Do modern CPUs flush branch predictor state on context switch? https://lkml.org/lkml/2018/1/4/635 … seems to indicate that they don’t. If not, why are we treating process separation as “the thing that fixes Spectre”?
Though if you had IBPB, then you could implement that operation by switching over to a new Gecko thread/process that shares all the memory and can’t ptrace. Yeah, it’s a hack, but it’d be a lot less work than Site Isolation.
-
-
True, and unfortunate. I’m still sad that Spectre is treated as an “all hands on deck” emergency—one that played a not-insignificant role in killing a browser engine, in fact. It’s very hard to exploit and process isolation doesn’t even fully help today.
- 9 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.