diff options
| author | Wanpeng Li | 2018-02-28 07:03:31 +0100 |
|---|---|---|
| committer | Radim Krčmář | 2018-03-01 22:32:44 +0100 |
| commit | 518e7b94817abed94becfe6a44f1ece0d4745afe (patch) | |
| tree | 8509ae1036d7d17ef3e13f2679a9724a1dd11d99 /arch/x86/kvm/vmx.c | |
| parent | KVM: X86: Introduce kvm_get_msr_feature() (diff) | |
| download | kernel-qcow2-linux-518e7b94817abed94becfe6a44f1ece0d4745afe.tar.gz kernel-qcow2-linux-518e7b94817abed94becfe6a44f1ece0d4745afe.tar.xz kernel-qcow2-linux-518e7b94817abed94becfe6a44f1ece0d4745afe.zip | |
KVM: X86: Allow userspace to define the microcode version
Linux (among the others) has checks to make sure that certain features
aren't enabled on a certain family/model/stepping if the microcode version
isn't greater than or equal to a known good version.
By exposing the real microcode version, we're preventing buggy guests that
don't check that they are running virtualized (i.e., they should trust the
hypervisor) from disabling features that are effectively not buggy.
Suggested-by: Filippo Sironi <sironi@amazon.de>
Cc: Paolo Bonzini <pbonzini@redhat.com>
Cc: Radim Krčmář <rkrcmar@redhat.com>
Cc: Liran Alon <liran.alon@oracle.com>
Cc: Nadav Amit <nadav.amit@gmail.com>
Cc: Borislav Petkov <bp@alien8.de>
Cc: Tom Lendacky <thomas.lendacky@amd.com>
Signed-off-by: Wanpeng Li <wanpengli@tencent.com>
Reviewed-by: Paolo Bonzini <pbonzini@redhat.com>
Signed-off-by: Radim Krčmář <rkrcmar@redhat.com>
Diffstat (limited to 'arch/x86/kvm/vmx.c')
| -rw-r--r-- | arch/x86/kvm/vmx.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/arch/x86/kvm/vmx.c b/arch/x86/kvm/vmx.c index fafc1f6d8987..591214843046 100644 --- a/arch/x86/kvm/vmx.c +++ b/arch/x86/kvm/vmx.c @@ -5771,6 +5771,7 @@ static void vmx_vcpu_reset(struct kvm_vcpu *vcpu, bool init_event) vmx->rmode.vm86_active = 0; vmx->spec_ctrl = 0; + vcpu->arch.microcode_version = 0x100000000ULL; vmx->vcpu.arch.regs[VCPU_REGS_RDX] = get_rdx_init_val(); kvm_set_cr8(vcpu, 0); |