Public bug reported:
SRU Justification:
[Impact]
A final fix for LP: #2116545 has been accepted upstream. In order to prevent
the issue identified in LP: #2116545, the following two commits were reverted
from affected kernels at that time,
noble:linux-gcp-6.14, plucky:linux-gcp, questing:linux-gcp :
6a5abeea9c72e1d2c538622b4cf66c80cc816fd3 ("x86/mtrr: Rename
mtrr_overwrite_state() to guest_force_mtrr_state()")
8e690b817e38769dc2fa0e7473e5a5dc1fc25795 ("x86/kvm: Override default caching
mode for SEV-SNP and TDX")
Now that the fix has been up-streamed, Google is requesting that we undo the
reverts of these two
original commits and that we cherry-pick the following 3 fix commits from
upstream main:
960550503965094b0babd7e8c83ec66c8a763b0b ("x86/kvm: Prefer native qspinlock for
dedicated vCPUs irrespective of PV_UNHALT")
0dccbc75e18df85399a71933d60b97494110f559 ("x86/kvm: Force legacy PCI hole to UC
when overriding MTRRs for TDX/SNP")
657bf7048d77c1db6baf0841dd1a65c60d7fc4c7 ("x86/kvm: Make
kvm_async_pf_task_wake() a local static helper")
This treatment will be applied only to questing:linux-gcp, as
noble:linux-gcp-6.14 and plucky:linux-gcp are EOS.
[Fix]
By adding back the original two commits and then cherry-picking the 3 fix
commits, the resulting
kernel was verified to not exhibit the failing case, in a Google cloud instance
with vTPM and TDX
enabled.
[Test Plan]
The fix has been verified to work in a Google cloud instance with vTPM and TDX
enabled.
Further testing will be performed by Google in their environment.
[What could go wrong]
This change is considered low risk as all the commits were cleanly
cherry-picked, and the resulting kernel has been verified to resolve the
issue.
** Affects: linux-gcp (Ubuntu)
Importance: Medium
Status: Invalid
** Affects: linux-gcp (Ubuntu Questing)
Importance: Medium
Assignee: Tim Whisonant (tswhison)
Status: In Progress
** Also affects: linux-gcp (Ubuntu Questing)
Importance: Undecided
Status: New
** Changed in: linux-gcp (Ubuntu)
Status: New => Invalid
** Changed in: linux-gcp (Ubuntu Questing)
Status: New => In Progress
** Changed in: linux-gcp (Ubuntu)
Importance: Undecided => Medium
** Changed in: linux-gcp (Ubuntu Questing)
Importance: Undecided => Medium
** Changed in: linux-gcp (Ubuntu Questing)
Assignee: (unassigned) => Tim Whisonant (tswhison)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2133834
Title:
Fix for attestation failure due to vTPM device error
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux-gcp/+bug/2133834/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
