Project

General

Profile

Feature #27820

Add sysutils/devcpu-data

Added by Warren Block over 1 year ago. Updated 9 months ago.

Status:
Done
Priority:
Important
Assignee:
Alexander Motin
Category:
Hardware
Target version:
Estimated time:
Severity:
Med High
Reason for Closing:
Reason for Blocked:
Needs QA:
No
Needs Doc:
No
Needs Merging:
No
Needs Automation:
No
Support Suite Ticket:
n/a
Hardware Configuration:

Description

The sysutils/devcpu-data port can update Intel microcode.

The questions about adding this port are:

Should the rc.conf entry be enabled by default? (microcode_update_enable="YES")

Should there be an alert if the user disables the tunable?

Can we verify that it is smart enough not to downgrade to an older version of firmware? (cpucontrol(8))


Related issues

Copied to FreeNAS - Feature #39099: Let the CPU microcode update when applicableDone

History

#1 Updated by Alexander Motin over 1 year ago

  • Status changed from Unscreened to Screened

At this point we do not have it enabled by default at all. We should probably update it and enable as some point as soon as vendors finalize their microcode updates after the recent security issues. I am just not sure we should hurry here, since I've heard that at least some of Intel updates were not exactly successful. Let the dust settle a bit.

#2 Avatar?id=14398&size=24x24 Updated by Kris Moore over 1 year ago

  • Target version changed from 11.1-U1 to 11.1-U2

Sounds like Alexander is right, some of the microcode updates may be getting fixed / refined over the next month or even more. We'll push this back a release to -U2. Meltdown really is still the highest priority here to bring in.

#3 Updated by Dru Lavigne about 1 year ago

  • Status changed from Screened to Not Started
  • Reason for Blocked set to Dependant on a related task to be completed

#4 Updated by Alexander Motin about 1 year ago

  • Status changed from Not Started to Blocked

#5 Avatar?id=13649&size=24x24 Updated by Ben Gadd about 1 year ago

  • Due date set to 02/12/2018

Due date updated to reflect the code freeze for 11.1U2.

#6 Avatar?id=13649&size=24x24 Updated by Ben Gadd about 1 year ago

  • Severity set to New

#7 Avatar?id=13649&size=24x24 Updated by Ben Gadd about 1 year ago

  • Target version changed from 11.1-U2 to 11.2-RC2

#8 Avatar?id=13649&size=24x24 Updated by Ben Gadd about 1 year ago

  • Due date deleted (02/12/2018)

#9 Updated by Alexander Motin about 1 year ago

  • Status changed from Blocked to In Progress
  • Severity changed from New to Med High
  • Reason for Blocked deleted (Dependant on a related task to be completed)

It seems we have an updated Intel microcode in ports now. The only question is to enable the updating by default during boot by setting the rc.conf variable by default. We should test it at least on our main types of systems.

#10 Updated by Dru Lavigne 11 months ago

  • Status changed from In Progress to Closed
  • Target version changed from 11.2-RC2 to N/A
  • Reason for Closing set to Not Applicable

Unfortunately, this port is no longer applicable as Intel will no longer support this option.

#11 Updated by Daniel Kempkens 11 months ago

On the 18th of May, the port was updated with the following message:

Use new tool committed by Ed Maste of the FreeBSD Foundation to process Intel microcode files into a format cpucontrol can process.

Which sounds to me like devcpu-data will still work. I think this issue should therefore be reopened.

#12 Updated by Dru Lavigne 10 months ago

  • Status changed from Closed to Unscreened
  • Target version changed from N/A to Backlog
  • Reason for Closing deleted (Not Applicable)

#14 Avatar?id=13649&size=24x24 Updated by Ben Gadd 10 months ago

  • Target version changed from Backlog to Backlog

#15 Updated by Alexander Motin 9 months ago

  • Status changed from Unscreened to In Progress
  • Target version changed from Backlog to 11.2-BETA3

I've updated the port to the latest. Intel set from July 3rd, 2018, AMD from about May 2018. Still not loaded by default yet.

#16 Updated by Alexander Motin 9 months ago

  • Category changed from OS to Hardware

#17 Updated by Alexander Motin 9 months ago

  • Target version changed from 11.2-BETA3 to 11.2-BETA2

Lets ship new images with 11.2, but postpone experiments with pulling the trigger to 11.3 nightlies.

#18 Updated by Alexander Motin 9 months ago

  • Copied to Feature #39099: Let the CPU microcode update when applicable added

#19 Updated by Alexander Motin 9 months ago

  • Status changed from In Progress to Ready for Testing
  • Needs Merging changed from Yes to No

Latest microcode package version 1.18 should be present in next build. People who want to use it may set microcode_update_enable="YES" rc.conf option. General experiments we start in nightlies after 11.2-stable is branched or even released.

#20 Updated by Dru Lavigne 9 months ago

  • Needs Doc changed from Yes to No

#21 Updated by Bonnie Follweiler 9 months ago

  • Status changed from Ready for Testing to Passed Testing
  • Needs QA changed from Yes to No

Test Passed in FreeNAS-11.2-MASTER-201807270859
(Build Date: Jul 27, 2018 12:10)

#22 Updated by Dru Lavigne 9 months ago

  • Status changed from Passed Testing to Done

Also available in: Atom PDF