CONFIG_X86_KPTI

Enable kernel page table isolation

Type: bool

Help

Implements kernel page table isolation to mitigate Meltdown exploits to read Kernel RAM. Incurs a significant performance cost for user thread interrupts and system calls, and significant footprint increase for additional page tables and trampoline stacks.

Direct dependencies

USERSPACE && !X86_NO_MELTDOWN && X86

(Includes any dependencies from ifs and menus.)

Default

  • y

Kconfig definition

At arch/x86/Kconfig:268

Included via Kconfig:8Kconfig.zephyr:34arch/Kconfig:12

Menu path: (Top) → X86 Architecture Options

config X86_KPTI
    bool "Enable kernel page table isolation"
    default y
    depends on USERSPACE && !X86_NO_MELTDOWN && X86
    help
      Implements kernel page table isolation to mitigate Meltdown exploits
      to read Kernel RAM. Incurs a significant performance cost for
      user thread interrupts and system calls, and significant footprint
      increase for additional page tables and trampoline stacks.

(The ‘depends on’ condition includes propagated dependencies from ifs and menus.)