fix(security): workaround for CVE-2022-23960 Implements the loop workaround for Cortex-A77, Cortex-A78, Cortex-A710, Cortex-X2, Neoverse N1, Neoverse N2 and Neoverse V1 CPUs. Signed-off-by: Bipin Ravi <bipin.ravi@arm.com> Change-Id: I11d342df7a2068a15e18f4974c645af3b341235b

commit: 86499744b3e79744d7ec200df021cae85c1305b0 [log] [tgz]
author: Bipin Ravi <bipin.ravi@arm.com> Tue Jan 18 01:59:06 2022 -0600
committer: Bipin Ravi <bipin.ravi@arm.com> Thu Mar 10 23:57:14 2022 -0600
tree: a07f088625a7eea44aa57604ed6202e9f814b3b0
parent: d7605cd9444ec839e0a6ec372a0306d31b69fefe [diff] [blame]
diff --git a/lib/cpus/cpu-ops.mk b/lib/cpus/cpu-ops.mk
index e812c07..c7630fb 100644
--- a/lib/cpus/cpu-ops.mk
+++ b/lib/cpus/cpu-ops.mk

@@ -24,6 +24,7 @@
 WORKAROUND_CVE_2017_5715		?=1
 WORKAROUND_CVE_2018_3639		?=1
 DYNAMIC_WORKAROUND_CVE_2018_3639	?=0
+WORKAROUND_CVE_2022_23960		?=1
 
 # Flags to indicate internal or external Last level cache
 # By default internal
@@ -56,6 +57,10 @@
 $(eval $(call assert_boolean,DYNAMIC_WORKAROUND_CVE_2018_3639))
 $(eval $(call add_define,DYNAMIC_WORKAROUND_CVE_2018_3639))
 
+# Process WORKAROUND_CVE_2022_23960 flag
+$(eval $(call assert_boolean,WORKAROUND_CVE_2022_23960))
+$(eval $(call add_define,WORKAROUND_CVE_2022_23960))
+
 $(eval $(call assert_boolean,NEOVERSE_Nx_EXTERNAL_LLC))
 $(eval $(call add_define,NEOVERSE_Nx_EXTERNAL_LLC))
commit	86499744b3e79744d7ec200df021cae85c1305b0	[log] [tgz]
author	Bipin Ravi <bipin.ravi@arm.com>	Tue Jan 18 01:59:06 2022 -0600
committer	Bipin Ravi <bipin.ravi@arm.com>	Thu Mar 10 23:57:14 2022 -0600
tree	a07f088625a7eea44aa57604ed6202e9f814b3b0
parent	d7605cd9444ec839e0a6ec372a0306d31b69fefe [diff] [blame]