Hi my fellow Guix, On Sat, Oct 8, 2022 at 5:32 PM <[email protected]> wrote: > > > CONFIG_BPF_JIT_ALWAYS_ON=y > > CONFIG_BPF_JIT=y > > > > Why is this not the default in regular linux-libre?
Maybe it's historical. I believe JIT used to open a side-channel for the Spectre attack. [1] Kind regards Felix Lechner [1] https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html
