Bug#890424: Patches for Meltdown on Power

2018-02-14 Thread Moritz Mühlenhoff
On Wed, Feb 14, 2018 at 04:07:29PM +0100, Frédéric Bonnard wrote:
> Source: linux
> Source-Version: 4.9.65-3+deb9u2
> Tags: patch
> 
> --
> 
> Hi,
> beginning January a patch series has been sent on the LKML which include
> a patch to prevent the Meltdown vulnerability on some Power machines :
> https://lkml.org/lkml/2018/1/8/649
> This series has been upstreamed and a few days ago, the backport to 4.9
> stable kernel been included :
> https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/log/?h=linux-4.9.y=grep=powerpc
> 
> powerpc/64s: Allow control of RFI flush via debugfs
> powerpc/64s: Wire up cpu_show_meltdown()
> powerpc/powernv: Check device-tree for RFI flush settings
> powerpc/pseries: Query hypervisor for RFI flush settings
> powerpc/64s: Support disabling RFI flush with no_rfi_flush and nopti
> powerpc/64s: Add support for RFI flush of L1-D cache
> powerpc/64s: Convert slb_miss_common to use RFI_TO_USER/KERNEL
> powerpc/64: Convert the syscall exit path to use RFI_TO_USER/KERNEL
> powerpc/64: Convert fast_exception_return to use RFI_TO_USER/KERNEL
> powerpc/64: Add macros for annotating the destination of rfid/hrfid
> powerpc/pseries: Add H_GET_CPU_CHARACTERISTICS flags & wrapper
> 
> This will be available in 4.9.81 but given the CVE associated (
> https://security-tracker.debian.org/tracker/CVE-2017-5754 ) it may be
> included in debian stable 4.9.65-3+deb9u2 maybe ?
> Regards,

We're rebasing to the latest 4.9.x kernel from time to time (current
s-p-u has 4.9.80, but we'll probably update again), so this will also
reach stretch at some point. 

Cheers,
Moritz



Bug#890424: Patches for Meltdown on Power

2018-02-14 Thread Frédéric Bonnard
Source: linux
Source-Version: 4.9.65-3+deb9u2
Tags: patch

--

Hi,
beginning January a patch series has been sent on the LKML which include
a patch to prevent the Meltdown vulnerability on some Power machines :
https://lkml.org/lkml/2018/1/8/649
This series has been upstreamed and a few days ago, the backport to 4.9
stable kernel been included :
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/log/?h=linux-4.9.y=grep=powerpc

powerpc/64s: Allow control of RFI flush via debugfs
powerpc/64s: Wire up cpu_show_meltdown()
powerpc/powernv: Check device-tree for RFI flush settings
powerpc/pseries: Query hypervisor for RFI flush settings
powerpc/64s: Support disabling RFI flush with no_rfi_flush and nopti
powerpc/64s: Add support for RFI flush of L1-D cache
powerpc/64s: Convert slb_miss_common to use RFI_TO_USER/KERNEL
powerpc/64: Convert the syscall exit path to use RFI_TO_USER/KERNEL
powerpc/64: Convert fast_exception_return to use RFI_TO_USER/KERNEL
powerpc/64: Add macros for annotating the destination of rfid/hrfid
powerpc/pseries: Add H_GET_CPU_CHARACTERISTICS flags & wrapper

This will be available in 4.9.81 but given the CVE associated (
https://security-tracker.debian.org/tracker/CVE-2017-5754 ) it may be
included in debian stable 4.9.65-3+deb9u2 maybe ?
Regards,

F.


pgpaT0qSNO4ld.pgp
Description: PGP signature