[18.04] backport needed for spectre/meltdown mitigation machine type qemu patches (kvm)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
The Ubuntu-power-systems project |
Fix Released
|
Critical
|
Canonical Server | ||
qemu (Ubuntu) |
Fix Released
|
Critical
|
David Britton |
Bug Description
== Comment: #0 - Satheesh Rajendran <email address hidden> - 2018-04-04 08:58:54 ==
---Problem Description---
backport needed for spectre/meltdown mitigation machine type qemu patches
Reason:
For mitigating spectre/meltdown cpu vulnerability, qemu implements the machine capabilities cfpc,sbbc,ibs, which are present in the current qemu, but the default values of it would be broken(no mitigation) even fixes in hw/fw/sw is available.
Qemu further introduces machine type variant pseries-2.12-sxxm which would set bydefault below capabilities without need of explicitly mentioning it, if mitigation is available in fw/sw. which is missing needs a backport.
kvm -M pseries,help 2>&1|egrep 'cap-cfpc|
pseries-
pseries-
pseries-
Upstream qemu Commits:
813f3cf655 ppc/spapr-caps: Define the pseries-2.12-sxxm machine type
c76c0d3090 ppc/spapr-caps: Convert cap-ibs to custom spapr-cap
aaf265ffde ppc/spapr-caps: Convert cap-sbbc to custom spapr-cap
f27aa81e72 ppc/spapr-caps: Convert cap-cfpc to custom spapr-cap
87175d1bc5 ppc/spapr-caps: Add support for custom spapr_capabilities
cb931c2108 target/ppc: Check mask when setting ap_ppc_
From 1761371 merged into this bug also
4f5b039d2b ppc/spapr-caps: Disallow setting workaround for spapr-cap-ibs
Contact Information = <email address hidden>
---uname output---
4.15.0-14-generic #15-Ubuntu SMP Mon Apr 2 19:47:43 UTC 2018
Machine Type = power9 boston 2.2 (pvr 004e 1202)
---Debugger---
A debugger is not configured
Userspace tool common name: qemu-kvm 1:2.11+
The userspace tool has the following bit modes: both
Userspace rpm: qemu-kvm 1:2.11+
Userspace tool obtained from project website: na
*Additional Instructions for <email address hidden>:
-Attach ltrace and strace of userspace application.
CVE References
tags: | added: architecture-ppc64le bugnameltc-166426 severity-critical targetmilestone-inin--- |
Changed in ubuntu: | |
assignee: | nobody → Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) |
affects: | ubuntu → qemu (Ubuntu) |
Changed in ubuntu-power-systems: | |
status: | New → Triaged |
importance: | Undecided → Critical |
assignee: | nobody → Canonical Server Team (canonical-server) |
Changed in ubuntu-power-systems: | |
status: | Triaged → Confirmed |
tags: | added: triage-g |
Changed in qemu (Ubuntu): | |
assignee: | Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) → David Britton (davidpbritton) |
importance: | Undecided → Critical |
Changed in ubuntu-power-systems: | |
status: | Confirmed → Fix Released |
summary: |
- backport needed for spectre/meltdown mitigation machine type qemu - patches (kvm) + [18.04] backport needed for spectre/meltdown mitigation machine type + qemu patches (kvm) |
Merged in the change from bug 1761371 as it is almost part of the same series and has the same dependencies.
Closed the other bug as dup and added the change to the list in the bug description.