Intel CPU Design Flaw - Page 2

gary · #21 05-01-2018, 11:30 AM

News of the bug has now reached the mainstream press with Forbes magazine reporting on it :-
https://www.forbes.com/sites/thomasb.../#930982c39328

Intel have released this statement :-
https://newsroom.intel.com/news/inte...arch-findings/

gary · #22 05-01-2018, 11:45 AM

Some early Kernel-based Virtual Machine (KVM) benchmarking when
running the Linux 4.15 KPTI patches :-
https://www.phoronix.com/scan.php?pa...kpti-kvm&num=1

(Note this article is multiple pages. Page selection at bottom of article)

RickS (Rick) · #23 05-01-2018, 12:19 PM

For anybody who's interested in embedded devices ARM has released a list of their architectures that are vulnerable to these attacks:

https://developer.arm.com/support/security-update

gary · #24 05-01-2018, 12:54 PM

Quote:

Originally Posted by RickS

For anybody who's interested in embedded devices ARM has released a list of their architectures that are vulnerable to these attacks:

https://developer.arm.com/support/security-update

Hi Rick,

That would imply that somewhere around 99% of all smartphones and tablets on the planet are affected for a start.

luka · #25 05-01-2018, 12:55 PM

Just be aware that there are two issues at hand, Meltdown and Spectre.

Meltdown impacts only the Intel CPUs and ARM64 (Cortex-A75 only). It is more severe, for example javascript in browser could read kernel memory. This is the big one as it is problem with the actual Intel architecture and can be only fixed in software by significant performance penalties or by a hardware change (moving to AMD CPU).

Spectre on the other hand includes several possible attacks. It is not as severe as it is more difficult to exploit but also more difficult to fix. It affects all CPUs. However, it is worth noting that the newer AMD CPUs (Ryzen and Epyc) employ a hardware neural network for branch prediction. This is much less predictable but, in theory, still possible to exploit.

Also note that Intel propaganda machine is trying hard to confuse the issue and minimise the damage by mixing up two exploits (Meltdown and Spectre) and trying to make it look like all CPUs are affected. In reality one type of exploit with less severity is general while the severe one is Intel specific.

RickS (Rick) · #26 05-01-2018, 02:05 PM

Quote:

Originally Posted by gary

That would imply that somewhere around 99% of all smartphones and tablets on the planet are affected for a start.

G'day Gary,

Yes, unfortunately... smartphones and tablets tend to use the newer ARM architectures. They also run a lot of third party software.

For more deeply embedded devices things may not be quite so bad. A lot of the processors used there have architectures that aren't affected and the software is more locked down. I have been checking all the parts we use at work...

Cheers,
Rick.

luka · #27 05-01-2018, 06:01 PM

A glimmer of hope from Google regarding the Spectre problem (variant 2). "Retpoline" effectively disables speculative execution by isolating branch target prediction. The patch works on the binary level and not at the OS level. Google claims that the performance loss is almost zero, close to the old mispredicted branch.

Of course this does not address Meltdown (variant3) so KPTI is still needed for the Intel CPUs with possibly large performance hits.

fsr · #28 06-01-2018, 05:52 AM

It seems like Intel's protected mode wasn't so protected after all...

RickS (Rick) · #29 06-01-2018, 01:46 PM

https://imgs.xkcd.com/comics/meltdown_and_spectre.png

gary · #30 06-01-2018, 03:31 PM

Apple released a statement today with regards their mitigation plans for all Mac OS, iOS and tvOS devices :-
https://support.apple.com/en-us/HT208394

AndrewJ · #31 06-01-2018, 04:09 PM

Pity this didnt come out a few months ago.
Apple could have blamed the "designed slowdown" of old machines on this instead of trying to cover up crud batteries :-)
Andrew ( am i being to cynical ? )

multiweb (Marc) · #32 06-01-2018, 04:18 PM

Quote:

Originally Posted by RickS

https://imgs.xkcd.com/comics/meltdown_and_spectre.png

RickS (Rick) · #33 06-01-2018, 04:38 PM

Quote:

Originally Posted by gary

Apple released a statement today with regards their mitigation plans for all Mac OS, iOS and tvOS devices :-
https://support.apple.com/en-us/HT208394

Good to know my watch is ok

rustigsmed (Russell) · #34 07-01-2018, 06:43 PM

some benchmarking

https://www.youtube.com/watch?v=JbhKUjPRk5Q

write-speeds have taken a hit

gary · #35 22-01-2018, 12:55 PM

Peter Bright, Technology Editor at Ars, writes in a 16 Jan 2018 article on how Spectre and Meltdown patches are causing some drivers to have issues
and that Intel's CPU microcode update caused crashes on some systems.

Intel then issued a warning not to install it on systems with Haswell and Broadwell processors.

Some older anti-virus software is also getting in the way of OS patches.

Story here :-
https://arstechnica.com/gadgets/2018...ks-get-closer/