[HN Gopher] GhostRace: Exploiting and Mitigating Speculative Rac...
       ___________________________________________________________________
        
       GhostRace: Exploiting and Mitigating Speculative Race Conditions
        
       Author : PaulHoule
       Score  : 43 points
       Date   : 2024-03-15 20:43 UTC (2 hours ago)
        
 (HTM) web link (www.vusec.net)
 (TXT) w3m dump (www.vusec.net)
        
       | Voultapher wrote:
       | Spectre-v1 really is the ghost that keeps haunting us. All the
       | mitigations I'm aware of work by containing the domain, for
       | example inter-process boundaries together with the MMU to limit
       | the leaked surface. How are we developers supposed to reason
       | about code where most conditions break the invariants we encoded?
       | 
       | The demonstrated exploit strategy is pretty cool.
        
       | WJW wrote:
       | > Our mitigation requires minimal kernel changes (i.e., 2 LoC)
       | and incurs only [?]5% geomean performance overhead on LMBench.
       | 
       | 5 percent is not nothing but seems like a worthwhile investment
       | here. Really cool exploit strategy btw.
        
       ___________________________________________________________________
       (page generated 2024-03-15 23:00 UTC)