TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / next / TF-A / trusted-firmware-a / ba5453ca4fd40af263625def34925119b8899201
commitba5453ca4fd40af263625def34925119b8899201[log] [tgz]
authorSona Mathew <sonarebecca.mathew@arm.com>Thu May 23 16:04:30 2024 -0500
committerSona Mathew <sonarebecca.mathew@arm.com>Tue Dec 17 11:36:18 2024 -0600
treed34602498535ebdca29e9d4fce0e5a0104c9ecf7
parent5e99888274317a2bd84f2ac2f60811abb67b42eb [diff]
fix(cpus): workaround for CVE-2024-5660 for Neoverse-V1

Implements mitigation for CVE-2024-5660 that affects Neoverse-V1
revisions r0p0, r1p0, r1p1, r1p2.
The workaround is to disable the hardware page aggregation at
EL3 by setting CPUECTLR_EL1[46] = 1'b1.

Public Documentation:
https://developer.arm.com/Arm%20Security%20Center/Arm%20CPU%20Vulnerability%20CVE-2024-5660

Change-Id: Ia59452ea38c66b291790956d7f2880bfcd56d45f
Signed-off-by: Sona Mathew <sonarebecca.mathew@arm.com>
1 file changed
tree: d34602498535ebdca29e9d4fce0e5a0104c9ecf7
  1. .husky/
  2. bl1/
  3. bl2/
  4. bl2u/
  5. bl31/
  6. bl32/
  7. common/
  8. docs/
  9. drivers/
  10. fdts/
  11. include/
  12. lib/
  13. licenses/
  14. make_helpers/
  15. plat/
  16. services/
  17. tools/
  18. .checkpatch.conf
  19. .commitlintrc.js
  20. .cz.json
  21. .editorconfig
  22. .gitignore
  23. .gitreview
  24. .nvmrc
  25. .readthedocs.yaml
  26. .versionrc.cjs
  27. changelog.yaml
  28. dco.txt
  29. license.rst
  30. Makefile
  31. package-lock.json
  32. package.json
  33. poetry.lock
  34. pyproject.toml
  35. readme.rst