Regarding the IndirectBranchRestriciveSpeculation fix for Spectre 2
On Trident I checked the state of the ibrs with
It came back false, meaning speculative execution was NOT restricted.
I discovered the ability to disable ibrs was true, that is, the configurable
To ensure the ibrs could NOT be disabled I used
sudo sysctl hw.ibrs_disable=0
came back true.
For this to persist, however, across re-starts of the pc I edited
So, shouldn’t the modification to sysctl.conf be part of the Trident installation?