2 * Contains CPU specific errata definitions
4 * Copyright (C) 2014 ARM Ltd.
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License version 2 as
8 * published by the Free Software Foundation.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License
16 * along with this program. If not, see <http://www.gnu.org/licenses/>.
19 #include <linux/types.h>
21 #include <asm/cputype.h>
22 #include <asm/cpufeature.h>
24 static bool __maybe_unused
25 is_affected_midr_range(const struct arm64_cpu_capabilities *entry, int scope)
27 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
28 return MIDR_IS_CPU_MODEL_RANGE(read_cpuid_id(), entry->midr_model,
29 entry->midr_range_min,
30 entry->midr_range_max);
33 static bool __maybe_unused
34 is_kryo_midr(const struct arm64_cpu_capabilities *entry, int scope)
38 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
40 model = read_cpuid_id();
41 model &= MIDR_IMPLEMENTOR_MASK | (0xf00 << MIDR_PARTNUM_SHIFT) |
42 MIDR_ARCHITECTURE_MASK;
44 return model == entry->midr_model;
48 has_mismatched_cache_line_size(const struct arm64_cpu_capabilities *entry,
51 WARN_ON(scope != SCOPE_LOCAL_CPU || preemptible());
52 return (read_cpuid_cachetype() & arm64_ftr_reg_ctrel0.strict_mask) !=
53 (arm64_ftr_reg_ctrel0.sys_val & arm64_ftr_reg_ctrel0.strict_mask);
56 static int cpu_enable_trap_ctr_access(void *__unused)
58 /* Clear SCTLR_EL1.UCT */
59 config_sctlr_el1(SCTLR_EL1_UCT, 0);
63 #ifdef CONFIG_HARDEN_BRANCH_PREDICTOR
64 #include <asm/mmu_context.h>
65 #include <asm/cacheflush.h>
67 DEFINE_PER_CPU_READ_MOSTLY(struct bp_hardening_data, bp_hardening_data);
70 extern char __psci_hyp_bp_inval_start[], __psci_hyp_bp_inval_end[];
71 extern char __qcom_hyp_sanitize_link_stack_start[];
72 extern char __qcom_hyp_sanitize_link_stack_end[];
73 extern char __smccc_workaround_1_smc_start[];
74 extern char __smccc_workaround_1_smc_end[];
75 extern char __smccc_workaround_1_hvc_start[];
76 extern char __smccc_workaround_1_hvc_end[];
78 static void __copy_hyp_vect_bpi(int slot, const char *hyp_vecs_start,
79 const char *hyp_vecs_end)
81 void *dst = lm_alias(__bp_harden_hyp_vecs_start + slot * SZ_2K);
84 for (i = 0; i < SZ_2K; i += 0x80)
85 memcpy(dst + i, hyp_vecs_start, hyp_vecs_end - hyp_vecs_start);
87 flush_icache_range((uintptr_t)dst, (uintptr_t)dst + SZ_2K);
90 static void __install_bp_hardening_cb(bp_hardening_cb_t fn,
91 const char *hyp_vecs_start,
92 const char *hyp_vecs_end)
94 static int last_slot = -1;
95 static DEFINE_SPINLOCK(bp_lock);
99 for_each_possible_cpu(cpu) {
100 if (per_cpu(bp_hardening_data.fn, cpu) == fn) {
101 slot = per_cpu(bp_hardening_data.hyp_vectors_slot, cpu);
108 BUG_ON(((__bp_harden_hyp_vecs_end - __bp_harden_hyp_vecs_start)
109 / SZ_2K) <= last_slot);
111 __copy_hyp_vect_bpi(slot, hyp_vecs_start, hyp_vecs_end);
114 __this_cpu_write(bp_hardening_data.hyp_vectors_slot, slot);
115 __this_cpu_write(bp_hardening_data.fn, fn);
116 spin_unlock(&bp_lock);
119 #define __psci_hyp_bp_inval_start NULL
120 #define __psci_hyp_bp_inval_end NULL
121 #define __qcom_hyp_sanitize_link_stack_start NULL
122 #define __qcom_hyp_sanitize_link_stack_end NULL
123 #define __smccc_workaround_1_smc_start NULL
124 #define __smccc_workaround_1_smc_end NULL
125 #define __smccc_workaround_1_hvc_start NULL
126 #define __smccc_workaround_1_hvc_end NULL
128 static void __install_bp_hardening_cb(bp_hardening_cb_t fn,
129 const char *hyp_vecs_start,
130 const char *hyp_vecs_end)
132 __this_cpu_write(bp_hardening_data.fn, fn);
134 #endif /* CONFIG_KVM */
136 static void install_bp_hardening_cb(const struct arm64_cpu_capabilities *entry,
137 bp_hardening_cb_t fn,
138 const char *hyp_vecs_start,
139 const char *hyp_vecs_end)
143 if (!entry->matches(entry, SCOPE_LOCAL_CPU))
146 pfr0 = read_cpuid(ID_AA64PFR0_EL1);
147 if (cpuid_feature_extract_unsigned_field(pfr0, ID_AA64PFR0_CSV2_SHIFT))
150 __install_bp_hardening_cb(fn, hyp_vecs_start, hyp_vecs_end);
153 #include <uapi/linux/psci.h>
154 #include <linux/arm-smccc.h>
155 #include <linux/psci.h>
157 static void call_smc_arch_workaround_1(void)
159 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_WORKAROUND_1, NULL);
162 static void call_hvc_arch_workaround_1(void)
164 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_WORKAROUND_1, NULL);
167 static bool check_smccc_arch_workaround_1(const struct arm64_cpu_capabilities *entry)
169 bp_hardening_cb_t cb;
170 void *smccc_start, *smccc_end;
171 struct arm_smccc_res res;
173 if (!entry->matches(entry, SCOPE_LOCAL_CPU))
176 if (psci_ops.smccc_version == SMCCC_VERSION_1_0)
179 switch (psci_ops.conduit) {
180 case PSCI_CONDUIT_HVC:
181 arm_smccc_1_1_hvc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID,
182 ARM_SMCCC_ARCH_WORKAROUND_1, &res);
185 cb = call_hvc_arch_workaround_1;
186 smccc_start = __smccc_workaround_1_hvc_start;
187 smccc_end = __smccc_workaround_1_hvc_end;
190 case PSCI_CONDUIT_SMC:
191 arm_smccc_1_1_smc(ARM_SMCCC_ARCH_FEATURES_FUNC_ID,
192 ARM_SMCCC_ARCH_WORKAROUND_1, &res);
195 cb = call_smc_arch_workaround_1;
196 smccc_start = __smccc_workaround_1_smc_start;
197 smccc_end = __smccc_workaround_1_smc_end;
204 install_bp_hardening_cb(entry, cb, smccc_start, smccc_end);
209 static int enable_psci_bp_hardening(void *data)
211 const struct arm64_cpu_capabilities *entry = data;
213 if (psci_ops.get_version) {
214 if (check_smccc_arch_workaround_1(entry))
217 install_bp_hardening_cb(entry,
218 (bp_hardening_cb_t)psci_ops.get_version,
219 __psci_hyp_bp_inval_start,
220 __psci_hyp_bp_inval_end);
226 static void qcom_link_stack_sanitization(void)
230 asm volatile("mov %0, x30 \n"
238 static int qcom_enable_link_stack_sanitization(void *data)
240 const struct arm64_cpu_capabilities *entry = data;
242 install_bp_hardening_cb(entry, qcom_link_stack_sanitization,
243 __qcom_hyp_sanitize_link_stack_start,
244 __qcom_hyp_sanitize_link_stack_end);
248 #endif /* CONFIG_HARDEN_BRANCH_PREDICTOR */
250 #define MIDR_RANGE(model, min, max) \
251 .def_scope = SCOPE_LOCAL_CPU, \
252 .matches = is_affected_midr_range, \
253 .midr_model = model, \
254 .midr_range_min = min, \
255 .midr_range_max = max
257 #define MIDR_ALL_VERSIONS(model) \
258 .def_scope = SCOPE_LOCAL_CPU, \
259 .matches = is_affected_midr_range, \
260 .midr_model = model, \
261 .midr_range_min = 0, \
262 .midr_range_max = (MIDR_VARIANT_MASK | MIDR_REVISION_MASK)
264 const struct arm64_cpu_capabilities arm64_errata[] = {
265 #if defined(CONFIG_ARM64_ERRATUM_826319) || \
266 defined(CONFIG_ARM64_ERRATUM_827319) || \
267 defined(CONFIG_ARM64_ERRATUM_824069)
269 /* Cortex-A53 r0p[012] */
270 .desc = "ARM errata 826319, 827319, 824069",
271 .capability = ARM64_WORKAROUND_CLEAN_CACHE,
272 MIDR_RANGE(MIDR_CORTEX_A53, 0x00, 0x02),
273 .enable = cpu_enable_cache_maint_trap,
276 #ifdef CONFIG_ARM64_ERRATUM_819472
278 /* Cortex-A53 r0p[01] */
279 .desc = "ARM errata 819472",
280 .capability = ARM64_WORKAROUND_CLEAN_CACHE,
281 MIDR_RANGE(MIDR_CORTEX_A53, 0x00, 0x01),
282 .enable = cpu_enable_cache_maint_trap,
285 #ifdef CONFIG_ARM64_ERRATUM_832075
287 /* Cortex-A57 r0p0 - r1p2 */
288 .desc = "ARM erratum 832075",
289 .capability = ARM64_WORKAROUND_DEVICE_LOAD_ACQUIRE,
290 MIDR_RANGE(MIDR_CORTEX_A57,
291 MIDR_CPU_VAR_REV(0, 0),
292 MIDR_CPU_VAR_REV(1, 2)),
295 #ifdef CONFIG_ARM64_ERRATUM_834220
297 /* Cortex-A57 r0p0 - r1p2 */
298 .desc = "ARM erratum 834220",
299 .capability = ARM64_WORKAROUND_834220,
300 MIDR_RANGE(MIDR_CORTEX_A57,
301 MIDR_CPU_VAR_REV(0, 0),
302 MIDR_CPU_VAR_REV(1, 2)),
305 #ifdef CONFIG_ARM64_ERRATUM_845719
307 /* Cortex-A53 r0p[01234] */
308 .desc = "ARM erratum 845719",
309 .capability = ARM64_WORKAROUND_845719,
310 MIDR_RANGE(MIDR_CORTEX_A53, 0x00, 0x04),
313 #ifdef CONFIG_CAVIUM_ERRATUM_23154
315 /* Cavium ThunderX, pass 1.x */
316 .desc = "Cavium erratum 23154",
317 .capability = ARM64_WORKAROUND_CAVIUM_23154,
318 MIDR_RANGE(MIDR_THUNDERX, 0x00, 0x01),
321 #ifdef CONFIG_CAVIUM_ERRATUM_27456
323 /* Cavium ThunderX, T88 pass 1.x - 2.1 */
324 .desc = "Cavium erratum 27456",
325 .capability = ARM64_WORKAROUND_CAVIUM_27456,
326 MIDR_RANGE(MIDR_THUNDERX,
327 MIDR_CPU_VAR_REV(0, 0),
328 MIDR_CPU_VAR_REV(1, 1)),
331 /* Cavium ThunderX, T81 pass 1.0 */
332 .desc = "Cavium erratum 27456",
333 .capability = ARM64_WORKAROUND_CAVIUM_27456,
334 MIDR_RANGE(MIDR_THUNDERX_81XX, 0x00, 0x00),
337 #ifdef CONFIG_CAVIUM_ERRATUM_30115
339 /* Cavium ThunderX, T88 pass 1.x - 2.2 */
340 .desc = "Cavium erratum 30115",
341 .capability = ARM64_WORKAROUND_CAVIUM_30115,
342 MIDR_RANGE(MIDR_THUNDERX, 0x00,
343 (1 << MIDR_VARIANT_SHIFT) | 2),
346 /* Cavium ThunderX, T81 pass 1.0 - 1.2 */
347 .desc = "Cavium erratum 30115",
348 .capability = ARM64_WORKAROUND_CAVIUM_30115,
349 MIDR_RANGE(MIDR_THUNDERX_81XX, 0x00, 0x02),
352 /* Cavium ThunderX, T83 pass 1.0 */
353 .desc = "Cavium erratum 30115",
354 .capability = ARM64_WORKAROUND_CAVIUM_30115,
355 MIDR_RANGE(MIDR_THUNDERX_83XX, 0x00, 0x00),
359 .desc = "Mismatched cache line size",
360 .capability = ARM64_MISMATCHED_CACHE_LINE_SIZE,
361 .matches = has_mismatched_cache_line_size,
362 .def_scope = SCOPE_LOCAL_CPU,
363 .enable = cpu_enable_trap_ctr_access,
365 #ifdef CONFIG_QCOM_FALKOR_ERRATUM_1003
367 .desc = "Qualcomm Technologies Falkor erratum 1003",
368 .capability = ARM64_WORKAROUND_QCOM_FALKOR_E1003,
369 MIDR_RANGE(MIDR_QCOM_FALKOR_V1,
370 MIDR_CPU_VAR_REV(0, 0),
371 MIDR_CPU_VAR_REV(0, 0)),
374 .desc = "Qualcomm Technologies Kryo erratum 1003",
375 .capability = ARM64_WORKAROUND_QCOM_FALKOR_E1003,
376 .def_scope = SCOPE_LOCAL_CPU,
377 .midr_model = MIDR_QCOM_KRYO,
378 .matches = is_kryo_midr,
381 #ifdef CONFIG_QCOM_FALKOR_ERRATUM_1009
383 .desc = "Qualcomm Technologies Falkor erratum 1009",
384 .capability = ARM64_WORKAROUND_REPEAT_TLBI,
385 MIDR_RANGE(MIDR_QCOM_FALKOR_V1,
386 MIDR_CPU_VAR_REV(0, 0),
387 MIDR_CPU_VAR_REV(0, 0)),
390 #ifdef CONFIG_ARM64_ERRATUM_858921
392 /* Cortex-A73 all versions */
393 .desc = "ARM erratum 858921",
394 .capability = ARM64_WORKAROUND_858921,
395 MIDR_ALL_VERSIONS(MIDR_CORTEX_A73),
398 #ifdef CONFIG_HARDEN_BRANCH_PREDICTOR
400 .capability = ARM64_HARDEN_BRANCH_PREDICTOR,
401 MIDR_ALL_VERSIONS(MIDR_CORTEX_A57),
402 .enable = enable_psci_bp_hardening,
405 .capability = ARM64_HARDEN_BRANCH_PREDICTOR,
406 MIDR_ALL_VERSIONS(MIDR_CORTEX_A72),
407 .enable = enable_psci_bp_hardening,
410 .capability = ARM64_HARDEN_BRANCH_PREDICTOR,
411 MIDR_ALL_VERSIONS(MIDR_CORTEX_A73),
412 .enable = enable_psci_bp_hardening,
415 .capability = ARM64_HARDEN_BRANCH_PREDICTOR,
416 MIDR_ALL_VERSIONS(MIDR_CORTEX_A75),
417 .enable = enable_psci_bp_hardening,
420 .capability = ARM64_HARDEN_BRANCH_PREDICTOR,
421 MIDR_ALL_VERSIONS(MIDR_QCOM_FALKOR_V1),
422 .enable = qcom_enable_link_stack_sanitization,
425 .capability = ARM64_HARDEN_BP_POST_GUEST_EXIT,
426 MIDR_ALL_VERSIONS(MIDR_QCOM_FALKOR_V1),
429 .capability = ARM64_HARDEN_BRANCH_PREDICTOR,
430 MIDR_ALL_VERSIONS(MIDR_BRCM_VULCAN),
431 .enable = enable_psci_bp_hardening,
434 .capability = ARM64_HARDEN_BRANCH_PREDICTOR,
435 MIDR_ALL_VERSIONS(MIDR_CAVIUM_THUNDERX2),
436 .enable = enable_psci_bp_hardening,
444 * The CPU Errata work arounds are detected and applied at boot time
445 * and the related information is freed soon after. If the new CPU requires
446 * an errata not detected at boot, fail this CPU.
448 void verify_local_cpu_errata_workarounds(void)
450 const struct arm64_cpu_capabilities *caps = arm64_errata;
452 for (; caps->matches; caps++) {
453 if (cpus_have_cap(caps->capability)) {
455 caps->enable((void *)caps);
456 } else if (caps->matches(caps, SCOPE_LOCAL_CPU)) {
457 pr_crit("CPU%d: Requires work around for %s, not detected"
460 caps->desc ? : "an erratum");
466 void update_cpu_errata_workarounds(void)
468 update_cpu_capabilities(arm64_errata, "enabling workaround for");
471 void __init enable_errata_workarounds(void)
473 enable_cpu_capabilities(arm64_errata);
git.codelabs.ch / muen / linux.git / blob