From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <gentoo-user+bounces-181786-garchives=archives.gentoo.org@lists.gentoo.org>
Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by finch.gentoo.org (Postfix) with ESMTPS id 2C4D71382C5
	for <garchives@archives.gentoo.org>; Thu,  4 Jan 2018 16:10:12 +0000 (UTC)
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
	by pigeon.gentoo.org (Postfix) with SMTP id 91D8AE0935;
	Thu,  4 Jan 2018 16:10:03 +0000 (UTC)
Received: from mail-pf0-x241.google.com (mail-pf0-x241.google.com [IPv6:2607:f8b0:400e:c00::241])
	(using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
	(No client certificate requested)
	by pigeon.gentoo.org (Postfix) with ESMTPS id 2B267E0923
	for <gentoo-user@lists.gentoo.org>; Thu,  4 Jan 2018 16:10:03 +0000 (UTC)
Received: by mail-pf0-x241.google.com with SMTP id a90so942442pfk.1
        for <gentoo-user@lists.gentoo.org>; Thu, 04 Jan 2018 08:10:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:sender:in-reply-to:references:from:date:message-id
         :subject:to:content-transfer-encoding;
        bh=IGcQCMv2fqnFQv7V3CZr+Ew+rY2fs6lQer/puEbE+5s=;
        b=FjAhJ4ZhTA5qrUQ+E9n2xP5NDz4Bh3teYNyZmDXxRvn+4lUfK+cd97fbTkl4fiov+y
         LRrjMdss8lGQZTPr1AYc8zqwEDDLJlCjPDB2j+huRgOm0Arwl9fpdKWRzRPe/NIpdHH8
         CFuUJJyY+M2X7L4/hVskpHgLda9PiRwDlt7xfonxb2aDWsEJ17H1jnzYTPX6jBITUjVt
         CgNJZODlLdJ4Kr8mRGutVzvSZlJauYOsucZlM/SUx52qz1XTbeEivw1a5n8ZVpuozOSK
         iihFGMYzdx0HVH6pAZfuHExoIA4qstgJyp/mgv4WsY1nxRmgOvuSBhklFUzt8bLnT4k6
         dk0Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:sender:in-reply-to:references:from
         :date:message-id:subject:to:content-transfer-encoding;
        bh=IGcQCMv2fqnFQv7V3CZr+Ew+rY2fs6lQer/puEbE+5s=;
        b=YIgGShxEIScDtadCtOx25l5Wbc53V3UWEL8Z4fo9O4/fUNkHhnkNh21AIj5lOf5Fqc
         vkldbtOI1ptMslGZmjdPAOs0eGMTbyUEReDWJFiVRhF0SadkIy/z3FfvUZVKhZM6OV/Z
         qepaOlJL3V+kAK2lif1YnfZZ/2oxxYNho1qGa4c3KNYiJWmWXJ7b6Zt48rJtbz5GW4EW
         DMc4V/FK+x/c3hraUAuatg43punMJ/7oqd0bYDXvdOI9E8PVApos6C4VHdjSuZSAl8i2
         okw3LrjxbL5ne2CW8Z7Qwwbnie5Hgv2YZC6Qaz+2n10j4OFLjJuHrn7j4cxQcU3qpApT
         Njgg==
X-Gm-Message-State: AKGB3mIWRVgskGw89BkRWnDIdxaEiws57tUTjOCPGBFInxMawMXdiU37
	nlPZSJ+KF+LLwn0JXm+UwoF7LHHBXyEfM9WdGoTnqA==
X-Google-Smtp-Source: ACJfBovvL3HVsX8QtxLrA0Y6QfcSj6cHp/hhQTXh73Z1532S1ntOxCwVJory4+LY7L/BDVDByx88adGahZfalGcrbjw=
X-Received: by 10.98.220.19 with SMTP id t19mr44024pfg.147.1515082201661; Thu,
 04 Jan 2018 08:10:01 -0800 (PST)
Precedence: bulk
List-Post: <mailto:gentoo-user@lists.gentoo.org>
List-Help: <mailto:gentoo-user+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-user+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-user+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-user.gentoo.org>
X-BeenThere: gentoo-user@lists.gentoo.org
Reply-to: gentoo-user@lists.gentoo.org
MIME-Version: 1.0
Sender: freemanrich@gmail.com
Received: by 10.100.151.169 with HTTP; Thu, 4 Jan 2018 08:10:01 -0800 (PST)
In-Reply-To: <pan$4131b$60b7adde$c92b847e$11433c3e@applied-asynchrony.com>
References: <HE1P189MB0410D7DCD56EB38F8C7A8E9BEF190@HE1P189MB0410.EURP189.PROD.OUTLOOK.COM>
 <2CA973AB-B583-4F4F-A0B3-0FE347A672BD@stellar.eclipse.co.uk>
 <v56the-5ek.ln1@hurikhan77.spdns.de> <CAGfcS_nwSFyOxwQVs31=PWs0=Qk-Zuj7fv2u3YG1P5dxtnYCHg@mail.gmail.com>
 <CAC=wYCEG10Cucgpv_9chuLr4cBJHYgkwDy8-hX2bmYyho=TtWw@mail.gmail.com>
 <5A4D3E92.5010908@youngman.org.uk> <CAGfcS_ng-iEZMTAEV0PCimK6v=nD3jDkfdVJCme24=0nggPS2Q@mail.gmail.com>
 <pan$4131b$60b7adde$c92b847e$11433c3e@applied-asynchrony.com>
From: Rich Freeman <rich0@gentoo.org>
Date: Thu, 4 Jan 2018 11:10:01 -0500
X-Google-Sender-Auth: p7s1FX9aP4rtS79OtYh-ijiJrdE
Message-ID: <CAGfcS_=JHn_ZQVbKwH1DHGVRfwyBJL+gXsF3g8=4Lk4mUhWHcQ@mail.gmail.com>
Subject: Re: [gentoo-user] Re: old kernels are installed during the upgrade
To: gentoo-user@lists.gentoo.org
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Archives-Salt: 7c0dec71-c022-45c0-a6e0-6907d7fdccd4
X-Archives-Hash: b531fdc9b9db6f9e957d858505504385

On Thu, Jan 4, 2018 at 11:02 AM, Holger Hoffst=C3=A4tte
<holger@applied-asynchrony.com> wrote:
> On Wed, 03 Jan 2018 15:53:07 -0500, Rich Freeman wrote:
>
>> On Wed, Jan 3, 2018 at 3:35 PM, Wols Lists <antlists@youngman.org.uk> wr=
ote:
>>>
>>> And as I understand it the code can be disabled with either a compile
>>> time option or command line switch to the kernel.
>>
>> I suspect the compile-time option is PAGE_TABLE_ISOLATION (which was
>> newly added in 4.14.11).  The command line option nopti will disable
>> it at runtime.
>>
>> Rumor has it that it will be disabled on AMD CPUs in 4.14.12, but I
>
> That's not a rumor and it can be easily verified either here:
>
> https://git.kernel.org/pub/scm/linux/kernel/git/stable/stable-queue.git/t=
ree/queue-4.14/x86-cpu-x86-pti-do-not-enable-pti-on-amd-processors.patch
>
> or in mainline git, respectively.
>

Not back when I made my post, as is evident from the timestamps.

All the info around these vulnerabilities is rapidly evolving, so take
anything you hear with some skepticism until the dust settles...

--=20
Rich