From owner-freebsd-hackers Fri Nov 7 12:27:20 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id MAA21101 for hackers-outgoing; Fri, 7 Nov 1997 12:27:20 -0800 (PST) (envelope-from owner-freebsd-hackers) Received: from Kitten.mcs.com (Kitten.mcs.com [192.160.127.90]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id MAA21092 for ; Fri, 7 Nov 1997 12:27:17 -0800 (PST) (envelope-from nash@Jupiter.Mcs.Net) Received: from Jupiter.Mcs.Net (nash@Jupiter.mcs.net [192.160.127.88]) by Kitten.mcs.com (8.8.5/8.8.2) with ESMTP id OAA03292; Fri, 7 Nov 1997 14:27:15 -0600 (CST) Received: from localhost (nash@localhost) by Jupiter.Mcs.Net (8.8.7/8.8.2) with SMTP id OAA08353; Fri, 7 Nov 1997 14:27:15 -0600 (CST) Date: Fri, 7 Nov 1997 14:27:14 -0600 (CST) From: Alex Nash To: Julian Elischer cc: hackers@FreeBSD.ORG Subject: Re: Newest Pentium bug (fatal) In-Reply-To: <3463605C.41C67EA6@whistle.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-hackers@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Fri, 7 Nov 1997, Julian Elischer wrote: > On a "genuine Intel" pentium (not pentium pro) > execution of the following sequence, 0xf0 0x0f 0xc7 0xc8 > > will stop the processor. This is doable from user mode and in > 16bitmode, or in fact any mode. > > try the following c program. I (well, gcc) had a few syntactical problems with your program. Here's a fixed version: unsigned char x[] = { 0xf0, 0x0f, 0xc7, 0xc8 }; main () { void (*f)(void) = (void (*)())x; f(); } > We've checked: > K5... OK > P6... OK > P5... *SPLAT* > > no idea about the pentium II or other pentium copies. > K6? > > other pentium variants? > versions? Also crashes: CPU: Pentium (166.59-MHz 586-class CPU) Origin = "GenuineIntel" Id = 0x52c Stepping=12 Features=0x1bf Alex