• Michael Ellerman's avatar
    powerpc/64s: Wire up cpu_show_spectre_v2() · 15e4f8b2
    Michael Ellerman authored
    CVE-2018-3639 (powerpc)
    
    Add a definition for cpu_show_spectre_v2() to override the generic
    version. This has several permuations, though in practice some may not
    occur we cater for any combination.
    
    The most verbose is:
    
      Mitigation: Indirect branch serialisation (kernel only), Indirect
      branch cache disabled, ori31 speculation barrier enabled
    
    We don't treat the ori31 speculation barrier as a mitigation on its
    own, because it has to be *used* by code in order to be a mitigation
    and we don't know if userspace is doing that. So if that's all we see
    we say:
    
      Vulnerable, ori31 speculation barrier enabled
    
    (cherry picked from commit d6fbe1c5)
    Signed-off-by: default avatarMichael Ellerman <mpe@ellerman.id.au>
    Signed-off-by: default avatarJuerg Haefliger <juergh@canonical.com>
    15e4f8b2
security.c 2.09 KB