Emit speculation barriers after ERETs According to Linux commit 679db70801da9fda91d26caf13bf5b5ccc74e8e8 some ARM64 CPUs may speculate past an ERET. This could be used as part of a side-channel attack. To mitigate the issue, emit DSB/ISB barriers after every ERET. Add a build step which dumps the generated ELF and check that this holds for every ERET in the binary to prevent regressing. Bug: 146490856 Change-Id: Idf1c2690637a7edb4a366d30fec26ed444069f5e

commit: d623d31d390fc1d2a351b81e0d1e58e715fd05d8 [log] [tgz]
author: David Brazdil <dbrazdil@google.com> Thu Dec 19 16:04:06 2019 +0000
committer: David Brazdil <dbrazdil@google.com> Fri Dec 20 09:53:10 2019 +0000
tree: b5492d96321c40a9dd066646d09e26ffd9a945ef
parent: 768f69c3720c9de7bd66a8debc76628bd63d1ae9 [diff] [blame]
diff --git a/src/arch/aarch64/hypervisor/exceptions.S b/src/arch/aarch64/hypervisor/exceptions.S
index fe89da8..17a5b63 100644
--- a/src/arch/aarch64/hypervisor/exceptions.S
+++ b/src/arch/aarch64/hypervisor/exceptions.S

@@ -518,7 +518,7 @@
 	/* Restore x0..x3, which we have used as scratch before. */
 	ldp x2, x3, [x0, #VCPU_REGS + 8 * 2]
 	ldp x0, x1, [x0, #VCPU_REGS + 8 * 0]
-	eret
+	eret_with_sb
 
 .balign 0x40
 /**
@@ -526,4 +526,4 @@
  */
 restore_from_stack_and_return:
 	restore_volatile_from_stack el2
-	eret
+	eret_with_sb
commit	d623d31d390fc1d2a351b81e0d1e58e715fd05d8	[log] [tgz]
author	David Brazdil <dbrazdil@google.com>	Thu Dec 19 16:04:06 2019 +0000
committer	David Brazdil <dbrazdil@google.com>	Fri Dec 20 09:53:10 2019 +0000
tree	b5492d96321c40a9dd066646d09e26ffd9a945ef
parent	768f69c3720c9de7bd66a8debc76628bd63d1ae9 [diff] [blame]