Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1581144

Summary: add SSBD CPUs
Product: [oVirt] ovirt-engine Reporter: Michal Skrivanek <michal.skrivanek>
Component: BLL.VirtAssignee: Michal Skrivanek <michal.skrivanek>
Status: CLOSED CURRENTRELEASE QA Contact: Israel Pinto <ipinto>
Severity: urgent Docs Contact:
Priority: urgent    
Version: ---CC: bugs
Target Milestone: ovirt-4.2.3Flags: rule-engine: ovirt-4.2+
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ovirt-engine-4.2.3.7 Doc Type: Enhancement
Doc Text:
SSBD type has been added to relevant CPU families (most Intels) for mitigation of CVE-2018-3639 in guests. These new types cover the previous Spectre/Meltdown mitigations and in case of Westmere and SandyBridge CPUs provide additional performace from the IBRS types alone. For maximum security all Clusters configured with IBRS CPU type should be changed to its SSBD variant and running VMs power cycled. Note it requires another microcode update to be applied on host prior to that, so check the SSBD type is reported in Host tab before making any configuration changes
 Story Points: ---
Clone Of:
: 1600573 (view as bug list) Environment:
Last Closed: 2018-06-20 11:14:36 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Virt RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1600573    

Description Michal Skrivanek 2018-05-22 08:51:12 UTC 
add SSBD CPUs to the supported list. Requires host support and microcode updates to be effective
Comment 1 Michal Skrivanek 2018-05-22 15:57:27 UTC 
see details in https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-3639
Comment 2 Israel Pinto 2018-06-18 05:53:06 UTC 
Verify with:
RHVM version: 4.2.4.4-0.1
Host:
OS Version: RHEL - 7.5 - 8.el7
Kernel Version:3.10.0 - 862.6.1.el7.x86_64
KVM Version:2.10.0 - 21.el7_5.4
LIBVIRT Version: libvirt-3.9.0-14.el7_5.6
VDSM Version: vdsm-4.20.31-1.el7ev
SPICE Version:0.14.0 - 2.el7_5.3

Virt Sanity - PASS
Comment 3 Sandro Bonazzola 2018-06-20 11:14:36 UTC 
This bugzilla is included in oVirt 4.2.3 release, published on May 4th 2018.

Since the problem described in this bug report should be
resolved in oVirt 4.2.3 release, it has been closed with a resolution of CURRENT RELEASE.

If the solution does not work for you, please open a new bug report.