From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-181797-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id 0156A1382C5
	for <garchives@archives.gentoo.org>; Fri,  5 Jan 2018 01:31:58 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 31E10E0B48;
	Fri,  5 Jan 2018 01:31:54 +0000 (UTC)
Received: from mail-oi0-x231.google.com (mail-oi0-x231.google.com [IPv6:2607:f8b0:4003:c06::231])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id C4320E0B40
	for <gentoo-user@lists.gentoo.org>; Fri,  5 Jan 2018 01:31:53 +0000 (UTC)
Received: by mail-oi0-x231.google.com with SMTP id 184so2242560oii.2
        for <gentoo-user@lists.gentoo.org>; Thu, 04 Jan 2018 17:31:53 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:in-reply-to:references:from:date:message-id:subject:to;
        bh=BEbs5ICPVtnG7OwqqzlcHKi72CmYQpVx2PcwHt14XIM=;
        b=hi2D+C0SeGmMbgW3eSdBSSTZbhMAMshJL7gdF6jhOY251xYZmVFaNcpzXYd3IK64fZ
         h3hvVvPFVN3wYHbCWprfTouC6BN8ovlYy6ITIa4xrrjeol/5/rnNLibCJTxoCp26zBmo
         +gAtGrFkZIiC3xohvgb2KtSjqvamiFs1Vp4TTRVo1VBA1YkYxYC93YjXKKhfoBoEDyBR
         Oyyz5bioaLiATE0pR1OnU72cWXLH2BD7p1ntDaCBKK+2xdrxVwVejBXSOXNxlsJ7VhlQ
         4yPVnYkHv9xTTEfBXxKfj2bPNc9wl/fBnTGELwaAKxFyEmFSWB3ox55svujI9EKwpZQJ
         oChQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:in-reply-to:references:from:date
         :message-id:subject:to;
        bh=BEbs5ICPVtnG7OwqqzlcHKi72CmYQpVx2PcwHt14XIM=;
        b=oy9gjqWl45db0VTyRPRqD16qkLUa1C3KP1mUzynICPq6WyYJqrzyrdqdL/LTYLllQX
         NnCH+rTfD3MnJO0zOCEnKhsHxFx7nw+CUALm3Cp+XL+V5z0tbBrf/yEt5a/qEwdSMBHZ
         z3zFY6Pfcy2XakBqE3LBKbFLDrOGEXL2Ul0p8YmX4Bx4xIQNzvvQqGb5/LQRSSqLldxU
         CWQtfSFBdzBQO+fkB5QZ2S7p42d/v8wvV5qhKMxI2WRSDXs8s/aG5QSWJrHXzXvs34Bw
         mnmdxHPhcVQ16sBfiSgHAfl4naJYY/Zy0iccb95kos1d6VHZ5gENruHBKFHkzGVtpbXM
         BGmQ==
X-Gm-Message-State: AKGB3mKzG/w0LuuApe+ft9DIaAYsR5PA3jRw9guPoiS1s/MoBq2FLGnh
	CP+PbVU2PgP63DmIvrYwwDQ5vHbba6Ksr/9xShRjjtg7
X-Google-Smtp-Source: ACJfBouw5LBwwksrxanzCqtrvr7KR9SMl1y5My4+hez3ARMxfyszZ8OhXFmzbKapspYFks1FQCS5s3VrslJLCz/1/AU=
X-Received: by 10.202.82.18 with SMTP id g18mr793024oib.306.1515115912914;
 Thu, 04 Jan 2018 17:31:52 -0800 (PST)
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Received: by 10.157.19.65 with HTTP; Thu, 4 Jan 2018 17:31:52 -0800 (PST)
In-Reply-To: <CAGfcS_n4gQ4w82t8+kVtG+i1t7MjYwkr-hDv46HC5yPXd-kM0A@mail.gmail.com>
References: <CADX8ZBLJttMUsScnOk8jVUp_f0SvT_iLebGQmXjWK9gsO=DK8Q@mail.gmail.com>
 <CAC=wYCH+cTYoMrRtQZLeEvWuEoRb_uZcLs=m5twwUdF322GV_Q@mail.gmail.com>
 <CAC=wYCFiJe+MkTrSBCVR11fTvsRH7U5sbnxf60VYOoA4tHyQyQ@mail.gmail.com>
 <92ab5d0f-6111-cdec-5443-4f0cb0712eaf@charter.net> <CAGfcS_k3ycWn60Z8_ozORZD6cFMiuK699wT0_DRb-rVPAHi5rw@mail.gmail.com>
 <CAAD4mYjC_s3c+MBDY2VEoOZZ-raoXuEnq1P3JKtV63B5T-nOCQ@mail.gmail.com>
 <CAGfcS_mHspsszbin+GCo3wQzoKjYWkJ9soEdR_sAv50qB=Bbug@mail.gmail.com>
 <p2m6pr$ea0$1@blaine.gmane.org> <CAC=wYCGgSRHUM_4OpUv9acM=AhZ2cZZ255+dhyBXeqUZEMicdw@mail.gmail.com>
 <CAGfcS_n4gQ4w82t8+kVtG+i1t7MjYwkr-hDv46HC5yPXd-kM0A@mail.gmail.com>
From: Adam Carter <adamcarter3@gmail.com>
Date: Fri, 5 Jan 2018 12:31:52 +1100
Message-ID: <CAC=wYCHeLe-2EcqyGSQke7rpgiSpLcCONp0Z3uLzcTkJBzyADw@mail.gmail.com>
Subject: Re: [gentoo-user] Re: Expect a ~15% average slowdown if you use an
 Intel processor
To: gentoo-user@lists.gentoo.org
Content-Type: multipart/alternative; boundary="001a113d871cc86bd40561fd69ab"
X-Archives-Salt: 64c8721e-a5b5-46f7-9d3c-5f27922dd14d
X-Archives-Hash: 7bcb009ff6fa5f527f7993643bf9d135

--001a113d871cc86bd40561fd69ab
Content-Type: text/plain; charset="UTF-8"

>
> The settings relevant to Spectre are:
> CONFIG_BPF_JIT - this being set to y is enough to make Intel
> processors vulnerable to variant 1/2.  This being set to y is
> necessary, but not sufficient, for making AMD vulnerable to variant 1.
> net.core.bpf_jit_enable - this being set to 1 along with the config
> option being set is sufficient to make AMD vulnerable to variant 1.
> This setting has no effect on making Intel vulnerable to variant 1 or
> 2.  I suspect this sysctl item won't appear unless it is loaded into
> the kernel in the first place.


Thanks for the clarification. I checked my three systemd systems and all
are;
# CONFIG_BPF_JIT is not set

systemd ebuild is looking for;
$ grep -i bpf /usr/portage/sys-apps/systemd/systemd-2*
/usr/portage/sys-apps/systemd/systemd-235-r1.ebuild:        kernel_is -ge 4
10 && CONFIG_CHECK+=" ~CGROUP_BPF"
/usr/portage/sys-apps/systemd/systemd-236-r4.ebuild:        kernel_is -ge 4
10 && CONFIG_CHECK+=" ~CGROUP_BPF"

--001a113d871cc86bd40561fd69ab
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><span class=3D"gmail-"></span><div class=3D"gmail_extra"><=
div class=3D"gmail_quote"><blockquote class=3D"gmail_quote" style=3D"margin=
:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"=
>The settings relevant to Spectre are:<br>
CONFIG_BPF_JIT - this being set to y is enough to make Intel<br>
processors vulnerable to variant 1/2.=C2=A0 This being set to y is<br>
necessary, but not sufficient, for making AMD vulnerable to variant 1.<br>
net.core.bpf_jit_enable - this being set to 1 along with the config<br>
option being set is sufficient to make AMD vulnerable to variant 1.<br>
This setting has no effect on making Intel vulnerable to variant 1 or<br>
2.=C2=A0 I suspect this sysctl item won&#39;t appear unless it is loaded in=
to<br>
the kernel in the first place.</blockquote><div><br></div><div>Thanks for t=
he clarification. I checked my three systemd systems and all are;</div><div=
> # CONFIG_BPF_JIT is not set</div><div><br></div><div>systemd ebuild is lo=
oking for;<br></div><div></div><div>$ grep -i bpf /usr/portage/sys-apps/sys=
temd/systemd-2*<br>/usr/portage/sys-apps/systemd/systemd-235-r1.ebuild:=C2=
=A0=C2=A0=C2=A0 =C2=A0=C2=A0=C2=A0 kernel_is -ge 4 10 &amp;&amp; CONFIG_CHE=
CK+=3D&quot; ~CGROUP_BPF&quot;<br>/usr/portage/sys-apps/systemd/systemd-236=
-r4.ebuild:=C2=A0=C2=A0=C2=A0 =C2=A0=C2=A0=C2=A0 kernel_is -ge 4 10 &amp;&a=
mp; CONFIG_CHECK+=3D&quot; ~CGROUP_BPF&quot;<br><br></div></div><br></div><=
/div>

--001a113d871cc86bd40561fd69ab--