Re: 64-bit PV and Meltdown

To: Brian Marcotte <marcotte%panix.com@localhost>
Subject: Re: 64-bit PV and Meltdown
From: Manuel Bouyer <bouyer%antioche.eu.org@localhost>
Date: Tue, 23 Jan 2018 20:52:08 +0100

On Tue, Jan 23, 2018 at 11:18:47AM -0500, Brian Marcotte wrote:
> This question is specific to Meltdown.
> 
> XSA-254 states that when using the Xen PTI patches a 64-bit PV guest
> is automatically protected against Meltdown even if the guest hasn't
> been updated with a Meltdown mitigation.
> 
> Can anyone confirm this is the case with a NetBSD guest (64-bit PV)?

Sure.
In fact, Xen 86-64 PV guests have separate user/kernel spaces since
day one (because the kernel also runs unprivileged). Meltdown was only
able to attack the hypervisor, but since the hypervisor has a linear
mapping of the whole physical space (much like we do on bare x86-64),
this turns into an attack against everything.
Removing this linear mapping from the hypervisor is enough
to work around Meltdown against guests (not sure but I think with
the current state you could still get some bits from the hypervisor).

-- 
Manuel Bouyer <bouyer%antioche.eu.org@localhost>
     NetBSD: 26 ans d'experience feront toujours la difference
--

Follow-Ups:
- Re: 64-bit PV and Meltdown
  - From: Brian Marcotte
- Re: 64-bit PV and Meltdown
  - From: Brian Buhrow

References:
- 64-bit PV and Meltdown
  - From: Brian Marcotte

Prev by Date: 64-bit PV and Meltdown
Next by Date: Re: 64-bit PV and Meltdown
Previous by Thread: 64-bit PV and Meltdown
Next by Thread: Re: 64-bit PV and Meltdown
Indexes:

Home | Main Index | Thread Index | Old Index