511 B
511 B
Thesis notes
TU Graz Paper
- Enable strict memory permissions or virtualize kernel heap or kernel stack
- kernel allocator massaging (?)
- These defenses change mapping to fine-grained 4kB instead of 2MB
- 4kB TLB entries result in contention patterns observable via side channels
- leak page aligned object locations
- deduce sup-page granular objects (how?)
- intel CPU needed (8th-14th gen) (?)
FD limit
- Must increase number of allowed FDs for spray to work. E.g. with
ulimit -n $(ulimit -n -H)