Can security updates affect behavior?

If none of the more specific forums is the right place to ask

Can security updates affect behavior?

Postby bester69 » 2019-01-27 15:49

Hi,
Ive a small doubt, Can Security Updates alter beahavior or performance in any way?.. I say this cos Ive some few xorg packages holded, with the update only affecting security (deb9u1 ready to update--> deb9u5), but I hold them cos I had the feeling thoses updates downgraded in some way the feeling performance with the desktop experience (I felt it like more kind of laggy).

I know security updates are suppose to only affect the code section relative to the security patch, but sometimes I think they might add extra code to fix that hole. :? (example Spectre or Meltdown??)
bester69 wrote:There is nothing to install in linux, from time to time i go to google searching for something fresh to install in linux, but, there is nothing
User avatar
bester69
 
Posts: 1285
Joined: 2015-04-02 13:15

Re: Can security updates affect behavior?

Postby Head_on_a_Stick » 2019-01-27 16:06

I'm beginning to think that you are deliberately winding us up with these questions — how many times do I have to tell you to run an objective benchmark instead of asking for opinions?

Try hardinfo, that has some (very) basic benchmarks.

The Phoronix test suite is probably the best but it does require some setting up, details available from your favourite search engine...

Having said that though, you absolutely do need to update Xorg, the vulnerability was serious and Xorg is a gaping security hole at the best of times. If there is a performance hit then I would strongly recommend sucking it up and taking it like a man.
User avatar
Head_on_a_Stick
 
Posts: 8900
Joined: 2014-06-01 17:46
Location: /dev/chair

Re: Can security updates affect behavior?

Postby p.H » 2019-01-27 16:41

bester69 wrote:Can Security Updates alter behavior or performance in any way?

Yes, of course.
They can degrade performance by adding extra checks or steps, or disabling insecure optimizations. Fixes for Spectre/Meltdown are a known example.
They can introduce regressions.
They can disable features which are inherently insecure and cannot be fixed.
They can provide a new version of a software which provides many other changes than the security fixes because the current version is not maintained any more by upstream and it would be too hard to backport the security fixes (e.g. Firefox and Thunderbird).
p.H
 
Posts: 772
Joined: 2017-09-17 07:12

Re: Can security updates affect behavior?

Postby GarryRicketson » 2019-01-27 16:50

Just a comment here, well 2 or 3, I kind of think the OP is playing games with us as well, just to see what people say, but also, NOT using the security update for the Xorg problem, could also affect behaviour, in a very negative way, IE: the system may be compromised, and that definitely could slow down performance.
In cases where it is a Frankendebian, there is no telling what might be causing the performance problems, and security updates could have unpredictable affects.
User avatar
GarryRicketson
 
Posts: 5300
Joined: 2015-01-20 22:16
Location: Durango, Mexico

Re: Can security updates affect behavior?

Postby stevepusser » 2019-01-27 21:59

You can also do various benchmarks on the command line with sysbench.

Hard numbers talk, vague feelings walk.
The MX Linux repositories: Backports galore! If we don't have something, just ask and we'll try--we like challenges. New packages: Flightgear 2018.2.2, 4.20.7 kernel, wine-staging 4.0.2, Strawberry 0.5.2, Calibre 3.39.1, Pale Moon 28.4.0
User avatar
stevepusser
 
Posts: 10535
Joined: 2009-10-06 05:53

Re: Can security updates affect behavior?

Postby bester69 » 2019-01-28 13:20

stevepusser wrote:You can also do various benchmarks on the command line with sysbench.

Hard numbers talk, vague feelings walk.

I dont know, I dont trust very much in benchmarks cos It's suppose you wont see any appreciable differences in the results (security updates are suppose to be minor changes, so I guess they would give 95% same performance), but changing code might affect in some unpredictable annoying way , I guess. Thats why I tend to trust more in my feelings experience as for performance experience..

Anyways, thought Im not very pro benchmarks I will give them a chance.

I runned
sysbench --test=cpu --cpu-max-prime=10000 run > beforeUpdates.txt
Code: Select all
sysbench 0.4.12:  multi-threaded system evaluation benchmark

Running the test with following options:
Number of threads: 1

Doing CPU performance benchmark

Threads started!
Done.

Maximum prime number checked in CPU test: 10000


Test execution summary:
    total time:                          25.0009s
    total number of events:              10000
    total time taken by event execution: 24.9904
    per-request statistics:
         min:                                  2.35ms
         avg:                                  2.50ms
         max:                                 20.23ms
         approx.  95 percentile:               3.06ms

Threads fairness:
    events (avg/stddev):           10000.0000/0.00
    execution time (avg/stddev):   24.9904/0.00

sysbench --test=cpu --cpu-max-prime=10000 run > afterUpdates.txt
Code: Select all
sysbench 0.4.12:  multi-threaded system evaluation benchmark

Running the test with following options:
Number of threads: 1

Doing CPU performance benchmark

Threads started!
Done.

Maximum prime number checked in CPU test: 10000


Test execution summary:
    total time:                          25.2646s
    total number of events:              10000
    total time taken by event execution: 25.2566
    per-request statistics:
         min:                                  2.35ms
         avg:                                  2.53ms
         max:                                 12.94ms
         approx.  95 percentile:               3.03ms

Threads fairness:
    events (avg/stddev):           10000.0000/0.00
    execution time (avg/stddev):   25.2566/0.00


So According theses results, It's suppose to be OK to apply upgrades.
bester69 wrote:There is nothing to install in linux, from time to time i go to google searching for something fresh to install in linux, but, there is nothing
User avatar
bester69
 
Posts: 1285
Joined: 2015-04-02 13:15


Return to General Questions

Who is online

Users browsing this forum: No registered users and 8 guests

fashionable