powerpc/fsl: Flush the branch predictor at each kernel entry (64bit)

In order to protect against speculation attacks on indirect branches, the branch predictor is flushed at kernel entry to protect for the following situations: - userspace process attacking another userspace process - userspace process attacking the kernel Basically when the privillege level change (i.e. the kernel is entered), the branch predictor state is flushed. Signed-off-by: Diana Craciun <diana.craciun@nxp.com> Signed-off-by: Michael Ellerman <mpe@ellerman.id.au>
author: Diana Craciun <diana.craciun@nxp.com> 2018-12-12 16:03:05 +0200
committer: Michael Ellerman <mpe@ellerman.id.au> 2018-12-20 22:59:03 +1100
commit: 10c5e83afd4a3f01712d97d3bb1ae34d5b74a185 (patch)
tree: 19f032a9630407a6b0d0bbfe13c44cb4573f57f1 /arch/powerpc/kernel/entry_64.S
parent: f633a8ad636efb5d4bba1a047d4a0f1ef719aa06 (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/arch/powerpc/kernel/entry_64.S b/arch/powerpc/kernel/entry_64.S
index 7b1693adff2a..7c2032e83ce7 100644
--- a/arch/powerpc/kernel/entry_64.S
+++ b/arch/powerpc/kernel/entry_64.S
@@ -80,6 +80,11 @@ END_FTR_SECTION_IFSET(CPU_FTR_TM)
 	std	r0,GPR0(r1)
 	std	r10,GPR1(r1)
 	beq	2f			/* if from kernel mode */
+#ifdef CONFIG_PPC_FSL_BOOK3E
+START_BTB_FLUSH_SECTION
+	BTB_FLUSH(r10)
+END_BTB_FLUSH_SECTION
+#endif
 	ACCOUNT_CPU_USER_ENTRY(r13, r10, r11)
 2:	std	r2,GPR2(r1)
 	std	r3,GPR3(r1)
author	Diana Craciun <diana.craciun@nxp.com>	2018-12-12 16:03:05 +0200
committer	Michael Ellerman <mpe@ellerman.id.au>	2018-12-20 22:59:03 +1100
commit	10c5e83afd4a3f01712d97d3bb1ae34d5b74a185 (patch)
tree	19f032a9630407a6b0d0bbfe13c44cb4573f57f1 /arch/powerpc/kernel/entry_64.S
parent	f633a8ad636efb5d4bba1a047d4a0f1ef719aa06 (diff)