€•æá      Œsphinx.addnodes”Œdocument”“”)”}”(Œ	rawsource”Œ ”Œchildren”]”(Œtranslations”ŒLanguagesNode”“”)”}”(hhh]”(h Œpending_xref”“”)”}”(hhh]”Œdocutils.nodes”ŒText”“”ŒChinese (Simplified)”…””}”Œparent”hsbaŒ
attributes”}”(Œids”]”Œclasses”]”Œnames”]”Œdupnames”]”Œbackrefs”]”Œ	refdomain”Œstd”Œreftype”Œdoc”Œ	reftarget”ŒA/translations/zh_CN/admin-guide/hw-vuln/processor_mmio_stale_data”Œmodname”NŒ	classname”NŒrefexplicit”ˆuŒtagname”hhhubh)”}”(hhh]”hŒChinese (Traditional)”…””}”hh2sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”ŒA/translations/zh_TW/admin-guide/hw-vuln/processor_mmio_stale_data”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒItalian”…””}”hhFsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”ŒA/translations/it_IT/admin-guide/hw-vuln/processor_mmio_stale_data”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒJapanese”…””}”hhZsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”ŒA/translations/ja_JP/admin-guide/hw-vuln/processor_mmio_stale_data”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒKorean”…””}”hhnsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”ŒA/translations/ko_KR/admin-guide/hw-vuln/processor_mmio_stale_data”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒPortuguese (Brazilian)”…””}”hh‚sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”ŒA/translations/pt_BR/admin-guide/hw-vuln/processor_mmio_stale_data”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒSpanish”…””}”hh–sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”ŒA/translations/sp_SP/admin-guide/hw-vuln/processor_mmio_stale_data”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubeh}”(h]”h ]”h"]”h$]”h&]”Œcurrent_language”ŒEnglish”uh1h
hhŒ	_document”hŒsource”NŒline”NubhŒsection”“”)”}”(hhh]”(hŒtitle”“”)”}”(hŒ)Processor MMIO Stale Data Vulnerabilities”h]”hŒ)Processor MMIO Stale Data Vulnerabilities”…””}”(hh¼h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhh·h²hh³Œ[/var/lib/git/docbuild/linux/Documentation/admin-guide/hw-vuln/processor_mmio_stale_data.rst”h´KubhŒ	paragraph”“”)”}”(hXÒ  Processor MMIO Stale Data Vulnerabilities are a class of memory-mapped I/O
(MMIO) vulnerabilities that can expose data. The sequences of operations for
exposing data range from simple to very complex. Because most of the
vulnerabilities require the attacker to have access to MMIO, many environments
are not affected. System environments using virtualization where MMIO access is
provided to untrusted guests may need mitigation. These vulnerabilities are
not transient execution attacks. However, these vulnerabilities may propagate
stale data into core fill buffers where the data can subsequently be inferred
by an unmitigated transient execution attack. Mitigation for these
vulnerabilities includes a combination of microcode update and software
changes, depending on the platform and usage model. Some of these mitigations
are similar to those used to mitigate Microarchitectural Data Sampling (MDS) or
those used to mitigate Special Register Buffer Data Sampling (SRBDS).”h]”hXÒ  Processor MMIO Stale Data Vulnerabilities are a class of memory-mapped I/O
(MMIO) vulnerabilities that can expose data. The sequences of operations for
exposing data range from simple to very complex. Because most of the
vulnerabilities require the attacker to have access to MMIO, many environments
are not affected. System environments using virtualization where MMIO access is
provided to untrusted guests may need mitigation. These vulnerabilities are
not transient execution attacks. However, these vulnerabilities may propagate
stale data into core fill buffers where the data can subsequently be inferred
by an unmitigated transient execution attack. Mitigation for these
vulnerabilities includes a combination of microcode update and software
changes, depending on the platform and usage model. Some of these mitigations
are similar to those used to mitigate Microarchitectural Data Sampling (MDS) or
those used to mitigate Special Register Buffer Data Sampling (SRBDS).”…””}”(hhÍh²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Khh·h²hubh¶)”}”(hhh]”(h»)”}”(hŒData Propagators”h]”hŒData Propagators”…””}”(hhÞh²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhhÛh²hh³hÊh´KubhÌ)”}”(hXD  Propagators are operations that result in stale data being copied or moved from
one microarchitectural buffer or register to another. Processor MMIO Stale Data
Vulnerabilities are operations that may result in stale data being directly
read into an architectural, software-visible state or sampled from a buffer or
register.”h]”hXD  Propagators are operations that result in stale data being copied or moved from
one microarchitectural buffer or register to another. Processor MMIO Stale Data
Vulnerabilities are operations that may result in stale data being directly
read into an architectural, software-visible state or sampled from a buffer or
register.”…””}”(hhìh²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KhhÛh²hubh¶)”}”(hhh]”(h»)”}”(hŒ)Fill Buffer Stale Data Propagator (FBSDP)”h]”hŒ)Fill Buffer Stale Data Propagator (FBSDP)”…””}”(hhýh²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhhúh²hh³hÊh´KubhÌ)”}”(hX$  Stale data may propagate from fill buffers (FB) into the non-coherent portion
of the uncore on some non-coherent writes. Fill buffer propagation by itself
does not make stale data architecturally visible. Stale data must be propagated
to a location where it is subject to reading or sampling.”h]”hX$  Stale data may propagate from fill buffers (FB) into the non-coherent portion
of the uncore on some non-coherent writes. Fill buffer propagation by itself
does not make stale data architecturally visible. Stale data must be propagated
to a location where it is subject to reading or sampling.”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Khhúh²hubeh}”(h]”Œ'fill-buffer-stale-data-propagator-fbsdp”ah ]”h"]”Œ)fill buffer stale data propagator (fbsdp)”ah$]”h&]”uh1hµhhÛh²hh³hÊh´Kubh¶)”}”(hhh]”(h»)”}”(hŒ%Sideband Stale Data Propagator (SSDP)”h]”hŒ%Sideband Stale Data Propagator (SSDP)”…””}”(hj$  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhj!  h²hh³hÊh´K#ubhÌ)”}”(hX  The sideband stale data propagator (SSDP) is limited to the client (including
Intel Xeon server E3) uncore implementation. The sideband response buffer is
shared by all client cores. For non-coherent reads that go to sideband
destinations, the uncore logic returns 64 bytes of data to the core, including
both requested data and unrequested stale data, from a transaction buffer and
the sideband response buffer. As a result, stale data from the sideband
response and transaction buffers may now reside in a core fill buffer.”h]”hX  The sideband stale data propagator (SSDP) is limited to the client (including
Intel Xeon server E3) uncore implementation. The sideband response buffer is
shared by all client cores. For non-coherent reads that go to sideband
destinations, the uncore logic returns 64 bytes of data to the core, including
both requested data and unrequested stale data, from a transaction buffer and
the sideband response buffer. As a result, stale data from the sideband
response and transaction buffers may now reside in a core fill buffer.”…””}”(hj2  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K$hj!  h²hubeh}”(h]”Œ#sideband-stale-data-propagator-ssdp”ah ]”h"]”Œ%sideband stale data propagator (ssdp)”ah$]”h&]”uh1hµhhÛh²hh³hÊh´K#ubh¶)”}”(hhh]”(h»)”}”(hŒ$Primary Stale Data Propagator (PSDP)”h]”hŒ$Primary Stale Data Propagator (PSDP)”…””}”(hjK  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjH  h²hh³hÊh´K-ubhÌ)”}”(hX«  The primary stale data propagator (PSDP) is limited to the client (including
Intel Xeon server E3) uncore implementation. Similar to the sideband response
buffer, the primary response buffer is shared by all client cores. For some
processors, MMIO primary reads will return 64 bytes of data to the core fill
buffer including both requested data and unrequested stale data. This is
similar to the sideband stale data propagator.”h]”hX«  The primary stale data propagator (PSDP) is limited to the client (including
Intel Xeon server E3) uncore implementation. Similar to the sideband response
buffer, the primary response buffer is shared by all client cores. For some
processors, MMIO primary reads will return 64 bytes of data to the core fill
buffer including both requested data and unrequested stale data. This is
similar to the sideband stale data propagator.”…””}”(hjY  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K.hjH  h²hubeh}”(h]”Œ"primary-stale-data-propagator-psdp”ah ]”h"]”Œ$primary stale data propagator (psdp)”ah$]”h&]”uh1hµhhÛh²hh³hÊh´K-ubeh}”(h]”Œdata-propagators”ah ]”h"]”Œdata propagators”ah$]”h&]”uh1hµhh·h²hh³hÊh´Kubh¶)”}”(hhh]”(h»)”}”(hŒVulnerabilities”h]”hŒVulnerabilities”…””}”(hjz  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjw  h²hh³hÊh´K6ubh¶)”}”(hhh]”(h»)”}”(hŒ5Device Register Partial Write (DRPW) (CVE-2022-21166)”h]”hŒ5Device Register Partial Write (DRPW) (CVE-2022-21166)”…””}”(hj‹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjˆ  h²hh³hÊh´K8ubhÌ)”}”(hX©  Some endpoint MMIO registers incorrectly handle writes that are smaller than
the register size. Instead of aborting the write or only copying the correct
subset of bytes (for example, 2 bytes for a 2-byte write), more bytes than
specified by the write transaction may be written to the register. On
processors affected by FBSDP, this may expose stale data from the fill buffers
of the core that created the write transaction.”h]”hX©  Some endpoint MMIO registers incorrectly handle writes that are smaller than
the register size. Instead of aborting the write or only copying the correct
subset of bytes (for example, 2 bytes for a 2-byte write), more bytes than
specified by the write transaction may be written to the register. On
processors affected by FBSDP, this may expose stale data from the fill buffers
of the core that created the write transaction.”…””}”(hj™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K9hjˆ  h²hubeh}”(h]”Œ1device-register-partial-write-drpw-cve-2022-21166”ah ]”h"]”Œ5device register partial write (drpw) (cve-2022-21166)”ah$]”h&]”uh1hµhjw  h²hh³hÊh´K8ubh¶)”}”(hhh]”(h»)”}”(hŒ4Shared Buffers Data Sampling (SBDS) (CVE-2022-21125)”h]”hŒ4Shared Buffers Data Sampling (SBDS) (CVE-2022-21125)”…””}”(hj²  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhj¯  h²hh³hÊh´KAubhÌ)”}”(hX  After propagators may have moved data around the uncore and copied stale data
into client core fill buffers, processors affected by MFBDS can leak data from
the fill buffer. It is limited to the client (including Intel Xeon server E3)
uncore implementation.”h]”hX  After propagators may have moved data around the uncore and copied stale data
into client core fill buffers, processors affected by MFBDS can leak data from
the fill buffer. It is limited to the client (including Intel Xeon server E3)
uncore implementation.”…””}”(hjÀ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KBhj¯  h²hubeh}”(h]”Œ0shared-buffers-data-sampling-sbds-cve-2022-21125”ah ]”h"]”Œ4shared buffers data sampling (sbds) (cve-2022-21125)”ah$]”h&]”uh1hµhjw  h²hh³hÊh´KAubh¶)”}”(hhh]”(h»)”}”(hŒ0Shared Buffers Data Read (SBDR) (CVE-2022-21123)”h]”hŒ0Shared Buffers Data Read (SBDR) (CVE-2022-21123)”…””}”(hjÙ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjÖ  h²hh³hÊh´KHubhÌ)”}”(hŒÜIt is similar to Shared Buffer Data Sampling (SBDS) except that the data is
directly read into the architectural software-visible state. It is limited to
the client (including Intel Xeon server E3) uncore implementation.”h]”hŒÜIt is similar to Shared Buffer Data Sampling (SBDS) except that the data is
directly read into the architectural software-visible state. It is limited to
the client (including Intel Xeon server E3) uncore implementation.”…””}”(hjç  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KIhjÖ  h²hubeh}”(h]”Œ,shared-buffers-data-read-sbdr-cve-2022-21123”ah ]”h"]”Œ0shared buffers data read (sbdr) (cve-2022-21123)”ah$]”h&]”uh1hµhjw  h²hh³hÊh´KHubeh}”(h]”Œvulnerabilities”ah ]”h"]”Œvulnerabilities”ah$]”h&]”uh1hµhh·h²hh³hÊh´K6ubh¶)”}”(hhh]”(h»)”}”(hŒAffected Processors”h]”hŒAffected Processors”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhj  h²hh³hÊh´KNubhÌ)”}”(hŒÆNot all the CPUs are affected by all the variants. For instance, most
processors for the server market (excluding Intel Xeon E3 processors) are
impacted by only Device Register Partial Write (DRPW).”h]”hŒÆNot all the CPUs are affected by all the variants. For instance, most
processors for the server market (excluding Intel Xeon E3 processors) are
impacted by only Device Register Partial Write (DRPW).”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KOhj  h²hubhÌ)”}”(hŒ6Below is the list of affected Intel processors [#f1]_:”h]”(hŒ/Below is the list of affected Intel processors ”…””}”(hj$  h²hh³Nh´NubhŒfootnote_reference”“”)”}”(hŒ[#f1]_”h]”hŒ1”…””}”(hj.  h²hh³Nh´Nubah}”(h]”Œid1”ah ]”h"]”h$]”h&]”Œauto”KŒrefid”Œf1”Œdocname”Œ-admin-guide/hw-vuln/processor_mmio_stale_data”uh1j,  hj$  Œresolved”KubhŒ:”…””}”(hj$  h²hh³Nh´Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KShj  h²hubhŒblock_quote”“”)”}”(hXw  ===================  ============  =========
Common name          Family_Model  Steppings
===================  ============  =========
HASWELL_X            06_3FH        2,4
SKYLAKE_L            06_4EH        3
BROADWELL_X          06_4FH        All
SKYLAKE_X            06_55H        3,4,6,7,11
BROADWELL_D          06_56H        3,4,5
SKYLAKE              06_5EH        3
ICELAKE_X            06_6AH        4,5,6
ICELAKE_D            06_6CH        1
ICELAKE_L            06_7EH        5
ATOM_TREMONT_D       06_86H        All
LAKEFIELD            06_8AH        1
KABYLAKE_L           06_8EH        9 to 12
ATOM_TREMONT         06_96H        1
ATOM_TREMONT_L       06_9CH        0
KABYLAKE             06_9EH        9 to 13
COMETLAKE            06_A5H        2,3,5
COMETLAKE_L          06_A6H        0,1
ROCKETLAKE           06_A7H        1
===================  ============  =========
”h]”hŒtable”“”)”}”(hhh]”hŒtgroup”“”)”}”(hhh]”(hŒcolspec”“”)”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œcolwidth”Kuh1j]  hjZ  ubj^  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œcolwidth”Kuh1j]  hjZ  ubj^  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œcolwidth”K
uh1j]  hjZ  ubhŒthead”“”)”}”(hhh]”hŒrow”“”)”}”(hhh]”(hŒentry”“”)”}”(hhh]”hÌ)”}”(hŒCommon name”h]”hŒCommon name”…””}”(hjŒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KVhj‰  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj„  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒFamily_Model”h]”hŒFamily_Model”…””}”(hj£  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KVhj   ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj„  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ	Steppings”h]”hŒ	Steppings”…””}”(hjº  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KVhj·  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj„  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j}  hjZ  ubhŒtbody”“”)”}”(hhh]”(jƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ	HASWELL_X”h]”hŒ	HASWELL_X”…””}”(hjå  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KXhjâ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjß  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_3FH”h]”hŒ06_3FH”…””}”(hjü  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KXhjù  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjß  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ2,4”h]”hŒ2,4”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KXhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjß  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ	SKYLAKE_L”h]”hŒ	SKYLAKE_L”…””}”(hj3  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KYhj0  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj-  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_4EH”h]”hŒ06_4EH”…””}”(hjJ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KYhjG  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj-  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ3”h]”hŒ3”…””}”(hja  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KYhj^  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj-  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒBROADWELL_X”h]”hŒBROADWELL_X”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KZhj~  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj{  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_4FH”h]”hŒ06_4FH”…””}”(hj˜  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KZhj•  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj{  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒAll”h]”hŒAll”…””}”(hj¯  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KZhj¬  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj{  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ	SKYLAKE_X”h]”hŒ	SKYLAKE_X”…””}”(hjÏ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K[hjÌ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjÉ  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_55H”h]”hŒ06_55H”…””}”(hjæ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K[hjã  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjÉ  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ
3,4,6,7,11”h]”hŒ
3,4,6,7,11”…””}”(hjý  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K[hjú  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjÉ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒBROADWELL_D”h]”hŒBROADWELL_D”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K\hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_56H”h]”hŒ06_56H”…””}”(hj4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K\hj1  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ3,4,5”h]”hŒ3,4,5”…””}”(hjK  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K\hjH  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒSKYLAKE”h]”hŒSKYLAKE”…””}”(hjk  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K]hjh  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hje  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_5EH”h]”hŒ06_5EH”…””}”(hj‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K]hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hje  ubjˆ  )”}”(hhh]”hÌ)”}”(hjc  h]”hŒ3”…””}”(hj™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K]hj–  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hje  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ	ICELAKE_X”h]”hŒ	ICELAKE_X”…””}”(hj¸  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K^hjµ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj²  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_6AH”h]”hŒ06_6AH”…””}”(hjÏ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K^hjÌ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj²  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ4,5,6”h]”hŒ4,5,6”…””}”(hjæ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K^hjã  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj²  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ	ICELAKE_D”h]”hŒ	ICELAKE_D”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K_hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj   ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_6CH”h]”hŒ06_6CH”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K_hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj   ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ1”h]”hŒ1”…””}”(hj4  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K_hj1  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj   ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ	ICELAKE_L”h]”hŒ	ICELAKE_L”…””}”(hjT  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K`hjQ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjN  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_7EH”h]”hŒ06_7EH”…””}”(hjk  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K`hjh  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjN  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ5”h]”hŒ5”…””}”(hj‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K`hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjN  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒATOM_TREMONT_D”h]”hŒATOM_TREMONT_D”…””}”(hj¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KahjŸ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjœ  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_86H”h]”hŒ06_86H”…””}”(hj¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kahj¶  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjœ  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒAll”h]”hŒAll”…””}”(hjÐ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KahjÍ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjœ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ	LAKEFIELD”h]”hŒ	LAKEFIELD”…””}”(hjð  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kbhjí  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjê  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_8AH”h]”hŒ06_8AH”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kbhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjê  ubjˆ  )”}”(hhh]”hÌ)”}”(hj6  h]”hŒ1”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kbhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjê  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ
KABYLAKE_L”h]”hŒ
KABYLAKE_L”…””}”(hj=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kchj:  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj7  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_8EH”h]”hŒ06_8EH”…””}”(hjT  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KchjQ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj7  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ9 to 12”h]”hŒ9 to 12”…””}”(hjk  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kchjh  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj7  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒATOM_TREMONT”h]”hŒATOM_TREMONT”…””}”(hj‹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kdhjˆ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj…  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_96H”h]”hŒ06_96H”…””}”(hj¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KdhjŸ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj…  ubjˆ  )”}”(hhh]”hÌ)”}”(hj6  h]”hŒ1”…””}”(hj¹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kdhj¶  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj…  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒATOM_TREMONT_L”h]”hŒATOM_TREMONT_L”…””}”(hjØ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KehjÕ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjÒ  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_9CH”h]”hŒ06_9CH”…””}”(hjï  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kehjì  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjÒ  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ0”h]”hŒ0”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kehj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjÒ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒKABYLAKE”h]”hŒKABYLAKE”…””}”(hj&  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kfhj#  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj   ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_9EH”h]”hŒ06_9EH”…””}”(hj=  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kfhj:  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj   ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ9 to 13”h]”hŒ9 to 13”…””}”(hjT  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KfhjQ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj   ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ	COMETLAKE”h]”hŒ	COMETLAKE”…””}”(hjt  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kghjq  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjn  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_A5H”h]”hŒ06_A5H”…””}”(hj‹  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kghjˆ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjn  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ2,3,5”h]”hŒ2,3,5”…””}”(hj¢  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KghjŸ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjn  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒCOMETLAKE_L”h]”hŒCOMETLAKE_L”…””}”(hjÂ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Khhj¿  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj¼  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_A6H”h]”hŒ06_A6H”…””}”(hjÙ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KhhjÖ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj¼  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ0,1”h]”hŒ0,1”…””}”(hjð  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Khhjí  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj¼  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ
ROCKETLAKE”h]”hŒ
ROCKETLAKE”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kihj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj
  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ06_A7H”h]”hŒ06_A7H”…””}”(hj'  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kihj$  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj
  ubjˆ  )”}”(hhh]”hÌ)”}”(hj6  h]”hŒ1”…””}”(hj>  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kihj;  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj
  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjÜ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jÚ  hjZ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œcols”Kuh1jX  hjU  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jS  hjO  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jM  h³hÊh´KUhj  h²hubhÌ)”}”(hX  If a CPU is in the affected processor list, but not affected by a variant, it
is indicated by new bits in MSR IA32_ARCH_CAPABILITIES. As described in a later
section, mitigation largely remains the same for all the variants, i.e. to
clear the CPU fill buffers via VERW instruction.”h]”hX  If a CPU is in the affected processor list, but not affected by a variant, it
is indicated by new bits in MSR IA32_ARCH_CAPABILITIES. As described in a later
section, mitigation largely remains the same for all the variants, i.e. to
clear the CPU fill buffers via VERW instruction.”…””}”(hjp  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Klhj  h²hubeh}”(h]”Œaffected-processors”ah ]”h"]”Œaffected processors”ah$]”h&]”uh1hµhh·h²hh³hÊh´KNubh¶)”}”(hhh]”(h»)”}”(hŒNew bits in MSRs”h]”hŒNew bits in MSRs”…””}”(hj‰  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhj†  h²hh³hÊh´KrubhÌ)”}”(hŒñNewer processors and microcode update on existing affected processors added new
bits to IA32_ARCH_CAPABILITIES MSR. These bits can be used to enumerate
specific variants of Processor MMIO Stale Data vulnerabilities and mitigation
capability.”h]”hŒñNewer processors and microcode update on existing affected processors added new
bits to IA32_ARCH_CAPABILITIES MSR. These bits can be used to enumerate
specific variants of Processor MMIO Stale Data vulnerabilities and mitigation
capability.”…””}”(hj—  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kshj†  h²hubh¶)”}”(hhh]”(h»)”}”(hŒMSR IA32_ARCH_CAPABILITIES”h]”hŒMSR IA32_ARCH_CAPABILITIES”…””}”(hj¨  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhj¥  h²hh³hÊh´KyubhŒdefinition_list”“”)”}”(hhh]”(hŒdefinition_list_item”“”)”}”(hŒ¥Bit 13 - SBDR_SSDP_NO - When set, processor is not affected by either the
Shared Buffers Data Read (SBDR) vulnerability or the sideband stale
data propagator (SSDP).”h]”(hŒterm”“”)”}”(hŒIBit 13 - SBDR_SSDP_NO - When set, processor is not affected by either the”h]”hŒIBit 13 - SBDR_SSDP_NO - When set, processor is not affected by either the”…””}”(hjÃ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jÁ  h³hÊh´K{hj½  ubhŒ
definition”“”)”}”(hhh]”hÌ)”}”(hŒ[Shared Buffers Data Read (SBDR) vulnerability or the sideband stale
data propagator (SSDP).”h]”hŒ[Shared Buffers Data Read (SBDR) vulnerability or the sideband stale
data propagator (SSDP).”…””}”(hjÖ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K{hjÓ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jÑ  hj½  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j»  h³hÊh´K{hj¸  ubj¼  )”}”(hŒiBit 14 - FBSDP_NO - When set, processor is not affected by the Fill Buffer
Stale Data Propagator (FBSDP).”h]”(jÂ  )”}”(hŒJBit 14 - FBSDP_NO - When set, processor is not affected by the Fill Buffer”h]”hŒJBit 14 - FBSDP_NO - When set, processor is not affected by the Fill Buffer”…””}”(hjô  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jÁ  h³hÊh´K}hjð  ubjÒ  )”}”(hhh]”hÌ)”}”(hŒStale Data Propagator (FBSDP).”h]”hŒStale Data Propagator (FBSDP).”…””}”(hj	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K~hj	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jÑ  hjð  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j»  h³hÊh´K}hj¸  h²hubj¼  )”}”(hŒ_Bit 15 - PSDP_NO - When set, processor is not affected by Primary Stale Data
Propagator (PSDP).”h]”(jÂ  )”}”(hŒLBit 15 - PSDP_NO - When set, processor is not affected by Primary Stale Data”h]”hŒLBit 15 - PSDP_NO - When set, processor is not affected by Primary Stale Data”…””}”(hj#	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jÁ  h³hÊh´Khj	  ubjÒ  )”}”(hhh]”hÌ)”}”(hŒPropagator (PSDP).”h]”hŒPropagator (PSDP).”…””}”(hj4	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K€hj1	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jÑ  hj	  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j»  h³hÊh´Khj¸  h²hubj¼  )”}”(hX>  Bit 17 - FB_CLEAR - When set, VERW instruction will overwrite CPU fill buffer
values as part of MD_CLEAR operations. Processors that do not
enumerate MDS_NO (meaning they are affected by MDS) but that do
enumerate support for both L1D_FLUSH and MD_CLEAR implicitly enumerate
FB_CLEAR as part of their MD_CLEAR support.”h]”(jÂ  )”}”(hŒMBit 17 - FB_CLEAR - When set, VERW instruction will overwrite CPU fill buffer”h]”hŒMBit 17 - FB_CLEAR - When set, VERW instruction will overwrite CPU fill buffer”…””}”(hjR	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jÁ  h³hÊh´K„hjN	  ubjÒ  )”}”(hhh]”hÌ)”}”(hŒðvalues as part of MD_CLEAR operations. Processors that do not
enumerate MDS_NO (meaning they are affected by MDS) but that do
enumerate support for both L1D_FLUSH and MD_CLEAR implicitly enumerate
FB_CLEAR as part of their MD_CLEAR support.”h]”hŒðvalues as part of MD_CLEAR operations. Processors that do not
enumerate MDS_NO (meaning they are affected by MDS) but that do
enumerate support for both L1D_FLUSH and MD_CLEAR implicitly enumerate
FB_CLEAR as part of their MD_CLEAR support.”…””}”(hjc	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K‚hj`	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jÑ  hjN	  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j»  h³hÊh´K„hj¸  h²hubj¼  )”}”(hX  Bit 18 - FB_CLEAR_CTRL - Processor supports read and write to MSR
IA32_MCU_OPT_CTRL[FB_CLEAR_DIS]. On such processors, the FB_CLEAR_DIS
bit can be set to cause the VERW instruction to not perform the
FB_CLEAR action. Not all processors that support FB_CLEAR will support
FB_CLEAR_CTRL.
”h]”(jÂ  )”}”(hŒABit 18 - FB_CLEAR_CTRL - Processor supports read and write to MSR”h]”hŒABit 18 - FB_CLEAR_CTRL - Processor supports read and write to MSR”…””}”(hj	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jÁ  h³hÊh´KŠhj}	  ubjÒ  )”}”(hhh]”hÌ)”}”(hŒÛIA32_MCU_OPT_CTRL[FB_CLEAR_DIS]. On such processors, the FB_CLEAR_DIS
bit can be set to cause the VERW instruction to not perform the
FB_CLEAR action. Not all processors that support FB_CLEAR will support
FB_CLEAR_CTRL.”h]”hŒÛIA32_MCU_OPT_CTRL[FB_CLEAR_DIS]. On such processors, the FB_CLEAR_DIS
bit can be set to cause the VERW instruction to not perform the
FB_CLEAR action. Not all processors that support FB_CLEAR will support
FB_CLEAR_CTRL.”…””}”(hj’	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K‡hj	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jÑ  hj}	  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j»  h³hÊh´KŠhj¸  h²hubeh}”(h]”h ]”h"]”h$]”h&]”uh1j¶  hj¥  h²hh³hÊh´Nubeh}”(h]”Œmsr-ia32-arch-capabilities”ah ]”h"]”Œmsr ia32_arch_capabilities”ah$]”h&]”uh1hµhj†  h²hh³hÊh´Kyubh¶)”}”(hhh]”(h»)”}”(hŒMSR IA32_MCU_OPT_CTRL”h]”hŒMSR IA32_MCU_OPT_CTRL”…””}”(hj½	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjº	  h²hh³hÊh´KubhÌ)”}”(hXç  Bit 3 - FB_CLEAR_DIS - When set, VERW instruction does not perform the FB_CLEAR
action. This may be useful to reduce the performance impact of FB_CLEAR in
cases where system software deems it warranted (for example, when performance
is more critical, or the untrusted software has no MMIO access). Note that
FB_CLEAR_DIS has no impact on enumeration (for example, it does not change
FB_CLEAR or MD_CLEAR enumeration) and it may not be supported on all processors
that enumerate FB_CLEAR.”h]”hXç  Bit 3 - FB_CLEAR_DIS - When set, VERW instruction does not perform the FB_CLEAR
action. This may be useful to reduce the performance impact of FB_CLEAR in
cases where system software deems it warranted (for example, when performance
is more critical, or the untrusted software has no MMIO access). Note that
FB_CLEAR_DIS has no impact on enumeration (for example, it does not change
FB_CLEAR or MD_CLEAR enumeration) and it may not be supported on all processors
that enumerate FB_CLEAR.”…””}”(hjË	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KŽhjº	  h²hubeh}”(h]”Œmsr-ia32-mcu-opt-ctrl”ah ]”h"]”Œmsr ia32_mcu_opt_ctrl”ah$]”h&]”uh1hµhj†  h²hh³hÊh´Kubeh}”(h]”Œnew-bits-in-msrs”ah ]”h"]”Œnew bits in msrs”ah$]”h&]”uh1hµhh·h²hh³hÊh´Krubh¶)”}”(hhh]”(h»)”}”(hŒ
Mitigation”h]”hŒ
Mitigation”…””}”(hjì	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjé	  h²hh³hÊh´K—ubhÌ)”}”(hŒÁLike MDS, all variants of Processor MMIO Stale Data vulnerabilities  have the
same mitigation strategy to force the CPU to clear the affected buffers before
an attacker can extract the secrets.”h]”hŒÁLike MDS, all variants of Processor MMIO Stale Data vulnerabilities  have the
same mitigation strategy to force the CPU to clear the affected buffers before
an attacker can extract the secrets.”…””}”(hjú	  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K˜hjé	  h²hubhÌ)”}”(hŒÉThis is achieved by using the otherwise unused and obsolete VERW instruction in
combination with a microcode update. The microcode clears the affected CPU
buffers when the VERW instruction is executed.”h]”hŒÉThis is achieved by using the otherwise unused and obsolete VERW instruction in
combination with a microcode update. The microcode clears the affected CPU
buffers when the VERW instruction is executed.”…””}”(hj
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kœhjé	  h²hubhÌ)”}”(hŒ=Kernel does the buffer clearing with x86_clear_cpu_buffers().”h]”hŒ=Kernel does the buffer clearing with x86_clear_cpu_buffers().”…””}”(hj
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K hjé	  h²hubhÌ)”}”(hŒ¸On MDS affected CPUs, the kernel already invokes CPU buffer clear on
kernel/userspace, hypervisor/guest and C-state (idle) transitions. No
additional mitigation is needed on such CPUs.”h]”hŒ¸On MDS affected CPUs, the kernel already invokes CPU buffer clear on
kernel/userspace, hypervisor/guest and C-state (idle) transitions. No
additional mitigation is needed on such CPUs.”…””}”(hj$
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K¢hjé	  h²hubhÌ)”}”(hŒõFor CPUs not affected by MDS or TAA, mitigation is needed only for the attacker
with MMIO capability. Therefore, VERW is not required for kernel/userspace. For
virtualization case, VERW is only needed at VMENTER for a guest with MMIO
capability.”h]”hŒõFor CPUs not affected by MDS or TAA, mitigation is needed only for the attacker
with MMIO capability. Therefore, VERW is not required for kernel/userspace. For
virtualization case, VERW is only needed at VMENTER for a guest with MMIO
capability.”…””}”(hj2
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K¦hjé	  h²hubh¶)”}”(hhh]”(h»)”}”(hŒMitigation points”h]”hŒMitigation points”…””}”(hjC
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhj@
  h²hh³hÊh´K¬ubh¶)”}”(hhh]”(h»)”}”(hŒReturn to user space”h]”hŒReturn to user space”…””}”(hjT
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjQ
  h²hh³hÊh´K®ubhÌ)”}”(hŒPSame mitigation as MDS when affected by MDS/TAA, otherwise no mitigation
needed.”h]”hŒPSame mitigation as MDS when affected by MDS/TAA, otherwise no mitigation
needed.”…””}”(hjb
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K¯hjQ
  h²hubeh}”(h]”Œreturn-to-user-space”ah ]”h"]”Œreturn to user space”ah$]”h&]”uh1hµhj@
  h²hh³hÊh´K®ubh¶)”}”(hhh]”(h»)”}”(hŒC-State transition”h]”hŒC-State transition”…””}”(hj{
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjx
  h²hh³hÊh´K³ubhÌ)”}”(hŒ±Control register writes by CPU during C-state transition can propagate data
from fill buffer to uncore buffers. Execute VERW before C-state transition to
clear CPU fill buffers.”h]”hŒ±Control register writes by CPU during C-state transition can propagate data
from fill buffer to uncore buffers. Execute VERW before C-state transition to
clear CPU fill buffers.”…””}”(hj‰
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K´hjx
  h²hubeh}”(h]”Œc-state-transition”ah ]”h"]”Œc-state transition”ah$]”h&]”uh1hµhj@
  h²hh³hÊh´K³ubh¶)”}”(hhh]”(h»)”}”(hŒGuest entry point”h]”hŒGuest entry point”…””}”(hj¢
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjŸ
  h²hh³hÊh´K¹ubhÌ)”}”(hX:  Same mitigation as MDS when processor is also affected by MDS/TAA, otherwise
execute VERW at VMENTER only for MMIO capable guests. On CPUs not affected by
MDS/TAA, guest without MMIO access cannot extract secrets using Processor MMIO
Stale Data vulnerabilities, so there is no need to execute VERW for such guests.”h]”hX:  Same mitigation as MDS when processor is also affected by MDS/TAA, otherwise
execute VERW at VMENTER only for MMIO capable guests. On CPUs not affected by
MDS/TAA, guest without MMIO access cannot extract secrets using Processor MMIO
Stale Data vulnerabilities, so there is no need to execute VERW for such guests.”…””}”(hj°
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KºhjŸ
  h²hubeh}”(h]”Œguest-entry-point”ah ]”h"]”Œguest entry point”ah$]”h&]”uh1hµhj@
  h²hh³hÊh´K¹ubeh}”(h]”Œmitigation-points”ah ]”h"]”Œmitigation points”ah$]”h&]”uh1hµhjé	  h²hh³hÊh´K¬ubh¶)”}”(hhh]”(h»)”}”(hŒ-Mitigation control on the kernel command line”h]”hŒ-Mitigation control on the kernel command line”…””}”(hjÑ
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjÎ
  h²hh³hÊh´KÀubhÌ)”}”(hŒ­The kernel command line allows to control the Processor MMIO Stale Data
mitigations at boot time with the option "mmio_stale_data=". The valid
arguments for this option are:”h]”hŒ±The kernel command line allows to control the Processor MMIO Stale Data
mitigations at boot time with the option â€œmmio_stale_data=â€. The valid
arguments for this option are:”…””}”(hjß
  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÁhjÎ
  h²hubjN  )”}”(hX  ==========  =================================================================
full        If the CPU is vulnerable, enable mitigation; CPU buffer clearing
            on exit to userspace and when entering a VM. Idle transitions are
            protected as well. It does not automatically disable SMT.
full,nosmt  Same as full, with SMT disabled on vulnerable CPUs. This is the
            complete mitigation.
off         Disables mitigation completely.
==========  =================================================================
”h]”jT  )”}”(hhh]”jY  )”}”(hhh]”(j^  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œcolwidth”K
uh1j]  hjô
  ubj^  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œcolwidth”KAuh1j]  hjô
  ubjÛ  )”}”(hhh]”(jƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒfull”h]”hŒfull”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÆhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ¼If the CPU is vulnerable, enable mitigation; CPU buffer clearing
on exit to userspace and when entering a VM. Idle transitions are
protected as well. It does not automatically disable SMT.”h]”hŒ¼If the CPU is vulnerable, enable mitigation; CPU buffer clearing
on exit to userspace and when entering a VM. Idle transitions are
protected as well. It does not automatically disable SMT.”…””}”(hj+  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÆhj(  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hj  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ
full,nosmt”h]”hŒ
full,nosmt”…””}”(hjK  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÉhjH  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjE  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒTSame as full, with SMT disabled on vulnerable CPUs. This is the
complete mitigation.”h]”hŒTSame as full, with SMT disabled on vulnerable CPUs. This is the
complete mitigation.”…””}”(hjb  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÉhj_  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjE  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hj  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒoff”h]”hŒoff”…””}”(hj‚  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KËhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj|  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒDisables mitigation completely.”h]”hŒDisables mitigation completely.”…””}”(hj™  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KËhj–  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj|  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jÚ  hjô
  ubeh}”(h]”h ]”h"]”h$]”h&]”Œcols”Kuh1jX  hjñ
  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jS  hjí
  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jM  h³hÊh´KÅhjÎ
  h²hubhÌ)”}”(hŒŽIf the CPU is affected and mmio_stale_data=off is not supplied on the kernel
command line, then the kernel selects the appropriate mitigation.”h]”hŒŽIf the CPU is affected and mmio_stale_data=off is not supplied on the kernel
command line, then the kernel selects the appropriate mitigation.”…””}”(hjÌ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÎhjÎ
  h²hubeh}”(h]”Œ-mitigation-control-on-the-kernel-command-line”ah ]”h"]”Œ-mitigation control on the kernel command line”ah$]”h&]”uh1hµhjé	  h²hh³hÊh´KÀubh¶)”}”(hhh]”(h»)”}”(hŒMitigation status information”h]”hŒMitigation status information”…””}”(hjå  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhjâ  h²hh³hÊh´KÒubhÌ)”}”(hŒÈThe Linux kernel provides a sysfs interface to enumerate the current
vulnerability status of the system: whether the system is vulnerable, and
which mitigations are active. The relevant sysfs file is:”h]”hŒÈThe Linux kernel provides a sysfs interface to enumerate the current
vulnerability status of the system: whether the system is vulnerable, and
which mitigations are active. The relevant sysfs file is:”…””}”(hjó  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÓhjâ  h²hubjN  )”}”(hŒ8/sys/devices/system/cpu/vulnerabilities/mmio_stale_data
”h]”hÌ)”}”(hŒ7/sys/devices/system/cpu/vulnerabilities/mmio_stale_data”h]”hŒ7/sys/devices/system/cpu/vulnerabilities/mmio_stale_data”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´K×hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jM  h³hÊh´K×hjâ  h²hubhÌ)”}”(hŒ%The possible values in this file are:”h]”hŒ%The possible values in this file are:”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÙhjâ  h²hubjN  )”}”(hXí  .. list-table::

   * - 'Not affected'
     - The processor is not vulnerable
   * - 'Vulnerable'
     - The processor is vulnerable, but no mitigation enabled
   * - 'Vulnerable: Clear CPU buffers attempted, no microcode'
     - The processor is vulnerable but microcode is not updated. The
       mitigation is enabled on a best effort basis.

       If the processor is vulnerable but the availability of the microcode
       based mitigation mechanism is not advertised via CPUID, the kernel
       selects a best effort mitigation mode. This mode invokes the mitigation
       instructions without a guarantee that they clear the CPU buffers.

       This is done to address virtualization scenarios where the host has the
       microcode update applied, but the hypervisor is not yet updated to
       expose the CPUID to the guest. If the host has updated microcode the
       protection takes effect; otherwise a few CPU cycles are wasted
       pointlessly.
   * - 'Mitigation: Clear CPU buffers'
     - The processor is vulnerable and the CPU buffer clearing mitigation is
       enabled.
   * - 'Unknown: No mitigations'
     - The processor vulnerability status is unknown because it is
       out of Servicing period. Mitigation is not attempted.
”h]”jT  )”}”(hhh]”jY  )”}”(hhh]”(j^  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œcolwidth”K2uh1j]  hj.  ubj^  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”j:  K2uh1j]  hj.  ubjÛ  )”}”(hhh]”(jƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ'Not affected'”h]”hŒâ€˜Not affectedâ€™”…””}”(hjM  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÝhjJ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjG  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒThe processor is not vulnerable”h]”hŒThe processor is not vulnerable”…””}”(hjd  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KÞhja  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjG  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjD  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ'Vulnerable'”h]”hŒâ€˜Vulnerableâ€™”…””}”(hj„  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kßhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj~  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ6The processor is vulnerable, but no mitigation enabled”h]”hŒ6The processor is vulnerable, but no mitigation enabled”…””}”(hj›  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kàhj˜  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj~  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjD  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ7'Vulnerable: Clear CPU buffers attempted, no microcode'”h]”hŒ;â€˜Vulnerable: Clear CPU buffers attempted, no microcodeâ€™”…””}”(hj»  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Káhj¸  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjµ  ubjˆ  )”}”(hhh]”(hÌ)”}”(hŒkThe processor is vulnerable but microcode is not updated. The
mitigation is enabled on a best effort basis.”h]”hŒkThe processor is vulnerable but microcode is not updated. The
mitigation is enabled on a best effort basis.”…””}”(hjÒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KâhjÏ  ubhÌ)”}”(hX  If the processor is vulnerable but the availability of the microcode
based mitigation mechanism is not advertised via CPUID, the kernel
selects a best effort mitigation mode. This mode invokes the mitigation
instructions without a guarantee that they clear the CPU buffers.”h]”hX  If the processor is vulnerable but the availability of the microcode
based mitigation mechanism is not advertised via CPUID, the kernel
selects a best effort mitigation mode. This mode invokes the mitigation
instructions without a guarantee that they clear the CPU buffers.”…””}”(hjà  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KåhjÏ  ubhÌ)”}”(hX  This is done to address virtualization scenarios where the host has the
microcode update applied, but the hypervisor is not yet updated to
expose the CPUID to the guest. If the host has updated microcode the
protection takes effect; otherwise a few CPU cycles are wasted
pointlessly.”h]”hX  This is done to address virtualization scenarios where the host has the
microcode update applied, but the hypervisor is not yet updated to
expose the CPUID to the guest. If the host has updated microcode the
protection takes effect; otherwise a few CPU cycles are wasted
pointlessly.”…””}”(hjî  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KêhjÏ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjµ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjD  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ'Mitigation: Clear CPU buffers'”h]”hŒ#â€˜Mitigation: Clear CPU buffersâ€™”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kïhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒNThe processor is vulnerable and the CPU buffer clearing mitigation is
enabled.”h]”hŒNThe processor is vulnerable and the CPU buffer clearing mitigation is
enabled.”…””}”(hj%  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kðhj"  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjD  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ'Unknown: No mitigations'”h]”hŒâ€˜Unknown: No mitigationsâ€™”…””}”(hjE  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KòhjB  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj?  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒqThe processor vulnerability status is unknown because it is
out of Servicing period. Mitigation is not attempted.”h]”hŒqThe processor vulnerability status is unknown because it is
out of Servicing period. Mitigation is not attempted.”…””}”(hj\  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´KóhjY  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj?  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjD  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jÚ  hj.  ubeh}”(h]”h ]”h"]”h$]”h&]”Œcols”Kuh1jX  hj+  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jS  hj'  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jM  h³hÊh´KÛhjâ  h²hubeh}”(h]”Œmitigation-status-information”ah ]”h"]”Œmitigation status information”ah$]”h&]”uh1hµhjé	  h²hh³hÊh´KÒubh¶)”}”(hhh]”(h»)”}”(hŒDefinitions:”h]”hŒDefinitions:”…””}”(hjš  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhj—  h²hh³hÊh´K÷ubhÌ)”}”(hŒ»Servicing period: The process of providing functional and security updates to
Intel processors or platforms, utilizing the Intel Platform Update (IPU)
process or other similar mechanisms.”h]”hŒ»Servicing period: The process of providing functional and security updates to
Intel processors or platforms, utilizing the Intel Platform Update (IPU)
process or other similar mechanisms.”…””}”(hj¨  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kùhj—  h²hubhÌ)”}”(hŒÎEnd of Servicing Updates (ESU): ESU is the date at which Intel will no
longer provide Servicing, such as through IPU or other similar update
processes. ESU dates will typically be aligned to end of quarter.”h]”hŒÎEnd of Servicing Updates (ESU): ESU is the date at which Intel will no
longer provide Servicing, such as through IPU or other similar update
processes. ESU dates will typically be aligned to end of quarter.”…””}”(hj¶  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Kýhj—  h²hubhÌ)”}”(hŒcIf the processor is vulnerable then the following information is appended to
the above information:”h]”hŒcIf the processor is vulnerable then the following information is appended to
the above information:”…””}”(hjÄ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Mhj—  h²hubjN  )”}”(hX%  ========================  ===========================================
'SMT vulnerable'          SMT is enabled
'SMT disabled'            SMT is disabled
'SMT Host state unknown'  Kernel runs in a VM, Host SMT state unknown
========================  ===========================================
”h]”jT  )”}”(hhh]”jY  )”}”(hhh]”(j^  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œcolwidth”Kuh1j]  hjÙ  ubj^  )”}”(hhh]”h}”(h]”h ]”h"]”h$]”h&]”Œcolwidth”K+uh1j]  hjÙ  ubjÛ  )”}”(hhh]”(jƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ'SMT vulnerable'”h]”hŒâ€˜SMT vulnerableâ€™”…””}”(hjù  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Mhjö  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjó  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒSMT is enabled”h]”hŒSMT is enabled”…””}”(hj  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Mhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hjó  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjð  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ'SMT disabled'”h]”hŒâ€˜SMT disabledâ€™”…””}”(hj0  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Mhj-  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj*  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒSMT is disabled”h]”hŒSMT is disabled”…””}”(hjG  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´MhjD  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hj*  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjð  ubjƒ  )”}”(hhh]”(jˆ  )”}”(hhh]”hÌ)”}”(hŒ'SMT Host state unknown'”h]”hŒâ€˜SMT Host state unknownâ€™”…””}”(hjg  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Mhjd  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hja  ubjˆ  )”}”(hhh]”hÌ)”}”(hŒ+Kernel runs in a VM, Host SMT state unknown”h]”hŒ+Kernel runs in a VM, Host SMT state unknown”…””}”(hj~  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´Mhj{  ubah}”(h]”h ]”h"]”h$]”h&]”uh1j‡  hja  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1j‚  hjð  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jÚ  hjÙ  ubeh}”(h]”h ]”h"]”h$]”h&]”Œcols”Kuh1jX  hjÖ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jS  hjÒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jM  h³hÊh´Mhj—  h²hubeh}”(h]”Œdefinitions”ah ]”h"]”Œdefinitions:”ah$]”h&]”uh1hµhjé	  h²hh³hÊh´K÷ubh¶)”}”(hhh]”(h»)”}”(hŒ
References”h]”hŒ
References”…””}”(hj¼  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hºhj¹  h²hh³hÊh´MubhŒfootnote”“”)”}”(hŒ©Affected Processors
https://www.intel.com/content/www/us/en/developer/topic-technology/software-security-guidance/processors-affected-consolidated-product-cpu-model.html”h]”(hŒlabel”“”)”}”(hhh]”hŒ1”…””}”(hjÒ  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jÐ  hjÌ  h²hh³Nh´NubhÌ)”}”(hŒ©Affected Processors
https://www.intel.com/content/www/us/en/developer/topic-technology/software-security-guidance/processors-affected-consolidated-product-cpu-model.html”h]”(hŒAffected Processors
”…””}”(hjß  h²hh³Nh´NubhŒ	reference”“”)”}”(hŒ•https://www.intel.com/content/www/us/en/developer/topic-technology/software-security-guidance/processors-affected-consolidated-product-cpu-model.html”h]”hŒ•https://www.intel.com/content/www/us/en/developer/topic-technology/software-security-guidance/processors-affected-consolidated-product-cpu-model.html”…””}”(hjé  h²hh³Nh´Nubah}”(h]”h ]”h"]”h$]”h&]”Œrefuri”jë  uh1jç  hjß  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hËh³hÊh´MhjÌ  ubeh}”(h]”j?  ah ]”h"]”Œf1”ah$]”h&]”j8  aj=  Kj@  jA  uh1jÊ  h³hÊh´Mhj¹  h²hubeh}”(h]”Œ
references”ah ]”h"]”Œ
references”ah$]”h&]”uh1hµhjé	  h²hh³hÊh´Mubeh}”(h]”Œ
mitigation”ah ]”h"]”Œ
mitigation”ah$]”h&]”uh1hµhh·h²hh³hÊh´K—ubeh}”(h]”Œ)processor-mmio-stale-data-vulnerabilities”ah ]”h"]”Œ)processor mmio stale data vulnerabilities”ah$]”h&]”uh1hµhhh²hh³hÊh´Kubeh}”(h]”h ]”h"]”h$]”h&]”Œsource”hÊuh1hŒcurrent_source”NŒcurrent_line”NŒsettings”Œdocutils.frontend”ŒValues”“”)”}”(hºNŒ	generator”NŒ	datestamp”NŒsource_link”NŒ
source_url”NŒtoc_backlinks”j‡  Œfootnote_backlinks”KŒsectnum_xform”KŒstrip_comments”NŒstrip_elements_with_classes”NŒstrip_classes”NŒreport_level”KŒ
halt_level”KŒexit_status_level”KŒdebug”NŒwarning_stream”NŒ	traceback”ˆŒinput_encoding”Œ	utf-8-sig”Œinput_encoding_error_handler”Œstrict”Œoutput_encoding”Œutf-8”Œoutput_encoding_error_handler”j?  Œerror_encoding”Œutf-8”Œerror_encoding_error_handler”Œbackslashreplace”Œlanguage_code”Œen”Œrecord_dependencies”NŒconfig”NŒ	id_prefix”hŒauto_id_prefix”Œid”Œdump_settings”NŒdump_internals”NŒdump_transforms”NŒdump_pseudo_xml”NŒexpose_internals”NŒstrict_visitor”NŒ_disable_config”NŒ_source”hÊŒ_destination”NŒ_config_files”]”Œ7/var/lib/git/docbuild/linux/Documentation/docutils.conf”aŒfile_insertion_enabled”ˆŒraw_enabled”KŒline_length_limit”M'Œpep_references”NŒpep_base_url”Œhttps://peps.python.org/”Œpep_file_url_template”Œpep-%04d”Œrfc_references”NŒrfc_base_url”Œ&https://datatracker.ietf.org/doc/html/”Œ	tab_width”KŒtrim_footnote_reference_space”‰Œsyntax_highlight”Œlong”Œsmart_quotes”ˆŒsmartquotes_locales”]”Œcharacter_level_inline_markup”‰Œdoctitle_xform”‰Œdocinfo_xform”KŒsectsubtitle_xform”‰Œimage_loading”Œlink”Œembed_stylesheet”‰Œcloak_email_addresses”ˆŒsection_self_link”‰Œenv”NubŒreporter”NŒindirect_targets”]”Œsubstitution_defs”}”Œsubstitution_names”}”Œrefnames”}”Œf1”]”j.  asŒrefids”}”j?  ]”j.  asŒnameids”}”(j  j  jt  jq  j  j  jE  jB  jl  ji  j  jÿ  j¬  j©  jÓ  jÐ  jú  j÷  jƒ  j€  jæ	  jã	  j·	  j´	  jÞ	  jÛ	  j  j  jË
  jÈ
  ju
  jr
  jœ
  j™
  jÃ
  jÀ
  jß  jÜ  j”  j‘  j¶  j³  j
  j  j  j?  uŒ	nametypes”}”(j  ‰jt  ‰j  ‰jE  ‰jl  ‰j  ‰j¬  ‰jÓ  ‰jú  ‰jƒ  ‰jæ	  ‰j·	  ‰jÞ	  ‰j  ‰jË
  ‰ju
  ‰jœ
  ‰jÃ
  ‰jß  ‰j”  ‰j¶  ‰j
  ‰j  ˆuh}”(j  h·jq  hÛj  hújB  j!  ji  jH  jÿ  jw  j©  jˆ  jÐ  j¯  j÷  jÖ  j€  j  j8  j.  jã	  j†  j´	  j¥  jÛ	  jº	  j  jé	  jÈ
  j@
  jr
  jQ
  j™
  jx
  jÀ
  jŸ
  jÜ  jÎ
  j‘  jâ  j³  j—  j  j¹  j?  jÌ  uŒfootnote_refs”}”j  ]”j.  asŒcitation_refs”}”Œautofootnotes”]”jÌ  aŒautofootnote_refs”]”j.  aŒsymbol_footnotes”]”Œsymbol_footnote_refs”]”Œ	footnotes”]”Œ	citations”]”Œautofootnote_start”KŒsymbol_footnote_start”K Œ
id_counter”Œcollections”ŒCounter”“”}”jM  Ks…”R”Œparse_messages”]”Œtransform_messages”]”Œtransformer”NŒinclude_log”]”Œ
decoration”Nh²hub.