Home Explore Help
Sign In
samsung-sm8650
/
android_kernel_samsung_sm8650_ksu
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 5c86c450e2
Branches Tags
android_kernel_...
/
arch
/
s390
/
kernel
/
nospec-branch.c

nospec-branch.c 4.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156 
  1. // SPDX-License-Identifier: GPL-2.0
    2. 

  2. #include <linux/module.h>
    3. 

  3. #include <linux/device.h>
    4. 

  4. #include <linux/cpu.h>
    5. 

  5. #include <asm/nospec-branch.h>
    6. 

  6. 

  7. static int __init nobp_setup_early(char *str)
    8. 

  8. {
    9. 

  9. 	bool enabled;
    10. 

  10. 	int rc;
    11. 

  11. 

  12. 	rc = kstrtobool(str, &enabled);
    13. 

  13. 	if (rc)
    14. 

  14. 		return rc;
    15. 

  15. 	if (enabled && test_facility(82)) {
    16. 

  16. 		/*
    17. 

  17. 		 * The user explicitely requested nobp=1, enable it and
    18. 

  18. 		 * disable the expoline support.
    19. 

  19. 		 */
    20. 

  20. 		__set_facility(82, alt_stfle_fac_list);
    21. 

  21. 		if (IS_ENABLED(CONFIG_EXPOLINE))
    22. 

  22. 			nospec_disable = 1;
    23. 

  23. 	} else {
    24. 

  24. 		__clear_facility(82, alt_stfle_fac_list);
    25. 

  25. 	}
    26. 

  26. 	return 0;
    27. 

  27. }
    28. 

  28. early_param("nobp", nobp_setup_early);
    29. 

  29. 

  30. static int __init nospec_setup_early(char *str)
    31. 

  31. {
    32. 

  32. 	__clear_facility(82, alt_stfle_fac_list);
    33. 

  33. 	return 0;
    34. 

  34. }
    35. 

  35. early_param("nospec", nospec_setup_early);
    36. 

  36. 

  37. static int __init nospec_report(void)
    38. 

  38. {
    39. 

  39. 	if (test_facility(156))
    40. 

  40. 		pr_info("Spectre V2 mitigation: etokens\n");
    41. 

  41. 	if (nospec_uses_trampoline())
    42. 

  42. 		pr_info("Spectre V2 mitigation: execute trampolines\n");
    43. 

  43. 	if (__test_facility(82, alt_stfle_fac_list))
    44. 

  44. 		pr_info("Spectre V2 mitigation: limited branch prediction\n");
    45. 

  45. 	return 0;
    46. 

  46. }
    47. 

  47. arch_initcall(nospec_report);
    48. 

  48. 

  49. #ifdef CONFIG_EXPOLINE
    50. 

  50. 

  51. int nospec_disable = IS_ENABLED(CONFIG_EXPOLINE_OFF);
    52. 

  52. 

  53. static int __init nospectre_v2_setup_early(char *str)
    54. 

  54. {
    55. 

  55. 	nospec_disable = 1;
    56. 

  56. 	return 0;
    57. 

  57. }
    58. 

  58. early_param("nospectre_v2", nospectre_v2_setup_early);
    59. 

  59. 

  60. void __init nospec_auto_detect(void)
    61. 

  61. {
    62. 

  62. 	if (test_facility(156) || cpu_mitigations_off()) {
    63. 

  63. 		/*
    64. 

  64. 		 * The machine supports etokens.
    65. 

  65. 		 * Disable expolines and disable nobp.
    66. 

  66. 		 */
    67. 

  67. 		if (__is_defined(CC_USING_EXPOLINE))
    68. 

  68. 			nospec_disable = 1;
    69. 

  69. 		__clear_facility(82, alt_stfle_fac_list);
    70. 

  70. 	} else if (__is_defined(CC_USING_EXPOLINE)) {
    71. 

  71. 		/*
    72. 

  72. 		 * The kernel has been compiled with expolines.
    73. 

  73. 		 * Keep expolines enabled and disable nobp.
    74. 

  74. 		 */
    75. 

  75. 		nospec_disable = 0;
    76. 

  76. 		__clear_facility(82, alt_stfle_fac_list);
    77. 

  77. 	}
    78. 

  78. 	/*
    79. 

  79. 	 * If the kernel has not been compiled with expolines the
    80. 

  80. 	 * nobp setting decides what is done, this depends on the
    81. 

  81. 	 * CONFIG_KERNEL_NP option and the nobp/nospec parameters.
    82. 

  82. 	 */
    83. 

  83. }
    84. 

  84. 

  85. static int __init spectre_v2_setup_early(char *str)
    86. 

  86. {
    87. 

  87. 	if (str && !strncmp(str, "on", 2)) {
    88. 

  88. 		nospec_disable = 0;
    89. 

  89. 		__clear_facility(82, alt_stfle_fac_list);
    90. 

  90. 	}
    91. 

  91. 	if (str && !strncmp(str, "off", 3))
    92. 

  92. 		nospec_disable = 1;
    93. 

  93. 	if (str && !strncmp(str, "auto", 4))
    94. 

  94. 		nospec_auto_detect();
    95. 

  95. 	return 0;
    96. 

  96. }
    97. 

  97. early_param("spectre_v2", spectre_v2_setup_early);
    98. 

  98. 

  99. static void __init_or_module __nospec_revert(s32 *start, s32 *end)
    100. 

  100. {
    101. 

  101. 	enum { BRCL_EXPOLINE, BRASL_EXPOLINE } type;
    102. 

  102. 	static const u8 branch[] = { 0x47, 0x00, 0x07, 0x00 };
    103. 

  103. 	u8 *instr, *thunk, *br;
    104. 

  104. 	u8 insnbuf[6];
    105. 

  105. 	s32 *epo;
    106. 

  106. 

  107. 	/* Second part of the instruction replace is always a nop */
    108. 

  108. 	memcpy(insnbuf + 2, branch, sizeof(branch));
    109. 

  109. 	for (epo = start; epo < end; epo++) {
    110. 

  110. 		instr = (u8 *) epo + *epo;
    111. 

  111. 		if (instr[0] == 0xc0 && (instr[1] & 0x0f) == 0x04)
    112. 

  112. 			type = BRCL_EXPOLINE;	/* brcl instruction */
    113. 

  113. 		else if (instr[0] == 0xc0 && (instr[1] & 0x0f) == 0x05)
    114. 

  114. 			type = BRASL_EXPOLINE;	/* brasl instruction */
    115. 

  115. 		else
    116. 

  116. 			continue;
    117. 

  117. 		thunk = instr + (*(int *)(instr + 2)) * 2;
    118. 

  118. 		if (thunk[0] == 0xc6 && thunk[1] == 0x00)
    119. 

  119. 			/* exrl %r0,<target-br> */
    120. 

  120. 			br = thunk + (*(int *)(thunk + 2)) * 2;
    121. 

  121. 		else
    122. 

  122. 			continue;
    123. 

  123. 		if (br[0] != 0x07 || (br[1] & 0xf0) != 0xf0)
    124. 

  124. 			continue;
    125. 

  125. 		switch (type) {
    126. 

  126. 		case BRCL_EXPOLINE:
    127. 

  127. 			/* brcl to thunk, replace with br + nop */
    128. 

  128. 			insnbuf[0] = br[0];
    129. 

  129. 			insnbuf[1] = (instr[1] & 0xf0) | (br[1] & 0x0f);
    130. 

  130. 			break;
    131. 

  131. 		case BRASL_EXPOLINE:
    132. 

  132. 			/* brasl to thunk, replace with basr + nop */
    133. 

  133. 			insnbuf[0] = 0x0d;
    134. 

  134. 			insnbuf[1] = (instr[1] & 0xf0) | (br[1] & 0x0f);
    135. 

  135. 			break;
    136. 

  136. 		}
    137. 

  137. 

  138. 		s390_kernel_write(instr, insnbuf, 6);
    139. 

  139. 	}
    140. 

  140. }
    141. 

  141. 

  142. void __init_or_module nospec_revert(s32 *start, s32 *end)
    143. 

  143. {
    144. 

  144. 	if (nospec_disable)
    145. 

  145. 		__nospec_revert(start, end);
    146. 

  146. }
    147. 

  147. 

  148. extern s32 __nospec_call_start[], __nospec_call_end[];
    149. 

  149. extern s32 __nospec_return_start[], __nospec_return_end[];
    150. 

  150. void __init nospec_init_branches(void)
    151. 

  151. {
    152. 

  152. 	nospec_revert(__nospec_call_start, __nospec_call_end);
    153. 

  153. 	nospec_revert(__nospec_return_start, __nospec_return_end);
    154. 

  154. }
    155. 

  155. 

  156. #endif /* CONFIG_EXPOLINE */
    157.