From nobody Thu Jul 27 22:03:00 2023 X-Original-To: freebsd-security@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4RBlBb4gCnz4pw3y for ; Thu, 27 Jul 2023 22:03:03 +0000 (UTC) (envelope-from grarpamp@gmail.com) Received: from mail-ua1-x92c.google.com (mail-ua1-x92c.google.com [IPv6:2607:f8b0:4864:20::92c]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1D4" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4RBlBZ4qkKz3DNg for ; Thu, 27 Jul 2023 22:03:02 +0000 (UTC) (envelope-from grarpamp@gmail.com) Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20221208 header.b=Tzu7fo5e; spf=pass (mx1.freebsd.org: domain of grarpamp@gmail.com designates 2607:f8b0:4864:20::92c as permitted sender) smtp.mailfrom=grarpamp@gmail.com; dmarc=pass (policy=none) header.from=gmail.com Received: by mail-ua1-x92c.google.com with SMTP id a1e0cc1a2514c-79a46f02d45so654706241.0 for ; Thu, 27 Jul 2023 15:03:02 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1690495381; x=1691100181; h=to:subject:message-id:date:from:references:in-reply-to:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=xndcJ20Oxs52Cr+2btt9Re7elVeXsZTHMhoySR7u7Wc=; b=Tzu7fo5eav7jEbHwUjG4qQnpU8BmrBHg4uz8r8QyNqtRAzd0QNoTsXqr8HECC0SZzS OrFb6QOTL0Zei5do1Tdavn7cOIFBMKpBVzaBSBwLO99LG2AYDa6VPYQZYCaMrUtCRqkq /Gi01OJaUCmfeePzwy53jq57mpBSq5wxcWPo41jCuV7Hjg0ebzbTogDYBqfM3GTE8WoF Mj75B1q+0uGJj7Qnu1DJdQ0UChmUNxfcZz0h33PGylgzivQubJZVnzl0Ju7wve+b+e+x +xJ/XtzY5vaRYZhn+4+V3DTFWQ3IugVcW+sceFvH328aWRJ7Gxytv36+PLdmdm7+bRz2 m0rw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20221208; t=1690495381; x=1691100181; h=to:subject:message-id:date:from:references:in-reply-to:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=xndcJ20Oxs52Cr+2btt9Re7elVeXsZTHMhoySR7u7Wc=; b=Z9MG/noGs1tmFFlFDvQGoRopF8JN/rycZvx8tw1pPMm2fJ7Ez0aNm0Kc7plvQou1el KxRo7niWBa8JGCuNQ+gYCT9QDTqUz+M4iS3JhESrGe9WPdlAG8PRNr3gDT2aTFIk/U6z nYXKrRkSwn1/XaazokqYIjLFF6dOHIUw3zW8EoFz6unFckS1pUD3zPqJs1WUA5JDzD1L 21wYHyfgSkMVmUfkFa4CEHD79ShLuWtmxAUYrGQkbI2QXfRUYWhwMiHHwCBlt28AZUX2 UOYcQRMoAaf4cwchrBe6MB64CbdGTx+Fsi/P8RaZ6FB0riOGFbDQ4r2bCwlId9YUvJip zTXQ== X-Gm-Message-State: ABy/qLYotYTEQNiYTQC5KBCtH9u9xMH8xaYLV44k+WlqEdhqV5TH0T+Y fg5CZ1n20yXFT+bjl8DkEeX7lH5pmL6tGpZ3uY+HMTUnjk2+ybQm X-Google-Smtp-Source: APBJJlG0W15Hz8gjdFLIEV/WHmU8Qs6roTizsRdLsLKlizGwfIbbF3u0ymXsUvQv/bYqeQVsCDeRDdcX1rBUv0oUhNc= X-Received: by 2002:a67:eb46:0:b0:443:6c11:fc5b with SMTP id x6-20020a67eb46000000b004436c11fc5bmr618779vso.14.1690495381535; Thu, 27 Jul 2023 15:03:01 -0700 (PDT) List-Id: Security issues List-Archive: https://lists.freebsd.org/archives/freebsd-security List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-security@freebsd.org X-BeenThere: freebsd-security@freebsd.org MIME-Version: 1.0 Received: by 2002:a59:af52:0:b0:3ed:209f:4d2d with HTTP; Thu, 27 Jul 2023 15:03:00 -0700 (PDT) In-Reply-To: <1958561.iAkVjBisvr@ravel> References: <20230726214636.yblem2s4sgapb6cw@mutt-hbsd> <1958561.iAkVjBisvr@ravel> From: grarpamp Date: Thu, 27 Jul 2023 18:03:00 -0400 Message-ID: Subject: Re: Zenbleed To: freebsd-security@freebsd.org Content-Type: text/plain; charset="UTF-8" X-Spamd-Result: default: False [-3.54 / 15.00]; NEURAL_HAM_SHORT(-0.99)[-0.989]; NEURAL_HAM_MEDIUM(-0.97)[-0.970]; NEURAL_HAM_LONG(-0.58)[-0.578]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20221208]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; MIME_GOOD(-0.10)[text/plain]; ARC_NA(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[2607:f8b0:4864:20::92c:from]; MLMMJ_DEST(0.00)[freebsd-security@freebsd.org]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; FROM_EQ_ENVFROM(0.00)[]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; DKIM_TRACE(0.00)[gmail.com:+]; MID_RHS_MATCH_FROMTLD(0.00)[]; RCVD_TLS_LAST(0.00)[]; FREEMAIL_FROM(0.00)[gmail.com]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[freebsd-security@freebsd.org]; RCPT_COUNT_ONE(0.00)[1]; TO_DN_NONE(0.00)[]; RCVD_COUNT_THREE(0.00)[3]; DWL_DNSWL_NONE(0.00)[gmail.com:dkim] X-Rspamd-Queue-Id: 4RBlBZ4qkKz3DNg X-Spamd-Bar: --- On 7/27/23, Olivier Certner wrote: > https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/commit/?id=0bc3126c9cfa0b8c761483215c25382f831a7c6f That commit is labeled for 17h (z1/z1+/z2). The one below was made less than one day prior for 19h (z3/z3+/z4), so it likely contains some mitigation. Try loading it to those platforms and testing the exploit against them to see. b250b32ab1d044953af2dc5e790819a7703b7ee6 https://en.wikipedia.org/wiki/List_of_AMD_CPU_microarchitectures Microcode firmware is literally TOP-SECRET//SCI weaponized magic packet voodoo silo black team stuff, thus updates usually don't get consistent glossy docs publication coordination, let alone exactly what all is being applied to which chips by which releases. More interesting solutions are out there for you to start and join... #OpenFabs , #OpenHW , #OpenAudit , #FormalVerification , #CryptoCrowdFunding , #OpenTrust , #GuerrillaNets , #P2PFiber , #GNURadioRF , #PrivacyCoins , #DropGangs , ...