Received: by 10.223.185.116 with SMTP id b49csp3650687wrg;
        Mon, 26 Feb 2018 03:48:43 -0800 (PST)
X-Google-Smtp-Source: AH8x225bqw0a58rZTfr622yp/Jy9k4vQPVnYIQyu56DSqsHR6j91N0EGrviCGj5smfwjAaicbPv0
X-Received: by 10.101.74.208 with SMTP id c16mr8267226pgu.116.1519645723786;
        Mon, 26 Feb 2018 03:48:43 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1519645723; cv=none;
        d=google.com; s=arc-20160816;
        b=FDklOr8pfayEKyt5dMgO1m0sPPnTyYiX0y7SNJ2TIU9rvAwIfizwp/Mx2eRMaBYkpm
         P+55pBNI0SwIxEivNVGtxkrUNrIZsvFUozzuZKloxboYkYUO8dXgkrfkF7pMPcVqvpdz
         T94T0MxMNQeb04gCtpiornnlnBAQzNnwzfHvhde9DOz5plIuPXBsPk+Pd1DMsaesQ3cm
         6vRca4IJFmfo3ZXsaKzlz1744CPcbi22mjpz772089E61eFGDJVqrEgfEV2XpN6VPCQy
         XehLrRNLzrVw3Sp4C9wVpgVdjxILPrM6Lcj263pnbfb05YA+qlQxfh6lwHQtGEpumzVU
         IDmg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding
         :content-language:in-reply-to:mime-version:user-agent:date
         :message-id:from:references:cc:to:subject:dkim-signature
         :arc-authentication-results;
        bh=onHMTncb/Hi8EIVN3ddY0Bd5JTSSt5zzIEGq6Dzr9ik=;
        b=yPViY91Qx00iqbaExRFF4qAy3VZkaAe/bFpMvpdno8MzI2PoAnpHYwrfrx7OnodeUv
         YC6ZLOmwbK9XwSLJTj7qHRGL6ejxJJbj9zR0G5zxTOghhGaCtgZZf2PUptzWWuRroyV6
         U9dPALdiIZ3HA+1/tDMZIMs5/xicaHveeb5jxvGH55PKB34sy/NNgUVhmfEXKURQ2lqp
         mUUqgUsLDW7jdFSCfcXPvg0wYukj/q8+9dyY50994q6AaiFLI1P9VTuEGyYX6k/ycvCQ
         0IxBBQnGfZ/HkBIrOPM02HYlDyMosVQ3nGJ2bdg9vsBySu9yyfZ45yrFAiCMF4sSL634
         GmsA==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=fail header.i=@gmail.com header.s=20161025 header.b=nkvTjOM+;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id j12si5442981pgn.115.2018.02.26.03.48.29;
        Mon, 26 Feb 2018 03:48:43 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=fail header.i=@gmail.com header.s=20161025 header.b=nkvTjOM+;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=redhat.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1752823AbeBZLrd (ORCPT <rfc822;linuxbirdgao@gmail.com>
        + 99 others); Mon, 26 Feb 2018 06:47:33 -0500
Received: from mail-wm0-f47.google.com ([74.125.82.47]:40450 "EHLO
        mail-wm0-f47.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1752709AbeBZLra (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 26 Feb 2018 06:47:30 -0500
Received: by mail-wm0-f47.google.com with SMTP id t6so8314389wmt.5;
        Mon, 26 Feb 2018 03:47:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=sender:subject:to:cc:references:from:message-id:date:user-agent
         :mime-version:in-reply-to:content-language:content-transfer-encoding;
        bh=onHMTncb/Hi8EIVN3ddY0Bd5JTSSt5zzIEGq6Dzr9ik=;
        b=nkvTjOM+dyPqU0fVbA1gI3MRSxH5A9Kqc9wrWaeA2GrUtjT+D/gmWAWSOlMN6rvEsM
         zIVIIEGrXagrG3fH89shDirB1MI0AatvC834ytd/k8F7yZqY/lx70svUVXTSXptSzYtd
         kzpDwxNaLuVAyGemYS4hIRif3xbaCiRDdaQ83ENEU24PP0oWzNNFUpmEoKIWl8/GRkzJ
         oEjHydSgp3y38PhvxDFmb4Kq2yEqCKSUqasWbDjwk8PMdG2jYk485hncRtETouY6AB8G
         2CmiRXpulOe8aZeYZQEtq489Q9oChXhaHlaA1q2v1n7cyM9fBIsqxJzI/xdegZ6XfXN6
         5spw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:sender:subject:to:cc:references:from:message-id
         :date:user-agent:mime-version:in-reply-to:content-language
         :content-transfer-encoding;
        bh=onHMTncb/Hi8EIVN3ddY0Bd5JTSSt5zzIEGq6Dzr9ik=;
        b=ckfdoKv9bQRRg+YjMcJJlpNCfQIT9EsokzpLtaRSVR6EhsW4ScfNAEfrauwZU3qMch
         HweZkicntg8Py7k/tKR5Bm5PjH/Sa8Ho4r6ljlC+Vg20IODj4QK7jegcCVFqMm0OUBWS
         uWOJTLB8Mncg2/fF191DG8gmRs3Eq/kfn8EMHUatmtUXzGCekgwaBvANmI8V/CEN6+SR
         DwUS97J7CAE+UqKlA4HDuome4Ug3o3GWNqN2uvBtiCLz/45p8NtEhc0xxUcsJ1qwzHIT
         QEykbaQQK839RP9YkAb6u0WGkUedjdfjvQxjaT2o8tECosNykqc4NMnUUfGSqXaCSEeA
         TIEQ==
X-Gm-Message-State: APf1xPC2Y/JfEMdmt6LBVS5/J8kKvda7Led4ke3+EPWA+M8ql60nwxIJ
        Qr+w3oay6w/1Ab9fUcOIHp3+8ZSq
X-Received: by 10.80.184.165 with SMTP id l34mr13821223ede.226.1519645649581;
        Mon, 26 Feb 2018 03:47:29 -0800 (PST)
Received: from [192.168.10.165] (94-36-191-219.adsl-ull.clienti.tiscali.it. [94.36.191.219])
        by smtp.googlemail.com with ESMTPSA id x7sm6813014edi.27.2018.02.26.03.47.28
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Mon, 26 Feb 2018 03:47:28 -0800 (PST)
Subject: Re: [PATCH] KVM: X86: Allow userspace to define the microcode version
To:     Borislav Petkov <bp@alien8.de>, Wanpeng Li <kernellwp@gmail.com>
Cc:     LKML <linux-kernel@vger.kernel.org>, kvm <kvm@vger.kernel.org>,
        =?UTF-8?B?UmFkaW0gS3LEjW3DocWZ?= <rkrcmar@redhat.com>
References: <1519629838-4898-1-git-send-email-wanpengli@tencent.com>
 <20180226094148.GA15539@pd.tnic>
 <CANRm+CzODxLQ4UHgFCnpjABmBUvi9sbw=uyO1xk1dyWgnH86ig@mail.gmail.com>
 <20180226104921.GA4377@pd.tnic>
From:   Paolo Bonzini <pbonzini@redhat.com>
Message-ID: <eeae3e95-c908-695a-043f-a99f8ed39919@redhat.com>
Date:   Mon, 26 Feb 2018 12:47:27 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101
 Thunderbird/52.6.0
MIME-Version: 1.0
In-Reply-To: <20180226104921.GA4377@pd.tnic>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 26/02/2018 11:49, Borislav Petkov wrote:
>> I think it is the host admin(e.g. cloud provider)'s responsibility to
>> set an expected microcode revision.
> +       vcpu->arch.microcode_version = 0x1;
> 
> That already looks pretty arbitrary and non-sensical to me.

It's actually 0x100000000.

>> In addition, the non-sensical value which is written by the guest will
>> not reflect to guest-visible microcode revision and just be ignored in
>> this implementation.
>
> Huh? How so?
> 
> So a guest will have *two* microcode revisions - both of which are most
> likely wrong?!

I don't understand this either.

Actually I think this patch makes sense, since some errata actually can
be worked around in the guest in the same way as the host.  However, it
should also be tied to the recently introduced mechanism to read MSR
contents from the host.

Paolo