Hi!
Sorry but I've a question concerning the old PVE 4.4 version. I've a PVE cluster still using this version.
The PVE cluster of 5 nodes. On the node one, corosync don't want to start. It say that the config is not in sync.
corosync[28838]: [CMAP ] Received config version (7) is different...
Some news.
The retpoline patches to mitigate Spectre 2 have been integrated in the 4.15 tree and back-ported in 4.9.77 & 4.14.14 kernels.
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.77
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.14
GCC is not upgraded yet for...
Hi!
Found a guy who tried Meltdown patch with Virtuozzo Container on a SSD HP blade.
Nice result. ☹️
https://communities.intel.com/thread/121555?wapkw=meltdown
Hi!
Compatibility and stability problems with mitigation codes continue and rise.
Spectre and Meltdown patches causing trouble as realistic attacks get closer
https://arstechnica.com/gadgets/2018/01/spectre-and-meltdown-patches-causing-trouble-as-realistic-attacks-get-closer/
Meltdown/Spectre...
Online talk of PTI not PCID.
For PCID, I've not found yet any good bench of fix flaw impact.
The article by arstechnica talks about this but does not provide very detailed proof of these statements...
A nice article from arstechnica.
https://arstechnica.com/gadgets/2018/01/heres-how-and-why-the-spectre-and-meltdown-patches-will-hurt-performance/
Another one for OSX (look a syscall bench, crazy).
https://reverse.put.as/2018/01/07/measuring-osx-meltdown-patches-performance/
Hi Fabian,
This is not clear for me. Sorry, I'm not a KVM power user.
Where do we need to type this, in PVE server on in the KVM VM?
The story about ‘host’ is not clear too.
Cheers,
Hi!
May be this will solve your problem.
You need for each hardware server running PVE to modify this:
In "/etc/apparmor.d/lxc/lxc-default-cgns" add these lines:
mount fstype=nfs*,
mount fstype=rpc_pipefs,
In "/etc/apparmor.d/lxc/lxc-default-with-mounting "add this line:
mount...
More detail. Now it's public.
Not nice at all as Spectre 2 is not mitigated in most softwares.
Warning: kernel 4.4.0-108 is buggy. Still boot problem.
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1742323
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.