I thought it also turned on/off spectre/meltdown mitigations (impacts branch pre... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		stock_toaster on Feb 6, 2022 \| parent \| context \| favorite \| on: Java BitSet performance-flicker mystery I thought it also turned on/off spectre/meltdown mitigations (impacts branch prediction) on vulnerable cpus.

viraptor on Feb 6, 2022 [–]

So TIL turning on seccomp by default turns on mitigations as well. This is not explicitly documented in Docker and it does have the possibility to opt out but doesn't. https://www.phoronix.com/scan.php?page=article&item=linux-42...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact