- WLCG& HSF Workshop 2018 https://indico.cern.ch/event/658060/
- 26-29 March 2018 Napoli, Italy
- Spectre/Meltdown updates (from Vincent Brillault - IT security team)
- Intel Microcode updates
- Intel identified root cause for reboot
- Only for Broadwell & Haswell
- No news for Ivy Bridge, Sandy Bridge, Skylake and Kaby Lake…
- Intel new recommendations:
- stop deployment of current versions
- as they may introduce higher than expected reboots and other unpredictable system behavior
- [Industry] test new microcode version
- Spectre v2: IBRS vs Retpoline
- IBRS/IBPB (Intel proposal):
- Requires new microcode (new MSR capabilities)
- Merged by RedHat in their latest kernel
- “retpoline” (Google proposal):
- Software-based mitigation for Spectre v2
- New compiler feature + kernel patch (+software)
- Issues with Skylake (improvements pending)
- Preferred by Linux upstream (already merged)
- Unclear what RedHat will do…
- All in all: there is no news of a stable solution, we need to wait