Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Says CPU Patches Cause 'Negligible Impact On Performance' With New 'Retpoline' Technique (theverge.com)

Posted by BeauHD on from the good-news-for-chipmakers dept.

In a post on Google's Online Security Blog, two engineers described a novel chip-level patch that has been deployed across the company's entire infrastructure, resulting in only minor declines in performance in most cases. "The company has also posted details of the new technique, called Retpoline, in the hopes that other companies will be able to follow the same technique," reports The Verge. "If the claims hold, it would mean Intel and others have avoided the catastrophic slowdowns that many had predicted." From the report: "There has been speculation that the deployment of KPTI causes significant performance slowdowns," the post reads, referring to the company's "Kernel Page Table Isolation" technique. "Performance can vary, as the impact of the KPTI mitigations depends on the rate of system calls made by an application. On most of our workloads, including our cloud infrastructure, we see negligible impact on performance." "Of course, Google recommends thorough testing in your environment before deployment," the post continues. "We cannot guarantee any particular performance or operational impact."

Notably, the new technique only applies to one of the three variants involved in the new attacks. However, it's the variant that is arguably the most difficult to address. The other two vulnerabilities -- "bounds check bypass" and "rogue data cache load" -- would be addressed at the program and operating system level, respectively, and are unlikely to result in the same system-wide slowdowns.

8 of 120 comments (clear)

  1. Re: You can't "patch" hardware by Anonymous Coward · · Score: 2, Informative

    You can fix the microcode. You can also include software workarounds for hardware flaws. An example was the Pentium F00F bug, which was addressed by the operating system.

  2. Or just Buy AMD & get no slow down with more p by Joe_Dragon · · Score: 5, Informative

    Or just Buy AMD & get no slow down with more pci-e lanes.

  3. Re:You can't "patch" hardware by supremebob · · Score: 5, Informative

    Geez... You make it sound like this is the first ever time someone has had to write a software patch to bypass a hardware flaw. Driver developers have had to come up with clever workarounds to hardware defects since the the dawn of computing.

    These Intel firmware fixes are just going to become part of yet another security update that will be required to keep systems secure.

  4. Re: amd needs desktop level server chips / ipmi bo by 110010001000 · · Score: 5, Informative

    More Intel spin. Spectre and Meltdown are different flaws. Meltdown is severe and unfixable and only affects Intel.

  5. Summary not very helpful, here's my attempt. by PhrostyMcByte · · Score: 5, Informative

    Google has created "retpoline", a technique which allows an indirect branch (e.g. a vtable call) to occur in a way that effectively disables speculative execution by isolating branch target prediction into a safe effectless loop. This addresses Variant 2 (aka Spectre).

    Retpoline does not depend on or assist a CPU or an OS patch: it is done purely at the software level, per-app, by a compiler. There is no simple OS-wide patch.

    Google says a retpoline call has performance "within cycles" of a regular old mispredicted branch. The zero-cost predictions we're used to are a thing of the past, because it effectively forces misprediction. I'd be curious to see a benchmark of an indirection-heavy platform like .NET.

    This does not help address or optimize Variant 3, which is what the big kernel patches for Page Table Isolation are needed for. So, your I/O-dependent apps like databases are still going to take a big performance hit. Nor does it address Variant 1.

  6. Re: Idiotic Moderation by Anonymous Coward · · Score: 1, Informative

    Forget about the future. What about NOW? If you run Intel you are vulnerable to Meltdown. If you run AMD, you aren't. Meldown is a major bug. And yes, AMD microarchitecture is superior. It isn't affected by Meltdown.

  7. Re: amd needs desktop level server chips / ipmi bo by Anonymous Coward · · Score: 2, Informative

    Sorry, but ARM says it does apply to some of the ARM models. Variant 3: rogue data cache load (CVE-2017-5754) is Meltdown.
    https://developer.arm.com/support/security-update

    For AMD's sake, I hope their assessment about Ryzen's different architecture is 100% correct. If someone should come up with a POC working on these, AMD would be completely screwed.

    "Lesser" is subjective. It appears that Meltdown can be mitigated if not negated by the KAISER patches to operating systems but Spectre needs to have software (and not only kernels) recompiled or partially rewritten.

    CAPTCHA: surgeons

  8. Re:Idiotic Moderation by Anonymous Coward · · Score: 5, Informative

    Correction, they speculated that they were able to get AMD chips to do that. Their toy attack (within process) succeeded showing AMD chips will do speculative ordering. No actual security risk there, beause processes can read their own memory.

    BUT, they didn't know for a fact why they didn't succeed in attacking the kernel.

    We've now had statements from AMD (after the paper was released) - namely, that permission bits are checked BEFORE issuing instructions so kernel memory isn't readable, even speculatively.

    So.. .yeah, remember the paper is only what they think could be happening.