It leaks security sensitive information to userspace and corrupts the upper half of ESP because it lacks the equivalent of the espfix workaround. On April 12, 2014 7:56:48 PM PDT, Andi Kleen <andi@xxxxxxxxxxxxxx> wrote: >"H. Peter Anvin" <hpa@xxxxxxxxx> writes: >> >> But yes, we can make it configurable, but the default should almost >> certainly be off. > >Why? Either it works or it doesn't. > >If it works it doesn't make any sense to have a sysctl. > >-Andi -- Sent from my mobile phone. Please pardon brevity and lack of formatting. -- To unsubscribe from this list: send the line "unsubscribe stable" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html