OCTOPUS
Samuel AUBERTIN - EURECOM - 2022
OCTOPUS is a Spectre V1 (Bounds Check Bypass) + V2 (Branch Target Injection) vulnerabilty tester.
It measures and uploads the success rate of the Spectre attacks on your CPU using different compilers:
And compilation/linking flags such as:
- Optimisation levels (
-O) - Static/dynamic linking
- Masking and lfence mitigations against Spectre V1
- RETPOLINE mitigation against Spectre V2
It is known to work on the following GNU/Linux distributions : Alpine, RHEL8, Fedora35. and OpenBSD.
Results
Results are stored as JSON objects in an unique file for each run, following this pattern: result-$(UUID).json
Dependencies
- Compiler:
clangandgcc - Linker:
lld - For upload:
opensshanduuid - The C library static symbols:
glibc-static
Execution
Will build, execute and upload the results.
make
Build only
make build
To build using multiple processes:
make [-j XXX] build where XXX is the number of parallel processes.
Results aggregation
Results are automatically uploaded to a server with a dedicated account using sftp.
Here is an exhaustive list of the data sent:
- CPU model name and microcode version.
- Kernel version and compilation date.
- GCC and clang versions.
- The list of mitigations enabled at runtime.
- The cache timings of the processor computed by the
calibrate_threshold()function. - Each spectre execution success rate.
NONE of this data will be used for anyhting else except this experiment.
References
Both implementations are heavily inspired by: