![]() ![]() Devs will update the Linux 5.15 kernel first, but the change will also move to prior kernels.ĪMD Secure Memory Encryption is a feature exposed to AMD’s EPYC and Ryzen Pro processors that allows the CPUs to encrypt the memory at a hardware level. This feature is normally enabled by default, but due to unexpected boot failures on some AMD machines, SME will now be disabled by default. AMD Secure Memory Encryption Has a Flaw, Now Disabled by Default in Linux KernelĪccording to a report from Phoronix, the Linux 5.15 kernel is receiving a new fix that involves disabling AMD’s Secure Memory Encryption, or SME.It’s not _enormously_ larger than normal, and it’s not the largest rc6 we’ve had, but it’s still slightly worrisome.” “I’d love to say that it’s all looking average, but rc6 is actually bigger than rc5 was, and larger than normal for this time in the release cycle. This was done to some buggy platforms that would otherwise experience boot problems with SME. One somewhat notable change that landed this weekend is AMD SME no longer defaulting to being used on capable machines but rather needing to opt-in to that memory encryption feature. This past week saw mostly the wide assortment of fixes as usual for this stage of development. The brief 5.15-rc6 announcement can be read on the kernel mailing list. We’ll see how this week plays out to see if it will be worrisome or not the rest of the cycle. Linux 5.15-rc6 Ticks Up In Size, Stops Using AMD SME By Default – Phoronix.There are only a few that we don’t think are fantastic. ![]() We go through the list of metrics being measured. Most of the things the scorecards are measuring are no brainier activities. This is a great project that will probably make a huge difference. Josh and Kurt talk about the release of OpenSSF Security Scorecards version 3.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |