Skip to content

Instantly share code, notes, and snippets.

@jfeilbach

jfeilbach/disable.md

Last active May 15, 2019 20:48
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save jfeilbach/0edecffb0d58e2cdfaab0fb166d0e075 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save jfeilbach/0edecffb0d58e2cdfaab0fb166d0e075 to your computer and use it in GitHub Desktop.
Download ZIP
disable spectre meltdown zombieland ubuntu
Raw
disable.md

kernel

spectre

pti=off
nopti
noibrs
noibpb
spectre_v2=off
nospectre_v2

meltdown

spec_store_bypass_disable=prctl
spec_store_bypass_disable=off
nospec_store_bypass_disable
l1tf=off
nospec_store_bypass_disable
no_stf_barrier

zombieland (mds)

mds=off
mitigations=off

kernel one line

pti=off spectre_v2=off l1tf=off nospec_store_bypass_disable no_stf_barrier mds=off

run time

mount -t debugfs nodev /sys/kernel/debug
echo 0 > /sys/kernel/debug/x86/pti_enabled
echo 0 > /sys/kernel/debug/x86/retp_enabled
echo 0 > /sys/kernel/debug/x86/ibrs_enabled
cat /sys/kernel/debug/x86/pti_enabled
cat /sys/kernel/debug/x86/retp_enabled
cat /sys/kernel/debug/x86/ibrs_enabled

check for vulns

cat /sys/devices/system/cpu/vulnerabilities/mds
cat /sys/devices/system/cpu/vulnerabilities/l1tf
cat /sys/devices/system/cpu/vulnerabilities/mds
cat /sys/devices/system/cpu/vulnerabilities/meltdown
cat /sys/devices/system/cpu/vulnerabilities/spec_store_bypass
cat /sys/devices/system/cpu/vulnerabilities/spectre_v1
cat /sys/devices/system/cpu/vulnerabilities/spectre_v2

https://github.com/speed47/spectre-meltdown-checker

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment