|
|
|
|
|
|
by weinzierl
3093 days ago
|
|
|
Interestingly I get: dmesg -H | grep 'page tables isolation'
[ +0.000000] Kernel/User page tables isolation: enabled
grep cpu_insecure /proc/cpuinfo && echo "Patched" || echo "Unpatched!"
Unpatched!
cat /proc/cpuinfo | grep pti
fpu_exception : yes
uname -a
Linux host 4.9.0-5-amd64 #1 SMP Debian 4.9.65-3+deb9u2 (2018-01-04) x86_64 GNU/Linux
So page tables isolation seems to be enabled but neither the pti flag nor the cpu_insecure bug is in cpuinfo.EDIT: Maybe this is because it is Xen guest. Do I need pti on a XEN guest if the host is fully patched? |
|
|