peter/spectre-meltdown-checker
peter/spectre-meltdown-checker
1
0
Fork 0
mirror of https://github.com/speed47/spectre-meltdown-checker.git synced 2025-02-21 16:00:27 +01:00
Code Issues Projects Releases Wiki Activity

fix CVE-2017-5715 reporting when IBRS_FW is enabled

Browse Source
This commit is contained in:
Gabriel Francisco 2025-02-05 11:32:14 +01:00
parent 34c6095912
commit e2b633b988
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
spectre-meltdown-checker.sh
View File

@ -4208,7 +4208,7 @@ check_CVE_2017_5715_linux()
[ -z "$ibpb_enabled" ] && ibpb_enabled=1 [ -z "$ibpb_enabled" ] && ibpb_enabled=1
fi fi
# when IBRS_FW is enabled on 4.15+, we can see it in sysfs # when IBRS_FW is enabled on 4.15+, we can see it in sysfs
if echo "$fullmsg" | grep -q ', IBRS_FW'; then if echo "$fullmsg" | grep -q 'IBRS_FW'; then
_debug "ibrs: found IBRS_FW in sysfs" _debug "ibrs: found IBRS_FW in sysfs"
[ -z "$ibrs_supported" ] && ibrs_supported='found IBRS_FW in sysfs' [ -z "$ibrs_supported" ] && ibrs_supported='found IBRS_FW in sysfs'
ibrs_fw_enabled=1 ibrs_fw_enabled=1
@ -4245,7 +4245,7 @@ check_CVE_2017_5715_linux()
: :
else else
ibrs_can_tell=1 ibrs_can_tell=1
ibrs_supported=$("${opt_arch_prefix}strings" "$kernel" | grep -Fw -e ', IBRS_FW' | head -1) ibrs_supported=$("${opt_arch_prefix}strings" "$kernel" | grep -Fw -e 'IBRS_FW' | head -1)
if [ -n "$ibrs_supported" ]; then if [ -n "$ibrs_supported" ]; then
_debug "ibrs: found ibrs evidence in kernel image ($ibrs_supported)" _debug "ibrs: found ibrs evidence in kernel image ($ibrs_supported)"
ibrs_supported="found '$ibrs_supported' in kernel image" ibrs_supported="found '$ibrs_supported' in kernel image"