Concerns about enabling retpolines by default
Darren Tucker
dtucker at dtucker.net
Wed Oct 17 21:00:59 AEDT 2018
On 15 October 2018 at 19:37, Florian Weimer <fweimer at redhat.com> wrote:
[...]
> Our internal recommendation is: do nothing. Userspace appears unfixable
> without hardware support.
Thanks for bringing this to our attention. Based on this feedback and
https://www.youtube.com/watch?v=_f7O3IfIR2k we have removed the gcc
retpoline flags from configure. At this time the clang mitigation
flags are still enabled if supported.
--
Darren Tucker (dtucker at dtucker.net)
GPG key 11EAA6FA / A86E 3E07 5B19 5880 E860 37F4 9357 ECEF 11EA A6FA (new)
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
More information about the openssh-unix-dev
mailing list