Skip to content
Commit 6c8825fc authored by Andrew Boie's avatar Andrew Boie Committed by Andrew Boie
Browse files

x86: mitigate L1 Terminal Fault vulnerability 



During speculative execution, non-present pages are treated
as valid, which may expose their contents through side
channels.

Any non-present PTE will now have its address bits zeroed,
such that any speculative reads to them will go to the NULL
page.

The expected hit on performance is so minor that this is
enabled at all times.

Signed-off-by: default avatarAndrew Boie <andrew.p.boie@intel.com>
parent d51ee67c
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please to comment

CRA Git | Maintained and supported by SUSTech CRA and CCSE