On 19/11/2019 17:40, speck for Josh Poimboeuf wrote:
> Hi,
>
> What kernel changes (if any) are needed for LVI?  I haven't seen any
> discussion here.

I have similar questions when it comes to virt.  For one, EPT A/D bits
undermine any action the guest kernel takes to protect itself.

Given various pieces of academic literature on gaming the paging-out
algorithm, I'm not inclined to take the bet that an attacker couldn't
control EPT A/D bits to their advantage.

~Andrew