git.proxmox.com Git - mirror_ubuntu-artful-kernel.git/commit

author	Michael Ellerman <mpe@ellerman.id.au>
	Tue, 27 Mar 2018 12:01:44 +0000 (23:01 +1100)
committer	Stefan Bader <stefan.bader@canonical.com>
	Tue, 15 May 2018 05:35:33 +0000 (07:35 +0200)
commit	ebe8fa24a51d97ef5750292a19ebabe04e023d1b
tree	99bb4143167723f06f529c79c44dc900c21cd5d4	tree
parent	9bf403b99130f8b923ad5f70286e534f352a2859	commit \| diff

powerpc: Add security feature flags for Spectre/Meltdown

This commit adds security feature flags to reflect the settings we
receive from firmware regarding Spectre/Meltdown mitigations.

The feature names reflect the names we are given by firmware on bare
metal machines. See the hostboot source for details.

Arguably these could be firmware features, but that then requires them
to be read early in boot so they're available prior to asm feature
patching, but we don't actually want to use them for patching. We may
also want to dynamically update them in future, which would be
incompatible with the way firmware features work (at the moment at
least). So for now just make them separate flags.

Signed-off-by: Michael Ellerman <mpe@ellerman.id.au>
CVE-2018-3639 (powerpc)

Signed-off-by: Stefan Bader <stefan.bader@canonical.com>

arch/powerpc/include/asm/security_features.h	[new file with mode: 0644]	blob
arch/powerpc/kernel/Makefile		diff \| blob \| blame \| history
arch/powerpc/kernel/security.c	[new file with mode: 0644]	blob