Re: [PATCH] KVM: X86: Allow userspace to define the microcode version
From: Borislav Petkov
Date: Mon Feb 26 2018 - 07:21:28 EST
On Mon, Feb 26, 2018 at 12:47:27PM +0100, Paolo Bonzini wrote:
> It's actually 0x100000000.
Even more wrong. Revision ID is bits [31:0].
> Actually I think this patch makes sense, since some errata actually can
> be worked around in the guest in the same way as the host. However, it
> should also be tied to the recently introduced mechanism to read MSR
> contents from the host.
So if we decide to do microcode revisions in the guest, we should
consider the fact that microcode revisions need to be handled the same
way as CPUID bits: a revision number means something on baremetal and
implies a certain functionality, just like a set CPUID bit does.
So we either have that same functionality in the guest or we don't talk
about revisions at all. Because if we end up lying by coming up with
revision numbers, all hell will break loose in the guest.
IMO, of course.
--
Regards/Gruss,
Boris.
Good mailing practices for 400: avoid top-posting and trim the reply.