732 }, 733 #endif 734 #ifdef CONFIG_ARM64_ERRATUM_834220 735 { 736 /* Cortex-A57 r0p0 - r1p2 */ 737 .desc = "ARM erratum 834220", 738 .capability = ARM64_WORKAROUND_834220, 739 ERRATA_MIDR_RANGE(MIDR_CORTEX_A57, 740 0, 0, 741 1, 2), 742 }, 743 #endif 744 #ifdef CONFIG_ARM64_ERRATUM_843419 745 { 746 /* Cortex-A53 r0p[01234] */ 747 .desc = "ARM erratum 843419", 748 .capability = ARM64_WORKAROUND_843419, 749 ERRATA_MIDR_REV_RANGE(MIDR_CORTEX_A53, 0, 0, 4), 750 MIDR_FIXED(0x4, BIT(8)), 751 }, 752 #endif 753 #ifdef CONFIG_ARM64_ERRATUM_845719 754 { 755 /* Cortex-A53 r0p[01234] */ 756 .desc = "ARM erratum 845719", 757 .capability = ARM64_WORKAROUND_845719, 758 ERRATA_MIDR_REV_RANGE(MIDR_CORTEX_A53, 0, 0, 4), 759 }, 760 #endif 761 #ifdef CONFIG_CAVIUM_ERRATUM_23154 762 { 763 /* Cavium ThunderX, pass 1.x */ 764 .desc = "Cavium erratum 23154", 765 .capability = ARM64_WORKAROUND_CAVIUM_23154, 766 ERRATA_MIDR_REV_RANGE(MIDR_THUNDERX, 0, 0, 1), 767 }, 768 #endif 769 #ifdef CONFIG_CAVIUM_ERRATUM_27456 770 { 771 .desc = "Cavium erratum 27456", 772 .capability = ARM64_WORKAROUND_CAVIUM_27456, 773 ERRATA_MIDR_RANGE_LIST(cavium_erratum_27456_cpus), 774 }, 775 #endif 776 #ifdef CONFIG_CAVIUM_ERRATUM_30115 777 { 778 .desc = "Cavium erratum 30115", 779 .capability = ARM64_WORKAROUND_CAVIUM_30115, 780 ERRATA_MIDR_RANGE_LIST(cavium_erratum_30115_cpus), 781 }, 782 #endif 783 { 784 .desc = "Mismatched cache type (CTR_EL0)", 785 .capability = ARM64_MISMATCHED_CACHE_TYPE, 786 .matches = has_mismatched_cache_type, 787 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, 788 .cpu_enable = cpu_enable_trap_ctr_access, 789 }, 790 #ifdef CONFIG_QCOM_FALKOR_ERRATUM_1003 791 { 792 .desc = "Qualcomm Technologies Falkor/Kryo erratum 1003", 793 .capability = ARM64_WORKAROUND_QCOM_FALKOR_E1003, 794 .matches = cpucap_multi_entry_cap_matches, 795 .match_list = qcom_erratum_1003_list, 796 }, 797 #endif 798 #ifdef CONFIG_ARM64_WORKAROUND_REPEAT_TLBI 799 { 800 .desc = "Qualcomm erratum 1009, ARM erratum 1286807", 801 .capability = ARM64_WORKAROUND_REPEAT_TLBI, 802 ERRATA_MIDR_RANGE_LIST(arm64_repeat_tlbi_cpus), 803 }, 804 #endif 805 #ifdef CONFIG_ARM64_ERRATUM_858921 806 { 807 /* Cortex-A73 all versions */ 808 .desc = "ARM erratum 858921", 809 .capability = ARM64_WORKAROUND_858921, 810 ERRATA_MIDR_ALL_VERSIONS(MIDR_CORTEX_A73), 811 }, 812 #endif 813 { 814 .capability = ARM64_HARDEN_BRANCH_PREDICTOR, 815 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, 816 .matches = check_branch_predictor, 817 }, 818 #ifdef CONFIG_HARDEN_EL2_VECTORS 819 { 820 .desc = "EL2 vector hardening", 821 .capability = ARM64_HARDEN_EL2_VECTORS, 822 ERRATA_MIDR_RANGE_LIST(arm64_harden_el2_vectors), 823 }, 824 #endif 825 { 826 .desc = "Speculative Store Bypass Disable", 827 .capability = ARM64_SSBD, 828 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, 829 .matches = has_ssbd_mitigation, 830 .midr_range_list = arm64_ssb_cpus, 831 }, 832 #ifdef CONFIG_ARM64_ERRATUM_1418040 833 { 834 .desc = "ARM erratum 1418040", 835 .capability = ARM64_WORKAROUND_1418040, 836 ERRATA_MIDR_RANGE_LIST(erratum_1418040_list), 837 }, 838 #endif 839 #ifdef CONFIG_ARM64_ERRATUM_1165522 840 { 841 /* Cortex-A76 r0p0 to r2p0 */ 842 .desc = "ARM erratum 1165522", 843 .capability = ARM64_WORKAROUND_1165522, 844 ERRATA_MIDR_RANGE(MIDR_CORTEX_A76, 0, 0, 2, 0), 845 }, 846 #endif 847 #ifdef CONFIG_ARM64_ERRATUM_1463225 848 { 849 .desc = "ARM erratum 1463225", 850 .capability = ARM64_WORKAROUND_1463225, 851 .type = ARM64_CPUCAP_LOCAL_CPU_ERRATUM, 852 .matches = has_cortex_a76_erratum_1463225, 853 }, 854 #endif 855 { 856 } 857 }; 858 859 ssize_t cpu_show_spectre_v1(struct device *dev, struct device_attribute *attr, 860 char *buf) 861 { 862 return sprintf(buf, "Mitigation: __user pointer sanitization\n"); 863 } 864 865 ssize_t cpu_show_spectre_v2(struct device *dev, struct device_attribute *attr, 866 char *buf) 867 { 868 if (__spectrev2_safe) 869 return sprintf(buf, "Not affected\n"); 870 871 if (__hardenbp_enab) 872 return sprintf(buf, "Mitigation: Branch predictor hardening\n"); 873 874 return sprintf(buf, "Vulnerable\n"); 875 } 876 877 ssize_t cpu_show_spec_store_bypass(struct device *dev, 878 struct device_attribute *attr, char *buf) 879 { 880 if (__ssb_safe) 881 return sprintf(buf, "Not affected\n"); 882 883 switch (ssbd_state) { 884 case ARM64_SSBD_KERNEL: 885 case ARM64_SSBD_FORCE_ENABLE: 886 if (IS_ENABLED(CONFIG_ARM64_SSBD)) 887 return sprintf(buf, 888 "Mitigation: Speculative Store Bypass disabled via prctl\n"); 889 } 890 891 return sprintf(buf, "Vulnerable\n"); 892 } 893