Bug 2001059

Summary: gcc: add patch to mitigate ARM CVE-2021-35465
Product: Red Hat Enterprise Linux 9 Reporter: devthomp
Component: gccAssignee: Marek Polacek <mpolacek>
gcc sub component: system-version QA Contact: qe-baseos-tools-bugs
Status: CLOSED NOTABUG Docs Contact:
Severity: low    
Priority: unspecified CC: ahajkova, fweimer, jakub, ohudlick
Version: 9.0Keywords: Bugfix, Triaged
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-09-14 21:10:41 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description devthomp 2021-09-03 16:42:18 UTC 
Description of problem:
Certain Arm products before 2021-08-23 do not properly consider the effect of exceptions on a VLLDM instruction. A Non-secure handler may have read or write access to part of a Secure context. A compiler patch was put together to mitigate this issue. 

Because there are no current products affected by this issue as it is tied to ARM M-profile processors this hardening bug is being raised. This is to add the mitigation to gcc as was done in the gnu branch. 


Version-Release number of selected component (if applicable):
gcc versions 10 and 11 would require this patch.


Additional info:
Further information can be found here:
https://developer.arm.com/support/arm-security-updates/vlldm-instruction-security-vulnerability

Patches here
https://gcc.gnu.org/pipermail/gcc-patches/2021-August/578029.html
Comment 1 Florian Weimer 2021-09-03 16:54:25 UTC 
(In reply to devthomp from comment #0)
> Description of problem:
> Certain Arm products before 2021-08-23 do not properly consider the effect
> of exceptions on a VLLDM instruction. A Non-secure handler may have read or
> write access to part of a Secure context. A compiler patch was put together
> to mitigate this issue. 
> 
> Because there are no current products affected by this issue as it is tied
> to ARM M-profile processors this hardening bug is being raised. This is to
> add the mitigation to gcc as was done in the gnu branch. 

Cortex-M is not a supported target. The upstream patches update the arm (not aarch64) backend which we do not use.

Would you please clarify why we would need to backport this patch? Thanks.
Comment 2 devthomp 2021-09-03 17:01:28 UTC 
Perhaps I misunderstood patch intent. I was under the impression it would also mitigate cross compiling to that platform.
Which our clients may be doing.
Comment 3 Marek Polacek 2021-09-07 18:56:38 UTC 
But we don't support that, do we?

The product it RHEL 9 so the sub component can't be the GCC Toolset because we don't have it yet.

That said, since Richard said he would backport the patches to 11, we'll get them for free when updating from Fedora gcc 11.  I don't plan to update GTS 10 gcc though.
QE work would be sanity-only.
Comment 4 Florian Weimer 2021-09-13 17:36:25 UTC 
(In reply to devthomp from comment #2)
> Perhaps I misunderstood patch intent. I was under the impression it would
> also mitigate cross compiling to that platform.
> Which our clients may be doing.

Cross-compilation is not supported. It would require rebuilding the toolchain from sources, which isn't supported either.
Comment 5 devthomp 2021-09-14 21:10:41 UTC 
(In reply to Florian Weimer from comment #4)
> (In reply to devthomp from comment #2)
> > Perhaps I misunderstood patch intent. I was under the impression it would
> > also mitigate cross compiling to that platform.
> > Which our clients may be doing.
> 
> Cross-compilation is not supported. It would require rebuilding the
> toolchain from sources, which isn't supported either.

Resolving as not a bug given this.