chore: Add ibpb_exit_to_user as host only feature

New Amazon Linux host kernels enable mitigation against VMScape that is
IBPB before exit to userspace. However, our guest kernels still haven't
had the patches yet. Note that Intel Ice Lake is not affected by VMScape
as long as BHB clearing sequence is used to mitigate BHI.

Signed-off-by: Takahiro Itazuri <[email protected]>

Author: zulinx86

tests/integration_tests/functional/test_cpu_features_host_vs_guest.py

@@ -49,6 +49,7 @@
     "hwp_act_window",
     "hwp_epp",
     "hwp_pkg_req",
+    "ibpb_exit_to_user",
     "ida",
     "intel_ppin",
     "intel_pt",
@@ -93,6 +94,7 @@
     "extapic",
     "flushbyasid",
     "hw_pstate",
+    "ibpb_exit_to_user",
     "ibs",
     "irperf",
     "lbrv",
@@ -184,6 +186,11 @@ def test_host_vs_guest_cpu_features(uvm_plain_any):
             expected_host_minus_guest = INTEL_HOST_ONLY_FEATS
             expected_guest_minus_host = INTEL_GUEST_ONLY_FEATS
 
+            # As long as BHB clearing software mitigation is enabled, Intel Ice Lake is not
+            # vulnerable to VMScape and "IBPB before exit to userspace" is not needed.
+            # https://docs.kernel.org/admin-guide/hw-vuln/vmscape.html#affected-processors
+            expected_host_minus_guest -= {"ibpb_exit_to_user"}
+
             # Linux kernel v6.4+ passes through the CPUID bit for "flush_l1d" to guests.
             # https://github.com/torvalds/linux/commit/45cf86f26148e549c5ba4a8ab32a390e4bde216e
             #