From owner-cvs-all@FreeBSD.ORG Fri Nov 9 05:24:34 2007 Return-Path: Delivered-To: cvs-all@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 817EB16A417; Fri, 9 Nov 2007 05:24:34 +0000 (UTC) (envelope-from imp@bsdimp.com) Received: from harmony.bsdimp.com (bsdimp.com [199.45.160.85]) by mx1.freebsd.org (Postfix) with ESMTP id 3FE3C13C4A7; Fri, 9 Nov 2007 05:24:34 +0000 (UTC) (envelope-from imp@bsdimp.com) Received: from localhost (localhost [127.0.0.1]) by harmony.bsdimp.com (8.14.1/8.14.1) with ESMTP id lA95KJLO036769; Thu, 8 Nov 2007 22:20:19 -0700 (MST) (envelope-from imp@bsdimp.com) Date: Thu, 08 Nov 2007 22:23:47 -0700 (MST) Message-Id: <20071108.222347.-1264104457.imp@bsdimp.com> To: kris@FreeBSD.org From: "M. Warner Losh" In-Reply-To: <47337724.9040108@FreeBSD.org> References: <200711081945.lA8JjKcW080540@repoman.freebsd.org> <47337724.9040108@FreeBSD.org> X-Mailer: Mew version 5.2 on Emacs 21.3 / Mule 5.0 (SAKAKI) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Cc: cvs-src@FreeBSD.org, src-committers@FreeBSD.org, cvs-all@FreeBSD.org, cperciva@FreeBSD.org Subject: Re: cvs commit: src/sys/amd64/amd64 mp_machdep.c src/sys/i386/i386 mp_machdep.c X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Nov 2007 05:24:34 -0000 In message: <47337724.9040108@FreeBSD.org> Kris Kennaway writes: : Colin Percival wrote: : > cperciva 2007-11-08 19:45:20 UTC : > : > FreeBSD src repository : > : > Modified files: (Branch: RELENG_7) : > sys/amd64/amd64 mp_machdep.c : > sys/i386/i386 mp_machdep.c : > Log: : > Change the default for hyperthreading (or, generally speaking, cases : > where the L1 cache is shared between CPUs) to disabled for security : > reasons. As in earlier releases, this can be changed by setting : > machdep.hyperthreading_allowed=1 in /boot/loader.conf. : > : > This is not an MFC -- no seatbelts in CURRENT. : > : > Approved by: re (kensmith) : > Security: See FreeBSD-SA-05:09.htt for background material. : > : > Revision Changes Path : > 1.287.2.1 +1 -1 src/sys/amd64/amd64/mp_machdep.c : > 1.281.2.1 +1 -1 src/sys/i386/i386/mp_machdep.c : > : > : : What are you waiting for to happen in HEAD, and what work are you doing : to expedite that? Further, this goes against the agreement we had between core@ and security-officer@ at the time. This was not re-evaluated by core as we requested at the time. I request it be backed out. Warner