Hello, i haven't found anything on the web regarding qemu and mentioned variants.
While my host says: l1tf:Mitigation: PTE Inversion; VMX: SMT vulnerable, L1D conditional cache flushes meltdown:Mitigation: PTI spec_store_bypass:Mitigation: Speculative Store Bypass disabled via prctl and seccomp spectre_v1:Mitigation: __user pointer sanitization spectre_v2:Mitigation: Full generic retpoline, IBPB, IBRS_FW My guests bootet with pcid and spec-ctrl only say: l1tf:Mitigation: PTE Inversion meltdown:Mitigation: PTI spec_store_bypass:Vulnerable spectre_v1:Mitigation: __user pointer sanitization spectre_v2:Mitigation: Full generic retpoline, IBPB * What is about spec_store_bypass in Qemu? * What is about IBRS_FW feature? * What is about L1TF? Or are those just irrelevant to Qemu guests? Would be great to have some informations. Thanks a lot! Greets, Stefan
