x86: add Kconfig for KPTI
This will be enabled by default for any x86 that isn't noted as being immune to this CPU bug. Signed-off-by: Andrew Boie <andrew.p.boie@intel.com>
This commit is contained in:
Andrew Boie
Anas Nashif
parent
732fa65956
commit
89a127bc8e
1 changed files with 11 additions and 0 deletions
|
|
@ -123,6 +123,17 @@ config X86_USERSPACE
|
||||||
supporting user-level threads that are protected from each other and
|
supporting user-level threads that are protected from each other and
|
||||||
from crashing the kernel.
|
from crashing the kernel.
|
||||||
|
|
||||||
|
config X86_KPTI
|
||||||
|
bool "Enable kernel page table isolation"
|
||||||
|
default y
|
||||||
|
depends on USERSPACE
|
||||||
|
depends on !X86_NO_MELTDOWN
|
||||||
|
help
|
||||||
|
Implements kernel page table isolation to mitigate Meltdown exploits
|
||||||
|
to read Kernel RAM. Incurs a significant performance cost for
|
||||||
|
user thread interrupts and system calls, and significant footprint
|
||||||
|
increase for additional page tables and trampoline stacks.
|
||||||
|
|
||||||
menu "Architecture Floating Point Options"
|
menu "Architecture Floating Point Options"
|
||||||
depends on CPU_HAS_FPU
|
depends on CPU_HAS_FPU
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue