| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sun, 28 Dec 2014 10:18:18 +0100 From: Willy Tarreau <w@....eu> To: Pavel Machek <pavel@....cz> Cc: kernel list <linux-kernel@...r.kernel.org> Subject: Re: DRAM unreliable under specific access patern Hi Pavel, On Wed, Dec 24, 2014 at 05:38:23PM +0100, Pavel Machek wrote: > Hi! > > It seems that it is easy to induce DRAM bit errors by doing repeated > reads from adjacent memory cells on common hw. Details are at > > https://www.ece.cmu.edu/~safari/pubs/kim-isca14.pdf Extremely interesting stuff. I've always wondered if such modules were *that* reliable given how picky they are about all timings. > . Older memory modules seem to work better, and ECC should detect > this. Paper has inner loop that should trigger this. > > Workarounds seem to be at hardware level, and tricky, too. > > Does anyone have implementation of detector? Any ideas how to work > around it in software? Maybe reserve some memory "canary" that is periodically scanned and observe changes there. That will not tell you for sure that something has not been done, but it will tell you for sure that bits were flipped. Also I'm wondering whether perf counters on certain CPUs could be used to detect the abnormal number of clflushes or even the memory access pattern (will not work in multi-socket environments if a user has one dedicated CPU though). Thanks for sharing the link! Willy -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists