Foreshadow looks really bad.
> At a high level, whereas previous generation Meltdown-type attacks are limited to reading privileged
supervisor data within the attacker’s virtual address space, foreshadow-NG attacks completely bypass the virtual memory abstraction by directly exposing cached physical memory contents to unprivileged applications and guest virtual machines.
Again, we need community auditable, secure, libre hardware designs powering out computer. We need RISC-V machines that are usable by everyday people.
@wobblysaeeda Yes, and there's at least the opportunity for a) community analysis and input on design without legal threats b) possibility to produce variants (eg "gotta go fast" vs "hypersecure")
but it's true that you can't as cheaply run "./configure && make" just to build new hardware :)
@cwebber I want a RISC-V-based T400-style Thinkpad with Libreboot and fully reproducible Debian – for games and stuff.