Eben Upton Explains Why Raspberry Pi Isn't Vulnerable To Spectre Or Meltdown

Raspberry Pi founder and CEO Eben Upton says the Raspberry Pi isn't susceptible to the "Spectre" or "Meltdown" vulnerabilities because of the particular ARM cores they use. "Spectre allows an attacker to bypass software checks to read data from arbitrary locations in the current address space; Meltdown allows an attacker to read data from arbitrary locations in the operating system kernel's address space (which should normally be inaccessible to user programs)," Upton writes. He goes on to provide a "primer on some concepts in modern processor design" and "illustrate these concepts using simple programs in Python syntax..."

In conclusion: "Modern processors go to great lengths to preserve the abstraction that they are in-order scalar machines that access memory directly, while in fact using a host of techniques including caching, instruction reordering, and speculation to deliver much higher performance than a simple processor could hope to achieve," writes Upton. "Meltdown and Spectre are examples of what happens when we reason about security in the context of that abstraction, and then encounter minor discrepancies between the abstraction and reality. The lack of speculation in the ARM1176, Cortex-A7, and Cortex-A53 cores used in Raspberry Pi render us immune to attacks of the sort."

Re:Oh really? The Cortex-A7 and Cortex-A53....

[cdu13a]

Care to point out where in Arms white paper it mentions the a7 or a53 cores being affected by Spectre?

https://developer.arm.com/support/security-update

Re:Oh really? The Cortex-A7 and Cortex-A53....

[Lunix+Nutcase]

Except that ARM doesn’t list the A7 or A53 as vulnerable.

https://developer.arm.com/supp...

So Eben knows just as much as ARM does.

In other words

You wanted a cheap computer, so we picked a cheap CPU that doesn't do fancy-schmancy stuff like trying to guess what you will do next.

In other news, my abacus never has a battery fire.

Doubly irrelevant

[hey!]

Raspberry PIs and equivalents are toys.

Raspberry PI isn't a CPU. It is a single-board-computer designed for computer-science education and for rapid prototyping of embedded systems. The CPU in question is the Cortex A53 processor, which according to the manufacturer's datasheet is intended as a:

High efficiency processor for a wide range of applications in mobile, DTV, automotive, networking, storage, aerospace, and more.

This doesn't sound like a toy. It sounds like it is meant to be simple and efficient to integrate into industrial designs. That probably means that power consumption is a higher priority than squeezing the most performance out of the chip, which in turn means less aggressive use of speculative execution to keep as much of the chip working at any given time as possible.

So not being as vulnerable to this particular side channel attack isn't the result of the forethought of the Raspberry Pi's designers, or or Broadcom or ARM Holdings. It's the result of the intended applications of the CPU.

Re:tl;dr

[Ungrounded+Lightning]

It doesn't use an Intel cpu

True for "Meltdown", which only breaks Intel CPUs. But "Spectre" also breaks some AMD and ARM processors.

Fortunately, the particular ARM cores in the Raspbery Pi are also NOT doing the thing that lets Spectre break them.

Re:You guys...

[drinkypoo]

Everyone seems to have lost perspective here. 1) In order for you to be "vulnerable", you must be running some kind of malware. If you're running malware, you are already fucked with a sand-paper dildo.

It would be surprising if the average user didn't encounter malicious code, because malicious Javascript is a thing. At least one of these attacks can be made through your browser. How are you enjoying your anal sanding?