From owner-freebsd-security@freebsd.org  Wed Jan  3 19:01:48 2018
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 5F8AEEA9FC6
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Wed,  3 Jan 2018 19:01:48 +0000 (UTC) (envelope-from lev@FreeBSD.org)
Received: from onlyone.not-for.work (onlyone.not-for.work
 [IPv6:2a01:4f8:201:6350::2])
 by mx1.freebsd.org (Postfix) with ESMTP id 2D83E138C
 for <freebsd-security@freebsd.org>; Wed,  3 Jan 2018 19:01:48 +0000 (UTC)
 (envelope-from lev@FreeBSD.org)
Received: from lion.home.serebryakov.spb.ru (unknown
 [IPv6:2001:470:923f:1:e0f4:994:662:862])
 (Authenticated sender: lev@serebryakov.spb.ru)
 by onlyone.not-for.work (Postfix) with ESMTPSA id 1ABB6693;
 Wed,  3 Jan 2018 22:01:40 +0300 (MSK)
Date: Wed, 3 Jan 2018 22:01:38 +0300
From: Lev Serebryakov <lev@FreeBSD.org>
Reply-To: Lev Serebryakov <lev@FreeBSD.org>
Organization: FreeBSD
X-Priority: 3 (Normal)
Message-ID: <104827876.20180103220138@serebryakov.spb.ru>
To: Joey Kelly <joey@joeykelly.net>, freebsd-security@freebsd.org
Subject: Re: Intel hardware bug
In-Reply-To: <7692356.NWgAdSPsLq@elisha.atlnet>
References: <477ab39d-286d-d9a2-d31e-fd5f7f1679a8@sentex.net>
 <7692356.NWgAdSPsLq@elisha.atlnet>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.25
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jan 2018 19:01:48 -0000

Hello Joey,

Wednesday, January 3, 2018, 4:56:50 AM, you wrote:

> No way around it. It's hardware FAIL, and ignoring it isn't an option since
> it's apparently a huge hole.
 Looks like there IS way around it and it was "silently" committed to Linux

http://pythonsweetness.tumblr.com/post/169166980422/the-mysterious-case-of-the-linux-page-table

 But TLB flush on each syscall (twice) will slow down system, of course, so
there should be option to disable it.

-- 
Best regards,
 Lev                            mailto:lev@FreeBSD.org