From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <jeremy.linton@arm.com>
Received-SPF: Pass (sender SPF authorized) identity=mailfrom;
 client-ip=217.140.101.70; helo=foss.arm.com;
 envelope-from=jeremy.linton@arm.com; receiver=edk2-devel@lists.01.org 
Received: from foss.arm.com (usa-sjc-mx-foss1.foss.arm.com [217.140.101.70])
 by ml01.01.org (Postfix) with ESMTP id 78ED9222630B5
 for <edk2-devel@lists.01.org>; Thu, 22 Feb 2018 18:31:13 -0800 (PST)
Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.72.51.249])
 by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id 3FDF780D;
 Thu, 22 Feb 2018 18:37:14 -0800 (PST)
Received: from [192.168.100.243] (usa-sjc-mx-foss1.foss.arm.com
 [217.140.101.70])
 by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id DB1593F53D;
 Thu, 22 Feb 2018 18:37:12 -0800 (PST)
To: Heyi Guo <heyi.guo@linaro.org>, leif.lindholm@linaro.org,
 linaro-uefi@lists.linaro.org, edk2-devel@lists.01.org,
 graeme.gregory@linaro.org
Cc: huangming23@huawei.com, ard.biesheuvel@linaro.org, john.garry@huawei.com, 
 zhangjinsong2@huawei.com, wanghuiqiang@huawei.com, guoheyi@huawei.com,
 waip23@126.com, mengfanrong@huawei.com, huangdaode@hisilicon.com
References: <1517572648-11343-1-git-send-email-heyi.guo@linaro.org>
 <1517572648-11343-8-git-send-email-heyi.guo@linaro.org>
From: Jeremy Linton <jeremy.linton@arm.com>
Message-ID: <a4a07a8a-eb9b-6692-1422-6878e288d4ff@arm.com>
Date: Thu, 22 Feb 2018 20:37:11 -0600
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101
 Thunderbird/52.5.2
MIME-Version: 1.0
In-Reply-To: <1517572648-11343-8-git-send-email-heyi.guo@linaro.org>
Subject: Re: [PATCH edk2-non-osi v3 7/7] Hisilicon/D05: Update binary of trusted-firmware
X-BeenThere: edk2-devel@lists.01.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: EDK II Development  <edk2-devel.lists.01.org>
List-Unsubscribe: <https://lists.01.org/mailman/options/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=unsubscribe>
List-Archive: <http://lists.01.org/pipermail/edk2-devel/>
List-Post: <mailto:edk2-devel@lists.01.org>
List-Help: <mailto:edk2-devel-request@lists.01.org?subject=help>
List-Subscribe: <https://lists.01.org/mailman/listinfo/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=subscribe>
X-List-Received-Date: Fri, 23 Feb 2018 02:31:13 -0000
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit

Hi,

On 02/02/2018 05:57 AM, Heyi Guo wrote:
> 1 Workarounds for CVE-2017-5715 on Cortex A57/A72/A73 and A75 #1214.

I've been trying to verify spectre fixes, and I don't get a smccc 
version from this firmware (see this kernel branch 
https://git.kernel.org/pub/scm/linux/kernel/git/arm64/linux.git/log/?h=kpti) 
image.

This means that the spectre BP hardening isn't activating on the D05. 
So, unless i'm doing something wrong (quite possible) it appears that 
this image isn't utilizing the correct ATF patches.

Can someone please verify/check this image with a SMCCC enabled kernel?

Thanks,


> 2 Upgrade trusted firmware to 1.4
> 
> Contributed-under: TianoCore Contribution Agreement 1.1
> Signed-off-by: Ming Huang <huangming23@huawei.com>
> Signed-off-by: Heyi Guo <heyi.guo@linaro.org>
> Reviewed-by: Leif Lindholm <leif.lindholm@linaro.org>
> Reviewed-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
> ---
>   Platform/Hisilicon/D05/bl1.bin | Bin 14344 -> 12424 bytes
>   Platform/Hisilicon/D05/fip.bin | Bin 41493 -> 37546 bytes
>   2 files changed, 0 insertions(+), 0 deletions(-)
> 
> diff --git a/Platform/Hisilicon/D05/bl1.bin b/Platform/Hisilicon/D05/bl1.bin
> index 7341476..b95257c 100644
> Binary files a/Platform/Hisilicon/D05/bl1.bin and b/Platform/Hisilicon/D05/bl1.bin differ
> diff --git a/Platform/Hisilicon/D05/fip.bin b/Platform/Hisilicon/D05/fip.bin
> index 496a9b8..5958293 100644
> Binary files a/Platform/Hisilicon/D05/fip.bin and b/Platform/Hisilicon/D05/fip.bin differ
>