-
CONFIG_X86_KPTI¶
Enable kernel page table isolation
Type: bool
Help¶
Implements kernel page table isolation to mitigate Meltdown exploits to read Kernel RAM. Incurs a significant performance cost for user thread interrupts and system calls, and significant footprint increase for additional page tables and trampoline stacks.
Direct dependencies¶
USERSPACE && !X86_NO_MELTDOWN && X86
(Includes any dependencies from if’s and menus.)
Defaults¶
- “y” if
USERSPACE&& !X86_NO_MELTDOWN&&X86
Kconfig definition¶
At arch/x86/Kconfig:148
Included via Kconfig:10 → Kconfig.zephyr:29 → arch/Kconfig:15
Menu path: (top menu) → X86 Architecture Options → Processor Capabilities
config X86_KPTI
bool
prompt "Enable kernel page table isolation" if USERSPACE && !X86_NO_MELTDOWN && X86
default "y" if USERSPACE && !X86_NO_MELTDOWN && X86
depends on USERSPACE && !X86_NO_MELTDOWN && X86
help
Implements kernel page table isolation to mitigate Meltdown exploits
to read Kernel RAM. Incurs a significant performance cost for
user thread interrupts and system calls, and significant footprint
increase for additional page tables and trampoline stacks.
(Definitions include propagated dependencies, including from if’s and menus.)