[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] github meltdown + spectre patch status

To: "list@xxxxxxxxxxxxx" <list@xxxxxxxxxxxxx>
Subject: Re: [LUG] github meltdown + spectre patch status
From: mr meowski <mr.meowski@xxxxxxxx>
Date: Thu, 18 Jan 2018 17:58:23 +0000
Accept-language: en-GB, en-US
Content-id: <6F64DE5F46F96F4E9DB464889ACB70C7@eurprd09.prod.outlook.com>
Content-language: en-US
Delivered-to: dclug@xxxxxxxxxxxxxxxxxxxxx
Dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=dclug.org.uk; s=1507453562; h=Sender:Content-Transfer-Encoding:Content-Type:Reply-To:List-Subscribe:List-Help:List-Post:List-Unsubscribe:List-Id:Subject:MIME-Version:Content-ID:In-Reply-To:References:Message-ID:Date:To:From; bh=Yc4WGNHkrxU+sb9/cV7j95DkB5MnFKG+3Sgackl/fd4=; b=k55ncUXgEKqu3g8Vurx3gjPvVAM9qryCNNneW+/4HbMjuJniDxBXfYrL1s82jC8IeT/h12TrUHj6WiIxEdynwNC2RzOc5eO0HddoCjHfGzAcFL+RXGWyUR90zllnlu8f8gll6E/X6rqoC5hF11xRAw04sM6V8XCiG5Xbb0ChBjI=;
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=live.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=eDax//D3KQG5AQo/Lsqdw0V+WaQ5fA5uHzHVp5cFLJ8=; b=MOAVHSNG+7RUB0N650xa7CqUeC9exTzmPD64nxe0eZZ4AOIAsit0S8rirFUhGFCVE4EKnpj9ba2TbSWdMU5qzf/607F8iO8OxY72oZvhCeDxmpA5ktysbTdrqwOaI9bsUHt71TL/phPS2mTWE/7soLGCIww/PrpQYNzCsqBWVVwpSmwg30tOdZzS+D8ENoIENnYUBKJrr42uIzI2yTXRW8Rx85Nm8Q8n+fz6E3k/a+RstrBiqVeNbbdEvrg7TbVZjMHrp4dYEDYX5WNwTwa7pWgVYjC5P4dAC17JHCdhuKwlKNO/C7KSazhj0LT75JjyLdM71BOj5mTaOytgD8Jv0g==
Spamdiagnosticmetadata: NSPM
Spamdiagnosticoutput: 1:99
Thread-index: AQHTikaDFVGiov3tkE6lxg52OpOB1qNtqUOAgAC3UQCAAAGJAIAAtamAgArfh4A=
Thread-topic: [LUG] github meltdown + spectre patch status

More from the frontline (it's been a rough couple of weeks)...

Ubuntu tentatively pushes mitigation for Spectre variants 1 & 2 to proposed:

https://insights.ubuntu.com/2018/01/17/spectre-mitigation-updates-available-for-testing-in-ubuntu-proposed/

3rd party commentary with better information about what this means:

https://www.phoronix.com/scan.php?page=news_item&px=Ubuntu-Preps-Spectre-Kernels

Kernel guru on the current state of the art:

http://webcache.googleusercontent.com/search?q=cache:RXhIOHHfcxMJ:http://kroah.com/log/blog/2018/01/06/meltdown-status/%2Blinux+kernel+compile+spectre+meltdown

More grim news from a different kernel guru:

https://lwn.net/Articles/743265/

Real world performance hit statistics are filtering in now and the
results aren't pretty - forget what Intel PR are saying, you're going to
see drops for sure. The older your model of CPU, the worse it's going to
be. There's a lot of complex interplay between IBRS/IBPB and the more
performant "reptoline" Spectre fixes but unless you're willing to patch
your GCC version manually for -mindirect-branch=thunk and compile your
own bleeding edge kernel you won't be getting these fixes for a while yet.

Oh well, at least it can't get any worse right?

https://solaceattack.com/
https://react-etc.net/entry/skyfall-and-solace-vulnerabilities

Arghhh!
-- 
The Mailing List for the Devon & Cornwall LUG
https://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/listfaq

Follow-up: Re: [LUG] github meltdown + spectre patch status
- From: Simon Avery

References:
- [LUG] github meltdown + spectre patch status
  - From: mr meowski
- Re: [LUG] github meltdown + spectre patch status
  - From: Simon Waters
- Re: [LUG] github meltdown + spectre patch status
  - From: Simon Avery
- Re: [LUG] github meltdown + spectre patch status
  - From: Simon Avery
- Re: [LUG] github meltdown + spectre patch status
  - From: mr meowski

Prev by Date: Re: [LUG] spectre/meltdown ubuntu 17.04 left out
Next by Date: Re: [LUG] github meltdown + spectre patch status
Previous by thread: Re: [LUG] github meltdown + spectre patch status
Next by thread: Re: [LUG] github meltdown + spectre patch status
Index(es):
- Date
- Thread