Re: [lfs-support] The Spectre and Meltdown CPU vulnerabilities
On Sun, Jan 07, 2018 at 04:47:00PM -0600, DJ Lucas wrote: > > > I might be confused, but I thought microcode updates on consumer processors > is handled by BIOS update from the motherboard manufacturer, the AGESA part > of the BIOS version, currently 1.0.0.7. I'm not sure if we'll see a > late-load .bin for the consumer processors. If anybody can confirm or deny, > please speak up. > In theory you can get a new BIOS/UEFI from the motherboard manufacturer. But linux has supported updating the microcode for a long time (but you need to do it on every boot). All my Intel motherboards now load newer firmware than what is in the BIOS, but of my AMDs only the oldest (Athlon64x2) has newer firmware available from linux-firmware. BLFS, Part II, Chapter 3, 'About Firmware'. ĸen -- Truth, in front of her huge walk-in wardrobe, selected black leather boots with stiletto heels for such a barefaced truth. - Unseen Academicals -- http://lists.linuxfromscratch.org/listinfo/lfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page Do not top post on this list. A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? http://en.wikipedia.org/wiki/Posting_style
[lfs-support] Status report from Greg Kroah-Hartman
http://www.kroah.com/log/blog/2018/01/06/meltdown-status/ -- Paul Rogers paulgrog...@fastmail.fm Rogers' Second Law: "Everything you do communicates." (I do not personally endorse any additions after this line. TANSTAAFL :-) -- http://lists.linuxfromscratch.org/listinfo/lfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page Do not top post on this list. A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? http://en.wikipedia.org/wiki/Posting_style
Re: [lfs-support] The Spectre and Meltdown CPU vulnerabilities
On 01/07/2018 04:11 PM, Ken Moffat wrote: On Fri, Jan 05, 2018 at 08:43:11PM -0500, Michael Shell wrote: On Fri, 5 Jan 2018 17:26:13 + Ken Moffat wrote: Does anybody have a link for (any) updated AMD firmware? Ryzen is model 17h, AFAICS linux firmware has nothing for that, and the firmware for earlier models has not been updated in a long time. I also sure would like a link to that if anyone here knows it. That said, the Debian page for the AMD microcode is here: https://packages.debian.org/sid/amd64-microcode There is also a place on github where Linux related firmware is distributed from. The AMD CPU microcode area of that is here: https://github.com/wkennington/linux-firmware/tree/master/amd-ucode But no updates since 2016 so far. Sigh. If anybody has an EPYC[1], SuSe has a srpm - but it doesn't apply to Ryzens, and the kerneli might need a patch because it had known nothing about Ryzen microcode and tests against an old default size (not sure which versions have that patch) - details at https://bugs.archlinux.org/task/56951 Yes, I had seen this as well, but this is specific to Epyc. Clearly this is aimed at Spectre. I saw the kernel patch a while ago, which is why I was hopeful about microcode. But I don't even have a Ryzen so for me that part is academic. 1. The server version of Zen, aimed at Data Centres, so I can understand why that would get priority. I might be confused, but I thought microcode updates on consumer processors is handled by BIOS update from the motherboard manufacturer, the AGESA part of the BIOS version, currently 1.0.0.7. I'm not sure if we'll see a late-load .bin for the consumer processors. If anybody can confirm or deny, please speak up. --DJ -- http://lists.linuxfromscratch.org/listinfo/lfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page Do not top post on this list. A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? http://en.wikipedia.org/wiki/Posting_style
Re: [lfs-support] The Spectre and Meltdown CPU vulnerabilities
On Fri, Jan 05, 2018 at 08:43:11PM -0500, Michael Shell wrote: > On Fri, 5 Jan 2018 17:26:13 + > Ken Moffat wrote: > > > Does anybody have a link for (any) updated AMD firmware? Ryzen is > > model 17h, AFAICS linux firmware has nothing for that, and the > > firmware for earlier models has not been updated in a long time. > > > I also sure would like a link to that if anyone here knows it. That > said, the Debian page for the AMD microcode is here: > > https://packages.debian.org/sid/amd64-microcode > > There is also a place on github where Linux related firmware is > distributed from. The AMD CPU microcode area of that is here: > > https://github.com/wkennington/linux-firmware/tree/master/amd-ucode > > But no updates since 2016 so far. Sigh. > If anybody has an EPYC[1], SuSe has a srpm - but it doesn't apply to Ryzens, and the kerneli might need a patch because it had known nothing about Ryzen microcode and tests against an old default size (not sure which versions have that patch) - details at https://bugs.archlinux.org/task/56951 Clearly this is aimed at Spectre. I saw the kernel patch a while ago, which is why I was hopeful about microcode. But I don't even have a Ryzen so for me that part is academic. 1. The server version of Zen, aimed at Data Centres, so I can understand why that would get priority. ĸen -- Truth, in front of her huge walk-in wardrobe, selected black leather boots with stiletto heels for such a barefaced truth. - Unseen Academicals -- http://lists.linuxfromscratch.org/listinfo/lfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page Do not top post on this list. A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? http://en.wikipedia.org/wiki/Posting_style
Re: [lfs-support] Page Table Isolation
>> Likewise, I'm not betting kernel patches will get pushed down >> to the kernels that support those old systems. ext3 is not >> supported in the latest kernels, so instructions to install >> the latest kernels will leave many systems non-functional. >> I think patches need to be pushed back to 3.19 kernels. > > The ext3 filesystem is still available in 4.14. I read it wasn't: "KernelNewbies: Linux_4.3 Last updated at 2017-12-30 01:30:22 Linux 4.3 has been released on 1 Nov 2015 Summary: This release removes the ext3 filesystem and leaves Ext4, which can also mount Ext3 filesystems, as the main Ext filesystem; " -- Paul Rogers paulgrog...@fastmail.fm Rogers' Second Law: "Everything you do communicates." (I do not personally endorse any additions after this line. TANSTAAFL :-) -- http://lists.linuxfromscratch.org/listinfo/lfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page Do not top post on this list. A: Because it messes up the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing in e-mail? http://en.wikipedia.org/wiki/Posting_style
