[PATCH gnupg] Disable CPU speculation-related misfeatures
Werner Koch
wk at gnupg.org
Mon May 26 16:46:11 CEST 2025
Hi!
On Mon, 26 May 2025 14:00, Guido Trentalancia said:
> Disable CPU speculation-related misfeatures which are in
> fact vulnerabilities causing data leaks:
If that is a misfeature it needs to be fixed at the pläce where it was
introduced and not just in a single binary. If this code is really
needed it would first of all be useful in Libgcrypt only then then you
should put it into gnupg/common/init.c:early_system_init.
Specific Linux code is in general not a good idea, if that is required,
please write a proper configure test for this feature and use a
dedicated macro. A more detailed explanation of the pro and cons would
also be appreciated.
Shalom-Salam,
Werner
--
The pioneers of a warless world are the youth that
refuse military service. - A. Einstein
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openpgp-digital-signature.asc
Type: application/pgp-signature
Size: 247 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20250526/0bd22194/attachment.sig>
More information about the Gnupg-devel
mailing list