On 5/22/22 01:58, Glorious Hellosway via devel wrote: > That will create a very big performance hit, and disabling SMT will half the amount of threads. On the new CPUs with E and P cores, this can significantly decrease performance. Speculative execution mitigations are table stakes if you want to prevent local exploits, including exploits from virtual machines. If you don’t have necessary specualtive execution mitigations turned on, then malicious code can read all memory (including, say, your LUKS root key). So there is little point in hardening the kernel against local exploits without enabling those mitigations. Some CPUs require that SMT be disabled for the mitigations to work. I don’t see how E and P cores relates to SMT. -- Sincerely, Demi Marie Obenour (she/her/hers) _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
