Received: by 10.223.185.116 with SMTP id b49csp4745469wrg; Tue, 27 Feb 2018 01:44:49 -0800 (PST) X-Google-Smtp-Source: AH8x227d1GJm7a3u3IlHZg8+n8tq9MHqG1/Zk436NJvozYx2/5h+h+Z4ELoGK9W4liz370KlRgcl X-Received: by 10.99.123.80 with SMTP id k16mr11240550pgn.134.1519724688920; Tue, 27 Feb 2018 01:44:48 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1519724688; cv=none; d=google.com; s=arc-20160816; b=eGKULnyRSTAU48NwrHbHIK0KUK/W0dfHMKYaETjzwa+vH8J5fWMtQBq2ShoUsAYihn b1pZimL1dMr76RfZnFdwFNPxC4SxqU8WTwfuBtiAR7TMj6+7MQ/gjGL5cY+CN00kBGAB vMAII710vsElMw2YIUGCNm68MahyURniyl+3WqG0hxNyC261uQ0RaGqp3xOCjLPmf1zo SJF7vREQ3vqIfRlNPv2YrQufoqvl2taXAuzQvWBl+qfJm9VMqOtC/yADD5rF1hz8LI8l sO88El2oaPOPzTwb4ZEVlSjJdxGAuUEQxmTYmkEjhJQLl1reB7/IXuGJ78M6/aX1tX4D 6Yxw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-transfer-encoding:content-disposition:mime-version :references:message-id:subject:cc:to:from:date :arc-authentication-results; bh=Q3vf+THSLpmy2X8V1oXr7xl32Y822I0caNRDHs8DFSs=; b=MqzvWC5lilTzvwPXgGZTvKBfmGXVm2Me8PDx8be8HvGTk2SLcNcz9g8mrtUeJS3Di9 Eprmib7UdbRnaj5PaQ/+aE48CvUInAIM4drPVpj6Jp7gNTT+ikC7DS6VAGz6M1xBTPFY 70sJDqECEF70NLXCq6Rie9DJIH4AYIaWuAFMYUCHMSzZyKZtQtLzQkKPU3Bt3SbFBjGz 8ns5K4tXSTHDgYw84vxYFQGprWdv3G9WN4TclNfUrdFOV3aJDIdjgxmHleCzl71W0vBU H5HTAZLUBs3PuFvENt0vO5iHi7MlU2VHlz3fa42lBWUZF85kHrDX2bC1HdPZqBFdglL6 deOQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id b5si1802255pgc.139.2018.02.27.01.44.34; Tue, 27 Feb 2018 01:44:48 -0800 (PST) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1752576AbeB0Jna (ORCPT + 99 others); Tue, 27 Feb 2018 04:43:30 -0500 Received: from mail.skyhub.de ([5.9.137.197]:43810 "EHLO mail.skyhub.de" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1752444AbeB0Jn0 (ORCPT ); Tue, 27 Feb 2018 04:43:26 -0500 X-Virus-Scanned: Nedap ESD1 at mail.skyhub.de Received: from mail.skyhub.de ([127.0.0.1]) by localhost (blast.alien8.de [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id lmr86_k2-fBh; Tue, 27 Feb 2018 10:43:24 +0100 (CET) Received: from pd.tnic (p200300EC2BCDD900C0F39F3CF1943F44.dip0.t-ipconnect.de [IPv6:2003:ec:2bcd:d900:c0f3:9f3c:f194:3f44]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.skyhub.de (SuperMail on ZX Spectrum 128k) with ESMTPSA id B80851EC00F4; Tue, 27 Feb 2018 10:43:24 +0100 (CET) Date: Tue, 27 Feb 2018 10:43:03 +0100 From: Borislav Petkov To: Wanpeng Li Cc: Paolo Bonzini , linux-kernel@vger.kernel.org, kvm@vger.kernel.org, Radim =?utf-8?B?S3LEjW3DocWZ?= , Liran Alon , Nadav Amit Subject: Re: [PATCH v4] KVM: X86: Allow userspace to define the microcode version Message-ID: <20180227094303.GA30022@pd.tnic> References: <1519698910-4272-1-git-send-email-wanpengli@tencent.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: User-Agent: Mutt/1.9.3 (2018-01-21) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On Tue, Feb 27, 2018 at 09:38:12AM +0100, Paolo Bonzini wrote: > On 27/02/2018 03:35, Wanpeng Li wrote: > > From: Wanpeng Li > > > > Linux (among the others) has checks to make sure that certain features > > aren't enabled on a certain family/model/stepping if the microcode version > > isn't greater than or equal to a known good version. > > > > By exposing the real microcode version, we're preventing buggy guests that > > don't check that they are running virtualized (i.e., they should trust the > > hypervisor) from disabling features that are effectively not buggy. > > > > Suggested-by: Filippo Sironi > > Cc: Paolo Bonzini > > Cc: Radim Krčmář > > Cc: Liran Alon > > Cc: Nadav Amit > > Signed-off-by: Wanpeng Li > > --- > > v3 -> v4: > > * add the shifts back > > Please wait for a review instead of pushing new versions continuously. ... and pls CC me on your submissions. Thx. -- Regards/Gruss, Boris. Good mailing practices for 400: avoid top-posting and trim the reply.