Stream: general

Topic: Spectre attack


view this post on Zulip Mary (Jan 24 2023 at 07:41):

I saw that you described some mitigations about spectre attacks in wasmtime. I want to know which variants of spectre attacks would be prevented by these protections? Also, are these bounds checking are enabled by default or only when "dynamic" memories are configured?

view this post on Zulip bjorn3 (Jan 24 2023 at 08:29):

Bound checks are not necessary for static memories as enough address space is reserved such that out-of-bounds accesses are impossible with wasm's 32bit addresses.

view this post on Zulip bjorn3 (Jan 24 2023 at 08:30):

As for which spectre attacls are prevented, no clue.

view this post on Zulip Anton Kirilov (Feb 15 2023 at 19:37):

Spectre mitigations are also discussed in GitHub issue #1032.

Hello, You are probably well aware, but some mainstream compilers are emitting retpolines to help mitigate Spectre variant 2 attacks. Do you have any plans to add a similar capability to the creton...

Last updated: Dec 23 2024 at 12:05 UTC