x86: add Kconfig for KPTI
This will be enabled by default for any x86 that isn't noted as being immune to this CPU bug. Signed-off-by: Andrew Boie <andrew.p.boie@intel.com>
This commit is contained in:
Andrew Boie
Anas Nashif
parent
732fa65956
commit
89a127bc8e
1 changed files with 11 additions and 0 deletions
|
|
@ -123,6 +123,17 @@ config X86_USERSPACE
|
|||
supporting user-level threads that are protected from each other and
|
||||
from crashing the kernel.
|
||||
|
||||
config X86_KPTI
|
||||
bool "Enable kernel page table isolation"
|
||||
default y
|
||||
depends on USERSPACE
|
||||
depends on !X86_NO_MELTDOWN
|
||||
help
|
||||
Implements kernel page table isolation to mitigate Meltdown exploits
|
||||
to read Kernel RAM. Incurs a significant performance cost for
|
||||
user thread interrupts and system calls, and significant footprint
|
||||
increase for additional page tables and trampoline stacks.
|
||||
|
||||
menu "Architecture Floating Point Options"
|
||||
depends on CPU_HAS_FPU
|
||||
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue