Fork: 0
LuminaSensum / barebox
Browse code
ARM v7: fix mmu-off operation
Although conclusions in 50d1b2d "ARM
v7: Fix register corruption in v7_mmu_cache_off" are correct, the
implemented fix is not complete because the following failure can
happen:

1. d-cache contains the cache line around 'sp'

2. v7_mmu_cache_off() disables cache

3. early v7_mmu_cache_flush() pushes 'lr' on uncached stack

4. v7_mmu_cache_flush() flushes d-cache and can override stack written
   by step 3.

5. v7_mmu_cache_flush() pops 'lr' out of cache and jumps to it which
   might be random data now.

Patch avoids step 3 which is easy because 'lr' is never modified by the
function.  By using the 'r12' scratch register instead of 'r10', the
whole initial 'push' can be avoided.

Patch moves also the 'DMB' operation so that it is executed after data
has been pushed on stack.

Signed-off-by: Enrico Scholz <enrico.scholz@sigma-chemnitz.de>
Signed-off-by: Sascha Hauer <s.hauer@pengutronix.de>
stable/v2013.05 v2013.05.1
1 parent 9c56cbb commit 7904d90061f698bfe60e9f3ffdf2e7462c54f169
@Enrico Scholz Enrico Scholz authored on 14 May 2013
Sascha Hauer committed on 23 May 2013
Patch
Unified Split
Showing 1 changed file
View
arch/arm/cpu/cache-armv7.S