Bug 1533095

Summary: analyzer: add host and guest reporting for kpti/ibrs/ibpb
Product: [oVirt] ovirt-log-collector Reporter: Yaniv Kaul <ykaul>
Component: analyzerAssignee: Douglas Schilling Landgraf <dougsland>
Status: CLOSED CURRENTRELEASE QA Contact: Jiri Belka <jbelka>
Severity: high Docs Contact:
Priority: unspecified    
Version: ---CC: bugs, dougsland, fgarciad, ipinto, lsvaty, michal.skrivanek, mkalinin, sbonazzo, ykaul
Target Milestone: ovirt-4.2.2Keywords: Improvement
Target Release: 4.2.4Flags: rule-engine: ovirt-4.2+
jbelka: testing_plan_complete-
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ovirt-log-collector-4.2.4-3.el7ev Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: 1532180 Environment:
Last Closed: 2018-03-29 11:16:02 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Integration RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1531016, 1532180    
Bug Blocks:    

Description Yaniv Kaul 2018-01-10 13:10:44 UTC 
+++ This bug was initially created as a clone of Bug #1532180 +++

Display the status of PTI, IBRS and IBPB in host subtab. 
A warning ("!") can be displayed when the host doesn't have any such support.

Display the status of actual running CPU model in guest in VM subtab

--- Additional comment from Michal Skrivanek on 2018-01-08 14:17:26 IST ---

vdsm can report capabilities - separately for each, to be interpreted by engine.
VM's running CPU is already being reported but not used anywhere.
Comment 1 Douglas Schilling Landgraf 2018-01-18 21:36:45 UTC 
Hi Michal,

I have patched the code from wrongcpu.sh to support PTI and IBPB.
Could you please review the following:

https://gerrit.ovirt.org/86561 inventory: Catch hosts with non reporting CPU: IBRS, PTI, IBPB
https://gerrit.ovirt.org/86562 inventory: Catch vms with non reporting CPU: IBRS, PTI, IBPB
https://gerrit.ovirt.org/86563 inventory: Catch cluster with non reporting CPU: IBRS, PTI, IBPB

Thanks!
Comment 7 Sandro Bonazzola 2018-01-31 09:36:59 UTC 
Moving to 4.2.2, missed 4.2.1
Comment 8 Sandro Bonazzola 2018-02-14 10:09:40 UTC 
Douglas, what's the status of this bug? Any update?
Comment 14 Jiri Belka 2018-03-07 17:35:40 UTC 
ok, 4.2.4-3

> lynx -dump /tmp/analyzer_report.html | grep -A 10 '^18. Security'
18. Security

18.1. Meltdown and Spectre

   The following cluster(s) contain non IBRS CPUs. For more info see
   [79]solution article.
   NO. Cluster Detected CPU

   1

   vhosts-cluster
Comment 15 Sandro Bonazzola 2018-03-29 11:16:02 UTC 
This bugzilla is included in oVirt 4.2.2 release, published on March 28th 2018.

Since the problem described in this bug report should be
resolved in oVirt 4.2.2 release, it has been closed with a resolution of CURRENT RELEASE.

If the solution does not work for you, please open a new bug report.