Slashdot Mirror

← Back to Stories (view on slashdot.org)

OpenBSD Releases Meltdown Patch (theregister.co.uk)

Posted by msmash on from the better-late-than-never dept.

OpenBSD's Meltdown patch has landed, in the form of a Version 11 code update that separates user memory pages from the kernel's -- pretty much the same approach as was taken in the Linux kernel. From a report: A few days after the Meltdown/Spectre bugs emerged in January, OpenBSD's Phillip Guenther responded to user concerns with a post saying the operating system's developers were working out what to do. Now he's revealed the approach used to fix the free OS: "When a syscall, trap, or interrupt takes a CPU from userspace to kernel the trampoline code switches page tables, switches stacks to the thread's real kernel stack, then copies over the necessary bits from the trampoline stack. On return to userspace the opposite occurs: recreate the iretq frame on the trampoline stack, switch stack, switch page tables, and return to userspace." That explanation is somewhat obscure to non-developers, but there's a more readable discussion of what the project's developers had in mind from January, here.

11 of 44 comments (clear)

  1. AMD by 110010001000 · · Score: 2

    I am running AMD processors. Does this affect me, or only Intel processors?

    1. Re:AMD by iggymanz · · Score: 2

      this patch was for meltdown only which doesn't affect AMD; note the situation for the various types of SPECTRE are a mess, even the chip makers are floundering around. Intel put out yet another new spectre variant firmware fix *yesterday*!

    2. Re:AMD by goombah99 · · Score: 2

      AMD is affected by things similar to Spectre, slightly less than Intel but still an issue. It doesn't have the specific Meltdown vulnerability.

      The real question is what does all this context switching cost in terms of speed and system resources.

      --
      Some drink at the fountain of knowledge. Others just gargle.
  2. Hugs all around! by Anonymous Coward · · Score: 4, Funny

    Great work everyone!

    1. Re: Hugs all around! by Anonymous Coward · · Score: 2, Insightful

      You didnâ(TM)t get the consent required. Please report to HR or the FreeBSD board of stupidity.

  3. Re:Are we so sure it does not affect AMD? by XanC · · Score: 2

    Only AMD escaped? Only Intel is affected by Meltdown.

  4. Re:Are we so sure it does not affect AMD? by Megol · · Score: 4, Informative

    "AMD processors are not subject to the types of attacks that the kernel page table isolation feature protects against. The AMD microarchitecture does not allow memory references, including speculative references, that access higher privileged data when running in a lesser privileged mode when that access would result in a page fault."

    That's technical enough. No matter how the timing is tweaked AMD isn't vulnerable.

  5. Re:Are we so sure it does not affect AMD? by Megol · · Score: 2

    Intel propaganda have tried to make people think Spectre == Meltdown and so all processor manufacturers are equally affected.

    That is of course not true. But Intel have succeeded in planting that even into technical people.

  6. Re:Monolothic kernels only? by spth · · Score: 2

    Meltdown and Spectre are huge issues for Microkernels. For details see the answer to a question to one of the Hurd developers after the end of the FOSDEM 2018 talk on Hurd's PCI arbiter (minute 31:19 of the video)

    Philipp

  7. Processors afected by Meltdown: by williamyf · · Score: 2, Informative

    From my blog:

    Meltdown affects all Intel Processors with Out-of-Order-Execution (OOE) and, more importantly, Speculative-Execution, perhaps going back to the Original PentiumPro, and all Atom processors made after 2013 (the original Atoms were In-Order-Execution). AMD processors are immune [3], and Via (remember Via?) has remained silent. Meltdown also affects other architectures, like several ARM processors, including the up-and-coming Cortex-A75 (intended for datacenter use), as well as many others used in cellphones and appliances [5], also IBM’s POWER7+, 8 and 9 are affected [4]. But this paper is not concerned with other architectures.

    [3] https://www.amd.com/en/corpora...
    [4] https://www.ibm.com/blogs/psir...
    [5] https://developer.arm.com/supp...

    The Full Blog is here:
    https://technologyunderbelly.b...

    --
    *** Suerte a todos y Feliz dia!
  8. Re:Are we so sure it does not affect AMD? by Megol · · Score: 2

    Anybody with any clue would realize that your ass is doing the talking. Spectre* is much harder to exploit than Meltdown, Meltdown essentially allow any user process to read any memory in a unpatched OS without needing to know anything specific about the system while the other attacks (Spectre) require knowledge of a certain system specific vulnerability and can then read some limited information. Big difference.

    (* which technically includes Meltdown - which AMD isn't affected by)