So, who’s still observing Naked Day? On April 9th, disable all CSS on your page!

23:45 [/mastodon]

RT marcan:

Found the DMP disable chicken bit. it’s HID11_EL1<30> (at least on M2).

So yeah, as I predicted, GoFetch is entirely patchable. I’ll write up a patch for Linux to hook it up as a CPU security bug workaround.

(HID4_EL1<4> also works, but we have a name for that and it looks like a big hammer: HID4_FORCE_CPU_OLDEST_IN_ORDER)

Code here: github.com/AsahiLinux/m1n1/blo (Thanks to @dkohlbre for the userspace C version this is based off of!)

One interesting finding is that the DMP is already disabled in EL2 (and presumably EL1), it only works in EL0. So it looks like the CPU designers already had some idea that it is a security liability, and chose to hard-disable it in kernel mode. This means kernel-mode crypto on Linux is already intrinsically safe.

07:44 [/mastodon]

RT rho:

GOES East giving some perspective.

#Eclipse #SolarEclipse

00:36 [/mastodon]

RT enerjazz:

The clouds danced around the #eclipse at my house in north Texas. This shot shows solar flares with some cloud filter effect.

00:29 [/mastodon]