Microsoft Kernel Patch CPU Before and After Benchmarks Thread


Recommended Posts

  On 09/01/2018 at 05:36, adrynalyne said:

Maybe? This isn't my forte. As it was explained to me, it matters if it is x86 code instructions being called with sys calls. The GPU isn't x86 as far as I know.

Expand  

This certainly is not a problem how processor executes x86 code. It is a problem here how user mode app communicates with the OS kernel and how processor handles that matter. All requests for hardware (graphics, disk, memory access) must be passed to the OS which then executes them. Apps do not write directly to GPU . They use OS to handle these calls which then calls graphics driver (at the OS kernel level) which then writes data and commands to the GPU. Therefore I think there is a great chances that these fixes affect 2D graphics as well as other data intensive tasks.

 

Here is the security problem (as far as I understand): cpu allowed user mode app to gain access to OS kernel data, which it should never do. CPU does not handle OS and user mode isolation securely enough.

 

Intel (and others) have used a "shortcut" to speed up things and created a security flaw which is severe.

 

But I must say I was amazed that the effect of this fix was so huge at my Lenovo Thinkpad T440s laptop. Did not expect that much. Maybe Lenovo will provide fixes to the drivers which will help here.

  On 09/01/2018 at 09:25, Jampe said:

Here are my results. FIrst test was right before update. After update I ran tests 3 times since I could not believe my eyes. Results are consistent. PC is Lenovo thinkpad t440s model 20ARS04W00

PerfRes1.gif

Expand  

Disk and 2D Graphics really suffer. I hope neither Microsoft nor Intel will stop optimising their patches. As they are now, I won't be updating. In fact, I will try to find updated Windows 10 ISOs with December patches and archive them if I ever need to reinstall Windows.

On the Azure front we're seeing slowdowns on our legacy Azure VM's running SQL Server. We're having to scale up the VM's to cope with the slowdowns.

 

Obviously this is all being logged and the extra costs will be argued.

 

Not seeing the same impact on Azure SQL Servers, there is an impact but probably only 10% extra as opposed to the ~25% on the VM's.

 

To make matters worse, MS scheduled production VM's for updates then threw the date out the window and upgraded when they felt like it. We're talking multiple end clients productions systems going down for anywhere from 30 mins to 5 hours without warning. A cluster###### if ever there was one.

 

Read some of the comments on this Azure status. I won't say which is my real life account...

https://azure.microsoft.com/en-us/blog/securing-azure-customers-from-cpu-vulnerability/

 

Don't forget that these patches are only part of the fix. According to the articles I've read, a BIOS update will also be required to fully patch the fix. I presume this is where a lot of the slowdowns will come from.

  On 09/01/2018 at 10:54, Daedroth said:

Don't forget that these patches are only part of the fix. According to the articles I've read, a BIOS update will also be required to fully patch the fix. I presume this is where a lot of the slowdowns will come from.

Expand  

the bulk of dell systems should get a bios fix today.

guys the following CERT advisory has links to lots of affected platforms and products, including timescales for fixes from vendors.

 

https://www.us-cert.gov/ncas/alerts/TA18-004A

 

we are currently assessing the entire global enterprise (20k endpoints, 8k+ servers) and we have reached out to NetApp, Cisco and other suppliers of enterprise kit.

 

Were using the tack, if it has a CPU, its potentially susceptible until we are told otherwise (called due diligence).

 

NetApp have confirmed their SAN arrays are  not affected. They dont permit execution of 3rd party code. Awaiting confirmation about Cisco kit.

 

*UPDATE** Cisco have responded. A mixed bad, some products immune but the bulk are affected.

 

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel

 

 

Asus have released the microcode fix/BIOS update for my S270 Strix H. 

 

https://www.asus.com/Motherboards/ROG-STRIX-Z270H-GAMING/HelpDesk_BIOS/

 

STRIX Z270H GAMING BIOS 1203
Improved DRAM compatibility.
Fixed SAMSUNG M.2 device issue.
Fixed SanDisk M.2 device issue.
Fixed AMD SSD device issue.
Fixed SteelSeries Keyboard issue.
Update CPU MicroCode.

 

Cinebench 4D BEFORE Win patch

CPU Benchmark = 966CB

OpenGL Bench = 140 FPS

AFTER

CPU Benchmark = 975CB ???

OpenGl Bench = 149.95 FPS ???

NVidia Driver update

CPU Benchmark = 962CB

OpenGL Bench =147.64FPS

Post Bios UPD

CPU Benchmark=942CB

OpenGL Bench=147.36

 

3D Mark timespy extreme BEFORE

3998

AFTER

3997 ????

NVidia Driver Update

3971

Post Bios UPD

3955

 

Novabench 

2713

After

2703

NVidia Driver update

2677

Post Bios UPD

2618

 

RealBench BEFORE

Image Editing 212,486/ Time 25.0745

Encoding 93,501/time 56.9829

OpenCL 113,529/ Ksamples per sec 20877

Heavy Multitasking 110,647

Time 68.9761

System Score 132,540

RealBench AFTER

Image Editing 208.830/Time 25.5135

Encoding 92,841/time 57.3881

OpenCL 113,529/ Ksamples/sec 20922

Heavy Multitasking 103,867/Time 73.4779

System Score 129,766

Post NVidia 

Image Editing 108,788/ Time 48.9757

Encoding 84,939/time 62.7273

OpenCL 113,529/ Ksamples per sec 20948

Heavy Multitasking 99,848

Time 76.4357

System Score 101,776 

Post Bios UPD

Image Editing 91,665/ Time 58.1242

Encoding 80,259/time 66.3843

OpenCL 112,996/ Ksamples per sec 20798

Heavy Multitasking 94,712

Time 80.5809

System Score 94,908

 

Hmm taking it with a pinch of salt, as i noticed post BIOS upd i left the OC as auto, so its at 4.37Ghz, not 4.5Ghz I benched with before...DOH

 

ill redo it tomorrow and update.

  On 09/01/2018 at 22:47, Mando said:

Asus have released the microcode fix/BIOS update for my S270 Strix H. 

 

https://www.asus.com/Motherboards/ROG-STRIX-Z270H-GAMING/HelpDesk_BIOS/

 

STRIX Z270H GAMING BIOS 1203
Improved DRAM compatibility.
Fixed SAMSUNG M.2 device issue.
Fixed SanDisk M.2 device issue.
Fixed AMD SSD device issue.
Fixed SteelSeries Keyboard issue.
Update CPU MicroCode.

 

Cinebench 4D BEFORE Win patch

CPU Benchmark = 966CB

OpenGL Bench = 140 FPS

AFTER

CPU Benchmark = 975CB ???

OpenGl Bench = 149.95 FPS ???

NVidia Driver update

CPU Benchmark = 962CB

OpenGL Bench =147.64FPS

Post Bios UPD

CPU Benchmark=942CB

OpenGL Bench=147.36

 

3D Mark timespy extreme BEFORE

3998

AFTER

3997 ????

NVidia Driver Update

3971

Post Bios UPD

3955

 

Novabench 

2713

After

2703

NVidia Driver update

2677

Post Bios UPD

2618

 

RealBench BEFORE

Image Editing 212,486/ Time 25.0745

Encoding 93,501/time 56.9829

OpenCL 113,529/ Ksamples per sec 20877

Heavy Multitasking 110,647

Time 68.9761

System Score 132,540

RealBench AFTER

Image Editing 208.830/Time 25.5135

Encoding 92,841/time 57.3881

OpenCL 113,529/ Ksamples/sec 20922

Heavy Multitasking 103,867/Time 73.4779

System Score 129,766

Post NVidia 

Image Editing 108,788/ Time 48.9757

Encoding 84,939/time 62.7273

OpenCL 113,529/ Ksamples per sec 20948

Heavy Multitasking 99,848

Time 76.4357

System Score 101,776 

Post Bios UPD

Image Editing 91,665/ Time 58.1242

Encoding 80,259/time 66.3843

OpenCL 112,996/ Ksamples per sec 20798

Heavy Multitasking 94,712

Time 80.5809

System Score 94,908

 

Hmm taking it with a pinch of salt, as i noticed post BIOS upd i left the OC as auto, so its at 4.37Ghz, not 4.5Ghz I benched with before...DOH

 

ill redo it tomorrow and update.

Expand  

Mando, is RealBench only for ASUS gaming boards bench utility? Thx for the update, btw :)

  On 10/01/2018 at 13:44, Yogurth said:

Mando, is RealBench only for ASUS gaming boards bench utility? Thx for the update, btw :)

Expand  

not 100% its via ROG aspect.

 

give it a whirl, it may work

http://dlcdnmkt.asus.com/rog/RealBench_v2.56.zip?_ga=2.161564219.660284626.1515594169-1054940240.1499777541

 

 

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • Microsoft's new Exchange Message Trace: What admins need to know before September by Paul Hill Microsoft has just announced the general availability of the new Message Trace in the Exchange admin center (EAC) in Exchange Online for its worldwide (WW) customers. The Redmond giant said that it’ll begin rolling it out in mid-June and complete the rollout in July. Message Trace in the Exchange Admin Center for Exchange Online is a tool that lets admins trace which path emails took as they traveled through the Microsoft 365 organization. It lets admins see if emails were received, rejected, or deferred. It is helpful for troubleshooting mail flow issues and validating policy changes. To get started with the new Message Trace, admins can access it by going to the Exchange admin center > Mail flow > Message Trace. While the Windows-maker has received positive feedback during the Public Preview, you can still provide your thoughts through Exchange admin center > Give Feedback. In addition, Microsoft will continue to maintain the old Message Trace user experience in Exchange admin center and cmdlets for several months to ease the transition, however, they will be deprecated for WW customers starting from September 1. The Reporting Webservice support for Message Trace data will also begin deprecating on this date. A side note to mention here is that this timeline only applies to the WW environment and doesn’t affect GCC, GCC-High, DOD, or other sovereign clouds. More information about the switch over for those will be provided in the second half of the year. Who it affects, and how These changes need to be noted by Exchange Online administrators and IT professionals as those are the people who will be directly affected. Specifically, it will affect anyone managing mail flow and troubleshooting email delivery in Exchange Online. Those who are affected will have to get switched over to the new Message Trace before Microsoft starts deprecating features in several months time. Admins will want to act promptly to avoid any unforeseen issues that could arise. Another detail that admins should be aware of is that scripts that rely on the older “Get-MessageTrace” or “Get-MessageTraceDetail” cmdlets will break on September 1. To address this, admins will need to update their scripts to use the new “Get-MessageTraceV2” and the “Get-MessageTraceDetailV2” cmdlets. Finally, any admins out there using the Reporting Webservice for Message Trace data will also need to make a change. They will need to shift to the new Message Trace PowerShell cmdlets. Why it’s happening Microsoft has been working on a new Message Trace experience, incorporating feedback from the Public Preview phase, to improve its design and performance. The switch gives Microsoft the opportunity to standardize and modernize admin interfaces and the underlying technologies. What to watch for While September 1 may seem like a long way away, fixing any issues, such as scripts due to deprecations, could take some time. Any admins managing the affected items need to ensure they deal with affected components in a timely manner. In terms of documentation, Microsoft has so far only released the Public Preview document which highlights the changes between the old and new versions. Microsoft says that it will publish cmdlet documentation for the new Message Trace cmdlets by the time of the general availability, so admins should look out for that.
    • Microsoft PC Manager 3.17.2.0 (Offline Installer) by Razvan Serea With Microsoft PC Manager, users can easily perform basic computer maintenance and enhance the speed of their devices with just one click. This app offers a range of features, including disk cleanup, startup app management, virus scanning, Windows Update checks, process monitoring, and storage management. Microsoft PC Manager key features: Storage Manager- easily uninstall infrequently used apps, manage large files, perform a cleanup, and set up Storage Sense to automatically clear temporary files. Health Checkup feature -scans for potential problems, viruses, and startup programs to turn off. It helps you identify unnecessary items to remove, optimizing your system's performance. Pop-up Management - block pop-up windows from appearing in apps. Windows Update - scans your system for any pending updates. Startup Apps - enable or disable startup apps on your PC, allowing you to optimize your system's startup performance. Browser Protection - rest assured that harmful programs cannot alter your default browser. Also enables you to change your default browser. Process Management - allows you to conveniently terminate any active process, ensuring optimal system performance and resource utilization. Anti-virus protection - Fully integrated with Windows Security. Safeguard your PC anytime. Quick Steps: Download Microsoft PC Manager Offline Installer (APPX/MSIX) with Adguard Adguard serves as a third-party online service, offering a user-friendly method for directly downloading appx, appxbundle, and msixbundle files from the Microsoft Store. Official download links will be generated for both the app's various versions and its dependency packages. How to download Microsoft PC Manager Offline Installer (APPX/MSIX) 1. Initially, you must find the app URL within the Microsoft Store. Access the Microsoft Store via your browser and search for "Microsoft PC Manager". Once located, copy the app URL, which includes the product ID, either from the address bar or from the provided link below. https://apps.microsoft.com/detail/9PM860492SZD 2. Now paste the app URL into the designated area, then click the check mark button to produce a direct download link. 3. To download, right-click the relevant link and select “Save link as…” from your browser's menu. Occasionally, Microsoft Edge may flag the download as insecure. In such cases, consider utilizing alternative browsers such as Google Chrome or Firefox to successfully complete the download. Microsoft PC Manager is a completely free tool optimized exclusively for use on Windows 10 (version 1809 or newer) and Windows 11. Download: Microsoft PC Manager 3.17.2.0 | from Microsoft Store View: Microsoft PC Manager Home Page Get alerted to all of our Software updates on Twitter at @NeowinSoftware
    • Vivaldi, spiritual fork of the original opera browser, highly configurable 
    • You could have moved her to Apple. Would have been the same ending. For the basic stuff it's fine, I agree.
    • iFixit explains why it is cutting the repairability score of the Nintendo Switch by half by David Uzondu With less than three days till the official release of the Nintendo Switch 2, iFixit just announced it is chopping the original Switch's repairability score clean in half, taking it from an 8 out of 10 all the way down to a 4. Now, the actual console from 2017 has not changed a bit, but iFixit says its way of looking at repair and what is even possible in handheld gaming has come a long way in eight years. The company figured that with the Switch 2 about to drop, people would want a proper way to compare the old with the new. Back when the Switch first came out, it was a weird one to score because it was part console, part handheld. iFixit now feels it has a better handle on things, and since Nintendo itself says most people play the Switch undocked, the device is getting judged harder as a portable machine. The iFixit Repairability Scoring Rubic So, what are the big complaints making iFixit take an axe to the score? Well, that glued-in battery is still incredibly difficult to remove, and the only way to charge the thing is through a port soldered right onto the main circuit board, which is always a recipe for repair nightmares. On top of that, Nintendo has never bothered to sell official replacement parts for the original Switch or even give out official repair guides. You cannot just ignore issues like that when you are talking about how easy something is to fix. Even finding one of the specific types of thermal goop you need for many fixes inside the console has been a pain. And while everyone knows about the Joy-Con drift, iFixit is clear its score does not hit for bad durability, but seeing so many busted joysticks has made how easy they are to fix a bigger deal in its scoring lately. This is not the first time iFixit has had to go back and change a score based on new information or a change in how it sees things, like in 2023 when it cut the iPhone 14's repairability score because Apple started using software to link almost every part to a specific phone, making independent repairs a massive pain even if the phone was physically easier to open. iFixit still gives Nintendo credit for the plug-and-play joysticks (even if they drift), storage you can replace and add to, and an inside layout that is mostly simple. But those good points just do not count for as much when you compare the Switch to what is out there now and how much easier other companies like ASUS with the ROG Ally and Lenovo with the Legion Go, are making repairs. iFixit is hoping Nintendo learned a few things for the Switch 2. Plus, there is a Right to Repair law in New York that kicked in for gadgets made after July 1, 2023. That law might just force Nintendo to sell parts and share repair info for the new console, at least for things like batteries and screens. If Nintendo starts selling parts and guides for the original Switch while people are still buying it, iFixit says it will happily look at the score again.
  • Recent Achievements

    • Week One Done
      Leonard grant earned a badge
      Week One Done
    • One Month Later
      portacnb1 earned a badge
      One Month Later
    • Week One Done
      portacnb1 earned a badge
      Week One Done
    • First Post
      m10d earned a badge
      First Post
    • Conversation Starter
      DarkShrunken earned a badge
      Conversation Starter
  • Popular Contributors

    1. 1
      +primortal
      261
    2. 2
      snowy owl
      158
    3. 3
      +FloatingFatMan
      145
    4. 4
      ATLien_0
      140
    5. 5
      Xenon
      131
  • Tell a friend

    Love Neowin? Tell a friend!