Add Linux 4.14.19 (with Spectre v2 mitigation) #613

pmenzel · 2018-02-13T12:51:45Z

This release is built with GCC 7.3.0, and therefore features all Linux kernel mitigations against Spectre v2.

$ uname -a
Linux keineahnung.molgen.mpg.de 4.14.19.mx64.207 #1 SMP Tue Feb 13 11:54:53 CET 2018 x86_64 GNU/Linux
$ grep . /sys/devices/system/cpu/vulnerabilities/*
/sys/devices/system/cpu/vulnerabilities/meltdown:Mitigation: PTI
/sys/devices/system/cpu/vulnerabilities/spectre_v1:Mitigation: __user pointer sanitization
/sys/devices/system/cpu/vulnerabilities/spectre_v2:Mitigation: Full generic retpoline

Tested on keineahnung.

pmenzel · 2018-02-13T12:52:29Z

I need to fix one commit message.

Announcements and change-logs are available online [1][2]. This release is built with GCC 7.3.0 instead of GCC 5.5.0, and therefore contains full mitigation against Spectre v2, cf. commit f4c8184 (gcc: Update version from 5.5.0 to 7.3.0). Before: ``` /sys/devices/system/cpu/vulnerabilities/meltdown:Mitigation: PTI /sys/devices/system/cpu/vulnerabilities/spectre_v1:Mitigation: __user pointer sanitization /sys/devices/system/cpu/vulnerabilities/spectre_v2:Vulnerable: Minimal generic ASM retpoline ``` After: ``` /sys/devices/system/cpu/vulnerabilities/meltdown:Mitigation: PTI /sys/devices/system/cpu/vulnerabilities/spectre_v1:Mitigation: __user pointer sanitization /sys/devices/system/cpu/vulnerabilities/spectre_v2:Mitigation: Full generic retpoline ``` [1] https://lkml.org/lkml/2018/2/13/154 [2] https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.19

pmenzel · 2018-02-13T12:59:35Z

Should be ready. Please test.

donald · 2018-02-13T16:09:11Z

tested on theinternet , claptrap (nfs server)

pmenzel added the not ready for merge label Feb 13, 2018

pmenzel changed the title ~~Add Linux 4.14.19 (with~~ Add Linux 4.14.19 (with Spectre v2 mitigation) Feb 13, 2018

pmenzel added 3 commits February 13, 2018 13:54

nvidia_linux: Build 340.106 for Linux 4.14.19

1141b1b

nvidia_linux: Build 390.25 for Linux 4.14.19

4fbe825

pmenzel force-pushed the add-linux-4.14.19 branch from 677a191 to 4fbe825 Compare February 13, 2018 12:59

pmenzel removed the not ready for merge label Feb 13, 2018

donald merged commit e3b406b into master Feb 13, 2018

donald deleted the add-linux-4.14.19 branch February 14, 2018 15:05

Add Linux 4.14.19 (with Spectre v2 mitigation) #613

Add Linux 4.14.19 (with Spectre v2 mitigation) #613

pmenzel commented Feb 13, 2018

pmenzel commented Feb 13, 2018

pmenzel commented Feb 13, 2018

donald commented Feb 13, 2018

Add Linux 4.14.19 (with Spectre v2 mitigation) #613

Add Linux 4.14.19 (with Spectre v2 mitigation) #613

Conversation

pmenzel commented Feb 13, 2018

pmenzel commented Feb 13, 2018

pmenzel commented Feb 13, 2018

donald commented Feb 13, 2018