peter/spectre-meltdown-checker
1
0
Fork 0
mirror of https://github.com/speed47/spectre-meltdown-checker.git synced 2025-10-28 17:30:55 +01:00
Code Issues Projects Releases Wiki Activity

fix CVE-2017-5715 reporting when IBRS_FW is enabled

Browse Source
This commit is contained in:
Gabriel Francisco
2025-10-27 00:30:14 +01:00
committed by Stéphane Lesimple
parent b99be2363c
commit a8466b74fe
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
spectre-meltdown-checker.sh
View File

@@ -4209,7 +4209,7 @@ check_CVE_2017_5715_linux()
[ -z "$ibpb_enabled" ] && ibpb_enabled=1 [ -z "$ibpb_enabled" ] && ibpb_enabled=1
fi fi
# when IBRS_FW is enabled on 4.15+, we can see it in sysfs # when IBRS_FW is enabled on 4.15+, we can see it in sysfs
if echo "$fullmsg" | grep -q ', IBRS_FW'; then if echo "$fullmsg" | grep -q '[,;] IBRS_FW'; then
_debug "ibrs: found IBRS_FW in sysfs" _debug "ibrs: found IBRS_FW in sysfs"
[ -z "$ibrs_supported" ] && ibrs_supported='found IBRS_FW in sysfs' [ -z "$ibrs_supported" ] && ibrs_supported='found IBRS_FW in sysfs'
ibrs_fw_enabled=1 ibrs_fw_enabled=1
@@ -4246,7 +4246,7 @@ check_CVE_2017_5715_linux()
: :
else else
ibrs_can_tell=1 ibrs_can_tell=1
ibrs_supported=$("${opt_arch_prefix}strings" "$kernel" | grep -Fw -e ', IBRS_FW' | head -n1) ibrs_supported=$("${opt_arch_prefix}strings" "$kernel" | grep -Fw -e '[,;] IBRS_FW' | head -n1)
if [ -n "$ibrs_supported" ]; then if [ -n "$ibrs_supported" ]; then
_debug "ibrs: found ibrs evidence in kernel image ($ibrs_supported)" _debug "ibrs: found ibrs evidence in kernel image ($ibrs_supported)"
ibrs_supported="found '$ibrs_supported' in kernel image" ibrs_supported="found '$ibrs_supported' in kernel image"