On 02/02/18 13:19, Mick wrote:
Anyway, as I understand it, we'll have to wait for gcc-8.1 in March, which
utilises 'gcc -mindirect-branch=thunk-extern' to get the benefit of the
retpoline kernel patch.
No. You get that with GCC 7.3 already, which is in portage now.
However, improvements to these mitigations will from now on happen for
kernel 4.16 first and backported later. 4.16 for example got mitigations
for ARM. It's how kernel upstream works; new stuff is done in the
current development version, and backported later to still supported
versions.
Spectre_v1 still shown as vulnerable on both Intel and AMD. Is there a fix
planned for this?
I don't know, but it would be surprising if there wasn't.
