Good start of the year for AMD – the Intel CPU flaw…

Just read the article about the Intel microcode flaw – https://www.theregister.co.uk/2018/01/02/intel_cpu_design_flaw/

Nice to take a 5-30% performance hit on your hardware… Is this the dawn of a new throttle-gate…? Sigh…

Conversation 33 comments

  • Paul Thurrott

    Premium Member
    03 January, 2018 - 8:31 am

    <p>LOL yep. That's what you get for partnering with AMD :)</p>

    • seapea

      03 January, 2018 - 9:49 am

      <blockquote><a href="#234664"><em>In reply to paul-thurrott:</em></a></blockquote><p>? I don't get the joke. This is an Intel specific bug/security issue.</p><p><br></p>

      • Jhambi

        03 January, 2018 - 11:53 am

        <blockquote><a href="#234686"><em>In reply to seapea:</em></a></blockquote><p><br></p><p>I don't either. Guess Paul holds AMD in poor regard for some reason…</p>

      • seapea

        04 January, 2018 - 3:45 am

        <blockquote><a href="#234686"><em>In reply to seapea:</em></a></blockquote><p>I stand corrected, one of the problems was CPU agnostic.</p><p>still don't get the joke though.</p><p><br></p>

    • jpwalters

      Premium Member
      03 January, 2018 - 1:00 pm

      <blockquote><a href="#234664"><em>In reply to paul-thurrott:</em></a></blockquote><p><br></p><p>Probably should just respect this as a simple joke — but I see a bit of tom foolery here Paul.</p><p><br></p><p>I don't think it's wise to hold longstanding animus towards AMD for their previous blunders (Athlon, Bulldozer, etc.) — as much as it may be justified — much in the same way you point out that Microsoft should be free to make it's own chain of blunders without customers holding similar animus (Windows Mobile, Band, Groove). </p><p><br></p><p>I think a more consistent philosophy with <em>impartiality</em> is caveat emptor! The "buyer" alone is responsible for checking the quality and suitability of goods before purchase is made. I think in the past that was what you were trying to promote — we should all be responsible purchasers. </p><p><br></p><p>It's funny the reason I picked Microsoft for it's Band, it's Phone, or AMD for it's Ryzen 7 processor is probably similar. I want to financially reward the underdog to disrupt a market that doesn't favor them. It's also why I bit on the OnePlus 5T, BTW. </p><p><br></p><p>Much of Intel's world of hurt in my opinion in a sense is the karma deficit caused by the Andy Grove "Only the paranoid survive" mentality. For years Intel was a very oppressive company, dishing out 5% upgrades year after year, forcing new chipsets uncessarily at customer's expense. It made them very rich and made them command a heavy lead over time. We bought their chips because we had to. Now we don't. AMD represents at least a compelling alternative — and we should acknowledge that wholeheartedly. As an aside Brad had bad luck with his ThreadRipper rig — but think it would be worthy to consider an Alienware or some other machine for review ought to be on the radar, if not for self enlightenment, perhaps for impartiality.</p><p><br></p><p><br></p><p><br></p><p><br></p><p><br></p><p><br></p><p><br></p><p><br></p>

  • Polycrastinator

    03 January, 2018 - 8:38 am

    <p>It'll be interesting to see whether Microsoft et al just decide to sandbox the kernel everywhere, regardless of the processor that the OS is running on: that this fix is apparently being applied to ARM architectures too would suggest that, in which case AMD gets no benefit from this. Kind of a shame, a 30% hit might bring AMD's single threaded performance in line with Intel's.</p>

  • Nic

    Premium Member
    03 January, 2018 - 9:45 am

    <p>This is going to be really bad. Database admins are ready to storm Intel.</p>

    • matsan

      03 January, 2018 - 10:03 am

      <blockquote><a href="#234683"><em>In reply to Nic:</em></a></blockquote><p>Developers will probably join them. I will.</p>

  • ianceicys

    Premium Member
    03 January, 2018 - 10:29 am

    <p>This is really really bad. Would love to hear Paul or Brad chime in on this. Opportunity for ARM?</p><p><br></p><p>https://news.ycombinator.com/item?id=16060855</p&gt;

    • John Scott

      03 January, 2018 - 11:30 am

      <blockquote><a href="#234726"><em>In reply to ianceicys:</em></a></blockquote><p>As I read it, some ARM CPU's are also affected? </p>

    • Nic

      Premium Member
      03 January, 2018 - 12:04 pm

      <blockquote><a href="#234726"><em>In reply to ianceicys:</em></a></blockquote><p>I don't see how this would help ARM as performance on that platform would still be not good enough for server hardware, and the same for laptops. The emulation is going to be expensive for those CPUs for laptops as well. I still think you'll get better perf out of an i5 (or even just go to AMD).</p>

  • wunderbar

    Premium Member
    03 January, 2018 - 10:42 am

    <p>AMD should be hitting the marketing on this super hard, as soon as possible. This bug is specific to skylake and newer intel processors (on the consumer side. there are a bunch of Xeons affected as well), AMD handles the kernel memory different and isn't affected by this.</p>

    • John Scott

      03 January, 2018 - 11:36 am

      <blockquote><a href="#234730"><em>In reply to wunderbar:</em></a> Completely agree, but interesting that this Intel issue is probably a big feature that has placed it ahead of AMD in terms of speed. I've read it goes as far back as Hazwell CPU's possibly more. Only the beginning of Intel's problems I think. </blockquote><p><br></p>

      • wunderbar

        Premium Member
        03 January, 2018 - 11:51 am

        <blockquote><a href="#234746"><em>In reply to John_Scott:</em></a></blockquote><p>While saying it's hard to speculate until more concrete info comes out, I'm going to do it anyway and make a guess based on what I'm reporting that this might go all the way back to the initial Core processors. That was the last time Intel had a completely new architecture. Everything since has been an iterative upgrade based on the same fundamentals.</p><p><br></p><p>I could be wrong, it's hard to tell with very little in the way of official word yet. We have the general idea of what the problem is, but without any technical documentation released we don't really know yet.</p>

    • Jules Wombat

      04 January, 2018 - 1:19 pm

      <blockquote><a href="#234730"><em>In reply to wunderbar:</em></a></blockquote><p>AMD and ARM chips are also impacted by Specter &lt;sp&gt; as well, this is NOT just an Intel issue</p>

  • John Scott

    03 January, 2018 - 11:34 am

    <p>First management engine and now this. I have to wonder how this will affect Intel. From what I have read so far its sort of up in the air how significant a hit on performance this will be. Certainly the CPU is a big hardware expense in terms of hardware in a PC. Also had read some ARM CPU's could also be affected. </p>

    • wunderbar

      Premium Member
      03 January, 2018 - 12:20 pm

      <blockquote><a href="#234745"><em>In reply to John_Scott:</em></a></blockquote><p>It's hard not to get super technical when trying to parse this, but the bug seems to be in a feature where intel CPU's guess what micro code needs to be loaded next, and loads it before the ask, so it's ready to be executed right away. there's a memory leak in that function which causes the issue. AMD is not affected by this because they don't have that technology in their processors.</p><p><br></p><p>that indicates that the types of systems that will see the biggest impact will be highly sequential, predicable tasks. Things like highly virtualized environments, database actions, etc. More "unpredictable" workfolows will be less affected.</p><p><br></p><p>If that does turn out to be the case, the average home PC won't see much of an impact at all. It'll be server farms and datacenters that see the biggest impact.</p>

  • Polycrastinator

    03 January, 2018 - 12:03 pm

    <p>My big concern here is that this sounds like a fairly drastic fix that will need to be applied to the OS. Will it be bug free? Will it break software?</p>

  • jimchamplin

    Premium Member
    03 January, 2018 - 1:23 pm

    <p>NOT looking forward to this. I’m a buyer of used hardware and this is going to affect me for years longer than people who can afford new machines. I can only hope that my use – light desktop work, gaming, and non-pro development – isn’t overly drained.</p>

    • wunderbar

      Premium Member
      03 January, 2018 - 1:30 pm

      <blockquote><a href="#234785"><em>In reply to jimchamplin:</em></a></blockquote><p>the development stuff might be a bit, but from what it looks like the real world impact on a typical desktop PC is basically zero. they don't do the types of workloads that are affected by this.</p>

      • jimchamplin

        Premium Member
        04 January, 2018 - 1:54 am

        <blockquote><a href="#234788"><em>In reply to wunderbar:</em></a></blockquote><p>I hope you're right. For me, $300 for a used workstation and a last-gen video card was a big expenditure. I'd hate if the "killer" rig I just got suddenly turned into crap for the games I play just because of this.</p>

  • wunderbar

    Premium Member
    03 January, 2018 - 1:32 pm

    <p>So, this keeps getting more wild. There's no confirmation that it actually goes back this long, but the feature that this bug is in was first introduced in the Pentium Pro Processor. In 1995. It's called speculative execution and it's designed for the processor to predict what task is next and load that into memory before being asked.</p><p><br></p><p>Again, the bug might not go back quite that far because I'm sure that the speculative execution piece has evolved over the years, but the fundamentals are the same so it is entirely possible that this is a bug that has existed in Intel silicon since 1995.</p>

    • matsan

      03 January, 2018 - 1:53 pm

      <blockquote><a href="#234790"><em>In reply to wunderbar:</em></a></blockquote><p>If it goes back more than one year it would be a disaster, all of the computers in use needs to be replaced or run with crippled performance. </p><p>I guess the Linux guys will be first out of the gates and we'll see the performance penalty then. </p>

  • ianceicys

    Premium Member
    03 January, 2018 - 10:45 pm

    <p><span style="color: rgb(61, 61, 61);">Houston, we have a problem.</span></p><p><br></p><p><span class="ql-cursor"></span>https://meltdownattack.com/</p><p><br></p><p>Intel screwed everyone. Microsoft Azure just lost billions and even 5% overhead blows Green/Carbon neutral Datacenter benchmarks to smitherians. Amazon AWS just lost billions, so did Google's GCP.</p><p><br></p><p>Thougths on Meltdown?</p><p><br></p><p>https://www.nytimes.com/2018/01/03/business/computer-flaws.html</p><p><br></p><p><span style="color: rgb(61, 61, 61);">Chipmakers like Intel will have to do a full recall– unclear if there's even manufacturing capacity for this– OR customers will have to wait for secure processors to reach the market, and do their own risk analysis as to whether they need to swap out all affected hardware.</span></p><p><br></p><p>Reading unprotected memory is a huge issue for cloud providers….things like SSNs in memory, Credit Cards are not required to be encrypted in memory, passwords, it's truly frightening.</p><p><br></p><p>“Whereas Meltdown is an&nbsp;<strong>urgent</strong>&nbsp;crisis, Spectre affects virtually all fast microprocessors,” Mr. Kocher said. An emphasis on speed while designing new chips has left them vulnerable to security issues, he said.</p><p><br></p><p>“<strong>We’ve really screwed up</strong>,” Mr. Kocher said. “There’s been this desire from the industry to be as fast as possible and secure at the same time. Spectre shows that you cannot have both.”</p>

    • Polycrastinator

      04 January, 2018 - 8:37 am

      <blockquote><a href="#234910"><em>In reply to ianceicys:</em></a></blockquote><p>A full recall? That's hilarious. Always someone there to be breathlessly panicked. This may turn out to be bad, but that's absurd.</p>

      • ianceicys

        Premium Member
        05 January, 2018 - 12:30 pm

        <blockquote><a href="#234964"><em>In reply to Polycrastinator:</em></a></blockquote><p>Oh the fun is really hitting us in both aws and azure now due to the 'patch'.</p><p>After the AWS and Azure forced reboot for Meltdown, Multi-MILLION CONSUMER FACING Service is seeing a pretty significant time drift on servers (~7 seconds per minute). We've hacked a scheduled job to continually sync time to avoid problems with API timestamps causing failures. We've reported an incident to both AWS and Azure and this IS a known issue. Latest response: Thanks for waiting. I advised you that there is currently a known issue where instances in M4 and R4 families show continuous time drift and a high severity investigation is being carried out. At this stage the only workaround is to change the instance type to C family such as C4.Xlarge.</p><p>Same thing from Azure with the recommendation being to move to&nbsp;<span style="color: rgb(34, 34, 34);">Standard_F64s_v2.</span></p><p><span style="color: rgb(34, 34, 34);">This is gonna be pretty expensive pretty fast…</span></p><p><span style="color: rgb(34, 34, 34);">m4 ~&nbsp;</span><span style="color: rgb(51, 51, 51);">$0.062 per Hour</span></p><p><span style="color: rgb(51, 51, 51);">c4.XL ~ $0.126 per Hour</span></p>

  • seapea

    04 January, 2018 - 3:43 am

    <p>how did this story got so blown out from what is actually true?</p><p>what were the magic words that made so many people lose their cognitive ability?</p><p><br></p>

  • JimP

    04 January, 2018 - 8:26 am

    <p>Not so fast. AMD has a similar security vulnerability called "spectre". </p><p><br></p><p>www.extremetech.com/computing/261439-spectre-meltdown-new-critical-security-flaws-explored-explained</p>

  • JimP

    04 January, 2018 - 9:15 am

    <p>&lt;quote&gt;</p><p>Protecting a Windows PC is complicated right now, and there’s still a lot of unknowns. Microsoft, Google, and Mozilla are all issuing patches for their browsers as a first line of defence. Firefox 57 (the latest) includes a fix, as do the latest versions of Internet Explorer and Edge for Windows 10. Google says it will roll out a fix with Chrome 64 which is due to be released on January 23rd. Apple has not commented on how it plans to fix its Safari browser or even macOS. Chrome, Edge, and Firefox users on Windows won’t really need to do much apart from accept the automatic updates to ensure they’re protected at the basic browser level.</p><p>&lt;/quote&gt;</p><p><br></p><p>One wonders how the JavaScript can break out of its sandbox to access kernel memory in the first place.</p><p><br></p><p>www.theverge.com/2018/1/4/16848976/how-to-protect-windows-pc-meltdown-security-flaw</p>

  • ianceicys

    Premium Member
    05 January, 2018 - 12:29 pm

    <p>Oh the fun is really hitting us in both aws and azure now due to the 'patch'. </p><p><br></p><p>After the AWS and Azure forced reboot for Meltdown, Multi-MILLION CONSUMER FACING Service is seeing a pretty significant time drift on servers (~7 seconds per minute). We've hacked a scheduled job to continually sync time to avoid problems with API timestamps causing failures. We've reported an incident to both AWS and Azure and this IS a known issue. Latest response: Thanks for waiting. I advised you that there is currently a known issue where instances in M4 and R4 families show continuous time drift and a high severity investigation is being carried out. At this stage the only workaround is to change the instance type to C family such as C4.Xlarge. </p><p><br></p><p>Same thing from Azure with the recommendation being to move to <span style="color: rgb(34, 34, 34);">Standard_F64s_v2. </span></p><p><br></p><p><span style="color: rgb(34, 34, 34);">This is gonna be pretty expensive pretty fast…</span></p><p><br></p><p><span style="color: rgb(34, 34, 34);">m4 ~ </span><span style="color: rgb(51, 51, 51);">$0.062 per Hour</span></p><p><span style="color: rgb(51, 51, 51);">c4.XL ~ $0.126 per Hour</span><span style="color: rgb(51, 51, 51); background-color: rgb(247, 247, 247);"> </span></p>

    • offTheRecord

      05 January, 2018 - 1:24 pm

      <blockquote><a href="#235391"><em>In reply to ianceicys:</em></a></blockquote><p>Send Intel the bill? :-)</p>

      • ianceicys

        Premium Member
        05 January, 2018 - 3:54 pm

        <blockquote><a href="#235401"><em>In reply to offTheRecord:</em></a></blockquote><p>gladly. Lawyers love these types of things. We have 3 year contracts for Guaranteed Performance and well guess what what was a m4 a week a go is no longer an m4. Amazon and Microsoft lawyers are going to have a field day going after intel….but as an aws and azure customer we sure as heck aren't paying. </p><p><br></p><p>For illustrative purposes: </p><p><br></p><p>1/2/2018 – 1000 instances for 24 hours = ($62/hr x 24) = $1,488</p><p>1/5/2018 – 1000 instances for 24 hours now cost: ($126/hr x 24) = $3,024</p><p><br></p><p>Someone….cough cough cough intel is gonna be paying the $1,536 difference per day that's for sure….we aren't.</p><p><br></p><p>Lawyers love contract disputes.</p>

  • ianceicys

    Premium Member
    05 January, 2018 - 12:39 pm

    <p>Consider if a major car brake manufacturer discovered that there was a design flaw in the brakes that prevented them from functioning in certain situations. It'd be facing multiple lawsuits by now whereas Intel is going with "our chips are the most secure ever" line.</p>

Windows Intelligence In Your Inbox

Sign up for our new free newsletter to get three time-saving tips each Friday

"*" indicates required fields

This field is for validation purposes and should be left unchanged.

Thurrott © 2024 Thurrott LLC