[sage] Intel hardware bug / Kernel Page Table Isolation usw

Julian H. Stacey jhs at berklix.com
Wed Jan 3 22:58:39 CET 2018 

Hi Sage & BIM Leute & ein paar BCC,
	http://guug.de/sage/index.html
	http://mailman.berklix.org/mailman/listinfo/bim

Vor-Warnung: Arbeits-Flut kommt bald:
Kernel upgrades fuer dass Intel Bug, fuer nahe alle Betriebs- systemen.

https://lists.freebsd.org/pipermail/freebsd-security/2018-January/009650.html

=========
Subject: Re: Intel hardware bug
From: "Julian H. Stacey" <jhs at berklix.com>
Date: Wed, 03 Jan 2018 22:14:05 +0100
To: "Freebsd Security" <freebsd-security at freebsd.org>

Mike Tancsa wrote:
> I am guessing this will impact FreeBSD as well ?
> http://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/

More URLs:

  https://lkml.org/lkml/2017/12/4/709 
	[patch 00/60] x86/kpti: Kernel Page Table Isolation (was KAISER)

  https://gruss.cc/files/kaiser.pdf Funded by ERC & EU
         KASLR is Dead: Long Live KASLR

  http://pythonsweetness.tumblr.com/post/169166980422/the-mysterious-case-of-the-linux-page-table
	July 28, 2017
    	The mysterious case of the Linux Page Table Isolation patches
        ... Ref to FreeBSD

  http://www.bbc.co.uk/news/technology-42553818
	Major flaw in millions of Intel chips revealed

  https://www.theguardian.com/technology/2018/jan/03/major-security-flaw-found-intel-processors-computers-windows-mac-os-linux
        Wed 3 Jan `18 14.24 GMT
	Major security flaw found in Intel processors

  https://twitter.com/aionescu/status/948609809540046849
	9:39 AM - 3 Jan 2018
        MacOS fix the Intel #KPTI Issue? Why yes ... since 10.13.2

  https://twitter.com/aionescu/status/948609809540046849
  https://www.fool.com/investing/2017/12/19/intels-ceo-just-sold-a-lot-of-stock.aspx?source=isesitlnk0000001&mrr=1.00
	Dec 19, 2017 at 5:10PM
        Intel's CEO Just Sold A Lot of StocK ..
        Krzanich is keeping the bare minimum

  https://github.com/IAIK/KAISER/
	Kernel Address Isolation to have Side-channels Efficiently Removed

  https://cyber.wtf/2017/07/28/negative-result-reading-kernel-memory-from-user-mode/


Upgrades inc reboots of lots of commercial global net servers is
predicted once patches are out for each OS in a few days.  I wonder
what keywords industry will settle on to refer to this by (eg last
time "FOOF bug") Options inc.: KASLR, KAISER, Kernel Address tables,
Intel software mitigation, x86/kpti: Kernel Page Table Isolation.

I don't know what effect this has on FreeBSD, I guess we'll see an
authoritative announcement in a bit, when memory management people
get time to stop coding & drop back to PR, Meanwhile:

  https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/bibliography-osinternals.html

  https://duckduckgo.com/?sites=www.FreeBSD.org%2Cdocs.FreeBSD.org%2Clists.FreeBSD.org%2Cwiki.FreeBSD.org%2Cforums.FreeBSD.org&ka=v&kt=v&kh=1&kj=r2&q=memory+management&submit=Search&ia=web

  https://www.freebsd.org/doc/en_US.ISO8859-1/articles/vm-design/page-table-optimizations.html

  https://forums.freebsd.org/threads/63955/page-2
=========

Cheers,
Julian
-- 
Julian H. Stacey, Computer Consultant, BSD Linux Unix Systems Engineer, Munich
 http://berklix.eu/brexit/ UK stole 3,700,000 votes; 700,000 from Brits in EU.
 http://berklix.eu/queen/

More information about the SAGE mailing list