The Cost of SELinux, Audit, & Kernel Debugging

Written by Michael Larabel in Software on 13 August 2009 at 01:43 PM EDT. Page 6 of 6. 29 Comments.

dcraw slowed down when it came to using kernel-debug.

It is the same story with SQLite.

Ending off our testing, the kernel-debug package led to a massive performance drop when testing the PostgreSQL performance using pgbench. Disabling SELinux / Audit led to about a 5% gain.

Well, the area where SELinux / Audit and the debugging-enabled kernel really impacted the performance was with the disk and database tests (along with Apache). In the other Linux desktop benchmarks, there was a smaller margin, with some being more noticeable than the others. Disabling SELinux and Audit will certainly improve the performance of Fedora, while running a kernel with all of the debugging code enabled will cost you quite a bit in the way of performance. For developers, having this kernel debugging support is important, while for security-oriented users, having Security Enhanced Linux and system-call auditing support is important and worth the low cost, even with Intel Atom hardware.

If you enjoyed this article consider joining Phoronix Premium to view this site ad-free, multi-page articles on a single page, and other benefits. PayPal or Stripe tips are also graciously accepted. Thanks for your support.


Related Articles
Intel Xeon Max Sees Some Performance Gains For OpenVINO & ONNX With Linux 6.9
Linux 6.9 Drives AMD 4th Gen EPYC Performance Even Higher For Some Workloads
Intel Core Ultra "Meteor Lake" Yields Faster Performance With Linux 6.9
Google Cloud's C3D Instances Provide Strong Performance Value For PingCAP's TiDB
Linux 6.9 Features: DM VDO, AMD Preferred Core, Intel FRED & Larger Console Fonts
LLVM Clang Shows Off Great Performance Advantage On NVIDIA GH200's Neoverse-V2 Cores
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.