* Why linux-libre-bpf? @ 2022-10-09 0:17 kiasoc5 2022-10-09 0:31 ` jbranso 0 siblings, 1 reply; 3+ messages in thread From: kiasoc5 @ 2022-10-09 0:17 UTC (permalink / raw) To: guix-devel AFAIK Guix is the only distro with a separate kernel (linux-libre-bpf) that has the following turned on: CONFIG_BPF_JIT_ALWAYS_ON=y CONFIG_BPF_JIT=y Why is this not the default in regular linux-libre? -- ^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Why linux-libre-bpf? 2022-10-09 0:17 Why linux-libre-bpf? kiasoc5 @ 2022-10-09 0:31 ` jbranso 2022-10-09 2:26 ` Felix Lechner via Development of GNU Guix and the GNU System distribution. 0 siblings, 1 reply; 3+ messages in thread From: jbranso @ 2022-10-09 0:31 UTC (permalink / raw) To: kiasoc5, guix-devel October 8, 2022 8:18 PM, "kiasoc5" <kiasoc5@disroot.org> wrote: > AFAIK Guix is the only distro with a separate kernel (linux-libre-bpf) > that has the following turned on: > > CONFIG_BPF_JIT_ALWAYS_ON=y > CONFIG_BPF_JIT=y > > Why is this not the default in regular linux-libre? > I just did a quick internet search for the ebpf vulnerabilities. A few came up. Maybe it's a security feature. :) > -- ^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: Why linux-libre-bpf? 2022-10-09 0:31 ` jbranso @ 2022-10-09 2:26 ` Felix Lechner via Development of GNU Guix and the GNU System distribution. 0 siblings, 0 replies; 3+ messages in thread From: Felix Lechner via Development of GNU Guix and the GNU System distribution. @ 2022-10-09 2:26 UTC (permalink / raw) To: guix-devel Hi my fellow Guix, On Sat, Oct 8, 2022 at 5:32 PM <jbranso@dismail.de> wrote: > > > CONFIG_BPF_JIT_ALWAYS_ON=y > > CONFIG_BPF_JIT=y > > > > Why is this not the default in regular linux-libre? Maybe it's historical. I believe JIT used to open a side-channel for the Spectre attack. [1] Kind regards Felix Lechner [1] https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html ^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2022-10-09 2:28 UTC | newest] Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed) -- links below jump to the message on this page -- 2022-10-09 0:17 Why linux-libre-bpf? kiasoc5 2022-10-09 0:31 ` jbranso 2022-10-09 2:26 ` Felix Lechner via Development of GNU Guix and the GNU System distribution.
Code repositories for project(s) associated with this external index https://git.savannah.gnu.org/cgit/guix.git This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.