[Cerowrt-devel] [Cake] apu2 sqm/htb issue + a minor win for speeding up fq_codel itself
toke at toke.dk
Wed Oct 3 16:12:50 EDT 2018
Jonathan Morton <chromatix99 at gmail.com> writes:
> I'm not familiar with precisely what mitigations are now in use on
> ARM. I am however certain that, on a device running only trustworthy
> code (ie. not running a Web browser), mitigating Spectre is
> unnecessary. If an attacker gets into a position to exploit it, he's
> already compromised the device enough to run a botnet anyway.
Yup, especially on openwrt, where most daemons run as root anyway :)
I would assume that something like the retpoline indirect function call
protection is not actually enabled on openwrt; but since we were talking
about performance regressions, that is certainly a major one...
More information about the Cerowrt-devel