Bug 1532180

Summary: add host and guest reporting for kpti/ibrs/ibpb
Product: [oVirt] ovirt-engine Reporter: Michal Skrivanek <michal.skrivanek>
Component: BLL.VirtAssignee: jniederm
Status: CLOSED CURRENTRELEASE QA Contact: Israel Pinto <ipinto>
Severity: urgent Docs Contact:
Priority: urgent    
Version: ---CC: bugs, fgarciad, lveyde, mkalinin, trichard
Target Milestone: ovirt-4.1.9Keywords: Improvement
Target Release: ---Flags: rule-engine: ovirt-4.1+
ykaul: blocker+
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ovirt-engine-4.1.9.1 Doc Type: Enhancement
Doc Text:
The Software subtab in the Host General pane now contains a new "Kernel Features" field showing the PTI, IBPB, and IBRS kernel features of the host system, if the information is available. The Virtual Machine General pane now contains a new "Guest CPU Type" field showing the guest machine CPU type. These can be used to easily recognize if meltdown fixes are applied. For more info on meltdown patches detection, see https://access.redhat.com/solutions/3317841.
 Story Points: ---
Clone Of:
: 1533095 (view as bug list) Environment:
Last Closed: 2018-01-24 10:40:39 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Virt RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1531016    
Bug Blocks: 1533095    
Attachments:
Description Flags
vm_ibrs
none
host_ibrs none

Description Michal Skrivanek 2018-01-08 09:50:36 UTC 
Display the status of PTI, IBRS and IBPB in host subtab. 
A warning ("!") can be displayed when the host doesn't have any such support.

Display the status of actual running CPU model in guest in VM subtab
Comment 1 Michal Skrivanek 2018-01-08 12:17:26 UTC 
vdsm can report capabilities - separately for each, to be interpreted by engine.
VM's running CPU is already being reported but not used anywhere.
Comment 2 Israel Pinto 2018-01-17 12:42:17 UTC 
Verify with:
ovirt-engine-4.1.9.1-0.1.el7.noarch
vdsm 4.19.45-1.el7ev

Host info:
OS Version:RHEL - 7.4 - 18.el7
OS Description:Red Hat Enterprise Linux Server 7.4 (Maipo)
Kernel Version:3.10.0 - 693.11.6.el7.x86_64
KVM Version:2.9.0 - 16.el7_4.13
LIBVIRT Version:libvirt-3.2.0-14.el7_4.7
VDSM Version:vdsm-4.19.45-1.el7ev
SPICE Version:0.12.8 - 2.el7.1
GlusterFS Version:[N/A]
CEPH Version:librbd1-0.94.5-2.el7
Kernel Features:IBRS: 1, PTI: 1, IBPB: 1

See attached screenshots
Comment 3 Israel Pinto 2018-01-17 12:42:49 UTC 
Created attachment 1382391 [details]
vm_ibrs
Comment 4 Israel Pinto 2018-01-17 12:43:26 UTC 
Created attachment 1382392 [details]
host_ibrs
Comment 5 Sandro Bonazzola 2018-01-24 10:40:39 UTC 
This bugzilla is included in oVirt 4.1.9 release, published on Jan 24th 2018.

Since the problem described in this bug report should be
resolved in oVirt 4.1.9 release, published on Jan 24th 2018, it has been closed with a resolution of CURRENT RELEASE.

If the solution does not work for you, please open a new bug report.