[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
** Changed in: linux (Ubuntu Xenial) Importance: Undecided => Medium ** Changed in: linux (Ubuntu) Status: Confirmed => Fix Released ** Changed in: linux (Ubuntu) Importance: Undecided => Medium ** Changed in: linux (Ubuntu) Assignee: (unassigned) => Luis Henriques (henrix) -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1644394 Title: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split Status in linux package in Ubuntu: Fix Released Status in linux source package in Xenial: Fix Released Bug description: The port of KVM's HyperV SynIC patches (and other HyperV related KVM Patches) broke QEMU's --machine kernel_irqchip=split for Ubuntu Xenial on x86. Guests hang in early boot. Ubuntu Xenial dropped the upstream patch abdb080f7ac8a85547f5e0246362790043bbd3f2 while backporting. The result is that patch a6767645c9da8c0e91ebbb47677d933d6b378638 in Ubuntu's tree clobbers the definition of kvm_arch_irq_routing_update, which was renamed in abdb080f7..., and drops the IOAPIC scan request as a result. [Aside: this also results in kvm_hv_irq_routing_update being called outside irq_lock]. The result of this is that the EOI exit bitmaps are not updated when the table is updated, and no IOAPIC EOIs go to userspace. The fix is backporting abdb080f7ac8a85547f5e0246362790043bbd3f2, and defining kvm_arch_post_irq_routing_update with the old definition of kvm_arch_port_irq_routing_update. I've attached a patch that does this. Repro: The KVM-Unit-test's IOAPIC test should fail with QEMU and --machine kernel_irqchip=split on 4.4.0-36. (Caveat: I actually haven't tried this myself, but the theory is there.) Security Implications: I believe this is not a security issue. kvm_hv_irq_routing_update only moved outside the lock, not outside the srcu critical section. If the update were outside the critical section, this would be a racy use-after-free. Versioning information: I cloned the tree at git://kernel.ubuntu.com/ubuntu/ubuntu-xenial.git and checked out the tag 'Ubuntu-4.4.0-36.55'. All of the tests were done on a build of the 4.4.0-36 kernel. Later versions also have the issue (checked 'Ubuntu-4.4.0-49.70'). The issue was introduced in 'Ubuntu-4.4.0-32.51'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1644394/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
This bug was fixed in the package linux - 4.4.0-57.78
---
linux (4.4.0-57.78) xenial; urgency=low
* Release Tracking Bug
- LP: #1648867
* Miscellaneous Ubuntu changes
- SAUCE: Do not build the xr-usb-serial driver for s390
linux (4.4.0-56.77) xenial; urgency=low
* Release Tracking Bug
- LP: #1648867
* Release Tracking Bug
- LP: #1648579
* CONFIG_NR_CPUS=256 is too low (LP: #1579205)
- [Config] Increase the NR_CPUS to 512 for amd64 to support systems with a
large number of cores.
* NVMe drives in Amazon AWS instance fail to initialize (LP: #1648449)
- SAUCE: (no-up) NVMe: only setup MSIX once
linux (4.4.0-55.76) xenial; urgency=low
[ Luis Henriques ]
* Release Tracking Bug
- LP: #1648503
* NVMe driver accidentally reverted to use GSI instead of MSIX (LP: #1647887)
- (fix) NVMe: restore code to always use MSI/MSI-x interrupts
linux (4.4.0-54.75) xenial; urgency=low
[ Luis Henriques ]
* Release Tracking Bug
- LP: #1648017
* Update hio driver to 2.1.0.28 (LP: #1646643)
- SAUCE: hio: update to Huawei ES3000_V2 (2.1.0.28)
* linux: Enable live patching for all supported architectures (LP: #1633577)
- [Config] CONFIG_LIVEPATCH=y for s390x
* Botched backport breaks level triggered EOIs in QEMU guests with --machine
kernel_irqchip=split (LP: #1644394)
- kvm/irqchip: kvm_arch_irq_routing_update renaming split
* Xenial update to v4.4.35 stable release (LP: #1645453)
- x86/cpu/AMD: Fix cpu_llc_id for AMD Fam17h systems
- KVM: x86: fix missed SRCU usage in kvm_lapic_set_vapic_addr
- KVM: Disable irq while unregistering user notifier
- fuse: fix fuse_write_end() if zero bytes were copied
- mfd: intel-lpss: Do not put device in reset state on suspend
- can: bcm: fix warning in bcm_connect/proc_register
- i2c: mux: fix up dependencies
- kbuild: add -fno-PIE
- scripts/has-stack-protector: add -fno-PIE
- x86/kexec: add -fno-PIE
- kbuild: Steal gcc's pie from the very beginning
- ext4: sanity check the block and cluster size at mount time
- crypto: caam - do not register AES-XTS mode on LP units
- drm/amdgpu: Attach exclusive fence to prime exported bo's. (v5)
- clk: mmp: pxa910: fix return value check in pxa910_clk_init()
- clk: mmp: pxa168: fix return value check in pxa168_clk_init()
- clk: mmp: mmp2: fix return value check in mmp2_clk_init()
- rtc: omap: Fix selecting external osc
- iwlwifi: pcie: fix SPLC structure parsing
- mfd: core: Fix device reference leak in mfd_clone_cell
- uwb: fix device reference leaks
- PM / sleep: fix device reference leak in test_suspend
- PM / sleep: don't suspend parent when async child suspend_{noirq, late}
fails
- IB/mlx4: Check gid_index return value
- IB/mlx4: Fix create CQ error flow
- IB/mlx5: Use cache line size to select CQE stride
- IB/mlx5: Fix fatal error dispatching
- IB/core: Avoid unsigned int overflow in sg_alloc_table
- IB/uverbs: Fix leak of XRC target QPs
- IB/cm: Mark stale CM id's whenever the mad agent was unregistered
- netfilter: nft_dynset: fix element timeout for HZ != 1000
- Linux 4.4.35
* Upstream stable 4.4.34 and 4.8.10 regression (LP: #1645278)
- flow_dissect: call init_default_flow_dissectors() earlier
* AD5593R configurable multi-channel converter support (LP: #1644726)
- iio: dac: Add support for the AD5592R/AD5593R ADCs/DACs
- iio: dac: ad5592r: Off by one bug in ad5592r_alloc_channels()
- [Config] CONFIG_AD5592R/AD5593R=m
* ST Micro lps22hb pressure sensor support (LP: #1642258)
- iio:st_pressure:initial lps22hb sensor support
- iio:st_pressure: align storagebits on power of 2
- iio:st_pressure: document sampling gains
- iio:st_pressure:lps22hb: temperature support
* Fix Kernel Crashing under IBM Virtual Scsi Driver (LP: #1642299)
- SAUCE: ibmvscsis: Rearrange functions for future patches
- SAUCE: ibmvscsis: Synchronize cmds at tpg_enable_store time
- SAUCE: ibmvscsis: Synchronize cmds at remove time
- SAUCE: ibmvscsis: Clean up properly if target_submit_cmd/tmr fails
- SAUCE: ibmvscsis: Return correct partition name/# to client
- SAUCE: ibmvscsis: Issues from Dan Carpenter/Smatch
* System stalls when creating device node on booting (LP: #1643797)
- sched/fair: Fix new task's load avg removed from source CPU in
wake_up_new_task()
* nvme: improve performance for virtual Google NVMe devices (LP: #1637565)
- blk-mq: add blk_mq_alloc_request_hctx
- nvme.h: add NVMe over Fabrics definitions
- [Config] CONFIG_NVME_VENDOR_EXT_GOOGLE=y
- SAUCE: nvme: improve performance for virtual NVMe devices
* Move some kernel modules to the main kernel package (LP: #1642228)
- [Config] Move some powerpc kernel modules to the main kernel package
* sched: Match-all classifier is missing in xenial (LP: #1642514)
-
[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-needed- xenial' to 'verification-done-xenial'. If the problem still exists, change the tag 'verification-needed-xenial' to 'verification-failed- xenial'. If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Thank you! ** Tags added: verification-needed-xenial -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1644394 Title: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split Status in linux package in Ubuntu: Confirmed Status in linux source package in Xenial: Fix Committed Bug description: The port of KVM's HyperV SynIC patches (and other HyperV related KVM Patches) broke QEMU's --machine kernel_irqchip=split for Ubuntu Xenial on x86. Guests hang in early boot. Ubuntu Xenial dropped the upstream patch abdb080f7ac8a85547f5e0246362790043bbd3f2 while backporting. The result is that patch a6767645c9da8c0e91ebbb47677d933d6b378638 in Ubuntu's tree clobbers the definition of kvm_arch_irq_routing_update, which was renamed in abdb080f7..., and drops the IOAPIC scan request as a result. [Aside: this also results in kvm_hv_irq_routing_update being called outside irq_lock]. The result of this is that the EOI exit bitmaps are not updated when the table is updated, and no IOAPIC EOIs go to userspace. The fix is backporting abdb080f7ac8a85547f5e0246362790043bbd3f2, and defining kvm_arch_post_irq_routing_update with the old definition of kvm_arch_port_irq_routing_update. I've attached a patch that does this. Repro: The KVM-Unit-test's IOAPIC test should fail with QEMU and --machine kernel_irqchip=split on 4.4.0-36. (Caveat: I actually haven't tried this myself, but the theory is there.) Security Implications: I believe this is not a security issue. kvm_hv_irq_routing_update only moved outside the lock, not outside the srcu critical section. If the update were outside the critical section, this would be a racy use-after-free. Versioning information: I cloned the tree at git://kernel.ubuntu.com/ubuntu/ubuntu-xenial.git and checked out the tag 'Ubuntu-4.4.0-36.55'. All of the tests were done on a build of the 4.4.0-36 kernel. Later versions also have the issue (checked 'Ubuntu-4.4.0-49.70'). The issue was introduced in 'Ubuntu-4.4.0-32.51'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1644394/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
Thanks! -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1644394 Title: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split Status in linux package in Ubuntu: Confirmed Status in linux source package in Xenial: Fix Committed Bug description: The port of KVM's HyperV SynIC patches (and other HyperV related KVM Patches) broke QEMU's --machine kernel_irqchip=split for Ubuntu Xenial on x86. Guests hang in early boot. Ubuntu Xenial dropped the upstream patch abdb080f7ac8a85547f5e0246362790043bbd3f2 while backporting. The result is that patch a6767645c9da8c0e91ebbb47677d933d6b378638 in Ubuntu's tree clobbers the definition of kvm_arch_irq_routing_update, which was renamed in abdb080f7..., and drops the IOAPIC scan request as a result. [Aside: this also results in kvm_hv_irq_routing_update being called outside irq_lock]. The result of this is that the EOI exit bitmaps are not updated when the table is updated, and no IOAPIC EOIs go to userspace. The fix is backporting abdb080f7ac8a85547f5e0246362790043bbd3f2, and defining kvm_arch_post_irq_routing_update with the old definition of kvm_arch_port_irq_routing_update. I've attached a patch that does this. Repro: The KVM-Unit-test's IOAPIC test should fail with QEMU and --machine kernel_irqchip=split on 4.4.0-36. (Caveat: I actually haven't tried this myself, but the theory is there.) Security Implications: I believe this is not a security issue. kvm_hv_irq_routing_update only moved outside the lock, not outside the srcu critical section. If the update were outside the critical section, this would be a racy use-after-free. Versioning information: I cloned the tree at git://kernel.ubuntu.com/ubuntu/ubuntu-xenial.git and checked out the tag 'Ubuntu-4.4.0-36.55'. All of the tests were done on a build of the 4.4.0-36 kernel. Later versions also have the issue (checked 'Ubuntu-4.4.0-49.70'). The issue was introduced in 'Ubuntu-4.4.0-32.51'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1644394/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
** Changed in: linux (Ubuntu Xenial) Status: In Progress => Fix Committed -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1644394 Title: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split Status in linux package in Ubuntu: Confirmed Status in linux source package in Xenial: Fix Committed Bug description: The port of KVM's HyperV SynIC patches (and other HyperV related KVM Patches) broke QEMU's --machine kernel_irqchip=split for Ubuntu Xenial on x86. Guests hang in early boot. Ubuntu Xenial dropped the upstream patch abdb080f7ac8a85547f5e0246362790043bbd3f2 while backporting. The result is that patch a6767645c9da8c0e91ebbb47677d933d6b378638 in Ubuntu's tree clobbers the definition of kvm_arch_irq_routing_update, which was renamed in abdb080f7..., and drops the IOAPIC scan request as a result. [Aside: this also results in kvm_hv_irq_routing_update being called outside irq_lock]. The result of this is that the EOI exit bitmaps are not updated when the table is updated, and no IOAPIC EOIs go to userspace. The fix is backporting abdb080f7ac8a85547f5e0246362790043bbd3f2, and defining kvm_arch_post_irq_routing_update with the old definition of kvm_arch_port_irq_routing_update. I've attached a patch that does this. Repro: The KVM-Unit-test's IOAPIC test should fail with QEMU and --machine kernel_irqchip=split on 4.4.0-36. (Caveat: I actually haven't tried this myself, but the theory is there.) Security Implications: I believe this is not a security issue. kvm_hv_irq_routing_update only moved outside the lock, not outside the srcu critical section. If the update were outside the critical section, this would be a racy use-after-free. Versioning information: I cloned the tree at git://kernel.ubuntu.com/ubuntu/ubuntu-xenial.git and checked out the tag 'Ubuntu-4.4.0-36.55'. All of the tests were done on a build of the 4.4.0-36 kernel. Later versions also have the issue (checked 'Ubuntu-4.4.0-49.70'). The issue was introduced in 'Ubuntu-4.4.0-32.51'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1644394/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
Submitted Steve's backport to the kernel team mailing-list for review: https://lists.ubuntu.com/archives/kernel-team/2016-November/081152.html ** Changed in: linux (Ubuntu Xenial) Status: New => In Progress ** Changed in: linux (Ubuntu Xenial) Assignee: (unassigned) => Luis Henriques (henrix) -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1644394 Title: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split Status in linux package in Ubuntu: Confirmed Status in linux source package in Xenial: In Progress Bug description: The port of KVM's HyperV SynIC patches (and other HyperV related KVM Patches) broke QEMU's --machine kernel_irqchip=split for Ubuntu Xenial on x86. Guests hang in early boot. Ubuntu Xenial dropped the upstream patch abdb080f7ac8a85547f5e0246362790043bbd3f2 while backporting. The result is that patch a6767645c9da8c0e91ebbb47677d933d6b378638 in Ubuntu's tree clobbers the definition of kvm_arch_irq_routing_update, which was renamed in abdb080f7..., and drops the IOAPIC scan request as a result. [Aside: this also results in kvm_hv_irq_routing_update being called outside irq_lock]. The result of this is that the EOI exit bitmaps are not updated when the table is updated, and no IOAPIC EOIs go to userspace. The fix is backporting abdb080f7ac8a85547f5e0246362790043bbd3f2, and defining kvm_arch_post_irq_routing_update with the old definition of kvm_arch_port_irq_routing_update. I've attached a patch that does this. Repro: The KVM-Unit-test's IOAPIC test should fail with QEMU and --machine kernel_irqchip=split on 4.4.0-36. (Caveat: I actually haven't tried this myself, but the theory is there.) Security Implications: I believe this is not a security issue. kvm_hv_irq_routing_update only moved outside the lock, not outside the srcu critical section. If the update were outside the critical section, this would be a racy use-after-free. Versioning information: I cloned the tree at git://kernel.ubuntu.com/ubuntu/ubuntu-xenial.git and checked out the tag 'Ubuntu-4.4.0-36.55'. All of the tests were done on a build of the 4.4.0-36 kernel. Later versions also have the issue (checked 'Ubuntu-4.4.0-49.70'). The issue was introduced in 'Ubuntu-4.4.0-32.51'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1644394/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
** Also affects: linux (Ubuntu Xenial) Importance: Undecided Status: New -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1644394 Title: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split Status in linux package in Ubuntu: Confirmed Status in linux source package in Xenial: New Bug description: The port of KVM's HyperV SynIC patches (and other HyperV related KVM Patches) broke QEMU's --machine kernel_irqchip=split for Ubuntu Xenial on x86. Guests hang in early boot. Ubuntu Xenial dropped the upstream patch abdb080f7ac8a85547f5e0246362790043bbd3f2 while backporting. The result is that patch a6767645c9da8c0e91ebbb47677d933d6b378638 in Ubuntu's tree clobbers the definition of kvm_arch_irq_routing_update, which was renamed in abdb080f7..., and drops the IOAPIC scan request as a result. [Aside: this also results in kvm_hv_irq_routing_update being called outside irq_lock]. The result of this is that the EOI exit bitmaps are not updated when the table is updated, and no IOAPIC EOIs go to userspace. The fix is backporting abdb080f7ac8a85547f5e0246362790043bbd3f2, and defining kvm_arch_post_irq_routing_update with the old definition of kvm_arch_port_irq_routing_update. I've attached a patch that does this. Repro: The KVM-Unit-test's IOAPIC test should fail with QEMU and --machine kernel_irqchip=split on 4.4.0-36. (Caveat: I actually haven't tried this myself, but the theory is there.) Security Implications: I believe this is not a security issue. kvm_hv_irq_routing_update only moved outside the lock, not outside the srcu critical section. If the update were outside the critical section, this would be a racy use-after-free. Versioning information: I cloned the tree at git://kernel.ubuntu.com/ubuntu/ubuntu-xenial.git and checked out the tag 'Ubuntu-4.4.0-36.55'. All of the tests were done on a build of the 4.4.0-36 kernel. Later versions also have the issue (checked 'Ubuntu-4.4.0-49.70'). The issue was introduced in 'Ubuntu-4.4.0-32.51'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1644394/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
** Tags added: patch -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1644394 Title: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split Status in linux package in Ubuntu: Confirmed Bug description: The port of KVM's HyperV SynIC patches (and other HyperV related KVM Patches) broke QEMU's --machine kernel_irqchip=split for Ubuntu Xenial on x86. Guests hang in early boot. Ubuntu Xenial dropped the upstream patch abdb080f7ac8a85547f5e0246362790043bbd3f2 while backporting. The result is that patch a6767645c9da8c0e91ebbb47677d933d6b378638 in Ubuntu's tree clobbers the definition of kvm_arch_irq_routing_update, which was renamed in abdb080f7..., and drops the IOAPIC scan request as a result. [Aside: this also results in kvm_hv_irq_routing_update being called outside irq_lock]. The result of this is that the EOI exit bitmaps are not updated when the table is updated, and no IOAPIC EOIs go to userspace. The fix is backporting abdb080f7ac8a85547f5e0246362790043bbd3f2, and defining kvm_arch_post_irq_routing_update with the old definition of kvm_arch_port_irq_routing_update. I've attached a patch that does this. Repro: The KVM-Unit-test's IOAPIC test should fail with QEMU and --machine kernel_irqchip=split on 4.4.0-36. (Caveat: I actually haven't tried this myself, but the theory is there.) Security Implications: I believe this is not a security issue. kvm_hv_irq_routing_update only moved outside the lock, not outside the srcu critical section. If the update were outside the critical section, this would be a racy use-after-free. Versioning information: I cloned the tree at git://kernel.ubuntu.com/ubuntu/ubuntu-xenial.git and checked out the tag 'Ubuntu-4.4.0-36.55'. All of the tests were done on a build of the 4.4.0-36 kernel. Later versions also have the issue (checked 'Ubuntu-4.4.0-49.70'). The issue was introduced in 'Ubuntu-4.4.0-32.51'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1644394/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
Those logs shouldn't be necessary. Identified the underlying bug by code inspection of your public tree (and local testing). Marking as confirmed. ** Changed in: linux (Ubuntu) Status: Incomplete => Confirmed -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1644394 Title: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split Status in linux package in Ubuntu: Confirmed Bug description: The port of KVM's HyperV SynIC patches (and other HyperV related KVM Patches) broke QEMU's --machine kernel_irqchip=split for Ubuntu Xenial on x86. Guests hang in early boot. Ubuntu Xenial dropped the upstream patch abdb080f7ac8a85547f5e0246362790043bbd3f2 while backporting. The result is that patch a6767645c9da8c0e91ebbb47677d933d6b378638 in Ubuntu's tree clobbers the definition of kvm_arch_irq_routing_update, which was renamed in abdb080f7..., and drops the IOAPIC scan request as a result. [Aside: this also results in kvm_hv_irq_routing_update being called outside irq_lock]. The result of this is that the EOI exit bitmaps are not updated when the table is updated, and no IOAPIC EOIs go to userspace. The fix is backporting abdb080f7ac8a85547f5e0246362790043bbd3f2, and defining kvm_arch_post_irq_routing_update with the old definition of kvm_arch_port_irq_routing_update. I've attached a patch that does this. Repro: The KVM-Unit-test's IOAPIC test should fail with QEMU and --machine kernel_irqchip=split on 4.4.0-36. (Caveat: I actually haven't tried this myself, but the theory is there.) Security Implications: I believe this is not a security issue. kvm_hv_irq_routing_update only moved outside the lock, not outside the srcu critical section. If the update were outside the critical section, this would be a racy use-after-free. Versioning information: I cloned the tree at git://kernel.ubuntu.com/ubuntu/ubuntu-xenial.git and checked out the tag 'Ubuntu-4.4.0-36.55'. All of the tests were done on a build of the 4.4.0-36 kernel. Later versions also have the issue (checked 'Ubuntu-4.4.0-49.70'). The issue was introduced in 'Ubuntu-4.4.0-32.51'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1644394/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
[Kernel-packages] [Bug 1644394] Re: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split
[I've CC'ed the people that signed-off/acked the original backport.] -- You received this bug notification because you are a member of Kernel Packages, which is subscribed to linux in Ubuntu. https://bugs.launchpad.net/bugs/1644394 Title: Botched backport breaks level triggered EOIs in QEMU guests with --machine kernel_irqchip=split Status in linux package in Ubuntu: New Bug description: The port of KVM's HyperV SynIC patches (and other HyperV related KVM Patches) broke QEMU's --machine kernel_irqchip=split for Ubuntu Xenial on x86. Guests hang in early boot. Ubuntu Xenial dropped the upstream patch abdb080f7ac8a85547f5e0246362790043bbd3f2 while backporting. The result is that patch a6767645c9da8c0e91ebbb47677d933d6b378638 in Ubuntu's tree clobbers the definition of kvm_arch_irq_routing_update, which was renamed in abdb080f7..., and drops the IOAPIC scan request as a result. [Aside: this also results in kvm_hv_irq_routing_update being called outside irq_lock]. The result of this is that the EOI exit bitmaps are not updated when the table is updated, and no IOAPIC EOIs go to userspace. The fix is backporting abdb080f7ac8a85547f5e0246362790043bbd3f2, and defining kvm_arch_post_irq_routing_update with the old definition of kvm_arch_port_irq_routing_update. I've attached a patch that does this. Repro: The KVM-Unit-test's IOAPIC test should fail with QEMU and --machine kernel_irqchip=split on 4.4.0-36. (Caveat: I actually haven't tried this myself, but the theory is there.) Security Implications: I believe this is not a security issue. kvm_hv_irq_routing_update only moved outside the lock, not outside the srcu critical section. If the update were outside the critical section, this would be a racy use-after-free. Versioning information: I cloned the tree at git://kernel.ubuntu.com/ubuntu/ubuntu-xenial.git and checked out the tag 'Ubuntu-4.4.0-36.55'. All of the tests were done on a build of the 4.4.0-36 kernel. Later versions also have the issue (checked 'Ubuntu-4.4.0-49.70'). The issue was introduced in 'Ubuntu-4.4.0-32.51'. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1644394/+subscriptions -- Mailing list: https://launchpad.net/~kernel-packages Post to : kernel-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~kernel-packages More help : https://help.launchpad.net/ListHelp
