Re: amd microcode
On Tue, Jul 25, 2023 at 12:19 AM Courtney wrote: > > $ pkg_info | grep amd > amd-firmware-20230719 microcode update binaries for AMD CPUs > > I however, do not have the test code to check if you are impacted by > Zenbleed or not. There is test code, but it only compiles on Linux. > > Theo de Raadt also put out info if you are doing syspatch for the new > errata. > > https://marc.info/?l=openbsd-tech&m=169021508718971&w=2 > I have it installed, I was wondering how I can check if any of the updates are applied. -- chs
Re: amd microcode
Jonathan Gray wrote: > On Mon, Jul 24, 2023 at 03:17:26PM -0700, Courtney wrote: > > $ pkg_info | grep amd > > amd-firmware-20230719 microcode update binaries for AMD CPUs > > It by no means covers all zen 2 models. ^^^ AMD's firmwar updates for the fix are incomplete. Some models won't get firmware updates until November and December. AMD rates the ability to observe data over a process or VM boundary as only "medium" severity. Their customers may have a different opinion... > An updated kernel will set DE_CFG bit 9 on all Zen2 models, > which does not require new microcode. Since AMD is too busy twiddling their fingers with the firmware solutions, we are setting DE_CFG bit 9 _on all the models that we think have the bug_. Two fixes for the same problem, if you get lucky.
Re: amd microcode
On Mon, Jul 24, 2023 at 03:17:26PM -0700, Courtney wrote: > $ pkg_info | grep amd > amd-firmware-20230719 microcode update binaries for AMD CPUs It by no means covers all zen 2 models. See /etc/firmware/amd/README Family=0x17 Model=0x31 Stepping=0x00: Patch=0x0830107a Length=3200 bytes Family=0x17 Model=0xa0 Stepping=0x00: Patch=0x08a8 Length=3200 bytes 17-31-00 Rome/Castle Peak 0x0830107a 17-a0-00 Mendocino 0x08a8 The family-model-stepping is printed at the end of cpu lines in dmesg. Zen2 models missing include: 17-60-01 Renoir 0x0860010b 17-68-01 Lucienne 0x08608105 17-71-00 Matisse0x08701032 17-90-02 Van Gogh The known good patch levels are used by xen and linux. But the microcode for Renoir, Lucienne and Matisse is not available as far as I can tell. An updated kernel will set DE_CFG bit 9 on all Zen2 models, which does not require new microcode. > > I however, do not have the test code to check if you are impacted by > Zenbleed or not. There is test code, but it only compiles on Linux. > > Theo de Raadt also put out info if you are doing syspatch for the new > errata. > > https://marc.info/?l=openbsd-tech&m=169021508718971&w=2 > > Courtney > > On 7/23/23 23:02, Christer Solskogen wrote: > > I just saw https://undeadly.org/cgi?action=article;sid=20230723185853 > > and was wondering how I can check if it works? Does or should the > > microcode update show up in dmesg or in some other log? > > > >
Re: amd microcode
$ pkg_info | grep amd amd-firmware-20230719 microcode update binaries for AMD CPUs I however, do not have the test code to check if you are impacted by Zenbleed or not. There is test code, but it only compiles on Linux. Theo de Raadt also put out info if you are doing syspatch for the new errata. https://marc.info/?l=openbsd-tech&m=169021508718971&w=2 Courtney On 7/23/23 23:02, Christer Solskogen wrote: I just saw https://undeadly.org/cgi?action=article;sid=20230723185853 and was wondering how I can check if it works? Does or should the microcode update show up in dmesg or in some other log?
amd microcode
I just saw https://undeadly.org/cgi?action=article;sid=20230723185853 and was wondering how I can check if it works? Does or should the microcode update show up in dmesg or in some other log? -- chs
