On 2/23/25 8:34 PM, Thomas Klausner wrote:
On Mon, Feb 24, 2025 at 06:32:09AM +1100, Matthew Green wrote:Log Message: Add LIBRARY section and explicitly mention that these interfaces require super-user privileges.this can be relaxed with the security.models.extensions.user_set_cpu_affinity sysctl.I found this and wondered what the attack model is that makes it default to off...
Any kind of cache side channel attacks are much easier if you can explicitly control where things are executed.
Joerg