Re: GCC and Meltdown and Spectre vulnerabilities

2018-01-05 Thread Florian Weimer
* timofonic timofonic: > Paranoid jails/sandboxes inside a virtual machine may mitigate a lot > the risk for those untrusted binaries, right? Someone needs to impelement those sandboxes and virtual machines, and GCC changes may help with writing them in such a way that they are less exposed to th

Re: GCC and Meltdown and Spectre vulnerabilities

2018-01-05 Thread Eric Gallager
On 1/5/18, Eric Gallager wrote: > On 1/4/18, Will Hawkins wrote: >> On Thu, Jan 4, 2018 at 10:10 PM, Eric Gallager >> wrote: >>> Is there anything GCC could be doing at the compiler level to mitigate >>> the recently-announced Meltdown and Spectre vulnerabilities? From >>> reading about them, it

Re: GCC and Meltdown and Spectre vulnerabilities

2018-01-05 Thread Eric Gallager
On 1/4/18, Will Hawkins wrote: > On Thu, Jan 4, 2018 at 10:10 PM, Eric Gallager > wrote: >> Is there anything GCC could be doing at the compiler level to mitigate >> the recently-announced Meltdown and Spectre vulnerabilities? From >> reading about them, it seems like they involve speculative exe

Re: GCC and Meltdown and Spectre vulnerabilities

2018-01-04 Thread timofonic timofonic
Paranoid jails/sandboxes inside a virtual machine may mitigate a lot the risk for those untrusted binaries, right? Plus using a debugger and maybe an antivirus (I don't trust them so much and prefer to isolate them too)? What about already built software? Can those be "fixed"? What about GLibC? Wh

Re: GCC and Meltdown and Spectre vulnerabilities

2018-01-04 Thread Ian Lance Taylor via gcc
On Thu, Jan 4, 2018 at 7:14 PM, Zan Lynx wrote: > > On January 4, 2018 8:10:14 PM MST, Eric Gallager wrote: >>Is there anything GCC could be doing at the compiler level to mitigate >>the recently-announced Meltdown and Spectre vulnerabilities? From >>reading about them, it seems like they involve

Re: GCC and Meltdown and Spectre vulnerabilities

2018-01-04 Thread Zan Lynx
On January 4, 2018 8:10:14 PM MST, Eric Gallager wrote: >Is there anything GCC could be doing at the compiler level to mitigate >the recently-announced Meltdown and Spectre vulnerabilities? From >reading about them, it seems like they involve speculative execution >and indirect branch prediction,

Re: GCC and Meltdown and Spectre vulnerabilities

2018-01-04 Thread Will Hawkins
On Thu, Jan 4, 2018 at 10:10 PM, Eric Gallager wrote: > Is there anything GCC could be doing at the compiler level to mitigate > the recently-announced Meltdown and Spectre vulnerabilities? From > reading about them, it seems like they involve speculative execution > and indirect branch prediction