2018-04-05 05:10:59 |
bugproxy |
bug |
|
|
added bug |
2018-04-05 05:11:01 |
bugproxy |
tags |
|
architecture-ppc64le bugnameltc-166426 severity-critical targetmilestone-inin--- |
|
2018-04-05 05:11:02 |
bugproxy |
ubuntu: assignee |
|
Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) |
|
2018-04-05 05:11:05 |
bugproxy |
affects |
ubuntu |
qemu (Ubuntu) |
|
2018-04-05 05:27:44 |
Frank Heimes |
bug task added |
|
ubuntu-power-systems |
|
2018-04-05 05:27:52 |
Frank Heimes |
ubuntu-power-systems: status |
New |
Triaged |
|
2018-04-05 05:27:55 |
Frank Heimes |
ubuntu-power-systems: importance |
Undecided |
Critical |
|
2018-04-05 05:28:10 |
Frank Heimes |
ubuntu-power-systems: assignee |
|
Canonical Server Team (canonical-server) |
|
2018-04-05 05:51:04 |
Frank Heimes |
bug |
|
|
added subscriber Frank Heimes |
2018-04-05 09:17:22 |
Christian Ehrhardt |
description |
== Comment: #0 - Satheesh Rajendran <satheera@in.ibm.com> - 2018-04-04 08:58:54 ==
---Problem Description---
backport needed for spectre/meltdown mitigation machine type qemu patches
Reason:
For mitigating spectre/meltdown cpu vulnerability, qemu implements the machine capabilities cfpc,sbbc,ibs, which are present in the current qemu, but the default values of it would be broken(no mitigation) even fixes in hw/fw/sw is available.
Qemu further introduces machine type variant pseries-2.12-sxxm which would set bydefault below capabilities without need of explicitly mentioning it, if mitigation is available in fw/sw. which is missing needs a backport.
kvm -M pseries,help 2>&1|egrep 'cap-cfpc|cap-sbbc|cap-ibs
pseries-bionic.cap-sbbc=string (Speculation Barrier Bounds Checking (broken, workaround, fixed)(null))
pseries-bionic.cap-cfpc=string (Cache Flush on Privilege Change (broken, workaround, fixed)(null))
pseries-bionic.cap-ibs=string (Indirect Branch Serialisation (broken, workaround, fixed)(null))
Upstream qemu Commits:
813f3cf655 ppc/spapr-caps: Define the pseries-2.12-sxxm machine type
c76c0d3090 ppc/spapr-caps: Convert cap-ibs to custom spapr-cap
aaf265ffde ppc/spapr-caps: Convert cap-sbbc to custom spapr-cap
f27aa81e72 ppc/spapr-caps: Convert cap-cfpc to custom spapr-cap
87175d1bc5 ppc/spapr-caps: Add support for custom spapr_capabilities
cb931c2108 target/ppc: Check mask when setting cap_ppc_safe_indirect_branch
Contact Information = satheera@in.ibm.com
---uname output---
4.15.0-14-generic #15-Ubuntu SMP Mon Apr 2 19:47:43 UTC 2018
Machine Type = power9 boston 2.2 (pvr 004e 1202)
---Debugger---
A debugger is not configured
Userspace tool common name: qemu-kvm 1:2.11+dfsg-1ubuntu5
The userspace tool has the following bit modes: both
Userspace rpm: qemu-kvm 1:2.11+dfsg-1ubuntu5
Userspace tool obtained from project website: na
*Additional Instructions for satheera@in.ibm.com:
-Attach ltrace and strace of userspace application. |
== Comment: #0 - Satheesh Rajendran <satheera@in.ibm.com> - 2018-04-04 08:58:54 ==
---Problem Description---
backport needed for spectre/meltdown mitigation machine type qemu patches
Reason:
For mitigating spectre/meltdown cpu vulnerability, qemu implements the machine capabilities cfpc,sbbc,ibs, which are present in the current qemu, but the default values of it would be broken(no mitigation) even fixes in hw/fw/sw is available.
Qemu further introduces machine type variant pseries-2.12-sxxm which would set bydefault below capabilities without need of explicitly mentioning it, if mitigation is available in fw/sw. which is missing needs a backport.
kvm -M pseries,help 2>&1|egrep 'cap-cfpc|cap-sbbc|cap-ibs
pseries-bionic.cap-sbbc=string (Speculation Barrier Bounds Checking (broken, workaround, fixed)(null))
pseries-bionic.cap-cfpc=string (Cache Flush on Privilege Change (broken, workaround, fixed)(null))
pseries-bionic.cap-ibs=string (Indirect Branch Serialisation (broken, workaround, fixed)(null))
Upstream qemu Commits:
813f3cf655 ppc/spapr-caps: Define the pseries-2.12-sxxm machine type
c76c0d3090 ppc/spapr-caps: Convert cap-ibs to custom spapr-cap
aaf265ffde ppc/spapr-caps: Convert cap-sbbc to custom spapr-cap
f27aa81e72 ppc/spapr-caps: Convert cap-cfpc to custom spapr-cap
87175d1bc5 ppc/spapr-caps: Add support for custom spapr_capabilities
cb931c2108 target/ppc: Check mask when setting ap_ppc_safe_indirect_branch
From 1761371 merged into this bug also
4f5b039d2b ppc/spapr-caps: Disallow setting workaround for spapr-cap-ibs
Contact Information = satheera@in.ibm.com
---uname output---
4.15.0-14-generic #15-Ubuntu SMP Mon Apr 2 19:47:43 UTC 2018
Machine Type = power9 boston 2.2 (pvr 004e 1202)
---Debugger---
A debugger is not configured
Userspace tool common name: qemu-kvm 1:2.11+dfsg-1ubuntu5
The userspace tool has the following bit modes: both
Userspace rpm: qemu-kvm 1:2.11+dfsg-1ubuntu5
Userspace tool obtained from project website: na
*Additional Instructions for satheera@in.ibm.com:
-Attach ltrace and strace of userspace application. |
|
2018-04-05 09:22:35 |
Christian Ehrhardt |
qemu (Ubuntu): status |
New |
Confirmed |
|
2018-04-05 12:49:33 |
Frank Heimes |
ubuntu-power-systems: status |
Triaged |
Confirmed |
|
2018-04-05 15:23:21 |
Frank Heimes |
tags |
architecture-ppc64le bugnameltc-166426 severity-critical targetmilestone-inin--- |
architecture-ppc64le bugnameltc-166426 severity-critical targetmilestone-inin--- triage-g |
|
2018-04-05 15:23:36 |
Manoj Iyer |
qemu (Ubuntu): assignee |
Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) |
David Britton (davidpbritton) |
|
2018-04-05 15:23:39 |
Manoj Iyer |
qemu (Ubuntu): importance |
Undecided |
Critical |
|
2018-04-09 18:07:50 |
Launchpad Janitor |
qemu (Ubuntu): status |
Confirmed |
Fix Released |
|
2018-04-09 18:28:41 |
Frank Heimes |
ubuntu-power-systems: status |
Confirmed |
Fix Released |
|
2018-04-18 14:19:51 |
Christian Ehrhardt |
cve linked |
|
2017-5715 |
|
2018-04-23 14:02:42 |
Andrew Cloke |
summary |
backport needed for spectre/meltdown mitigation machine type qemu patches (kvm) |
[18.04] backport needed for spectre/meltdown mitigation machine type qemu patches (kvm) |
|
2018-05-04 14:20:37 |
bugproxy |
tags |
architecture-ppc64le bugnameltc-166426 severity-critical targetmilestone-inin--- triage-g |
architecture-ppc64le bugnameltc-166426 severity-critical targetmilestone-inin1804 triage-g |
|