search

speed47 / spectre-meltdown-checker

Reptar, Downfall, Zenbleed, ZombieLoad, RIDL, Fallout, Foreshadow, Spectre, Meltdown vulnerability/mitigation checker for Linux & BSD
3.86k stars 477 forks source link

CPU microcode is the latest known available version: version from 2005 #336

Open daniejstriata opened 4 years ago

daniejstriata commented 4 years ago

Hi,

Is the date for 2005/06/10 correct for this microcode? Is it because I'm using a KVM CPU? The system is running Centos 7.7.1908 and have microcode 53.7.el7_7 installed.

This is a virtual machine KVM with the following CPU:

processor   : 2
vendor_id   : GenuineIntel
cpu family  : 15
model       : 6
model name  : Common KVM processor
stepping    : 1
microcode   : 0x1
cpu MHz     : 2394.998
cache size  : 16384 KB
physical id : 0
siblings    : 4
core id     : 2
cpu cores   : 4
apicid      : 2
initial apicid  : 2
fpu     : yes
fpu_exception   : yes
cpuid level : 13
wp      : yes
flags       : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx lm constant_tsc nopl xtopology eagerfpu pni cx16 x2apic hypervisor lahf_lm
bogomips    : 4789.99
clflush size    : 64
cache_alignment : 128
address sizes   : 40 bits physical, 48 bits virtual
power management:
speed47 commented 4 years ago

Yes, KVM is reporting some generic CPU to your VM, which probably happened to be an old Intel CPU (can't find which one) with CPUID 0xF61. I should add a warning that if running the script from inside a VM, the host can completely fake the CPUID (and the CPU microcode version, for that matter, which seems to be the case on your example), so the ucode up to date information should be taken with precaution if not run from outside the VM.

FabioPedretti commented 4 years ago

Same issue on ESXi:

  * CPU microcode is known to cause stability problems:  NO  (family 0x6 model 0x25 stepping 0x1 ucode 0x3b cpuid 0x20651)
  * CPU microcode is the latest known available version:  NO  (latest version is 0xffff0018 dated 2009/08/18 according to builtin firmwares DB v148.20200603+i20200427)

CPU:

processor   : 0
vendor_id   : GenuineIntel
cpu family  : 6
model       : 37
model name  : Intel(R) Xeon(R) CPU E7- 4830  @ 2.13GHz
stepping    : 1
microcode   : 0x3b
cpu MHz     : 2128.000
cache size  : 24576 KB
physical id : 0
siblings    : 2
core id     : 0
cpu cores   : 2
apicid      : 0
initial apicid  : 0
fpu     : yes
fpu_exception   : yes
cpuid level : 11
wp      : yes
flags       : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ss ht syscall nx rdtscp lm constant_tsc arch_perfmon nopl xtopology tsc_reliable nonstop_tsc eagerfpu pni pclmulqdq ssse3 cx16 sse4_1 sse4_2 x2apic popcnt tsc_deadline_timer aes hypervisor lahf_lm tsc_adjust arat
bugs        :
bogomips    : 4256.00
clflush size    : 64
cache_alignment : 64
address sizes   : 43 bits physical, 48 bits virtual
power management: