Skip to content

Backport T2S template fix to v1.2 #3936

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 5, 2023
Merged

Backport T2S template fix to v1.2 #3936

merged 1 commit into from
Jul 5, 2023

Conversation

@zulinx86
Copy link
Contributor

@zulinx86 zulinx86 commented Jul 5, 2023
edited
Loading

Changes

Reason

An Intel microcode update set IA32_ARCH_CAPABILITIES.RRSBA to 1 on CascadeLake, which requires revision of T2S templates that have already been released.
Since T2CL template is not included in v1.2, the commit for T2CL does not need to be backported.

License Acceptance

By submitting this pull request, I confirm that my contribution is made under
the terms of the Apache 2.0 license. For more information on following
Developer Certificate of Origin and signing off your commits, please check
CONTRIBUTING.md.

PR Checklist

  • [ ] If a specific issue led to this PR, this PR closes the issue.
  • The description of changes is clear and encompassing.
  • [ ] Any required documentation changes (code and docs) are included in this PR.
  • [ ] API changes follow the Runbook for Firecracker API changes.
  • User-facing changes are mentioned in CHANGELOG.md.
  • All added/changed functionality is tested.
  • [ ] New TODOs link to an issue.
  • Commits meet contribution quality standards.
  • This functionality cannot be added in rust-vmm.

@zulinx86
fix(vmm): Set IA32_ARCH_CAPABILITIES.RRSBA to 1 with T2S
314257e 
We updated the fingerprint files in PR firecracker-microvm#3813, since Intel microcode
release (microcode-20230512) changed to set IA32_ARCH_CAPABILITIES.RRSBA
(bit 19) to 1 on Intel CascadeLake CPU. The mitigation itself is already
in place which is eIBRS.

Since the kernel enables eIBRS by default using SPECTRE_V2_EIBRS mode
regardless of the IA32_ARCH_CAPABILITIES.RRSBA bit, hosts and guests
should not get impacted by this change. However, it has a role to inform
softwares whether the part has the RRSBA behavior.

The T2S template has set it to 0 explicitly before, but this commit
changes to set it to 1 so that guest kernels and applications can know
that the processor has the RRSBA behavior. The reason why it sets the
bit to 1 instead of passing through it from the host is that it aims to
provide the ability to securely migrate snapshots between Intel Skylake
and Intel CascadeLake.

Signed-off-by: Takahiro Itazuri <itazur@amazon.com>
@zulinx86 zulinx86 self-assigned this Jul 5, 2023
@zulinx86 zulinx86 added the Type: Fix Indicates a fix to existing code label Jul 5, 2023
@zulinx86 zulinx86 merged commit 3ac9df4 into firecracker-microvm:firecracker-v1.2 Jul 5, 2023
@zulinx86 zulinx86 deleted the backport-v1.2 branch August 11, 2023 12:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kalyazin kalyazin kalyazin approved these changes

+1 more reviewer

@roypat roypat roypat approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@zulinx86 zulinx86

Labels

Type: Fix Indicates a fix to existing code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@zulinx86 @kalyazin @roypat