Re: Hyper-Threading Vulnerability
From: Barry K. Nathan
Date: Fri May 13 2005 - 07:48:45 EST
On Fri, May 13, 2005 at 07:51:20AM +0200, Gabor MICSKO wrote:
> Is this flaw affects the current stable Linux kernels? Workaround?
> Patch?
Some pages with relevant information:
http://www.ussg.iu.edu/hypermail/linux/kernel/0403.2/0920.html
http://bugzilla.kernel.org/show_bug.cgi?id=2317
AFAICT, the workaround is something like this:
1. If possible, disable HyperThreading in BIOS.
2. If you have only one CPU, boot a UP kernel rather than SMP.
3. If you have 2 or more CPU's and you can't disable HT in the BIOS,
boot with "maxcpus=n", where "n" is the number of physical CPU's
in the computer (e.g. "maxcpus=2"). If you are running a kernel
earlier than 2.6.5 or 2.4.26, this probably isn't going to work.
If you try this, check dmesg afterward to make sure it worked
properly (see the bugzilla.kernel.org URL for details).
4. If you would try #3 except you are running a 2.4.xx *vendor* kernel
(not mainline), where xx < 26, try "noht".
5. If #3 and #4 don't work, try "acpi=off".
Option #3 ("maxcpus=2") is what I expect to be deploying in the next
several hours, FWIW...
-Barry K. Nathan <barryn@xxxxxxxxx>
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/