Hello,
Red Hat and others have released a bunch of updated software which
provides workarounds for the Spectre/Meltdown trouble. I have updated
some Poweredge R720s and an HPE ProLiant BL460c Gen9 server. On the Dell
servers, the Spectre/Meltdown work-arounds are not enabled after boot,
wereas on the HPE server, the workaround is enabled. All serves have the
latest available firmware/BIOSes.
I check for the workarounds being enabled by checking the value of
/sys/kernel/debug/x86/ibrs_enabled and
/sys/kernel/debug/x86/ibpb_enabled after boot. On the Dell servers, both
have a value of 0, whereas on the HPE server, the value of both is 1. As
I see it, my Dell servers are not safe yet, while my HPE server is.
Red Hat article https://access.redhat.com/articles/3311301 states that
the above mentioned workarounds are enabled at boot time, based upon the
architecture detected. So it seems that the microcode_ctl tool does not
recognize our PowerEdge R720s as being an architecture where the
workarounds are to be enabled.
I wonder how this situation is to be fixed? Does Dell have to release
updated firmware/BIOS? Does the microcode_ctl package need to have stuff
added from Intel or Dell? Or...?
--
Regards,
Troels Arvin <[email protected]>
http://troels.arvin.dk/
_______________________________________________
Linux-PowerEdge mailing list
[email protected]
https://lists.us.dell.com/mailman/listinfo/linux-poweredge
