Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#74177 - [gcc] [linux] [security] straight-line speculation vuln
Attached to Project:
Arch Linux
Opened by T.J. Townsend (blakkheim) - Sunday, 20 March 2022, 22:09 GMT
Last edited by Jan Alexander Steffens (heftig) - Tuesday, 10 May 2022, 23:33 GMT
Opened by T.J. Townsend (blakkheim) - Sunday, 20 March 2022, 22:09 GMT
Last edited by Jan Alexander Steffens (heftig) - Tuesday, 10 May 2022, 23:33 GMT
|
DetailsDescription:
The Linux 5.17 kernel introduces a mitigation for the straight-light speculation vulnerability. It requires a kernel config option (below) as well as support from the compiler: config SLS bool "Mitigate Straight-Line-Speculation" depends on CC_HAS_SLS && X86_64 default n help Compile the kernel with straight-line-speculation options to guard against straight line speculation. The kernel image might be slightly larger. For the GCC side, the fix has been backported to the 11 branch, but there's no stable release with it yet: https://gcc.gnu.org/git/gitweb.cgi?p=gcc.git;h=53a643f8568067d7700a9f2facc8ba39974973d3 I'd like to propose the backporting of that commit to our GCC package and subsequent enabling of the config SLS option in the kernel once it's in. Additional info: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=e463a09af2f0677b9485a7e8e4e70b396b2ffb6f https://lwn.net/Articles/877845/ https://gcc.gnu.org/bugzilla/show_bug.cgi?id=102952 https://bugs.llvm.org/show_bug.cgi?id=52323 |
This task depends upon
Closed by Jan Alexander Steffens (heftig)
Tuesday, 10 May 2022, 23:33 GMT
Reason for closing: Fixed
Additional comments about closing: linux 5.17.6.arch1-1
Tuesday, 10 May 2022, 23:33 GMT
Reason for closing: Fixed
Additional comments about closing: linux 5.17.6.arch1-1
Comment by T.J. Townsend (blakkheim) -
Monday, 28 March 2022, 21:34 GMT
Any update?
Comment by freswa (frederik) -
Monday, 28 March 2022, 21:41 GMT
Work in progress, not sure if we backport the code or wait for the gcc 12 release
Comment by T.J. Townsend (blakkheim) -
Tuesday, 29 March 2022, 23:32 GMT
Another relevant link that anthraxx sent me:20220316220201.GM8939@worktop.programming.kicks-ass.net/T/#mf2b4d3e12093ba0a339c840679d6d746eeb0f99d"> https://lore.kernel.org/lkml/20220316220201.GM8939@worktop.programming.kicks-ass.net/T/#mf2b4d3e12093ba0a339c840679d6d746eeb0f99d
Comment by T.J. Townsend (blakkheim) -
Tuesday, 10 May 2022, 22:33 GMT
Can this be revisited now?