fix: make aarch64_with_sve_and_pac template example work with >=2 vcpus

[roypat]

Setting the least significant 4 bits to zero overwrites some
configuration that Firecracker sets on secondary CPUs that is needed for
them to be able to be booted. With these 4 bits set to 0, the CPUs will
never show up as online inside the guest, and KVM will just infinitely
spin inside KVM_RUN for them. Fix by using 'x' in the template, which
preserves the defaults set by Firecracker.

Signed-off-by: Patrick Roy [email protected]

License Acceptance

By submitting this pull request, I confirm that my contribution is made under
the terms of the Apache 2.0 license. For more information on following Developer
Certificate of Origin and signing off your commits, please check
CONTRIBUTING.md.

PR Checklist

• I have read and understand CONTRIBUTING.md.
• I have run tools/devtool checkstyle to verify that the PR passes the
  automated style checks.
• I have described what is done in these changes, why they are needed, and
  how they are solving the problem in a clear and encompassing way.
• I have updated any relevant documentation (both in code and in the docs)
  in the PR.
• I have mentioned all user-facing changes in CHANGELOG.md.
• If a specific issue led to this PR, this PR closes the issue.
• When making API changes, I have followed the
  Runbook for Firecracker API changes.
• I have tested all new and changed functionalities in unit tests and/or
  integration tests.
• I have linked an issue to every new TODO.

---

• This functionality cannot be added in rust-vmm.

[codecov]

Codecov Report

Attention: Patch coverage is 60.00000% with 4 lines in your changes missing coverage. Please review.

Project coverage is 84.09%. Comparing base (4352366) to head (22e1870).
Report is 3 commits behind head on main.

Files with missing lines	Patch %	Lines
src/vmm/src/devices/virtio/mmio.rs	57.14%	3 Missing ⚠️
src/vmm/src/devices/virtio/vsock/device.rs	0.00%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #4925      +/-   ##
==========================================
+ Coverage   84.07%   84.09%   +0.01%     
==========================================
  Files         251      251              
  Lines       28067    28061       -6     
==========================================
  Hits        23597    23597              
+ Misses       4470     4464       -6     

Flag	Coverage Δ
5.10-c5n.metal	84.66% <60.00%> (+0.02%)	⬆️
5.10-m5n.metal	84.64% <60.00%> (+0.02%)	⬆️
5.10-m6a.metal	83.95% <60.00%> (+0.02%)	⬆️
5.10-m6g.metal	80.77% <55.55%> (+0.01%)	⬆️
5.10-m6i.metal	84.64% <60.00%> (+0.02%)	⬆️
5.10-m7g.metal	80.77% <55.55%> (+0.01%)	⬆️
6.1-c5n.metal	84.66% <60.00%> (+0.02%)	⬆️
6.1-m5n.metal	84.64% <60.00%> (+0.02%)	⬆️
6.1-m6a.metal	83.95% <60.00%> (+0.02%)	⬆️
6.1-m6g.metal	80.76% <55.55%> (+0.01%)	⬆️
6.1-m6i.metal	84.64% <60.00%> (+0.02%)	⬆️
6.1-m7g.metal	80.77% <55.55%> (+0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

---

🚨 Try these New Features:

• Flaky Tests Detection - Detect and resolve failed and flaky tests