Bug 2001059 - gcc: add patch to mitigate ARM CVE-2021-35465
Summary: gcc: add patch to mitigate ARM CVE-2021-35465
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Red Hat Enterprise Linux 9
Classification: Red Hat
Component: gcc
Version: 9.0
Hardware: Unspecified
OS: Unspecified
unspecified
low
Target Milestone: rc
: ---
Assignee: Marek Polacek
QA Contact: qe-baseos-tools-bugs
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2021-09-03 16:42 UTC by devthomp
Modified: 2023-07-18 14:25 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: No Doc Update
Doc Text:
Clone Of:
Environment:
Last Closed: 2021-09-14 21:10:41 UTC
Type: Bug
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker RHELPLAN-96174 0 None None None 2021-09-03 16:59:23 UTC

Description devthomp 2021-09-03 16:42:18 UTC 
Description of problem:
Certain Arm products before 2021-08-23 do not properly consider the effect of exceptions on a VLLDM instruction. A Non-secure handler may have read or write access to part of a Secure context. A compiler patch was put together to mitigate this issue. 

Because there are no current products affected by this issue as it is tied to ARM M-profile processors this hardening bug is being raised. This is to add the mitigation to gcc as was done in the gnu branch. 


Version-Release number of selected component (if applicable):
gcc versions 10 and 11 would require this patch.


Additional info:
Further information can be found here:
https://developer.arm.com/support/arm-security-updates/vlldm-instruction-security-vulnerability

Patches here
https://gcc.gnu.org/pipermail/gcc-patches/2021-August/578029.html
Comment 1 Florian Weimer 2021-09-03 16:54:25 UTC 
(In reply to devthomp from comment #0)
> Description of problem:
> Certain Arm products before 2021-08-23 do not properly consider the effect
> of exceptions on a VLLDM instruction. A Non-secure handler may have read or
> write access to part of a Secure context. A compiler patch was put together
> to mitigate this issue. 
> 
> Because there are no current products affected by this issue as it is tied
> to ARM M-profile processors this hardening bug is being raised. This is to
> add the mitigation to gcc as was done in the gnu branch. 

Cortex-M is not a supported target. The upstream patches update the arm (not aarch64) backend which we do not use.

Would you please clarify why we would need to backport this patch? Thanks.
Comment 2 devthomp 2021-09-03 17:01:28 UTC 
Perhaps I misunderstood patch intent. I was under the impression it would also mitigate cross compiling to that platform.
Which our clients may be doing.
Comment 3 Marek Polacek 2021-09-07 18:56:38 UTC 
But we don't support that, do we?

The product it RHEL 9 so the sub component can't be the GCC Toolset because we don't have it yet.

That said, since Richard said he would backport the patches to 11, we'll get them for free when updating from Fedora gcc 11.  I don't plan to update GTS 10 gcc though.
QE work would be sanity-only.
Comment 4 Florian Weimer 2021-09-13 17:36:25 UTC 
(In reply to devthomp from comment #2)
> Perhaps I misunderstood patch intent. I was under the impression it would
> also mitigate cross compiling to that platform.
> Which our clients may be doing.

Cross-compilation is not supported. It would require rebuilding the toolchain from sources, which isn't supported either.
Comment 5 devthomp 2021-09-14 21:10:41 UTC 
(In reply to Florian Weimer from comment #4)
> (In reply to devthomp from comment #2)
> > Perhaps I misunderstood patch intent. I was under the impression it would
> > also mitigate cross compiling to that platform.
> > Which our clients may be doing.
> 
> Cross-compilation is not supported. It would require rebuilding the
> toolchain from sources, which isn't supported either.

Resolving as not a bug given this.
Note You need to log in before you can comment on or make changes to this bug.