Spectre V1 Mitigation & Other Spectre/Meltdown Updates For 64-bit ARM On Linux 4.16
Today's code called up for pulling into Linux 4.16 provide initial mitigation for Spectre Variant One "Bounds Check Bypass" in the kernel. There are also updates for Variant Two of dealing with newer firmware interfaces and additional branch predictor hardening. On the Meltdown side is an update for Cavium Thunder X hardware that is not affected but hardware erratum has some conflicts with getting KPTI disabled.
The complete list of these latest Meltdown/Spectre improvements for AArch64 hardware can be found from this pull request.