NaCl only depends on a small subset of the operation for security. Not sure why you keep talking about Spectre/Meltdown, it wasn't really relevant to NaCl (wasn't a free breakout, and you didn't need NaCl to exploit it, but rowhammer was).
What specifically do you do about errata that say "under complex micro-architectural conditions ... [any data can be corrupted and changed to any value]"?
-
-
I obviously need more details to decide if it's possible under NaCl. I can give you an example with RowHammer, we decided to remove clflush from the validator whitelist, does that answer your question?
-
Indirectly, perhaps. If you're removing instructions from a whitelist, then you're still vulnerable to a large fraction of data corruption bugs including many of the bugs that are triggered by "complex micro-architectural conditions"
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.