Ubuntu
intel-compute-runtime package

NEO_DISABLE_MITIGATIONS flag default should be true

Bug #2110131 reported by Shane McKee
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
intel-compute-runtime (Ubuntu)
New
Undecided
Unassigned

Bug Description

After discussion between Intel and Canonical’s security teams, we are in agreement that Spectre no longer needs to be mitigated for the GPU at the Compute Runtime level. At this point, Spectre has been mitigated in the kernel, and a clear warning from the Compute Runtime build serves as a notification for those running modified kernels without those patches. For these reasons, we feel that Spectre mitigations in Compute Runtime no longer offer enough security impact to justify the current performance tradeoff.

Intel themselves have enabled this flag in their builds available on their Github release page upstream.

PPA: https://launchpad.net/~mckeesh/+archive/ubuntu/lp2110131

See original description
Shane McKee (mckeesh)
tags: added: pe-sponsoring-request
description: updated
Revision history for this message
Shane McKee (mckeesh) wrote :
Shane McKee (mckeesh)
description: updated
Revision history for this message
Shane McKee (mckeesh) wrote :
description: updated
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.