Lines Matching +full:processor +full:- +full:a +full:- +full:side

1 .. SPDX-License-Identifier: GPL-2.0
3 GDS - Gather Data Sampling
6 Gather Data Sampling is a hardware vulnerability which allows unprivileged
10 -------
11 When a gather instruction performs loads from memory, different data elements
12 are merged into the destination vector register. However, when a gather
13 instruction that is transiently executed encounters a fault, stale data from
15 destination vector register instead. This will allow a malicious attacker to
16 infer stale data using typical side channel techniques like cache timing
17 attacks. GDS is a purely sampling-based attack.
24 Because the buffers are shared between Hyper-Threads cross Hyper-Thread attacks
28 ----------------
32 	Non-enclaves can infer SGX enclave data
39 lower-privilege contexts like guests and when running outside SGX enclaves.
42 that guests are not allowed to disable the GDS mitigation. If a host erred and
43 allowed this, a guest could theoretically disable GDS mitigation, mount an
44 attack, and re-enable it.
47 --------------------
54  IA32_ARCH_CAPABILITIES[GDS_NO]     R/O   Processor is not vulnerable.
64 "clearcpuid=avx" on the kernel command-line.
67 However, the processor will still enumerate AVX support.  Userspace that
72 ---------------------------------------------
80 ------------------------
89  Not affected                   Processor not vulnerable.
90  Vulnerable                     Processor vulnerable and mitigation disabled.
91  Vulnerable: No microcode       Processor vulnerable and microcode is missing
94  no microcode                   Processor is vulnerable and microcode is missing
96  Mitigation: Microcode          Processor is vulnerable and mitigation is in
98  Mitigation: Microcode (locked) Processor is vulnerable and mitigation is in
101  hypervisor status              Running on a virtual guest processor that is
103                                 processor is mitigated or vulnerable.
107 ----------------------