We have patches in place for the "Meltdown" issue, but Spectre requires further work. One approach being worked on is called "retpoline". This requires compiler support, and will require packages to be rebuilt. This is all very much help in progress right now, so it's hard to predict the best response. We have a mass rebuild scheduled for about two weeks from now — January 31.
If the upstream is all ready by then, no problem. If not, though, we should consider one of:
isn't there new new fix called "ISBR" or something like that? Does it require mass rebuild too?
"IBRS". As I understand it, IBRS requires kernel support and hardware support, but no rebuild of everything; while retpoline requires compiler support (and rebuilding) but not hardware changes.And it's my current understanding that we'll end up with some combination of both of these things.
@mattdm Do we have any more information on this? Are we going to be requiring a mass rebuild?
@mattdm Do we need to do this?
Let me check in with people.
Looks like right now there's no request for a special rebuild for this.
Metadata Update from @mattdm: - Issue close_status updated to: Fixed
Login to comment on this ticket.