From nobody Thu Jul 27 20:46:22 2023 X-Original-To: freebsd-security@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4RBjV56gFsz4q3j3 for ; Thu, 27 Jul 2023 20:46:21 +0000 (UTC) (envelope-from mike@sentex.net) Received: from smarthost1.sentex.ca (smarthost1.sentex.ca [IPv6:2607:f3e0:0:1::12]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smarthost1.sentex.ca", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4RBjV55nLlz3tS7; Thu, 27 Jul 2023 20:46:21 +0000 (UTC) (envelope-from mike@sentex.net) Authentication-Results: mx1.freebsd.org; none Received: from pyroxene2a.sentex.ca (pyroxene19.sentex.ca [199.212.134.19]) by smarthost1.sentex.ca (8.17.1/8.16.1) with ESMTPS id 36RKkLRI054902 (version=TLSv1.3 cipher=TLS_AES_256_GCM_SHA384 bits=256 verify=FAIL); Thu, 27 Jul 2023 16:46:21 -0400 (EDT) (envelope-from mike@sentex.net) Received: from [IPV6:2607:f3e0:0:4::29] ([IPv6:2607:f3e0:0:4:0:0:0:29]) by pyroxene2a.sentex.ca (8.16.1/8.15.2) with ESMTPS id 36RKkLrr005327 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO); Thu, 27 Jul 2023 16:46:21 -0400 (EDT) (envelope-from mike@sentex.net) Message-ID: <33df09fb-0631-3db6-694a-4d3cad754a10@sentex.net> Date: Thu, 27 Jul 2023 16:46:22 -0400 List-Id: Security issues List-Archive: https://lists.freebsd.org/archives/freebsd-security List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-security@freebsd.org X-BeenThere: freebsd-security@freebsd.org MIME-Version: 1.0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Thunderbird/102.13.0 Subject: Re: Zenbleed Content-Language: en-US To: Jung-uk Kim , Shawn Webb , 0x1eef <0x1eef@protonmail.com> Cc: "freebsd-security@freebsd.org" References: <20230726214636.yblem2s4sgapb6cw@mutt-hbsd> <5ca207d8-b947-12da-46b2-f83e55fcc98c@sentex.net> From: mike tancsa In-Reply-To: Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Scanned-By: MIMEDefang 2.84 X-Rspamd-Queue-Id: 4RBjV55nLlz3tS7 X-Spamd-Bar: ---- X-Spamd-Result: default: False [-4.00 / 15.00]; REPLY(-4.00)[]; ASN(0.00)[asn:11647, ipnet:2607:f3e0::/32, country:CA] X-Rspamd-Pre-Result: action=no action; module=replies; Message is reply to one we originated On 7/27/2023 4:42 PM, Jung-uk Kim wrote: > Can you please the attached patch?  Sorry about the trouble. > thank you for all the help! Looks good on RELENG_12 now % gmake nasm  -O0 -felf64 -o zenleak.o zenleak.asm cc -O0 -ggdb3 -march=znver2   -c -o pattern.o pattern.c cc -O0 -ggdb3 -march=znver2   -c -o workqueue.o workqueue.c cc -O0 -ggdb3 -march=znver2   -c -o util.o util.c cc -O0 -ggdb3 -march=znver2  -pthread -Wl,-z,noexecstack zenbleed.c zenleak.o pattern.o workqueue.o util.o   -o zenbleed % ./zenbleed -v3 *** EMBARGOED SECURITY ISSUE --  DO NOT DISTRIBUTE! *** ZenBleed Testcase -- taviso@google.com NOTE: Try -h to see configuration options Spawning 32 Threads... Thread 0x800686500 running on CPU 0Thread 0x800687400 running on CPU 3 Thread 0x800687900 running on CPU 4 Thread 0x800687e00 running on CPU 5 Thread 0x800688800 running on CPU 7 Thread 0x800689200 running on CPU 9 Thread 0x800688300 running on CPU 6 Thread 0x800686a00 running on CPU 1 Thread 0x800688d00 running on CPU 8 Thread 0x800689700 running on CPU 10 Thread 0x800689c00 running on CPU 11 Thread 0x80068a100 running on CPU 12 Thread 0x80068a600 running on CPU 13 Thread 0x800774000 running on CPU 15 Thread 0x800774500 running on CPU 16 Thread 0x800774a00 running on CPU 17 Thread 0x800774f00 running on CPU 18 Thread 0x800775400 running on CPU 19 Thread 0x800775900 running on CPU 20 Thread 0x800775e00 running on CPU 21 Thread 0x800776300 running on CPU 22 Thread 0x800776800 running on CPU 23 Thread 0x800776d00 running on CPU 24 Thread 0x800777200 running on CPU 25 Thread 0x800777700 running on CPU 26 Thread 0x800777c00 running on CPU 27 Thread 0x800778100 running on CPU 28 Thread 0x800778600 running on CPU 29 Thread 0x800778b00 running on CPU 30 Thread 0x803253000 running on CPU 31 Thread 0x80068ab00 running on CPU 14 Thread 0x800686f00 running on CPU 2 CPU: AMD EPYC 7302P 16-Core Processor                (3000.06-MHz K8-class CPU)