L1TF mitigation in ThinkAgile CP

The L1 Terminal Fault is an Intel x86 processor vulnerability that allows unprivileged access to the Level 1 Data Cache under certain conditions and can potentially enable hackers to bypass restrictions and gain access to the memory of running virtual machines (VMs) in a multi-tenant cloud environment. This topic provides information about mitigation modes that are available in ThinkAgile CP for the L1TF vulnerability. It also provides instructions for viewing the mitigation status in the ThinkAgile CP Cloud Controller management portal, as well as changing the mitigation mode via command line, if needed.

For more information about L1 Terminal Fault, see the following website: L1 Terminal Fault

• Mitigation modes in ThinkAgile CP
  ThinkAgile CP includes an updated Red Hat kernel (3.10.0-862.20.2.el7.x86_64) in the latest release.
• L1TF mitigation mode commands
  Several L1TF mitigation mode commands are available.
• View the L1TF mitigation mode in the user interface
  You can view the mitigation mode of a compute node in the ThinkAgile CP Cloud Controller management portal.