From c95345b4fea239a4482652ad57b4106254cd79f0 Mon Sep 17 00:00:00 2001 From: Eduardo Habkost Date: Wed, 13 Jun 2018 18:50:56 +0200 Subject: [PATCH 04/17] i386: define the AMD 'virt-ssbd' CPUID feature bit (CVE-2018-3639) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit RH-Author: Eduardo Habkost Message-id: <20180613185056.18066-3-ehabkost@redhat.com> Patchwork-id: 80680 O-Subject: [RHEL-7.5 qemu-kvm PATCH 2/2] i386: define the AMD 'virt-ssbd' CPUID feature bit (CVE-2018-3639) Bugzilla: 1584583 RH-Acked-by: Igor Mammedov RH-Acked-by: Miroslav Rezanina From: Konrad Rzeszutek Wilk AMD Zen expose the Intel equivalant to Speculative Store Bypass Disable via the 0x80000008_EBX[25] CPUID feature bit. This needs to be exposed to guest OS to allow them to protect against CVE-2018-3639. Signed-off-by: Konrad Rzeszutek Wilk Reviewed-by: Daniel P. Berrangé Signed-off-by: Daniel P. Berrangé Message-Id: <20180521215424.13520-3-berrange@redhat.com> Signed-off-by: Eduardo Habkost (cherry picked from commit 403503b162ffc33fb64cfefdf7b880acf41772cd) Signed-off-by: Miroslav Rezanina Conflicts: target/i386/cpu.c is target-i386/cpu.c Signed-off-by: Eduardo Habkost --- target-i386/cpu.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/target-i386/cpu.c b/target-i386/cpu.c index 0254747..4b3a238 100644 --- a/target-i386/cpu.c +++ b/target-i386/cpu.c @@ -183,7 +183,7 @@ static const char *cpuid_80000008_ebx_feature_name[] = { "ibpb", NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, NULL, - NULL, NULL, NULL, NULL, + NULL, "virt-ssbd", NULL, NULL, NULL, NULL, NULL, NULL, }; -- 1.8.3.1