Is Odin Automation environment affected by
CVE-2017-5754 also known as "Spectre" and "Meltdown" security vulnerabilities?
These vulnerabilities are not related to Odin Automation directly, they are addressed on the OS level. Please follow appropriate guideline for your OS vendors:
RedHat Bugzilla links:
How do I know if my system vulnerable or not?
You can download and run the spectre-meltdown-checker.sh script in a node/VM from: https://github.com/speed47/spectre-meltdown-checker
How the fix affects Odin Automation platform performance?
The updated kernel packages provide software mitigation for the issue at a cost of potential performance penalty in "system call" operations, so performance degradation effects will vary based on the number of syscalls a workload is making.
Expected performance degradation measured on Xeon E5 CPU series:
- OA MN/DB nodes (provisioning, resource usage collection) up to 10%
- UI nodes (control panels) - up to 5%
- BA APP/DB nodes (daily billing) - up to 5%
- Service nodes (Shared Hosting, etc) - not measured, depends on service