AMD Ryzen Machine Crashes to a Sequence of FMA3 Instructions

EarthDog · Mar 16, 2017

btarunr said:
The haswell-specific bench runs an FMA3 industry-standard instruction, which takes down the FMA3-supporting Ryzen (and not FMA3-supporting Skylake).

This is news because an unprivileged application can take down a machine (and is hence a security hole). Would a company like Barclay's put its client live database on a "Naples" machine now?

What would be more interesting is to hear about it crashing on consumer stress tests which use that instruction set....

silentbogo · Mar 16, 2017

phanbuey said:
sounds patcheable

FMA4 for Zen is long-disabled in binutils, as probably in MS Visual Studio.
Also, it is confirmed that w/o SMT the benchmark is running fine, so the problem is not FMA, but once again - SMT conflicts.
...khm-khm... OpenMP... khm-khm....

BiggieShady · Mar 16, 2017

R0H1T said:
Someone running Naples will likely have their own application coded to run on the Ryzen server, they don't just copy/paste the aforementioned code to run on their application & crash (test) a server.

Nope, today it's all about virtualization and the cloud ... in that case single Naples server in the server farm is hosting multiple VMs that different business use for various public online services ... it's enough that only one of these businesses allow their users to store something executable on the host and after one malicious (or unlucky) user - bam, all VMs on the node are down.

Amazon Cloud Node -> N x Business -> N x M x EndUsers

Imsochobo · Mar 16, 2017

btarunr said:
No, my point is the disgruntled IT guy Barclay's just fired could crash a "Naples" powered server with just this "little known program."

I can crash our intel servers easily with some code.
Nothing new here, move along...

Devon68 · Mar 16, 2017

Meh....

OneCool · Mar 16, 2017

We support it!!!

Oh..But don't use it lol

dorsetknob · Mar 16, 2017

silentbogo said:
Tesla Model S won't run on Diesel!

They slide on diesel tho

Gasaraki · Mar 16, 2017

RejZoR said:
If this benchmark things are tailored to such specific level that they differentiate even SERIES within SAME VENDOR, why the hell is this a news?

"this important is because a simple application, running at user privileges (i.e. lacking special super-user/admin privileges), has the ability to crash the machine."

XiGMAKiD · Mar 16, 2017

dorsetknob said:
They slide on diesel tho

The road ahead looks shiny, I wonder wh.. GAAAAAH!!!

erek · Mar 16, 2017

Jack1n said:
It's funny how people seem to be missing the point in this article, anyway, I hope AMD is able to fix this.

Agreed, the whole notion of it being exploitable at least seems to be missing in their thoughts

OSdevr · Mar 16, 2017

I've been lurking here for years but I feel the need to say something.

Guys, this IS a big deal. As others have noted an unknown instruction is supposed to raise an "Undefined Opcode" exception, something that predates even 16-bit protected mode. On CPUs which offer 'User' and 'Kernel' mode (ie everything since the mid 80s) the exception is handled by the operating system, which usually just kills off the process. The whole idea of User mode is that no User mode program can screw with the system without 'permission' from the OS.

This is similar to the Cyrix coma bug or the Pentium F00F bug. However I agree that this can probably be fixed in microcode.

Steevo · Mar 16, 2017

Really guys?

Lets look at the Intel 7700K errata list.

"
Revision
Description
Date
001
Initial release
August 2016
002
• Errata
 Added errata KBL068-078
 Updated erratum KBL062
 Fixed erratum KBL063
November 2016
003
• Added SKUs Y/U w/iHDCP2.2, S/H-Processor lines
• Added Table 2, S/H-Processor Lines Component Identification
• Identification Information
 Added Table 4, Y-Processor Line With iHDCP2.2
 Added Table 6, U-Processor Line With iHDCP2.2
 Added Figure 3, S-Processor Line LGA Top-Side Markings
 Added Table 7, S-Processor Line
 Added Figure 4, H-Processor Line BGA Top-Side Markings
 Added Table 8, H-Processor Line
• Errata
 Updated Table 13, Errata Summary Table
 Added errata KBL079-083
January 2017
004
• Identification Information
 Updated Table 4, Y-Processor Line With iHDCP2.2
• Errata
 Updated Table 13, Errata Summary Table. Added J-1 stepping
 Updated KBL080
 Added errata KBL084-091
February 2017
§"

All processors have flaws, and a future stepping, or even current stepping with an update to microcode.

Big deal if left unpatched or unfixed? Yep. Will it be fixed? Yep.

silentbogo · Mar 16, 2017

OSdevr said:
The whole idea of User mode is that no User mode program can screw with the system without 'permission' from the OS.

Regardless of your suggestive nickname, I assume you've never played pranks on your co-workers with NtRaiseHardError, or dumb overflow vulnerabilities.
There are dozens of ways you can hang, BSOD, mess up your machine from userspace.

TO EVERYONE:
It's not even known or clear, whether the bug pertains to FMA instructions at all. It was only assumed, because benchmark BSODed on the FMA3 256bit benchmark stage, and only with SMT enabled.
The reason could be anything, from Windows bug, or libgomp bug, or SMT on Zen itself, or some other unknown factor.
Let's not jump to any conclusions before even knowing what the problem is.

OSdevr · Mar 16, 2017

silentbogo said:
Regardless of your suggestive nickname, I assume you've never played pranks on your co-workers with NtRaiseHardError, or dumb overflow vulnerabilities.
There are dozens of ways you can hang, BSOD, mess up your machine from userspace.

That is why I put the word "permission" in quote marks.

I consider those methods to be software bugs, the CPU itself isn't to blame (minus errata problems of course).

BTW I just now read the HWbot post. For some reason I thought it was a reset like a triple fault. The Coma and F00F bugs were a better analogy than I realized.

I actually have written a simple operating system, though I wouldn't recommend designing as you go like I did.

Aenra · Mar 16, 2017

@darkangel0504 awesome pic

(random i know; but he/she have their profile private)

Casecutter · Mar 16, 2017

btarunr said:
Would a company like Barclay's put its client live database on a "Naples" machine now?

Are there any Naples servers running now with "live" client database? When there is it will be a problem, for now these enthusiast CPU just shut-down "crash" the system. Not a great option but better then the data being compromised. I'm sure this will be fixed especially when "Naples" sever equipment actually goes live.

laszlo · Mar 16, 2017

no cpu is perfect as those who designed & produced them aren't also...neither the universe is not and nobody can understand or patch it...

ensabrenoir · Mar 16, 2017

dorsetknob said:
They slide on diesel tho

..........absolute Genius!!!!!!!!! A hemi powered Tesla that runs on diesel must be created!!!!!!!!!!!!!!!

dorsetknob · Mar 16, 2017

ensabrenoir said:
A hemi powered Tesla that runs on diesel must be created

A Welderup Rat Rod from the Vegas builder

Twin turbo 1200hp Smoker

OneCool · Mar 16, 2017

dorsetknob said:
A Welderup Rat Rod from the Vegas builder Twin turbo 1200hp Smoker

And it still couldn't out run a stock Tesla :roll:

kid41212003 · Mar 17, 2017

Steevo said:
Really guys?

Lets look at the Intel 7700K errata list.

"
Revision
Description
Date
001
Initial release
August 2016
002
• Errata
 Added errata KBL068-078
 Updated erratum KBL062
 Fixed erratum KBL063
November 2016
003
• Added SKUs Y/U w/iHDCP2.2, S/H-Processor lines
• Added Table 2, S/H-Processor Lines Component Identification
• Identification Information
 Added Table 4, Y-Processor Line With iHDCP2.2
 Added Table 6, U-Processor Line With iHDCP2.2
 Added Figure 3, S-Processor Line LGA Top-Side Markings
 Added Table 7, S-Processor Line
 Added Figure 4, H-Processor Line BGA Top-Side Markings
 Added Table 8, H-Processor Line
• Errata
 Updated Table 13, Errata Summary Table
 Added errata KBL079-083
January 2017
004
• Identification Information
 Updated Table 4, Y-Processor Line With iHDCP2.2
• Errata
 Updated Table 13, Errata Summary Table. Added J-1 stepping
 Updated KBL080
 Added errata KBL084-091
February 2017
§"

All processors have flaws, and a future stepping, or even current stepping with an update to microcode.

Big deal if left unpatched or unfixed? Yep. Will it be fixed? Yep.

What's your point? What are you trying to say? TPU is simply reporting the news. Is this serious if left unfixed? Yes. Should TPU just stop reporting stuffs? No.

notb · Mar 17, 2017

I'm pretty amazed by the comments...

It seems most people really don't understand how this problem works - looking at all the comments saying that you can crash any system with some code (and the Tesla on diesel stuff as well...)

And because many of you have already said that this can be PROBABLY fixed by microcode, it's almost natural to ask a question: what if it can't be fixed?

Any bets?

Either way, IMO this is another sign that there's something deeply wrong with Ryzen architecture (most likely the SMT implementation). It's all very worrying. :/

BiggieShady · Mar 17, 2017

As predicted by many ...

This issue will be fixed in a new AGESA [AMD Generic Encapsulated Software Architecture] microcode

Fluffmeister · Mar 17, 2017

kid41212003 said:
What's your point? What are you trying to say? TPU is simply reporting the news. Is this serious if left unfixed? Yes. Should TPU just stop reporting stuffs? No.

Plenty of damage control going on at the moment.

Nkd · Mar 19, 2017

notb said:
I'm pretty amazed by the comments...

It seems most people really don't understand how this problem works - looking at all the comments saying that you can crash any system with some code (and the Tesla on diesel stuff as well...)

And because many of you have already said that this can be PROBABLY fixed by microcode, it's almost natural to ask a question: what if it can't be fixed? Any bets?

Either way, IMO this is another sign that there's something deeply wrong with Ryzen architecture (most likely the SMT implementation). It's all very worrying. :/

So prime, realbench for days, and then games all that use SMT didn't crash once. This program crashed that they admit does not currently support Zen. So what is so deeeeeply wrong with zen? Sound like you are more interested in exaggerating the problem. Your comment was fine until the last sentence where you made it a major flaw. This will likely be fixed with micro code update if anything.

System Name	WS#1337
Processor	Ryzen 7 5700X3D
Motherboard	ASUS X570-PLUS TUF Gaming
Cooling	Xigmatek Scylla 240mm AIO
Memory	64GB DDR4-3600(4x16)
Video Card(s)	MSI RTX 3070 Gaming X Trio
Storage	ADATA Legend 2TB
Display(s)	Samsung Viewfinity Ultra S6 (34" UW)
Case	ghetto CM Cosmos RC-1000
Audio Device(s)	ALC1220
Power Supply	SeaSonic SSR-550FX (80+ GOLD)
Mouse	Logitech G603
Keyboard	Modecom Volcano Blade (Kailh choc LP)
VR HMD	Google dreamview headset(aka fancy cardboard)
Software	Windows 11, Ubuntu 24.04 LTS

System Name	Windows 10 64-bit Core i7 6700
Processor	Intel Core i7 6700
Motherboard	Asus Z170M-PLUS
Cooling	Corsair AIO
Memory	2 x 8 GB Kingston DDR4 2666
Video Card(s)	Gigabyte NVIDIA GeForce GTX 1060 6GB
Storage	Western Digital Caviar Blue 1 TB, Seagate Baracuda 1 TB
Display(s)	Dell P2414H
Case	Corsair Carbide Air 540
Audio Device(s)	Realtek HD Audio
Power Supply	Corsair TX v2 650W
Mouse	Steelseries Sensei
Keyboard	CM Storm Quickfire Pro, Cherry MX Reds
Software	MS Windows 10 Pro 64-bit

Processor	9800x3D\| 5800x \| 4800H \| Rog ally
Motherboard	Gb x870 Aorus Elite ice \| Asrack x470d4u \| Asus Tuf A15
Cooling	Air \| Air \| duh laptop
Memory	64gb G.skill SniperX @3600 CL16 \| 128gb \| 32GB \| 192gb
Video Card(s)	RTX 4080 \|Quadro P5000 \| RTX2060M
Storage	Many drives
Display(s)	AW3423dwf.
Case	Jonsbo D41
Power Supply	Corsair RM850x
Mouse	g502x Lightspeed
Keyboard	G913 tkl
Software	win11, proxmox

System Name	Ryzen 2023
Processor	AMD Ryzen 7 7700
Motherboard	Asrock B650E Steel Legend Wifi
Cooling	Noctua NH-D15
Memory	G Skill Flare X5 2x16gb cl32@6000 MHz
Video Card(s)	Sapphire Radeon RX 6950 XT Nitro + gaming Oc
Storage	WESTERN DIGITAL 1TB 64MB 7k SATA600 Blue WD10EZEX, WD Black SN850X 1Tb nvme
Display(s)	LG 27GP850P-B
Case	Corsair 5000D airflow tempered glass
Power Supply	Seasonic Prime GX-850W
Mouse	A4Tech V7M bloody
Keyboard	Genius KB-G255
Software	Windows 10 64bit

System Name	NEW
Processor	Intel 4770 non-K
Motherboard	Gigabyte H81M-DS2V
Cooling	CM Hyper 212 plus
Memory	16gb Muskin
Video Card(s)	XFX 380X 4gb
Storage	Sandisk 120gb plus WD blue 1tb
Display(s)	AOC 23.5 LED bl
Case	XIGMATEK
Audio Device(s)	motherboard
Power Supply	Cooler Master 500

AMD Ryzen Machine Crashes to a Sequence of FMA3 Instructions

EarthDog

silentbogo

Moderator

BiggieShady

Imsochobo

Devon68

OneCool

dorsetknob

"YOUR RMA REQUEST IS CON-REFUSED"

Gasaraki

XiGMAKiD

erek

OSdevr

Steevo

silentbogo

Moderator

OSdevr

Aenra

Casecutter

laszlo

ensabrenoir

dorsetknob

"YOUR RMA REQUEST IS CON-REFUSED"

OneCool

kid41212003

notb

BiggieShady

Fluffmeister

Nkd

System Name	Unimatrix
Processor	Intel i9-9900K @ 5.0GHz
Motherboard	ASRock x390 Taichi Ultimate
Cooling	Custom Loop
Memory	32GB GSkill TridentZ RGB DDR4 @ 3400MHz 14-14-14-32
Video Card(s)	EVGA 2080 with Heatkiller Water Block
Storage	2x Samsung 960 Pro 512GB M.2 SSD in RAID 0, 1x WD Blue 1TB M.2 SSD
Display(s)	Alienware 34" Ultrawide 3440x1440
Case	CoolerMaster P500M Mesh
Power Supply	Seasonic Prime Titanium 850W
Keyboard	Corsair K75
Benchmark Scores	Really Really High

System Name	Skypas
Processor	Intel Core i7-6700
Motherboard	Asus H170 Pro Gaming
Cooling	Cooler Master Hyper 212X Turbo
Memory	Corsair Vengeance LPX 16GB
Video Card(s)	MSI GTX 1060 Gaming X 6GB
Storage	Corsair Neutron GTX 120GB + WD Blue 1TB
Display(s)	LG 22EA63V
Case	Corsair Carbide 400Q
Power Supply	Seasonic SS-460FL2 w/ Deepcool XFan 120
Mouse	Logitech B100
Keyboard	Corsair Vengeance K70
Software	Windows 10 Pro (to be replaced by 2025)

System Name	Beaver's Build
Processor	AMD Ryzen 9800X3D
Motherboard	Asus TUF Gaming X670E Plus WiFi
Cooling	Corsair H115i RGB PLATINUM 97 CFM Liquid
Memory	G.SKILL Trident Z5 Neo DDR5-6000 CL30 RAM 32GB (2x16GB)
Video Card(s)	NVIDIA GeForce RTX 4090 Founders Edition
Storage	WD_BLACK 8TB SN850X NVMe
Display(s)	Alienware AW3225QF 32" 4K 240 Hz OLED
Case	Fractal Design Design Define R6 USB-C
Audio Device(s)	Focusrite 2i4 USB Audio Interface
Power Supply	SuperFlower LEADEX TITANIUM 1600W
Mouse	Razer DeathAdder V2
Keyboard	Corsair K70 RGB Pro
Software	Microsoft Windows 11 Pro
Benchmark Scores	3dmark = https://www.3dmark.com/spy/51229598

Processor	Threadripper 1950X
Motherboard	ASRock X399 Professional Gaming
Cooling	IceGiant ProSiphon Elite
Memory	48GB DDR4 2934MHz
Video Card(s)	MSI GTX 1080
Storage	4TB Crucial P3 Plus NVMe, 1TB Samsung 980 NVMe, 1TB Inland NVMe, 2TB Western Digital HDD
Display(s)	2x 4K60
Power Supply	Cooler Master Silent Pro M (1000W)
Mouse	Corsair Ironclaw Wireless
Keyboard	Corsair K70 MK.2
VR HMD	HTC Vive Pro
Software	Windows 10, QubesOS

System Name	Compy 386
Processor	7800X3D
Motherboard	Asus
Cooling	Air for now.....
Memory	64 GB DDR5 6400Mhz
Video Card(s)	7900XTX 310 Merc
Storage	Samsung 990 2TB, 2 SP 2TB SSDs, 24TB Enterprise drives
Display(s)	55" Samsung 4K HDR
Audio Device(s)	ATI HDMI
Mouse	Logitech MX518
Keyboard	Razer
Software	A lot.
Benchmark Scores	Its fast. Enough.

System Name	ACME Singularity Unit
Processor	Coal-dual 9000
Motherboard	Oak Plank
Cooling	4 Snow Yetis huffing and puffing in parallel
Memory	Hasty Indian (I/O: 3 smoke signals per minute)
Video Card(s)	Bob Ross AI module
Storage	Stone Tablet 2.0
Display(s)	Where are my glasses?
Case	Hand sewn bull hide
Audio Device(s)	On demand tribe singing
Power Supply	Spin-o-Wheel-matic
Mouse	Hamster original
Keyboard	Chisel 1.9a (upgraded for Stone Tablet 2.0 compatibility)
Software	It's all hard down here

System Name	2nd AMD puppy
Processor	FX-8350 vishera
Motherboard	Gigabyte GA-970A-UD3
Cooling	Cooler Master Hyper TX2
Memory	16 Gb DDR3:8GB Kingston HyperX Beast + 8Gb G.Skill Sniper(by courtesy of tabascosauz &TPU)
Video Card(s)	Sapphire RX 580 Nitro+;1450/2000 Mhz
Storage	SSD :840 pro 128 Gb;Iridium pro 240Gb ; HDD 2xWD-1Tb
Display(s)	Benq XL2730Z 144 Hz freesync
Case	NZXT 820 PHANTOM
Audio Device(s)	Audigy SE with Logitech Z-5500
Power Supply	Riotoro Enigma G2 850W
Mouse	Razer copperhead / Gamdias zeus (by courtesy of sneekypeet & TPU)
Keyboard	MS Sidewinder x4
Software	win10 64bit ltsc
Benchmark Scores	irrelevant for me

System Name	iJayo
Processor	i7 14700k
Motherboard	Asus ROG STRIX z790-E wifi
Cooling	Pearless Assasi
Memory	32 gigs Corsair Vengence
Video Card(s)	Nvidia RTX 2070 Super
Storage	1tb 840 evo, Itb samsung M.2 ssd 1 & 3 tb seagate hdd, 120 gig Hyper X ssd
Display(s)	42" Nec retail display monitor/ 34" Dell curved 165hz monitor
Case	O11 mini
Audio Device(s)	M-Audio monitors
Power Supply	LIan li 750 mini
Mouse	corsair Dark Saber
Keyboard	Roccat Vulcan 121
Software	Window 11 pro
Benchmark Scores	meh... feel me on the battle field!

Processor	AMD Ryzen 7 5700X3D
Motherboard	MSI MAG B550 TOMAHAWK
Cooling	Thermalright Peerless Assassin 120 SE
Memory	Team Group Dark Pro 8Pack Edition 3600Mhz CL16
Video Card(s)	Sapphire AMD Radeon RX 9070 XT NITRO+
Storage	Kingston A2000 1TB + Seagate HDD workhorse
Display(s)	Hisense 55" U7K 4K@144Hz
Case	Thermaltake Ceres 500 TG ARGB
Power Supply	Seasonic Focus GX-850
Mouse	Razer Deathadder Chroma
Keyboard	Logitech UltraX
Software	Windows 11