https://forum.zwame.pt/threads/vuln...-aka-kaiser-bug.1007042/page-29#post-15259252Hmmm.... já era de prever não?
A Survey of Techniques for Improving Security of GPUs
https://arxiv.org/pdf/1804.00114.pdf
Demorou, mas não falhou
Intel's Mitigation For CVE-2019-14615 Graphics Vulnerability Obliterates Gen7 iGPU Performance
https://www.phoronix.com/scan.php?page=article&item=intel-gen7-hit&num=1
https://www.phoronix.com/scan.php?page=article&item=intel-gen7-hit&num=4When taking the geometric mean of all graphics tests ran, the Core i7 3770K was 18% lower from this lone mitigation while the Core i7 4790K fell by 42%! The mitigated i7-4790K HD Graphics 4600 performance basically put the performance in line with the pre-mitigated i7-3770K graphics performance. Haswell (or at least the Core i7 4790K) appears to get hit particularly hard, more so than the Core i7 3770K. But even the Core i7 3770K performance penalty introduced by yesterday's mitigation patches is very significant. But to reiterate, those not using Gen7 graphics but newer Gen9 (or Gen8) graphics should see minimal difference from the already mainlined mitigation on that front. It's for Ivybridge/Haswell era systems along with the likes of Valley View that are much more impacted by this vulnerability's mitigation.
Many readers have already asked, but no, the current Intel graphics driver patches do not respond to the generic "mitigations=off" kernel parameter that is used for disabling other mitigations. Hopefully before the Gen7 mitigation is mainlined there will be a kernel module parameter to disable this mitigated behavior or some other means of turning it off short of reverting a Git commit and recompiling the Linux kernel. Or ideally Intel is able to devise a new means of mitigation for CVE-2019-14615 on Gen7 that incurs less of a performance hit, but so far there has been no indication of an alternative mitigation.
E já agora
Zhaoxin 7-Series x86 CPUs Mitigated For Spectre V2 + SWAPGS
https://www.phoronix.com/scan.php?page=news_item&px=Zhaoxin-7-Series-MitigationsThis patch by a Zhaoxin engineer from Wednesday confirms that the Family 7 processors are not affected by SWAPGS and thus whitelisted from software mitigations.
Additionally, a separate patch whitelists the new Zhaoxin CPUs from Spectre V2 mitigations.
These are the first whitelists we're seeing for any Zhaoxin CPUs within the Linux kernel when it comes to these CPU vulnerabilities.