Language Selection

English French German Italian Portuguese Spanish

Linus Torvalds Comments On STIBP & He's Not Happy - STIBP Default Will End Up Changing

Filed under
Linux

It turns out that Linus Torvalds himself was even taken by surprise with the performance hit we've outlined on Linux 4.20 as a result of STIBP "Single Thread Indirect Branch Predictors" introduction as well as back-porting already to stable series for cross-hyperthread Spectre V2 protection. He doesn't want this enabled in full by default.

All of the benchmarking I've been doing the past few days to shine the light on the Linux kernel's STIBP addition appears to be paying off. My tests have found Linux 4.20 to incur significant performance penalties in many workloads -- in fact, more so than some of the earlier Spectre and Meltdown mitigations -- and STIBP is already being back-ported to stable series like Linux 4.19.2. PHP, Pythom, Java, and many other workloads are measurably affected and even the gaming performance to some extent.

Read more

Latest Spectre patches bring big performance hits to Linux 4.20

Huge performance toll noted

  • Linux Spectre V2 Patch Incurs up to 50 Percent Performance Penalty

    How far are you willing to go to make your PC more secure? Most security conscious people understand that mitigating their risk involves some kind of trade-off, whether it's sacrificing convenience, spending more money, or compromising their system's performance. Yet many Linux users weren't prepared for a patch for the Spectre v2 vulnerability to incur up to a 50% performance penalty on Intel processors.

    The patch in question was released with the Linux 4.20 kernel. It bears the Single Thread Indirect Branch Predictors (STIBP) mitigation for CPUs with simultaneous multithreading (SMT). This is supposed to prevent attacks based on the Spectre v2 vulnerability, but as a result, it also hurts performance on Intel processors with Hyper-Threading enabled, provided those CPUs are running the latest microcode updates as well.

  • Linus Torvalds: After big Linux performance hit, Spectre v2 patch needs curbs

    As noted by Linux news site Phoronix, the sudden slowdowns have been caused by a newly implemented mitigation called Single Thread Indirect Branch Predictors (STIBP), which is on by default in the Linux 4.20 kernel for Intel systems with up-to-date microcode.

    STIBP is one of three possible mitigations Intel added to its firmware updates in response to the Spectre v2 attacks. Others included Indirect Branch Restricted Speculation (IBRS), and Indirect Branch Predictor Barrier (IBPB), which could be enabled by operating-system makers.

    STIBP specifically addresses attacks against Intel CPUs that have enabled Hyper Threading, its version of Simultaneous Multithreading (SMT)

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

today's howtos

  • Font Management On Linux - YouTube

    Many new-to-Linux users have questions about installing fonts and previewing fonts on Linux. While there are some nice GUI applications that help with these tasks, you don't actually need to install any extra programs to manage your fonts.

  • Dmenu Is Great So I'll Keep Simping For It - YouTube

    At this point the only Suckless tool I actively use is Dmenu, it's an absolute great launcher especially if you're the kind of person who doesn't really care about having a super fancy looking app, Dmenu is functional and that's all it needs to be.

  • Remove ^M (CTRL-M) Characters from a File in Linux - Putorius

    Operating systems have different ways to handle a newline in their text editors. For example Windows uses a specific carriage return (CR) which is depicted as ^M on Linux, followed by a line feed (LF) to indicate a newline. Linux and UNIX on the other hand use only the line feed to denote the end of a line. This often causes issues when transferring (or even copy and pasting) a file from Windows to Linux. It is hard to spot, and often leaves people scratching their head and wondering why their configuration file is not working.

  • How to install fonts in Gimp on a Chromebook

    Today we are looking at how to install fonts in Gimp on a Chromebook. Please follow the video/audio guide as a tutorial where we explain the process step by step and use the commands below.

  • How to Install Rocket.Chat on CentOS 8

    Rocket.Chat is a free and open-source chat and messaging application built with Meteor. It is an alternative to Slack and allows you to chat with other members, make video and audio calls, create channels and private groups, share files, and folders and many more. It is self-hosted and helps your team to communicate and share ideas on desktop and mobile devices.

  • How to Check Ubuntu Version with Command or Script

    The lsb-release is the standard package for reporting the version on Ubuntu systems. Which is basically written in Python programming language. The lsb-release package provides a command lsb_release used to check Ubuntu version and codename on command line. In this tutorial, you will learn various options to lsb_release command on Ubuntu system.

  • Updated Docker pages

Jetson Xavier system bundles LIPSedge 3D vision camera

LIPS’ IP67-protected “LIPSedge AE400” 3D vision industrial camera is now available with Aaeon’s Linux-driven, AGX Xavier based Boxer-8240AI computer. The RK3399-based camera is built around an Intel RealSense D415 and offers GbE with PoE. Aaeon announced that its Boxer-8240AI edge AI system based on Nvidia’s high-end Jetson AGX Xavier module has received Nvidia Isaac Certification for a bundle that combines the compact, embedded system with LIPS Corp’s LIPSedge AE400 Industrial 3D Camera. The camera is billed as an industrial version of the Intel RealSense dual-lens stereovision camera. Applications for the Aaeon/LIPS offering include autonomous guided vehicles (AGV), vision guided robots, and smart factory systems. Read more

Release of t2 GNU/Linux 20.10

  • T2 20.10 tagged and shipping!

    A decade in the making, T2 version 20.10 was finally tagged and shipped! Grab your favorite release ISO, e.g. highly optimized AMD64, PPC64 for your PS3, MIPS64 for your Sgi Octane or any other of our release builds for playing along at home!

  • t2 Linux 20.10 released

    The 20.10 release of the t2 Linux distribution is available.

Canonical/Ubuntu: FOSDEM 2021 Community DevRoom, Snap Store and Ubuntu Technical Board Call For Nominations

  • Laura Czajkowski: FOSDEM Community Devroom 2021 CFP

    The twenty-first edition of FOSDEM will take place 6-7 February, 2021 – online, and we’re happy to announce that there will be a virtual Community DevRoom as part of the event.

  • When you need the numbers just right – benchmark and profiling applications in the Snap Store | Ubuntu

    The world of software is a vast and complex one, often too difficult to easily assess by human intuition alone. Which is why detailed and accurate measurements of software behavior are essential in helping us understand and gauge how well our applications perform. The Snap Store has a fair share of productivity tools and utilities, including a wide range of benchmarking and profiling tools. These are designed to help developers, system administrators and hardcore enthusiasts get a precise sense of their software, whether as part of research and design or for troubleshooting ongoing problems in production environments. Let’s have a little tour.

  • Ubuntu Fridge | Ubuntu Technical Board Call For Nominations

    The Ubuntu Technical Board is responsible for the technical direction of Ubuntu. It makes decisions on package selection, packaging policy, installation systems and processes, kernel, X server, display management, library versions, and dependencies. The board works with relevant teams to establish a consensus on the right path to take, especially where diverse elements of Ubuntu cannot find consensus on shared components. The current Technical Board is expiring at the end of the year, and the Community Council would like to confirm a new Technical Board, consisting of five people, who will serve for two years.