QEMU should be able to show the guest the above feature/capability, otherwise we risk to have false vulnerability reports in the guest like in /sys/devices/system/cpu/vulnerabilities/mmio_stale_data because the mitigation is present only if the guest supports (FLUSH_L1D and MD_CLEAR) or FB_CLEAR.
Emanuele Emanuele Giuseppe Esposito (2): target/i386: add support for FLUSH_L1D feature target/i386: add support for FB_CLEAR feature target/i386/cpu.h | 3 +++ target/i386/cpu.c | 4 ++-- 2 files changed, 5 insertions(+), 2 deletions(-) -- 2.39.1
