Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Troubleshooting

 

Problem

This technical note informs administrators how to review the potential change to search performance in JSA 7.3.1 Patch 4 when CVE-2017-5754 (Variant 3/Meltdown) is enabled on JSA appliances.

Symptom

Administrators who install JSA 7.3.1 Patch 4 and enable CVE-2017-5754 (Variant 3/Meltdown) can expect performance degradation after they enable the remediation for the vulnerability. A performance assessment summary is available in the JSA 7.3.1 Patch 4 SFS Release Notes.

Environment

JSA 7.3.1 Patch 4 appliances where the mitigation for CVE-2017-5754 (Variant 3/Meltdown) is enabled.

Resolving The Problem

Administrators who upgrade to JSA 7.3.1 Patch 4 have the option to enable CVE-2017-575 (Variant 3/Meltdown) in their deployment during installation or as a post-installation procedure. To assess the change in performance, administrators can run common searches before they install JSA 7.3.1 Patch 4 to establish a baseline of common search durations. The baseline search durations can be compared to the results when the remediation for CVE-2017-5754 (Variant 3/Meltdown) is enabled.

Before you complete the upgrade to JSA 7.3.1 Patch 4, log in to the JSA Console.

  1. Click the Log Activity tab.
  2. Run a search.
  3. When the search completes the Duration field defines how long the search took to complete. To view the duration for each appliance in the deployment, click More Details.

    For more information, see Figure 1.

    Figure 1: Search Duration
    Search Duration
  4. Record these values or take a screen capture of the Managed Search Results interface as it includes the overall search duration.
    1. Log Activity > Search > Managed Search Results.

    2. Network Activity > Search > Managed Search Results.

  5. Install JSA 7.3.1 Patch 4 and enable the mitigation for CVE-2017-5754 Variant 3/Meltdown. For full instructions, see the JSA 7.3.1 Patch 4 SFS Release Notes.
  6. Click the Log Activity tab.
  7. Before you run your search, select one of the following options to ensure you are not using cached search results:
    • Select Search > Managed Search Results and delete the saved search result.

    • Alter your search time frame by one minute or more.

  8. Compare the Duration field of the completed search the with the mitigation for CVE-2017-5754 (Variant 3/Meltdown) enabled. To view the duration for each appliance in the deployment, click More Details.

    For more information, see Figure 2.

    Figure 2: Search Duration
    Search Duration

    For information on how to install JSA 7.3.1 Patch 4, enable or disable the mitigation for CVE-2017-5754 Variant 3/Meltdown, or review the performance assessment summary, see the JSA 7.3.1 Patch 4 SFS Release Notes.