From nobody Thu Jul 27 15:55:14 2023 X-Original-To: freebsd-security@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4RBb2F4pmpz4phyC for ; Thu, 27 Jul 2023 15:55:17 +0000 (UTC) (envelope-from mike@sentex.net) Received: from smarthost1.sentex.ca (smarthost1.sentex.ca [IPv6:2607:f3e0:0:1::12]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smarthost1.sentex.ca", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4RBb2D73cnz45pF for ; Thu, 27 Jul 2023 15:55:16 +0000 (UTC) (envelope-from mike@sentex.net) Authentication-Results: mx1.freebsd.org; none Received: from pyroxene2a.sentex.ca (pyroxene19.sentex.ca [199.212.134.19]) by smarthost1.sentex.ca (8.17.1/8.16.1) with ESMTPS id 36RFtDY1030062 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=FAIL); Thu, 27 Jul 2023 11:55:13 -0400 (EDT) (envelope-from mike@sentex.net) Received: from [IPV6:2607:f3e0:0:4::29] ([IPv6:2607:f3e0:0:4:0:0:0:29]) by pyroxene2a.sentex.ca (8.16.1/8.15.2) with ESMTPS id 36RFtCuN081885 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO); Thu, 27 Jul 2023 11:55:12 -0400 (EDT) (envelope-from mike@sentex.net) Message-ID: Date: Thu, 27 Jul 2023 11:55:14 -0400 List-Id: Security issues List-Archive: https://lists.freebsd.org/archives/freebsd-security List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-security@freebsd.org X-BeenThere: freebsd-security@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.13.0 Subject: Re: Zenbleed Content-Language: en-US To: Shawn Webb , 0x1eef <0x1eef@protonmail.com> Cc: "freebsd-security@freebsd.org" References: <20230726214636.yblem2s4sgapb6cw@mutt-hbsd> From: mike tancsa In-Reply-To: <20230726214636.yblem2s4sgapb6cw@mutt-hbsd> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Scanned-By: MIMEDefang 2.84 X-Rspamd-Queue-Id: 4RBb2D73cnz45pF X-Spamd-Bar: ---- X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:11647, ipnet:2607:f3e0::/32, country:CA] X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated On 7/26/2023 5:46 PM, Shawn Webb wrote: > On Wed, Jul 26, 2023 at 08:34:56PM +0000, 0x1eef wrote: >> Hello, >> >> I was curious if there are plans to apply the "chicken bit" >> workaround for the Ryzen line of processors. A firmware >> update is not scheduled to be released until Nov or Dec >> at the earliest. Thanks. > For those that would like to test if their systems are affected, this > proof-of-concept was reported to work on at least one system: > > https://git.hardenedbsd.org/shawn.webb/zenbleed/-/tree/shawn.webb/bsd/main > > Building it depends on gmake and nasm. You'll want to be on the > shawn.webb/bsd/main branch. Thanks for that. Is there a way to compile on RELENG_12 or is it 13 only ? % gmake cc -O0 -ggdb3 -march=znver2   -c -o pattern.o pattern.c pattern.c:15:10: fatal error: 'sys/sysinfo.h' file not found #include          ^~~~~~~~~~~~~~~ 1 error generated. gmake: *** [: pattern.o] Error 1     ---Mike