Announcement

**leonmaxx** · 11 September 2022, 02:49 PM

Michael

from the likes of the Spectre-A15 through A78

Cortex?

**Michael** · 11 September 2022, 03:32 PM

Originally posted by leonmaxx View Post

Michael

Cortex?

Whoops, lol. yes. Thanks.

**tunnelblick** · 11 September 2022, 03:41 PM

Does that affect M1, too? Especially considering the benchmarks we saw for the Asahi Linux project on this site?

**Aryma** · 11 September 2022, 03:51 PM

do we really need this mitigation for normal user who only use youtube and steam and maybe some website

**gosh000** · 11 September 2022, 04:06 PM

Originally posted by Aryma View Post

do we really need this mitigation for normal user who only use youtube and steam and maybe some website

it depends on attitude. For me 20% is nothing for better security. On the other hand cloud providers offer Arm servers as well.

**fitzie** · 11 September 2022, 04:54 PM

Originally posted by Aryma View Post

do we really need this mitigation for normal user who only use youtube and steam and maybe some website

If your system runs untrusted code, then yes, there is a danger. This includes javascript, so it is possible that just visiting a website could expose your system. There is some work being put in to web browsers to address that exposure. That being said, I run with mitigations=off, which disables all of these workarounds. maybe I'll turn them on when I get a faster box.

**Dawn** · 11 September 2022, 06:46 PM

Originally posted by tunnelblick View Post

Does that affect M1, too? Especially considering the benchmarks we saw for the Asahi Linux project on this site?

No. Apple does not use ARM core IP and instead develops their own microarchitectures.

**Old Nobody** · 11 September 2022, 06:55 PM

Originally posted by Aryma View Post

do we really need this mitigation for normal user who only use youtube and steam and maybe some website

No. There's no known drive-by spectre-javascript-cryptotrojan attack or something similar.
But the kernel devs also have to take care of all the big and small hosting providers. I would not bet they would all explicitly set a "mitigations

n" kernel parameter, and exploiting this Spectre/Meltdown stuff to take over a data center is not that hard.

**pWe00Iri3e7Z9lHOX2Qx** · 11 September 2022, 11:53 PM

Originally posted by Dawn View Post

No. Apple does not use ARM core IP and instead develops their own microarchitectures.

I feel like this response could easily be misconstrued.

Apple is one of several ARM architecture license holders. As Dawn said, they develop their own cores targeting the ARM ISA. Those cores might not be vulnerable to this particular Spectre variant, but all of Apple's designs aren't magically immune to these new speculative execution / side channel / timing attacks that have appeared over the last half decade (time flies doesn't it!). It takes several years for new CPU designs to make it to market, and we've basically been witnessing a game of whack-a-mole over the last few years as new designs have been trying to harden against these attacks.

Apple has had to release software mitigations.

About speculative execution vulnerabilities in ARM-based and Intel CPUs - Apple Support

https://support.apple.com/en-us/HT208394

X86 has gotten the lion's share of research for these types of attacks, but more is definitely needed on the ARM side.

https://misc0110.net/files/applespectre_dimva22.pdf

Announcement

Linux 6.1 Adding Option To Disable Spectre-BHB On Arm Due To "Great Impact" On Performance

Linux 6.1 Adding Option To Disable Spectre-BHB On Arm Due To "Great Impact" On Performance

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment