fix(cpus): workaround for CVE-2024-5660 for Cortex-X4 Implements mitigation for CVE-2024-5660 that affects Cortex-X4 revisions r0p0, r0p1, r0p2. The workaround is to disable the hardware page aggregation at EL3 by setting CPUECTLR_EL1[46] = 1'b1. Public Documentation: https://developer.arm.com/Arm%20Security%20Center/Arm%20CPU%20Vulnerability%20CVE-2024-5660 Change-Id: I378cb4978919cced03e7febc2ad431c572eac72d Signed-off-by: Sona Mathew <sonarebecca.mathew@arm.com>

commit: af65cbb9549765917cf79ab0a819fe58773882ab [log] [tgz]
author: Sona Mathew <sonarebecca.mathew@arm.com> Mon May 20 13:48:19 2024 -0500
committer: Sona Mathew <sonarebecca.mathew@arm.com> Tue Dec 17 10:24:33 2024 -0600
tree: 882d424940d4dac3e323342f8d8b067b303a37c1
parent: 0863511b682e1ad4f17343cc8aff790cad860025 [diff] [blame]
diff --git a/lib/cpus/cpu-ops.mk b/lib/cpus/cpu-ops.mk
index 4a04a9d..d532460 100644
--- a/lib/cpus/cpu-ops.mk
+++ b/lib/cpus/cpu-ops.mk

@@ -33,6 +33,12 @@
 WORKAROUND_CVE_2022_23960		?=1
 CPU_FLAG_LIST += WORKAROUND_CVE_2022_23960
 
+# Flag to disable Hardware page aggregation(HPA).
+# This flag is enabled by default.
+WORKAROUND_CVE_2024_5660		?=1
+CPU_FLAG_LIST += WORKAROUND_CVE_2024_5660
+
+
 # Flags to indicate internal or external Last level cache
 # By default internal
 CPU_FLAG_LIST += NEOVERSE_Nx_EXTERNAL_LLC
commit	af65cbb9549765917cf79ab0a819fe58773882ab	[log] [tgz]
author	Sona Mathew <sonarebecca.mathew@arm.com>	Mon May 20 13:48:19 2024 -0500
committer	Sona Mathew <sonarebecca.mathew@arm.com>	Tue Dec 17 10:24:33 2024 -0600
tree	882d424940d4dac3e323342f8d8b067b303a37c1
parent	0863511b682e1ad4f17343cc8aff790cad860025 [diff] [blame]