Received: by 2002:ac0:a5b6:0:0:0:0:0 with SMTP id m51-v6csp2362480imm; Mon, 28 May 2018 06:45:26 -0700 (PDT) X-Google-Smtp-Source: AB8JxZpqbER4OZ2e3AkyvoWL7/52gZe+36XfrfsK/mtER9k2A6rVHziOpSJ+W6YNW84FBKfKkLE5 X-Received: by 2002:a62:b509:: with SMTP id y9-v6mr13606186pfe.121.1527515126650; Mon, 28 May 2018 06:45:26 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1527515126; cv=none; d=google.com; s=arc-20160816; b=Ty7XXhh3KyNo1gIR0eG88gRBktosuzq22v5MMkXkykAFltGjq5l5NfHrPpPBMD5R0G 0PPcxkLJEiBAmPLAcsUN+SzYPAjTvqo0H7Ddyt/WsluZudODjgZk/Q4Vg7tESmi2qcsZ VsP+7gq+PuQk936N3UlFTL+GbKUORf2o43qaU7o49aH3AihJZ4Kxz/MMOhPel6oiKRIl BZOTPsly4KnB3jKG1jiq0T78SRFvnk9UWC81U/Oi/nlS9r1NXZfRI4VaS6aWs1Ju/0NH sYa028aLmLpNHNWlhQxBY7V3ae5US+r1W5AnfQRoLRnQgTsN2uvnZsS5g8/K5Tn8cllV ZjLA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:mime-version:user-agent:references :in-reply-to:message-id:date:subject:cc:to:from:dkim-signature :arc-authentication-results; bh=f6vG4dG+pBS5zh7pt585DRgqS0c+2zzMygp0KCAbs6Y=; b=XIn9rmATKtisOGg06y9Xj26sN9qz6RnTQkYRkJAsqEgL+FrIFJqGRuhofWDlUxzsBf 3ZKIB/RMCrFIy3yNdUtO4wjPjM7xT8cB5/GC3vRYRRFF+t9acdS9yimhmHl1bbDn119R OtCKyhFryngDMUTV23lk9hvfag07qnwMJ7m6JNXDrVRxPuDstpzIhzcnwUa/atzhvZht vTomO9nlX7xd1t6vgOhWbkjneXpXc4AgQgHLPj5zEnxEtGe2IrFLE0wlfrW4m/bTtMjv 6IqdfovQEe3Pi5WIWN/6lekNMBIC4sLXYqevmWVsx92sZoyFFsfXyfAUKl3XeQo5TPQp ej/g== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=Oc5y1xW+; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id bh5-v6si28982501plb.320.2018.05.28.06.45.11; Mon, 28 May 2018 06:45:26 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; dkim=pass header.i=@kernel.org header.s=default header.b=Oc5y1xW+; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S968946AbeE1No3 (ORCPT + 99 others); Mon, 28 May 2018 09:44:29 -0400 Received: from mail.kernel.org ([198.145.29.99]:34472 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1162682AbeE1Kn1 (ORCPT ); Mon, 28 May 2018 06:43:27 -0400 Received: from localhost (LFbn-1-12247-202.w90-92.abo.wanadoo.fr [90.92.61.202]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPSA id E053E204EE; Mon, 28 May 2018 10:43:26 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org; s=default; t=1527504207; bh=cIK2sjRoGr8zoCBAZuP8nhBY/J04zP+SoHIgyGlQqNw=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=Oc5y1xW+X0iZfXV0Njw0Xk6bkszYgKPMe9e+m5S53hdjVzSEPvmwAAEcQ/HpOhLJs nBLwUTduOtRmE5Gqgey5xoT0HGZv9J8tABTi59pjWp21mu1iC3q88S317/l9xm0zTg VEAMEUQ4xkaqeaKtqi+QHyqsDYVZmHcpBSbw243w= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org, greg@kroah.com Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Mauricio Faria de Oliveira , Michael Ellerman Subject: [PATCH 4.14 053/496] powerpc: Move default security feature flags Date: Mon, 28 May 2018 11:57:18 +0200 Message-Id: <20180528100322.013305140@linuxfoundation.org> X-Mailer: git-send-email 2.17.0 In-Reply-To: <20180528100319.498712256@linuxfoundation.org> References: <20180528100319.498712256@linuxfoundation.org> User-Agent: quilt/0.65 X-stable: review MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org 4.14-stable review patch. If anyone has any objections, please let me know. ------------------ From: Mauricio Faria de Oliveira commit e7347a86830f38dc3e40c8f7e28c04412b12a2e7 upstream. This moves the definition of the default security feature flags (i.e., enabled by default) closer to the security feature flags. This can be used to restore current flags to the default flags. Signed-off-by: Mauricio Faria de Oliveira Signed-off-by: Michael Ellerman Signed-off-by: Greg Kroah-Hartman --- arch/powerpc/include/asm/security_features.h | 8 ++++++++ arch/powerpc/kernel/security.c | 7 +------ 2 files changed, 9 insertions(+), 6 deletions(-) --- a/arch/powerpc/include/asm/security_features.h +++ b/arch/powerpc/include/asm/security_features.h @@ -63,4 +63,12 @@ static inline bool security_ftr_enabled( // Firmware configuration indicates user favours security over performance #define SEC_FTR_FAVOUR_SECURITY 0x0000000000000200ull + +// Features enabled by default +#define SEC_FTR_DEFAULT \ + (SEC_FTR_L1D_FLUSH_HV | \ + SEC_FTR_L1D_FLUSH_PR | \ + SEC_FTR_BNDS_CHK_SPEC_BAR | \ + SEC_FTR_FAVOUR_SECURITY) + #endif /* _ASM_POWERPC_SECURITY_FEATURES_H */ --- a/arch/powerpc/kernel/security.c +++ b/arch/powerpc/kernel/security.c @@ -11,12 +11,7 @@ #include -unsigned long powerpc_security_features __read_mostly = \ - SEC_FTR_L1D_FLUSH_HV | \ - SEC_FTR_L1D_FLUSH_PR | \ - SEC_FTR_BNDS_CHK_SPEC_BAR | \ - SEC_FTR_FAVOUR_SECURITY; - +unsigned long powerpc_security_features __read_mostly = SEC_FTR_DEFAULT; ssize_t cpu_show_meltdown(struct device *dev, struct device_attribute *attr, char *buf) {