Re: [PATCH] KVM: X86: Allow userspace to define the microcode version

From: Paolo Bonzini
Date: Mon Feb 26 2018 - 06:47:38 EST

Next message: Andy Shevchenko: "Re: [PATCH v4 2/2] x86/apic: Replace common tools with new ones"
Previous message: Vaibhav Jain: "Re: [PATCH] powerpc/xmon: Dont register sysrq key when kernel param xmon=off"
In reply to: Paolo Bonzini: "Re: [PATCH] KVM: X86: Allow userspace to define the microcode version"
Next in thread: Borislav Petkov: "Re: [PATCH] KVM: X86: Allow userspace to define the microcode version"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 26/02/2018 11:49, Borislav Petkov wrote:
>> I think it is the host admin(e.g. cloud provider)'s responsibility to
>> set an expected microcode revision.
> + vcpu->arch.microcode_version = 0x1;
>
> That already looks pretty arbitrary and non-sensical to me.

It's actually 0x100000000.

>> In addition, the non-sensical value which is written by the guest will
>> not reflect to guest-visible microcode revision and just be ignored in
>> this implementation.
>
> Huh? How so?
>
> So a guest will have *two* microcode revisions - both of which are most
> likely wrong?!

I don't understand this either.

Actually I think this patch makes sense, since some errata actually can
be worked around in the guest in the same way as the host. However, it
should also be tied to the recently introduced mechanism to read MSR
contents from the host.

Paolo

Next message: Andy Shevchenko: "Re: [PATCH v4 2/2] x86/apic: Replace common tools with new ones"
Previous message: Vaibhav Jain: "Re: [PATCH] powerpc/xmon: Dont register sysrq key when kernel param xmon=off"
In reply to: Paolo Bonzini: "Re: [PATCH] KVM: X86: Allow userspace to define the microcode version"
Next in thread: Borislav Petkov: "Re: [PATCH] KVM: X86: Allow userspace to define the microcode version"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]