Re: Better communication about spectre/meltdown
- To: Roberto C. Sánchez <roberto@debian.org>, Ben Hutchings <ben@decadent.org.uk>, Antoine Beaupré <anarcat@orangeseeds.org>, Moritz Mühlenhoff <jmm@inutil.org>, debian-lts@lists.debian.org, team@security.debian.org
- Subject: Re: Better communication about spectre/meltdown
- From: Fabian Grünbichler <fabian.gruenbichler@student.tuwien.ac.at>
- Date: Sat, 3 Mar 2018 20:49:01 +0100
- Message-id: <[🔎] 20180303194901.ev5qoryiwdgjrmgv@uni>
- Mail-followup-to: Roberto C. Sánchez <roberto@debian.org>, Ben Hutchings <ben@decadent.org.uk>, Antoine Beaupré <anarcat@orangeseeds.org>, Moritz Mühlenhoff <jmm@inutil.org>, debian-lts@lists.debian.org, team@security.debian.org
- In-reply-to: <[🔎] 20180303160712.3xrlbel5vdgmy47e@connexer.com>
- References: <20180225135405.qj22tgl47lpglypl@connexer.com> <20180225180412.GA12589@pisco.westfalen.local> <20180225185707.gnuiabby352mahvs@connexer.com> <871sh7tu7z.fsf@curie.anarc.at> <1519686363.2617.351.camel@decadent.org.uk> <[🔎] 20180301125645.wt3nkodmksce3a6v@connexer.com> <[🔎] 1520087480.2617.367.camel@decadent.org.uk> <[🔎] 20180303151806.widvs35uya6se2x3@santiago.connexer.com> <[🔎] 1520090534.2617.370.camel@decadent.org.uk> <[🔎] 20180303160712.3xrlbel5vdgmy47e@connexer.com>
On Sat, Mar 03, 2018 at 11:07:12AM -0500, Roberto C. Sánchez wrote:
> On Sat, Mar 03, 2018 at 03:22:14PM +0000, Ben Hutchings wrote:
> >
> > I think that backporting gcc-4.9 and building the kernel with it (for
> > x86) is lower risk than backporting the retpoline patches to gcc-4.7
> > and building the kernel with that. (In fact it's not just the kernel;
> > if you change gcc-4.7 that has the potential to affect most updates to
> > wheezy, even though use of retpoline should be disabled by defaul.)
> >
> Thanks for clarifying.
>
> I will work on backporting your patched gcc-4.9 to wheezy. Should I also
> start working on getting the wheezy kernel building with gcc-4.9? I
> understand that an upload must wait for the kernel microde update you
> mentioned previously.
FWIW / to prevent potential confusion, I am almost certain Ben did not
mean "microcode" (which is not part of the kernel except for the loading
infrastructure for CPU and other/firmware microcode), but actually
assembler, as in those parts of the kernel that are not written in C,
and thus not compiled with GCC, and thus need to be retpolined in some
other way if necessary (the kernel contains a fancy mechanism to select
between different variants of assembler code which has been heavily
utilized for this in current mainline kernels).
Reply to: