mirror of
https://gitlab.com/libvirt/libvirt.git
synced 2024-10-30 09:53:10 +00:00
cpu: define the 'ssbd' CPUID feature bit (CVE-2018-3639)
New microcode introduces the "Speculative Store Bypass Disable" CPUID feature bit. This needs to be exposed to guest OS to allow them to protect against CVE-2018-3639. Signed-off-by: Daniel P. Berrangé <berrange@redhat.com> Reviewed-by: Jiri Denemark <jdenemar@redhat.com>
This commit is contained in:
parent
08e190fdda
commit
1dbca2ecca
@ -298,6 +298,9 @@
|
|||||||
<feature name='spec-ctrl'>
|
<feature name='spec-ctrl'>
|
||||||
<cpuid eax_in='0x07' ecx_in='0x00' edx='0x04000000'/>
|
<cpuid eax_in='0x07' ecx_in='0x00' edx='0x04000000'/>
|
||||||
</feature>
|
</feature>
|
||||||
|
<feature name='ssbd'>
|
||||||
|
<cpuid eax_in='0x07' ecx_in='0x00' edx='0x80000000'/>
|
||||||
|
</feature>
|
||||||
|
|
||||||
<!-- Processor Extended State Enumeration sub leaf 1 -->
|
<!-- Processor Extended State Enumeration sub leaf 1 -->
|
||||||
<feature name='xsaveopt'>
|
<feature name='xsaveopt'>
|
||||||
|
Loading…
Reference in New Issue
Block a user