Bug #1904906 “5.10 kernel fails to boot with secure boot disable...” : Bugs : linux package : Ubuntu

bugproxy (bugproxy) on 2020-11-19

tags:	added: architecture-ppc64le bugnameltc-189504 severity-medium targetmilestone-inin2010
Changed in ubuntu:
assignee:	nobody → Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage)
affects:	ubuntu → linux (Ubuntu)

Andrew Cloke (andrew-cloke) on 2020-11-19

Changed in ubuntu-power-systems:
assignee:	nobody → Canonical Kernel Team (canonical-kernel-team)

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-11-19:

#1

Ubuntu ppc64el kernel config for 5.8 Edit (224.0 KiB, text/plain)

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-11-19:

#2

Ubuntu ppc64el kernel config for 5.10 Edit (226.9 KiB, text/plain)

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-11-19:

#3

Diff between Ubuntu 5.8 and 5.10 ppc64el kernel configs Edit (38.5 KiB, text/plain)

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-11-19:

#4

I've attached our configs for the Ubuntu 5.8 and 5.10 kernels along with a diff between these configs. I didn't see anything in the diff which looked like an obvious candidate for causing the boot problems. Please let me know if you see something there which should be changed.

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-11-19:

#5

I also note that you are testing with 5.10.0-0, which was based on 5.10-rc1. We have 5.10.0-4 in the ppa now based on -rc4, it is built for hirsute and not groovy though. I'd recommend trying that version to see if there was an upstream bug which has already been fixed.

Revision history for this message

bugproxy (bugproxy) wrote on 2020-11-24: Comment bridged from LTC Bugzilla

#6

Download full text (13.1 KiB)

------- Comment From <email address hidden> 2020-11-24 02:07 EDT-------
Hi,

Ok, I have been experimenting with the hirsute kernel: 5.10.0-4-generic #5-Ubuntu

It boots without issue on a pseries guest with secure boot both on and off. However, this doesn't exercise booting out of kexec.

Booting on a machine with no OS secure-boot support also fails coming out of kexec, so something is going wrong with kexec. I will see if this can be replicated under qemu and try a bisect over the next couple of days.

In the mean time, here's the log of a boot with `earlyprintk` and without `quiet`.

Kind regards,
Daniel

[ 182.160030] kexec_core: Starting new kernel
[ 0.000000] dt-cpu-ftrs: setup for ISA 3000
[ 0.000000] dt-cpu-ftrs: final cpu/mmu features = 0x0001f86b8f5fb1a7 0x3c007041
[ 0.000000] radix-mmu: Page sizes from device-tree:
[ 0.000000] radix-mmu: Page size shift = 12 AP=0x0
[ 0.000000] radix-mmu: Page size shift = 16 AP=0x5
[ 0.000000] radix-mmu: Page size shift = 21 AP=0x1
[ 0.000000] radix-mmu: Page size shift = 30 AP=0x2
[ 0.000000] radix-mmu: Activating Kernel Userspace Execution Prevention
[ 0.000000] radix-mmu: Activating Kernel Userspace Access Prevention
[ 0.000000] radix-mmu: Mapped 0x0000000000000000-0x0000000040000000 with 1.00 GiB pages (exec)
[ 0.000000] radix-mmu: Mapped 0x0000000040000000-0x0000000800000000 with 1.00 GiB pages
[ 0.000000] radix-mmu: Mapped 0x0000200000000000-0x0000200800000000 with 1.00 GiB pages
[ 0.000000] radix-mmu: Initializing Radix MMU
[ 0.000000] Linux version 5.10.0-4-generic (buildd@bos02-ppc64el-008) (gcc (Ubuntu 10.2.0-17ubuntu1) 10.2.0, GNU ld (GNU Binutils for Ubun
tu) 2.35.1) #5-Ubuntu SMP Mon Nov 16 09:41:59 UTC 2020 (Ubuntu 5.10.0-4.5-generic 5.10.0-rc4)
[ 0.000000] Secure boot mode disabled
[ 0.000000] Found initrd at 0xc000000004900000:0xc0000000066f0cf4
[ 0.000000] OPAL: Found memory mapped LPC bus on chip 0
[ 0.000000] Using PowerNV machine description
[ 0.000000] printk: bootconsole [udbg0] enabled
[ 0.000000] CPU maps initialized for 4 threads per core
[ 0.000000] -----------------------------------------------------
[ 0.000000] phys_mem_size = 0x1000000000
[ 0.000000] dcache_bsize = 0x80
[ 0.000000] icache_bsize = 0x80
[ 0.000000] cpu_features = 0x0001f86b8f5fb1a7
[ 0.000000] possible = 0x000ffbfbcf5fb1a7
[ 0.000000] always = 0x00000003800081a1
[ 0.000000] cpu_user_features = 0xdc0065c2 0xaef00000
[ 0.000000] mmu_features = 0xbc007441
[ 0.000000] firmware_features = 0x0000000110000000
[ 0.000000] vmalloc start = 0xc008000000000000
[ 0.000000] IO start = 0xc00a000000000000
[ 0.000000] vmemmap start = 0xc00c000000000000
[ 0.000000] -----------------------------------------------------
[ 0.000000] kvm_cma_reserve: reserving 3276 MiB for global area
[ 0.000000] cma: Reserved 3280 MiB at 0x000020072f000000
[ 0.000000] numa: NODE_DATA [mem 0x7ffd44900-0x7ffd4bfff]
[ 0.000000] numa: NODE_DATA [mem 0x2007ff438900-0x2007ff43ffff]
[ 0.000000] rfi-flush: mttrig type flush available
[ 0.000000] count-cache-flush: fl...

------- Comment From Daniel.Axtens1@ibm.com 2020-11-24 02:07 EDT-------
Hi,

Ok, I have been experimenting with the hirsute kernel: 5.10.0-4-generic #5-Ubuntu

It boots without issue on a pseries guest with secure boot both on and off. However, this doesn't exercise booting out of kexec.

Booting on a machine with no OS secure-boot support also fails coming out of kexec, so something is going wrong with kexec. I will see if this can be replicated under qemu and try a bisect over the next couple of days.

In the mean time, here's the log of a boot with `earlyprintk` and without `quiet`.

Kind regards,
Daniel

[  182.160030] kexec_core: Starting new kernel
[    0.000000] dt-cpu-ftrs: setup for ISA 3000
[    0.000000] dt-cpu-ftrs: final cpu/mmu features = 0x0001f86b8f5fb1a7 0x3c007041
[    0.000000] radix-mmu: Page sizes from device-tree:
[    0.000000] radix-mmu: Page size shift = 12 AP=0x0
[    0.000000] radix-mmu: Page size shift = 16 AP=0x5
[    0.000000] radix-mmu: Page size shift = 21 AP=0x1
[    0.000000] radix-mmu: Page size shift = 30 AP=0x2
[    0.000000] radix-mmu: Activating Kernel Userspace Execution Prevention
[    0.000000] radix-mmu: Activating Kernel Userspace Access Prevention
[    0.000000] radix-mmu: Mapped 0x0000000000000000-0x0000000040000000 with 1.00 GiB pages (exec)
[    0.000000] radix-mmu: Mapped 0x0000000040000000-0x0000000800000000 with 1.00 GiB pages
[    0.000000] radix-mmu: Mapped 0x0000200000000000-0x0000200800000000 with 1.00 GiB pages
[    0.000000] radix-mmu: Initializing Radix MMU
[    0.000000] Linux version 5.10.0-4-generic (buildd@bos02-ppc64el-008) (gcc (Ubuntu 10.2.0-17ubuntu1) 10.2.0, GNU ld (GNU Binutils for Ubun
tu) 2.35.1) #5-Ubuntu SMP Mon Nov 16 09:41:59 UTC 2020 (Ubuntu 5.10.0-4.5-generic 5.10.0-rc4)
[    0.000000] Secure boot mode disabled
[    0.000000] Found initrd at 0xc000000004900000:0xc0000000066f0cf4
[    0.000000] OPAL: Found memory mapped LPC bus on chip 0
[    0.000000] Using PowerNV machine description
[    0.000000] printk: bootconsole [udbg0] enabled
[    0.000000] CPU maps initialized for 4 threads per core
[    0.000000] -----------------------------------------------------
[    0.000000] phys_mem_size     = 0x1000000000
[    0.000000] dcache_bsize      = 0x80
[    0.000000] icache_bsize      = 0x80
[    0.000000] cpu_features      = 0x0001f86b8f5fb1a7
[    0.000000]   possible        = 0x000ffbfbcf5fb1a7
[    0.000000]   always          = 0x00000003800081a1
[    0.000000] cpu_user_features = 0xdc0065c2 0xaef00000
[    0.000000] mmu_features      = 0xbc007441
[    0.000000] firmware_features = 0x0000000110000000
[    0.000000] vmalloc start     = 0xc008000000000000
[    0.000000] IO start          = 0xc00a000000000000
[    0.000000] vmemmap start     = 0xc00c000000000000
[    0.000000] -----------------------------------------------------
[    0.000000] kvm_cma_reserve: reserving 3276 MiB for global area
[    0.000000] cma: Reserved 3280 MiB at 0x000020072f000000
[    0.000000] numa:   NODE_DATA [mem 0x7ffd44900-0x7ffd4bfff]
[    0.000000] numa:   NODE_DATA [mem 0x2007ff438900-0x2007ff43ffff]
[    0.000000] rfi-flush: mttrig type flush available
[    0.000000] count-cache-flush: flush disabled.
[    0.000000] link-stack-flush: software flush enabled.
[    0.000000] stf-barrier: eieio barrier available
[    0.000000] Initializing IODA2 PHB (/pciex@600c3c0000000)
[    0.000000] PCI host bridge /pciex@600c3c0000000 (primary) ranges:
[    0.000000]  MEM 0x000600c000000000..0x000600c07ffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006000000000000..0x0006003fffffffff -> 0x0006000000000000 (M64 #1..31)
[    0.000000]  Using M64 #31 as default window
[    0.000000]   512 (511) PE's M32: 0x80000000 [segment=0x400000]
[    0.000000]                  M64: 0x4000000000 [segment=0x20000000]
[    0.000000]   Allocated bitmap for 4088 MSIs (base IRQ 0xfe000)
[    0.000000] Initializing IODA2 PHB (/pciex@600c3c0100000)
[    0.000000] PCI host bridge /pciex@600c3c0100000  ranges:
[    0.000000]  MEM 0x000600c080000000..0x000600c0fffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006004000000000..0x0006007fffffffff -> 0x0006004000000000 (M64 #1..15)
[    0.000000]  Using M64 #15 as default window
[    0.000000]   256 (255) PE's M32: 0x80000000 [segment=0x800000]
[    0.000000]                  M64: 0x4000000000 [segment=0x40000000]
[    0.000000]   Allocated bitmap for 2040 MSIs (base IRQ 0xfd800)
[    0.000000] Initializing IODA2 PHB (/pciex@600c3c0200000)
[    0.000000] PCI host bridge /pciex@600c3c0200000  ranges:
[    0.000000]  MEM 0x000600c100000000..0x000600c17ffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006008000000000..0x000600bfffffffff -> 0x0006008000000000 (M64 #1..15)
[    0.000000]  Using M64 #15 as default window
[    0.000000]   256 (255) PE's M32: 0x80000000 [segment=0x800000]
[    0.000000]                  M64: 0x4000000000 [segment=0x40000000]
[    0.000000]   Allocated bitmap for 2040 MSIs (base IRQ 0xfd000)
[    0.000000] Initializing IODA2 PHB (/pciex@600c3c0300000)
[    0.000000] PCI host bridge /pciex@600c3c0300000  ranges:
[    0.000000]  MEM 0x000600c180000000..0x000600c1fffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006020000000000..0x0006023fffffffff -> 0x0006020000000000 (M64 #1..31)
[    0.000000]  Using M64 #31 as default window
[    0.000000]   512 (511) PE's M32: 0x80000000 [segment=0x400000]
[    0.000000]                  M64: 0x4000000000 [segment=0x20000000]
[    0.000000]   Allocated bitmap for 4088 MSIs (base IRQ 0xfc000)
[    0.000000] Initializing IODA2 PHB (/pciex@600c3c0400000)
[    0.000000] PCI host bridge /pciex@600c3c0400000  ranges:
[    0.000000]  MEM 0x000600c200000000..0x000600c27ffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006024000000000..0x0006027fffffffff -> 0x0006024000000000 (M64 #1..15)
[    0.000000]  Using M64 #15 as default window
[    0.000000]   256 (255) PE's M32: 0x80000000 [segment=0x800000]
[    0.000000]                  M64: 0x4000000000 [segment=0x40000000]
[    0.000000]   Allocated bitmap for 2040 MSIs (base IRQ 0xfb800)
[    0.000000] Initializing IODA2 PHB (/pciex@600c3c0500000)
[    0.000000] PCI host bridge /pciex@600c3c0500000  ranges:
[    0.000000]  MEM 0x000600c280000000..0x000600c2fffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006028000000000..0x000602bfffffffff -> 0x0006028000000000 (M64 #1..15)
[    0.000000]  Using M64 #15 as default window
[    0.000000]   256 (255) PE's M32: 0x80000000 [segment=0x800000]
[    0.000000]                  M64: 0x4000000000 [segment=0x40000000]
[    0.000000]   Allocated bitmap for 2040 MSIs (base IRQ 0xfb000)
[    0.000000] Initializing IODA2 PHB (/pciex@620c3c0000000)
[    0.000000] PCI host bridge /pciex@620c3c0000000  ranges:
[    0.000000]  MEM 0x000620c000000000..0x000620c07ffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006200000000000..0x0006203fffffffff -> 0x0006200000000000 (M64 #1..31)
[    0.000000]  Using M64 #31 as default window
[    0.000000]   512 (511) PE's M32: 0x80000000 [segment=0x400000]
[    0.000000]                  M64: 0x4000000000 [segment=0x20000000]
[    0.000000]   Allocated bitmap for 4088 MSIs (base IRQ 0x1fe000)
[    0.000000] Initializing IODA2 PHB (/pciex@620c3c0100000)
[    0.000000] PCI host bridge /pciex@620c3c0100000  ranges:
[    0.000000]  MEM 0x000620c080000000..0x000620c0fffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006204000000000..0x0006207fffffffff -> 0x0006204000000000 (M64 #1..15)
[    0.000000]  Using M64 #15 as default window
[    0.000000]   256 (255) PE's M32: 0x80000000 [segment=0x800000]
[    0.000000]                  M64: 0x4000000000 [segment=0x40000000]
[    0.000000]   Allocated bitmap for 2040 MSIs (base IRQ 0x1fd800)
[    0.000000] Initializing IODA2 PHB (/pciex@620c3c0200000)
[    0.000000] PCI host bridge /pciex@620c3c0200000  ranges:
[    0.000000]  MEM 0x000620c100000000..0x000620c17ffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006208000000000..0x000620bfffffffff -> 0x0006208000000000 (M64 #1..15)
[    0.000000]  Using M64 #15 as default window
[    0.000000]   256 (255) PE's M32: 0x80000000 [segment=0x800000]
[    0.000000]                  M64: 0x4000000000 [segment=0x40000000]
[    0.000000]   Allocated bitmap for 2040 MSIs (base IRQ 0x1fd000)
[    0.000000] Initializing IODA2 PHB (/pciex@620c3c0300000)
[    0.000000] PCI host bridge /pciex@620c3c0300000  ranges:
[    0.000000]  MEM 0x000620c180000000..0x000620c1fffeffff -> 0x0000000080000000
[    0.000000] ioremap() called early from pnv_pci_init_ioda_phb+0x360/0x968. Use early_ioremap() instead
[    0.000000]  MEM 0x0006220000000000..0x0006223fffffffff -> 0x0006220000000000 (M64 #1..31)
[    0.000000]  Using M64 #31 as default window
[    0.000000]   512 (511) PE's M32: 0x80000000 [segment=0x400000]
[    0.000000]                  M64: 0x4000000000 [segment=0x20000000]
[    0.000000]   Allocated bitmap for 4088 MSIs (base IRQ 0x1fc000)
[    0.000000] OPAL nvram setup, 589824 bytes
[    0.000000] barrier-nospec: using ORI speculation barrier
[    0.000000] Zone ranges:
[    0.000000]   Normal   [mem 0x0000000000000000-0x00002007ffffffff]
[    0.000000]   Device   empty
[    0.000000] Movable zone start for each node
[    0.000000] Early memory node ranges
[    0.000000]   node   0: [mem 0x0000000000000000-0x00000007ffffffff]
[    0.000000]   node   8: [mem 0x0000200000000000-0x00002007ffffffff]
[    0.000000] Initmem setup node 0 [mem 0x0000000000000000-0x00000007ffffffff]
[    0.000000] Initmem setup node 8 [mem 0x0000200000000000-0x00002007ffffffff]
[    0.000000] percpu: Embedded 11 pages/cpu s628760 r0 d92136 u720896
[    0.000000] Built 2 zonelists, mobility grouping on.  Total pages: 1047552
[    0.000000] Policy zone: Normal
[    0.000000] Kernel command line: root=UUID=5d0d158f-dffd-46ba-be59-63f41d204079 ro recovery nomodeset earlyprintk
[    0.000000] You have booted with nomodeset. This means your GPU drivers are DISABLED
[    0.000000] Any video related functionality will be severely degraded, and you may not even be able to suspend the system properly
[    0.000000] Unless you actually understand what nomodeset does, you should reboot without enabling it
[    0.000000] printk: log_buf_len individual max cpu contribution: 4096 bytes
[    0.000000] printk: log_buf_len total cpu_extra contributions: 258048 bytes
[    0.000000] printk: log_buf_len min size: 262144 bytes
[    0.000000] printk: log_buf_len: 524288 bytes
[    0.000000] printk: early log buf free: 250608(95%)
[    0.000000] mem auto-init: stack:off, heap alloc:on, heap free:off
[    0.000000] Memory: 63269376K/67108864K available (17728K kernel code, 3200K rwdata, 8320K rodata, 6528K init, 2230K bss, 480768K reserved
, 3358720K cma-reserved)
[    0.000000] random: get_random_u64 called from kmem_cache_open+0x3c/0x330 with crng_init=0
[    0.000000] SLUB: HWalign=128, Order=0-3, MinObjects=0, CPUs=64, Nodes=9
[    0.000000] ftrace: allocating 44887 entries in 17 pages
[    0.000000] ftrace: allocated 17 pages with 2 groups
[    0.000000] rcu: Hierarchical RCU implementation.
[    0.000000] rcu: 	RCU restricting CPUs from NR_CPUS=2048 to nr_cpu_ids=64.
[    0.000000] 	Trampoline variant of Tasks RCU enabled.
[    0.000000] 	Rude variant of Tasks RCU enabled.
[    0.000000] 	Tracing variant of Tasks RCU enabled.
[    0.000000] rcu: RCU calculated value of scheduler-enlistment delay is 25 jiffies.
[    0.000000] rcu: Adjusting geometry for rcu_fanout_leaf=16, nr_cpu_ids=64
[    0.000000] NR_IRQS: 512, nr_irqs: 512, preallocated irqs: 16
[    0.000000] xive: Interrupt handling initialized with native backend
[    0.000000] xive: Using priority 7 for all interrupts
[    0.000000] xive: Using 64kB queues
[    0.000003] time_init: 56 bit decrementer (max: 7fffffffffffff)
[    0.005158] clocksource: timebase: mask: 0xffffffffffffffff max_cycles: 0x761537d007, max_idle_ns: 440795202126 ns
[    0.008408] clocksource: timebase mult[1f40000] shift[24] registered
[    0.011943] Console: colour dummy device 80x25
[    0.015144] printk: console [hvc0] enabled
[    0.015144] printk: console [hvc0] enabled
[    0.021301] printk: bootconsole [udbg0] disabled
[    0.021301] printk: bootconsole [udbg0] disabled
[    0.027650] mempolicy: Enabling automatic NUMA balancing. Configure with numa_balancing= or the kernel.numa_balancing sysctl
[    0.027678] pid_max: default: 65536 minimum: 512

Revision history for this message

bugproxy (bugproxy) wrote on 2020-11-25:

#7

Download full text (7.2 KiB)

------- Comment From <email address hidden> 2020-11-25 00:34 EDT-------
Hi,

Looks like it fails to boot on a p9 qemu/kvm guest even out of grub: hangs trying to bring up SMP. That's probably what we saw in bare-metal too, the console probably just didn't catch up.

I will continue investigating, but I'm not sure what kernel tree you're using: git://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/hirsute has something based on linux-5.8. What tree are you building from?

Kind regards,
Daniel

Loading Linux 5.10.0-4-generic ...
Loading initial ramdisk ...
OF stdout device is: /vdevice/vty@30000000
Preparing to boot Linux version 5.10.0-4-generic (buildd@bos02-ppc64el-008) (gcc (Ubuntu 10.2.0-17ubuntu1) 10.2.0, GNU ld (GNU Binutils for Ubuntu) 2.35.1) #5-Ubuntu SMP Mon Nov 16 09:41:59 UTC 2020 (Ubuntu 5.10.0-4.5-generic 5.10.0-rc4)
Detected machine type: 0000000000000101
command line: BOOT_IMAGE=/boot/vmlinux-5.10.0-4-generic root=UUID=19b72275-8385-4e0e-8001-62baacf410e3 ro console=hvc0 earlyprintk xmon=rw
Max number of cores passed to firmware: 2048 (NR_CPUS = 2048)
Calling ibm,client-architecture-support... done
memory layout at init:
memory_limit : 0000000000000000 (16 MB aligned)
alloc_bottom : 0000000006570000
alloc_top : 0000000010000000
alloc_top_hi : 0000000400000000
rmo_top : 0000000010000000
ram_top : 0000000400000000
instantiating rtas at 0x000000000daf0000... done
prom_hold_cpus: skipped
copying OF device tree...
Building dt strings...
Building dt structure...
Device tree strings 0x0000000006580000 -> 0x0000000006580b32
Device tree struct 0x0000000006590000 -> 0x00000000065a0000
Quiescing Open Firmware ...
Booting Linux via __start() @ 0x0000000002000000 ...
[ 0.000000] radix-mmu: Page sizes from device-tree:
[ 0.000000] radix-mmu: Page size shift = 12 AP=0x0
[ 0.000000] radix-mmu: Page size shift = 16 AP=0x5
[ 0.000000] radix-mmu: Page size shift = 21 AP=0x1
[ 0.000000] radix-mmu: Page size shift = 30 AP=0x2
[ 0.000000] radix-mmu: Activating Kernel Userspace Execution Prevention
[ 0.000000] radix-mmu: Activating Kernel Userspace Access Prevention
[ 0.000000] radix-mmu: Mapped 0x0000000000000000-0x0000000002000000 with 2.00 MiB pages (exec)
[ 0.000000] radix-mmu: Mapped 0x0000000002000000-0x0000000400000000 with 2.00 MiB pages
[ 0.000000] lpar: Using radix MMU under hypervisor
[ 0.000000] Linux version 5.10.0-4-generic (buildd@bos02-ppc64el-008) (gcc (Ubuntu 10.2.0-17ubuntu1) 10.2.0, GNU ld (GNU Binutils for Ubuntu) 2.35.1) #5-Ubuntu SMP Mon Nov 16 09:41:59 UTC 2020 (Ubuntu 5.10.0-4.5-generic 5.10.0-rc4)
[ 0.000000] Secure boot mode disabled
[ 0.000000] Found initrd at 0xc000000004700000:0xc00000000656fbfa
[ 0.000000] Using pSeries machine description
[ 0.000000] printk: bootconsole [udbg0] enabled
[ 0.000000] Partition configured for 24 cpus.
[ 0.000000] CPU maps initialized for 1 thread per core
[ 0.000000] -----------------------------------------------------
[ 0.000000] phys_mem_size = 0x400000000
[ 0.000000] dcache_bsize = 0x80
[ 0.000000] icache_bsize = 0x80
[ 0.000000] cpu_features = 0x0001c07b8f4f91a7
[ 0.000000]...

------- Comment From Daniel.Axtens1@ibm.com 2020-11-25 00:34 EDT-------
Hi,

Looks like it fails to boot on a p9 qemu/kvm guest even out of grub: hangs trying to bring up SMP. That's probably what we saw in bare-metal too, the console probably just didn't catch up.

I will continue investigating, but I'm not sure what kernel tree you're using: git://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/hirsute has something based on linux-5.8. What tree are you building from?

Kind regards,
Daniel

Loading Linux 5.10.0-4-generic ...
Loading initial ramdisk ...
OF stdout device is: /vdevice/vty@30000000
Preparing to boot Linux version 5.10.0-4-generic (buildd@bos02-ppc64el-008) (gcc (Ubuntu 10.2.0-17ubuntu1) 10.2.0, GNU ld (GNU Binutils for Ubuntu) 2.35.1) #5-Ubuntu SMP Mon Nov 16 09:41:59 UTC 2020 (Ubuntu 5.10.0-4.5-generic 5.10.0-rc4)
Detected machine type: 0000000000000101
command line: BOOT_IMAGE=/boot/vmlinux-5.10.0-4-generic root=UUID=19b72275-8385-4e0e-8001-62baacf410e3 ro console=hvc0 earlyprintk xmon=rw
Max number of cores passed to firmware: 2048 (NR_CPUS = 2048)
Calling ibm,client-architecture-support... done
memory layout at init:
memory_limit : 0000000000000000 (16 MB aligned)
alloc_bottom : 0000000006570000
alloc_top    : 0000000010000000
alloc_top_hi : 0000000400000000
rmo_top      : 0000000010000000
ram_top      : 0000000400000000
instantiating rtas at 0x000000000daf0000... done
prom_hold_cpus: skipped
copying OF device tree...
Building dt strings...
Building dt structure...
Device tree strings 0x0000000006580000 -> 0x0000000006580b32
Device tree struct  0x0000000006590000 -> 0x00000000065a0000
Quiescing Open Firmware ...
Booting Linux via __start() @ 0x0000000002000000 ...
[    0.000000] radix-mmu: Page sizes from device-tree:
[    0.000000] radix-mmu: Page size shift = 12 AP=0x0
[    0.000000] radix-mmu: Page size shift = 16 AP=0x5
[    0.000000] radix-mmu: Page size shift = 21 AP=0x1
[    0.000000] radix-mmu: Page size shift = 30 AP=0x2
[    0.000000] radix-mmu: Activating Kernel Userspace Execution Prevention
[    0.000000] radix-mmu: Activating Kernel Userspace Access Prevention
[    0.000000] radix-mmu: Mapped 0x0000000000000000-0x0000000002000000 with 2.00 MiB pages (exec)
[    0.000000] radix-mmu: Mapped 0x0000000002000000-0x0000000400000000 with 2.00 MiB pages
[    0.000000] lpar: Using radix MMU under hypervisor
[    0.000000] Linux version 5.10.0-4-generic (buildd@bos02-ppc64el-008) (gcc (Ubuntu 10.2.0-17ubuntu1) 10.2.0, GNU ld (GNU Binutils for Ubuntu) 2.35.1) #5-Ubuntu SMP Mon Nov 16 09:41:59 UTC 2020 (Ubuntu 5.10.0-4.5-generic 5.10.0-rc4)
[    0.000000] Secure boot mode disabled
[    0.000000] Found initrd at 0xc000000004700000:0xc00000000656fbfa
[    0.000000] Using pSeries machine description
[    0.000000] printk: bootconsole [udbg0] enabled
[    0.000000] Partition configured for 24 cpus.
[    0.000000] CPU maps initialized for 1 thread per core
[    0.000000] -----------------------------------------------------
[    0.000000] phys_mem_size     = 0x400000000
[    0.000000] dcache_bsize      = 0x80
[    0.000000] icache_bsize      = 0x80
[    0.000000] cpu_features      = 0x0001c07b8f4f91a7
[    0.000000]   possible        = 0x000ffbfbcf5fb1a7
[    0.000000]   always          = 0x00000003800081a1
[    0.000000] cpu_user_features = 0xdc0065c2 0xeff00000
[    0.000000] mmu_features      = 0xbc007441
[    0.000000] firmware_features = 0x00000085455a445f
[    0.000000] vmalloc start     = 0xc008000000000000
[    0.000000] IO start          = 0xc00a000000000000
[    0.000000] vmemmap start     = 0xc00c000000000000
[    0.000000] -----------------------------------------------------
[    0.000000] numa:   NODE_DATA [mem 0x3ffd24900-0x3ffd2bfff]
[    0.000000] rfi-flush: fallback displacement flush available
[    0.000000] count-cache-flush: flush disabled.
[    0.000000] link-stack-flush: flush disabled.
[    0.000000] stf-barrier: eieio barrier available
[    0.000000] PCI host bridge /pci@800000020000000  ranges:
[    0.000000]   IO 0x0000200000000000..0x000020000000ffff -> 0x0000000000000000
[    0.000000]  MEM 0x0000200080000000..0x00002000ffffffff -> 0x0000000080000000
[    0.000000]  MEM 0x0000210000000000..0x000021ffffffffff -> 0x0000210000000000
[    0.000000] PPC64 nvram contains 65536 bytes
[    0.000000] barrier-nospec: using ORI speculation barrier
[    0.000000] Zone ranges:
[    0.000000]   Normal   [mem 0x0000000000000000-0x00000003ffffffff]
[    0.000000]   Device   empty
[    0.000000] Movable zone start for each node
[    0.000000] Early memory node ranges
[    0.000000]   node   0: [mem 0x0000000000000000-0x00000003ffffffff]
[    0.000000] Initmem setup node 0 [mem 0x0000000000000000-0x00000003ffffffff]
[    0.000000] percpu: Embedded 11 pages/cpu s628760 r0 d92136 u720896
[    0.000000] Built 1 zonelists, mobility grouping on.  Total pages: 261888
[    0.000000] Policy zone: Normal
[    0.000000] Kernel command line: BOOT_IMAGE=/boot/vmlinux-5.10.0-4-generic root=UUID=19b72275-8385-4e0e-8001-62baacf410e3 ro console=hvc0 earlyprintk xmon=rw
[    0.000000] Dentry cache hash table entries: 2097152 (order: 8, 16777216 bytes, linear)
[    0.000000] Inode-cache hash table entries: 1048576 (order: 7, 8388608 bytes, linear)
[    0.000000] mem auto-init: stack:off, heap alloc:on, heap free:off
[    0.000000] Memory: 16563392K/16777216K available (17728K kernel code, 3200K rwdata, 8320K rodata, 6528K init, 2230K bss, 213824K reserved, 0K cma-reserved)
[    0.000000] random: get_random_u64 called from kmem_cache_open+0x3c/0x330 with crng_init=0
[    0.000000] SLUB: HWalign=128, Order=0-3, MinObjects=0, CPUs=24, Nodes=1
[    0.000000] ftrace: allocating 44887 entries in 17 pages
[    0.000000] ftrace: allocated 17 pages with 2 groups
[    0.000000] rcu: Hierarchical RCU implementation.
[    0.000000] rcu: 	RCU restricting CPUs from NR_CPUS=2048 to nr_cpu_ids=24.
[    0.000000] 	Trampoline variant of Tasks RCU enabled.
[    0.000000] 	Rude variant of Tasks RCU enabled.
[    0.000000] 	Tracing variant of Tasks RCU enabled.
[    0.000000] rcu: RCU calculated value of scheduler-enlistment delay is 25 jiffies.
[    0.000000] rcu: Adjusting geometry for rcu_fanout_leaf=16, nr_cpu_ids=24
[    0.000000] NR_IRQS: 512, nr_irqs: 512, preallocated irqs: 16
[    0.000001] time_init: 32 bit decrementer (max: 7fffffff)
[    0.000554] clocksource: timebase: mask: 0xffffffffffffffff max_cycles: 0x761537d007, max_idle_ns: 440795202126 ns
[    0.001611] clocksource: timebase mult[1f40000] shift[24] registered
[    0.002314] Console: colour dummy device 80x25
[    0.002772] printk: console [hvc0] enabled
[    0.002772] printk: console [hvc0] enabled
[    0.003215] printk: bootconsole [udbg0] disabled
[    0.003215] printk: bootconsole [udbg0] disabled
[    0.003753] pid_max: default: 32768 minimum: 301
[    0.003862] LSM: Security Framework initializing
[    0.003933] Yama: becoming mindful.
[    0.003986] AppArmor: AppArmor initialized
[    0.004067] Mount-cache hash table entries: 32768 (order: 2, 262144 bytes, linear)
[    0.004141] Mountpoint-cache hash table entries: 32768 (order: 2, 262144 bytes, linear)
[    0.004799] POWER9 performance monitor hardware support registered
[    0.004874] rcu: Hierarchical SRCU implementation.
[    0.005741] smp: Bringing up secondary CPUs ...

Revision history for this message

Frank Heimes (fheimes) wrote on 2020-11-25:

#8

Hi Daniel, yes, 5.8 is - as of today - still the current kernel in hirsute (main and proposed).
But the kernel teams plans to migrate to 5.10 soon, hence the effort (and pre-requirement for the migration) to test secureboot lock-down upfront. This is to make sure that potential issues in the secureboot lock-down area will not affect any (production) keys.
The keys used for signing are bound the the archive where the kernel is build and comes from, and the PPA has a separate one.
Inside of the PPA you will also find the 5.10 source code as tar.gz file.

If you follow this PPA link:
https://launchpad.net/~canonical-kernel-team/+archive/ubuntu/bootstrap/+packages
and click on the kernel that was used for the testing (and open the twistie or section), or at least on a kernel that is close enough (this these kernels get pretty frequently updated), like:
"linux-5.10 - 5.10.0-0.1",
you will find the sources in the (I think only) tar.gz file that is listed there, like:
linux-5.10_5.10.0-0.1.tar.gz (176.3 MiB)
https://launchpad.net/~canonical-kernel-team/+archive/ubuntu/bootstrap/+sourcefiles/linux-5.10/5.10.0-0.1/linux-5.10_5.10.0-0.1.tar.gz

Revision history for this message

bugproxy (bugproxy) wrote on 2020-11-25:

#9

------- Comment From <email address hidden> 2020-11-25 06:47 EDT-------
Hi,

Thanks, I'll look at sources tarball, hopefully tomorrow. (I'm in AU, so no thanksgiving here!)

Have you tested this on any of your local systems? I can't get it to work much on P9, even on stock hardware/qemu without any secure-boot features. Indeed, it even fails on qemu TCG (so you don't actually need a Power system at all!):

qemu-system-ppc64 -M pseries -m 1G -nographic -vga none -smp 4 -cpu power9 -kernel dbg/usr/lib/debug/boot/vmlinux-5.10.0-4-generic

Actually, the failure matrix is really interesting:

Power8 host + KVM + grub -> boots
Power9 host bare metal (kexec) -> fails
Power9 host + KVM + grub -> fails
Power9 host + KVM + qemu -kernel -> boots
qemu TCG + power9 cpu -> fails
qemu TCG + power8 cpu -> fails

I'm assuming the tarball includes the debian/patches directory, in which case it should be easy to apply and git bisect.

Kind regards,
Daniel

(IBMers: is there someone outside the security team that we should pull in? It doesn't seem at all to be a security-related issue.)

Revision history for this message

bugproxy (bugproxy) wrote on 2020-11-26:

#10

------- Comment From <email address hidden> 2020-11-25 21:40 EDT-------
Ok, so sadly I cannot find a tarball with the patches not already applied, which is very frustrating. However, it turns out I don't need that because, as it turns out...

Doing an upstream checkout of v5.10-rc4 and building with config-5.10.0-4-generic also fails to boot under qemu. Previously I hadn't tested upstream with a Canoni-config, so I thought it was an ubuntu-specific bug, which clearly it is not. Apologies about that.

It also affects 5.10-rc5 and powerpc/fixes, so I'm trying to get some eyes on it internally.

Kind regards,
Daniel

Revision history for this message

Frank Heimes (fheimes) wrote on 2020-11-26:

#11

Thx for the update, Daniel

Changed in ubuntu-power-systems:
assignee:	Canonical Kernel Team (canonical-kernel-team) → Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage)
Changed in linux (Ubuntu):
assignee:	Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) → bugproxy (bugproxy)

Revision history for this message

Daniel Axtens (daxtens) wrote on 2020-11-26:

#12

I cannot yet explain this, but after bisecting the config, I can repro this with pseries_le_defconfig + CONFIG_RCU_SCALE_TEST=m

That's weird to me, and I'll continue to investigate.

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-11-30:

#13

That config shouldn't be on at all, it's just a performance test that isn't likely to be of interest to users. I agree it's weird though -- it shouldn't cause boot problems, as it shouldn't be loaded automatically (the module doesn't even have any modaliases). Regardless, I will disable the option.

Revision history for this message

bugproxy (bugproxy) wrote on 2020-12-02:

#14

------- Comment From <email address hidden> 2020-12-01 23:08 EDT-------
No worries, let me know if you'd like me to test another spin.

We continue to look into the issue upstream: https://<email address hidden>/

Patricia Domingues (patriciasd) on 2020-12-07

Changed in ubuntu-power-systems:
importance:	Undecided → High

Frank Heimes (fheimes) on 2020-12-07

Changed in linux (Ubuntu):
importance:	Undecided → High

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-12-07:

#15

Our latest 5.10 update is building with CONFIG_RCU_SCALE_TEST disabled, I will update once the build is complete.

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-12-08:

#16

The 5.10.0-7.8 with CONFIG_RCU_SCALE_TEST disabled has completed and is available in https://launchpad.net/~canonical-kernel-team/+archive/ubuntu/bootstrap as before.

Revision history for this message

bugproxy (bugproxy) wrote on 2020-12-10:

#17

------- Comment From <email address hidden> 2020-12-10 08:44 EDT-------
Hi,

We've had some good progress with debugging upstream: https://<email address hidden>/t/#u fixes the issue properly.

Would you prefer to take that and leave the config unchanged? It'll almost certainly end up in stable trees soon anyway...

Kind regards,
Daniel

Revision history for this message

Seth Forshee (sforshee) wrote on 2020-12-10:

#18

That's not the sort of config we usually turn on, as it's more of a developer feature than something end users are interested in. So I don't see any need to turn the option back on. We can go ahead and grab the patch though.

In any case I'd like to get some secure boot testing with the current build, as we'd like to try and get a 5.10 build into hirsute-proposed next week.

Revision history for this message

bugproxy (bugproxy) wrote on 2020-12-15:

#19

------- Comment From <email address hidden> 2020-12-14 19:40 EDT-------
Hi,

Thanks for your patience.

I tested 5.10.0-8-generic. /boot/config-5.10.0-8-generic contains:
# CONFIG_RCU_SCALE_TEST is not set

It boots fine in a P9 kvm guest, both when loaded by kexec and when loaded by grub. There is no secure-boot in these tests.

Please let me know if you need anything else.

Kind regards,
Daniel

Revision history for this message

Frank Heimes (fheimes) wrote on 2020-12-15:

#20

Hi Daniel, thx for testing the special kernel build and verifying that it now boots again on KVM.
Since the initial request from the kernel team was to verify that secureboot and lockdown works with 5.10 on ppc64el, it would be important to test that, too - maybe you or Nayna may try secureboot lock-down testing as well?

Revision history for this message

bugproxy (bugproxy) wrote on 2020-12-18:

#21

------- Comment From <email address hidden> 2020-12-17 23:45 EDT-------
Squeezing in right before the end of the year! I tested this with my pseries secure boot setup. I built the key from the PPA into grub and signed grub with the testing key which I built into SLOF.

I was then able to boot 5.10.0-9-generic in secure boot mode under P8 KVM.

The kernel correctly detected secure boot mode and entered lockdown:

[ 0.000000] Secure boot mode enabled
[ 0.000000] Kernel is locked down from PowerNV Secure Boot mode; see man kernel_lockdown.7

(The text is a bit of a misnomer, but that's of no consequence.)

Lockdown appears to work as expected, I can't open /dev/mem for example.

Given LP: #1903288 / BZ 189099, I didn't test kexec.

In summary, I don't see anything from booting with secure boot on or off that would prevent you promoting 5.10 for hirsute.

Enjoy your end of year break!
Kind regards,
Daniel

Frank Heimes (fheimes) on 2020-12-18

Changed in linux (Ubuntu):
status:	New → Fix Committed
Changed in ubuntu-power-systems:
status:	New → Fix Committed

Revision history for this message

Frank Heimes (fheimes) wrote on 2020-12-18:

#22

Many thx Daniel for squeezing in this additional secureboot lock down test.
Glad that it worked so far. Wish you also an enjoyable break !

Revision history for this message

Andrew Cloke (andrew-cloke) wrote on 2021-02-08:

#23

Waiting to close as "Fix Released" once the 5.10 kernel has landed in hirsute. 5.10 kernel is currently in hirsute -proposed.

Revision history for this message

bugproxy (bugproxy) wrote on 2021-02-17:

#24

------- Comment From <email address hidden> 2021-02-16 20:13 EDT-------
I retested this with my pseries secure boot setup. I built the key from the PPA into grub and signed grub with the testing key which I built into SLOF.

I was then able to boot 5.11.0-9-generic in secure boot mode and without secure boot under P8 KVM.

The kernel correctly detected secure boot mode and entered lockdown.

Lockdown appears to work as expected, I can't open /dev/mem for example.

In summary, I don't see anything from booting with secure boot on or off that would prevent you promoting 5.11 for hirsute.

Kind regards,
Daniel

Revision history for this message

Launchpad Janitor (janitor) wrote on 2021-02-19:

#25

Download full text (20.7 KiB)

This bug was fixed in the package linux - 5.10.0-14.15

---------------
linux (5.10.0-14.15) hirsute; urgency=medium

* hirsute/linux: 5.10.0-14.15 -proposed tracker (LP: #1913724)

* Restore palm ejection on multi-input devices (LP: #1913520)
- HID: multitouch: Apply MT_QUIRK_CONFIDENCE quirk for multi-input devices

* intel-hid is not loaded on new Intel platform (LP: #1907160)
- platform/x86: intel-hid: add Rocket Lake ACPI device ID

  * Hirsute update: v5.10.11 upstream stable release (LP: #1913430)
    - scsi: target: tcmu: Fix use-after-free of se_cmd->priv
    - mtd: rawnand: gpmi: fix dst bit offset when extracting raw payload
    - mtd: rawnand: nandsim: Fix the logic when selecting Hamming soft ECC engine
    - i2c: tegra: Wait for config load atomically while in ISR
    - i2c: bpmp-tegra: Ignore unknown I2C_M flags
    - platform/x86: ideapad-laptop: Disable touchpad_switch for ELAN0634
    - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info()
    - ALSA: hda/realtek - Limit int mic boost on Acer Aspire E5-575T
    - ALSA: hda/via: Add minimum mute flag
    - crypto: xor - Fix divide error in do_xor_speed()
    - dm crypt: fix copy and paste bug in crypt_alloc_req_aead
    - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error
    - btrfs: don't get an EINTR during drop_snapshot for reloc
    - btrfs: do not double free backref nodes on error
    - btrfs: fix lockdep splat in btrfs_recover_relocation
    - btrfs: don't clear ret in btrfs_start_dirty_block_groups
    - btrfs: send: fix invalid clone operations when cloning from the same file
      and root
    - fs: fix lazytime expiration handling in __writeback_single_inode()
    - pinctrl: ingenic: Fix JZ4760 support
    - mmc: core: don't initialize block size from ext_csd if not present
    - mmc: sdhci-of-dwcmshc: fix rpmb access
    - mmc: sdhci-xenon: fix 1.8v regulator stabilization
    - mmc: sdhci-brcmstb: Fix mmc timeout errors on S5 suspend
    - dm: avoid filesystem lookup in dm_get_dev_t()
    - dm integrity: fix a crash if "recalculate" used without "internal_hash"
    - dm integrity: conditionally disable "recalculate" feature
    - drm/atomic: put state on error path
    - drm/syncobj: Fix use-after-free
    - drm/amdgpu: remove gpu info firmware of green sardine
    - drm/amd/display: DCN2X Find Secondary Pipe properly in MPO + ODM Case
    - drm/i915/gt: Prevent use of engine->wa_ctx after error
    - drm/i915: Check for rq->hwsp validity after acquiring RCU lock
    - ASoC: Intel: haswell: Add missing pm_ops
    - ASoC: rt711: mutex between calibration and power state changes
    - SUNRPC: Handle TCP socket sends with kernel_sendpage() again
    - HID: sony: select CONFIG_CRC32
    - dm integrity: select CRYPTO_SKCIPHER
    - x86/hyperv: Fix kexec panic/hang issues
    - scsi: ufs: Relax the condition of UFSHCI_QUIRK_SKIP_MANUAL_WB_FLUSH_CTRL
    - scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback
    - scsi: qedi: Correct max length of CHAP secret
    - scsi: scsi_debug: Fix memleak in scsi_debug_init()
    - scsi: sd: Suppress spurious errors when WRITE SAME is being disabled
    - riscv: ...

This bug was fixed in the package linux - 5.10.0-14.15

---------------
linux (5.10.0-14.15) hirsute; urgency=medium

* hirsute/linux: 5.10.0-14.15 -proposed tracker (LP: #1913724)

* Restore palm ejection on multi-input devices (LP: #1913520)
    - HID: multitouch: Apply MT_QUIRK_CONFIDENCE quirk for multi-input devices

* intel-hid is not loaded on new Intel platform (LP: #1907160)
    - platform/x86: intel-hid: add Rocket Lake ACPI device ID

* Hirsute update: v5.10.11 upstream stable release (LP: #1913430)
    - scsi: target: tcmu: Fix use-after-free of se_cmd->priv
    - mtd: rawnand: gpmi: fix dst bit offset when extracting raw payload
    - mtd: rawnand: nandsim: Fix the logic when selecting Hamming soft ECC engine
    - i2c: tegra: Wait for config load atomically while in ISR
    - i2c: bpmp-tegra: Ignore unknown I2C_M flags
    - platform/x86: ideapad-laptop: Disable touchpad_switch for ELAN0634
    - ALSA: seq: oss: Fix missing error check in snd_seq_oss_synth_make_info()
    - ALSA: hda/realtek - Limit int mic boost on Acer Aspire E5-575T
    - ALSA: hda/via: Add minimum mute flag
    - crypto: xor - Fix divide error in do_xor_speed()
    - dm crypt: fix copy and paste bug in crypt_alloc_req_aead
    - ACPI: scan: Make acpi_bus_get_device() clear return pointer on error
    - btrfs: don't get an EINTR during drop_snapshot for reloc
    - btrfs: do not double free backref nodes on error
    - btrfs: fix lockdep splat in btrfs_recover_relocation
    - btrfs: don't clear ret in btrfs_start_dirty_block_groups
    - btrfs: send: fix invalid clone operations when cloning from the same file
      and root
    - fs: fix lazytime expiration handling in __writeback_single_inode()
    - pinctrl: ingenic: Fix JZ4760 support
    - mmc: core: don't initialize block size from ext_csd if not present
    - mmc: sdhci-of-dwcmshc: fix rpmb access
    - mmc: sdhci-xenon: fix 1.8v regulator stabilization
    - mmc: sdhci-brcmstb: Fix mmc timeout errors on S5 suspend
    - dm: avoid filesystem lookup in dm_get_dev_t()
    - dm integrity: fix a crash if "recalculate" used without "internal_hash"
    - dm integrity: conditionally disable "recalculate" feature
    - drm/atomic: put state on error path
    - drm/syncobj: Fix use-after-free
    - drm/amdgpu: remove gpu info firmware of green sardine
    - drm/amd/display: DCN2X Find Secondary Pipe properly in MPO + ODM Case
    - drm/i915/gt: Prevent use of engine->wa_ctx after error
    - drm/i915: Check for rq->hwsp validity after acquiring RCU lock
    - ASoC: Intel: haswell: Add missing pm_ops
    - ASoC: rt711: mutex between calibration and power state changes
    - SUNRPC: Handle TCP socket sends with kernel_sendpage() again
    - HID: sony: select CONFIG_CRC32
    - dm integrity: select CRYPTO_SKCIPHER
    - x86/hyperv: Fix kexec panic/hang issues
    - scsi: ufs: Relax the condition of UFSHCI_QUIRK_SKIP_MANUAL_WB_FLUSH_CTRL
    - scsi: ufs: Correct the LUN used in eh_device_reset_handler() callback
    - scsi: qedi: Correct max length of CHAP secret
    - scsi: scsi_debug: Fix memleak in scsi_debug_init()
    - scsi: sd: Suppress spurious errors when WRITE SAME is being disabled
    - riscv: Fix kernel time_init()
    - riscv: Fix sifive serial driver
    - riscv: Enable interrupts during syscalls with M-Mode
    - HID: logitech-dj: add the G602 receiver
    - HID: Ignore battery for Elan touchscreen on ASUS UX550
    - clk: tegra30: Add hda clock default rates to clock driver
    - ALSA: hda/tegra: fix tegra-hda on tegra30 soc
    - riscv: cacheinfo: Fix using smp_processor_id() in preemptible
    - arm64: make atomic helpers __always_inline
    - xen: Fix event channel callback via INTX/GSI
    - x86/xen: Add xen_no_vector_callback option to test PCI INTX delivery
    - x86/xen: Fix xen_hvm_smp_init() when vector callback not available
    - dts: phy: fix missing mdio device and probe failure of vsc8541-01 device
    - dts: phy: add GPIO number and active state used for phy reset
    - riscv: defconfig: enable gpio support for HiFive Unleashed
    - drm/amdgpu/psp: fix psp gfx ctrl cmds
    - drm/amd/display: disable dcn10 pipe split by default
    - HID: logitech-hidpp: Add product ID for MX Ergo in Bluetooth mode
    - drm/amd/display: Fix to be able to stop crc calculation
    - drm/nouveau/bios: fix issue shadowing expansion ROMs
    - drm/nouveau/privring: ack interrupts the same way as RM
    - drm/nouveau/i2c/gm200: increase width of aux semaphore owner fields
    - drm/nouveau/mmu: fix vram heap sizing
    - drm/nouveau/kms/nv50-: fix case where notifier buffer is at offset 0
    - io_uring: flush timeouts that should already have expired
    - libperf tests: If a test fails return non-zero
    - libperf tests: Fail when failing to get a tracepoint id
    - RISC-V: Set current memblock limit
    - RISC-V: Fix maximum allowed phsyical memory for RV32
    - x86/xen: fix 'nopvspin' build error
    - nfsd: Fixes for nfsd4_encode_read_plus_data()
    - nfsd: Don't set eof on a truncated READ_PLUS
    - gpiolib: cdev: fix frame size warning in gpio_ioctl()
    - pinctrl: aspeed: g6: Fix PWMG0 pinctrl setting
    - pinctrl: mediatek: Fix fallback call path
    - RDMA/ucma: Do not miss ctx destruction steps in some cases
    - btrfs: print the actual offset in btrfs_root_name
    - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression
    - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM
    - scsi: ufs: Fix tm request when non-fatal error happens
    - crypto: omap-sham - Fix link error without crypto-engine
    - bpf: Prevent double bpf_prog_put call from bpf_tracing_prog_attach
    - powerpc: Use the common INIT_DATA_SECTION macro in vmlinux.lds.S
    - powerpc: Fix alignment bug within the init sections
    - arm64: entry: remove redundant IRQ flag tracing
    - bpf: Reject too big ctx_size_in for raw_tp test run
    - drm/amdkfd: Fix out-of-bounds read in kdf_create_vcrat_image_cpu()
    - RDMA/umem: Avoid undefined behavior of rounddown_pow_of_two()
    - RDMA/cma: Fix error flow in default_roce_mode_store
    - printk: ringbuffer: fix line counting
    - printk: fix kmsg_dump_get_buffer length calulations
    - iov_iter: fix the uaccess area in copy_compat_iovec_from_user
    - i2c: octeon: check correct size of maximum RECV_LEN packet
    - drm/vc4: Unify PCM card's driver_name
    - platform/x86: intel-vbtn: Drop HP Stream x360 Convertible PC 11 from allow-
      list
    - platform/x86: hp-wmi: Don't log a warning on HPWMI_RET_UNKNOWN_COMMAND
      errors
    - gpio: sifive: select IRQ_DOMAIN_HIERARCHY rather than depend on it
    - xsk: Clear pool even for inactive queues
    - selftests: net: fib_tests: remove duplicate log test
    - can: dev: can_restart: fix use after free bug
    - can: vxcan: vxcan_xmit: fix use after free bug
    - can: peak_usb: fix use after free bugs
    - perf evlist: Fix id index for heterogeneous systems
    - i2c: sprd: depend on COMMON_CLK to fix compile tests
    - iio: common: st_sensors: fix possible infinite loop in st_sensors_irq_thread
    - iio: ad5504: Fix setting power-down state
    - drivers: iio: temperature: Add delay after the addressed reset command in
      mlx90632.c
    - iio: adc: ti_am335x_adc: remove omitted iio_kfifo_free()
    - counter:ti-eqep: remove floor
    - powerpc/64s: fix scv entry fallback flush vs interrupt
    - cifs: do not fail __smb_send_rqst if non-fatal signals are pending
    - irqchip/mips-cpu: Set IPI domain parent chip
    - x86/fpu: Add kernel_fpu_begin_mask() to selectively initialize state
    - x86/topology: Make __max_die_per_package available unconditionally
    - x86/mmx: Use KFPU_387 for MMX string operations
    - x86/setup: don't remove E820_TYPE_RAM for pfn 0
    - proc_sysctl: fix oops caused by incorrect command parameters
    - mm: memcg/slab: optimize objcg stock draining
    - mm: memcg: fix memcg file_dirty numa stat
    - mm: fix numa stats for thp migration
    - io_uring: iopoll requests should also wake task ->in_idle state
    - io_uring: fix SQPOLL IORING_OP_CLOSE cancelation state
    - io_uring: fix short read retries for non-reg files
    - intel_th: pci: Add Alder Lake-P support
    - stm class: Fix module init return on allocation failure
    - serial: mvebu-uart: fix tx lost characters at power off
    - ehci: fix EHCI host controller initialization sequence
    - USB: ehci: fix an interrupt calltrace error
    - usb: gadget: aspeed: fix stop dma register setting.
    - USB: gadget: dummy-hcd: Fix errors in port-reset handling
    - usb: udc: core: Use lock when write to soft_connect
    - usb: bdc: Make bdc pci driver depend on BROKEN
    - usb: cdns3: imx: fix writing read-only memory issue
    - usb: cdns3: imx: fix can't create core device the second time issue
    - xhci: make sure TRB is fully written before giving it to the controller
    - xhci: tegra: Delay for disabling LFPS detector
    - drivers core: Free dma_range_map when driver probe failed
    - driver core: Fix device link device name collision
    - driver core: Extend device_is_dependent()
    - drm/i915: s/intel_dp_sink_dpms/intel_dp_set_power/
    - drm/i915: Only enable DFP 4:4:4->4:2:0 conversion when outputting YCbCr
      4:4:4
    - x86/entry: Fix noinstr fail
    - x86/cpu/amd: Set __max_die_per_package on AMD
    - cls_flower: call nla_ok() before nla_next()
    - netfilter: rpfilter: mask ecn bits before fib lookup
    - tools: gpio: fix %llu warning in gpio-event-mon.c
    - tools: gpio: fix %llu warning in gpio-watch.c
    - drm/i915/hdcp: Update CP property in update_pipe
    - sh: dma: fix kconfig dependency for G2_DMA
    - sh: Remove unused HAVE_COPY_THREAD_TLS macro
    - locking/lockdep: Cure noinstr fail
    - ASoC: SOF: Intel: fix page fault at probe if i915 init fails
    - octeontx2-af: Fix missing check bugs in rvu_cgx.c
    - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext
    - selftests/powerpc: Fix exit status of pkey tests
    - sh_eth: Fix power down vs. is_opened flag ordering
    - nvme-pci: refactor nvme_unmap_data
    - nvme-pci: fix error unwind in nvme_map_data
    - cachefiles: Drop superfluous readpages aops NULL check
    - lightnvm: fix memory leak when submit fails
    - skbuff: back tiny skbs with kmalloc() in __netdev_alloc_skb() too
    - kasan: fix unaligned address is unhandled in kasan_remove_zero_shadow
    - kasan: fix incorrect arguments passing in kasan_add_zero_shadow
    - tcp: fix TCP socket rehash stats mis-accounting
    - net_sched: gen_estimator: support large ewma log
    - udp: mask TOS bits in udp_v4_early_demux()
    - ipv6: create multicast route with RTPROT_KERNEL
    - net_sched: avoid shift-out-of-bounds in tcindex_set_parms()
    - net_sched: reject silly cell_log in qdisc_get_rtab()
    - ipv6: set multicast flag on the multicast route
    - net: mscc: ocelot: allow offloading of bridge on top of LAG
    - net: Disable NETIF_F_HW_TLS_RX when RXCSUM is disabled
    - net: dsa: b53: fix an off by one in checking "vlan->vid"
    - tcp: do not mess with cloned skbs in tcp_add_backlog()
    - tcp: fix TCP_USER_TIMEOUT with zero window
    - net: mscc: ocelot: Fix multicast to the CPU port
    - net: core: devlink: use right genl user_ptr when handling port param get/set
    - pinctrl: qcom: Allow SoCs to specify a GPIO function that's not 0
    - pinctrl: qcom: No need to read-modify-write the interrupt status
    - pinctrl: qcom: Properly clear "intr_ack_high" interrupts when unmasking
    - pinctrl: qcom: Don't clear pending interrupts when enabling
    - x86/sev: Fix nonistr violation
    - tty: implement write_iter
    - tty: fix up hung_up_tty_write() conversion
    - net: systemport: free dev before on error path
    - x86/sev-es: Handle string port IO to kernel memory properly
    - tcp: Fix potential use-after-free due to double kfree()
    - drm/i915/hdcp: Get conn while content_type changed
    - bpf: Local storage helpers should check nullness of owner ptr passed
    - kernfs: implement ->read_iter
    - kernfs: implement ->write_iter
    - kernfs: wire up ->splice_read and ->splice_write
    - interconnect: imx8mq: Use icc_sync_state
    - fs/pipe: allow sendfile() to pipe again
    - Commit 9bb48c82aced ("tty: implement write_iter") converted the tty layer to
      use write_iter. Fix the redirected_tty_write declaration also in n_tty and
      change the comparisons to use write_iter instead of write. also in n_tty and
      change the comparisons to use write_iter instead of write.
    - mm: fix initialization of struct page for holes in memory layout
    - Revert "mm: fix initialization of struct page for holes in memory layout"
    - Linux 5.10.11

* High load from process irq/65-i2c-INT3  - kernel module tps6598x
    (LP: #1883511) // Hirsute update: v5.10.11 upstream stable release
    (LP: #1913430)
    - platform/x86: i2c-multi-instantiate: Don't create platform device for
      INT3515 ACPI nodes

* Hirsute update: v5.10.10 upstream stable release (LP: #1913429)
    - Revert "kconfig: remove 'kvmconfig' and 'xenconfig' shorthands"
    - x86/hyperv: Initialize clockevents after LAPIC is initialized
    - drm/amdgpu/display: drop DCN support for aarch64
    - bpf: Fix signed_{sub,add32}_overflows type handling
    - X.509: Fix crash caused by NULL pointer
    - nfsd4: readdirplus shouldn't return parent of export
    - bpf: Don't leak memory in bpf getsockopt when optlen == 0
    - bpf: Support PTR_TO_MEM{,_OR_NULL} register spilling
    - bpf: Fix helper bpf_map_peek_elem_proto pointing to wrong callback
    - net: ipa: modem: add missing SET_NETDEV_DEV() for proper sysfs links
    - net: fix use-after-free when UDP GRO with shared fraglist
    - udp: Prevent reuseport_select_sock from reading uninitialized socks
    - netxen_nic: fix MSI/MSI-x interrupts
    - net: ipv6: Validate GSO SKB before finish IPv6 processing
    - tipc: fix NULL deref in tipc_link_xmit()
    - mlxsw: core: Add validation of transceiver temperature thresholds
    - mlxsw: core: Increase critical threshold for ASIC thermal zone
    - net: mvpp2: Remove Pause and Asym_Pause support
    - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request
    - esp: avoid unneeded kmap_atomic call
    - net: dcb: Validate netlink message in DCB handler
    - net: dcb: Accept RTM_GETDCB messages carrying set-like DCB commands
    - rxrpc: Call state should be read with READ_ONCE() under some circumstances
    - i40e: fix potential NULL pointer dereferencing
    - net: stmmac: Fixed mtu channged by cache aligned
    - net: sit: unregister_netdevice on newlink's error path
    - net: stmmac: fix taprio schedule configuration
    - net: stmmac: fix taprio configuration when base_time is in the past
    - net: avoid 32 x truesize under-estimation for tiny skbs
    - dt-bindings: net: renesas,etheravb: RZ/G2H needs tx-internal-delay-ps
    - net: phy: smsc: fix clk error handling
    - net: dsa: clear devlink port type before unregistering slave netdevs
    - rxrpc: Fix handling of an unsupported token type in rxrpc_read()
    - net: stmmac: use __napi_schedule() for PREEMPT_RT
    - can: mcp251xfd: mcp251xfd_handle_rxif_one(): fix wrong NULL pointer check
    - drm/panel: otm8009a: allow using non-continuous dsi clock
    - mac80211: do not drop tx nulldata packets on encrypted links
    - mac80211: check if atf has been disabled in __ieee80211_schedule_txq
    - net: dsa: unbind all switches from tree when DSA master unbinds
    - cxgb4/chtls: Fix tid stuck due to wrong update of qid
    - spi: fsl: Fix driver breakage when SPI_CS_HIGH is not set in spi->mode
    - spi: cadence: cache reference clock rate during probe
    - Linux 5.10.10

* Remove scary stack trace from Realtek WiFi driver (LP: #1913263)
    - rtw88: reduce the log level for failure of tx report

* Packaging resync (LP: #1786013)
    - update dkms package versions

* Introduce the new NVIDIA 460-server series and update the 460 series
    (LP: #1913200)
    - [Config] dkms-versions -- add the 460-server nvidia driver

* backlight parsing for VBT 234+ (LP: #1912157)
    - drm/i915/vbt: Fix backlight parsing for VBT 234+
    - drm/i915/vbt: Update the version and expected size of
      BDB_GENERAL_DEFINITIONS map
    - drm/i915/vbt: Add VRR VBT toggle

* Support CML-S CPU + TGP PCH (LP: #1909457)
    - drm/i915/dg1: gmbus pin mapping
    - drm/i915/dg1: Don't program PHY_MISC for PHY-C and PHY-D
    - drm/i915/dg1: add hpd interrupt handling
    - drm/i915/display/ehl: Limit eDP to HBR2
    - drm/i915/jsl: Split EHL/JSL platform info and PCI ids
    - drm/i915: Add PORT_TCn aliases to enum port
    - drm/i915: s/PORT_TC/TC_PORT_/
    - drm/i915/rkl: new rkl ddc map for different PCH
    - SAUCE: drm/i915/gen9_bc : Add TGP PCH support

* Fix the video can't output through WD19TB connected with TGL platform during
    cold-boot (LP: #1910211)
    - SAUCE: drm/i915/dp: Prevent setting LTTPR mode if no LTTPR is detected

* Stop using get_scalar_status command in Dell AIO uart backlight driver
    (LP: #1865402)
    - SAUCE: platform/x86: dell-uart-backlight: add get_display_mode command

* Killer 500s (QCA6390) WLAN/BT [17cb:1101] unavailable (LP: #1879633)
    - SAUCE: ath11k: add 64bit check before reading msi high addr
    - SAUCE: ath11k: pci: support platforms with one MSI vector
    - SAUCE: ath11k: dp_rx: fix monitor status dma unmap direction
    - SAUCE: ath11k: hook mhi suspend and resume
    - SAUCE: ath11k: implement hif suspend and resume functions.
    - SAUCE: ath11k: read select_window register to ensure write is finished
    - SAUCE: ath11k: implement htc suspend related callbacks
    - SAUCE: ath11k: put target to suspend when system enters suspend state
    - SAUCE: ath11k: pci: print a warning if firmware crashed
    - SAUCE: ath11k: qmi: print allocated memory segment addresses and sizes
    - SAUCE: HACK: ath11k: add delays to suspend and resume handlers
    - SAUCE: ath11k: put hw to DBS using WMI_PDEV_SET_HW_MODE_CMDID
    - SAUCE: ath11k: fix pcie link unstable issue
    - SAUCE: ath11k: fix PCI L1ss clock unstable problem
    - SAUCE: ath11k: disable OTP write privilege
    - SAUCE: ath11k: disable ASPM L0sLs before downloading firmware
    - SAUCE: ath11k: purge rx pktlog when entering suspend
    - SAUCE: ath11k: set credit_update flag for flow controlled ep only
    - SAUCE: ath11k: implement wow enable and wow wakeup command
    - SAUCE: ath11k: add ce irq enable and disable hif layer functions
    - SAUCE: ath11k: put target to wow state when suspend happens
    - SAUCE: ath11k: vdev delete synchronization with firmware
    - SAUCE: ath11k: peer delete synchronization with firmware

* Add support for Intel Bluetooth Device Typhoon Peak (8087:0032)
    (LP: #1890130)
    - SAUCE: Bluetooth: btintel: Fix endianness issue for TLV version information
    - SAUCE: Bluetooth: btusb: Add *setup* function for new generation Intel
      controllers
    - SAUCE: Bluetooth: btusb: Define a function to construct firmware filename
    - SAUCE: Bluetooth: btusb: Helper function to download firmware to Intel
      adapters
    - SAUCE: Bluetooth: btusb: Map Typhoon peak controller to BTUSB_INTEL_NEWGEN

* failed to boot to GUI: i915 0000:00:02.0: [drm] *ERROR* Link Training
    Unsuccessful (LP: #1903969)
    - SAUCE: drm/i915: s/old_crtc_state/crtc_state/
    - SAUCE: drm/i915: Make intel_dp_process_phy_request() static
    - SAUCE: drm/i915: Shove the PHY test into the hotplug work
    - SAUCE: drm/i915: Split ICL combo PHY buf trans per output type
    - SAUCE: drm/i915: Split ICL MG PHY buf trans per output type
    - SAUCE: drm/i915: Split EHL combo PHY buf trans per output type
    - SAUCE: drm/i915: Split TGL combo PHY buf trans per output type
    - SAUCE: drm/i915: Split TGL DKL PHY buf trans per output type
    - SAUCE: drm/i915: Plumb crtc_state to link training
    - SAUCE: drm/i915: Fix DP link training pattern mask
    - SAUCE: drm/i915: Simplify the link training functions
    - SAUCE: drm/i915: Factor out a helper to disable the DPCD training pattern
    - SAUCE: drm/dp: Add LTTPR helpers
    - SAUCE: drm/i915: Switch to LTTPR transparent mode link training
    - SAUCE: drm/i915: Switch to LTTPR non-transparent mode link training

* switch to an autogenerated nvidia series based core via dkms-versions
    (LP: #1912803)
    - [Packaging] nvidia -- use dkms-versions to define versions built
    - [Packaging] update-version-dkms -- maintain flags fields
    - [Config] dkms-versions -- add transitional/skip information for nvidia
      packages

* Miscellaneous Ubuntu changes
    - [Config] Move some CONFIG_INTERCONNECT_QCOM_* options to different menu
    - SAUCE: selftests/seccomp: Accept any valid fd in user_notification_addfd
    - [Config] updateconfigs following v5.10.11 import
    - abi: gc bdc_pci module
    - zfs-modules.ignore: add zzstd

* Miscellaneous upstream changes
    - selftests/powerpc: Only test lwm/stmw on big endian

-- Paolo Pisati <paolo.pisati@canonical.com>  Fri, 29 Jan 2021 14:23:04 +0100

Changed in linux (Ubuntu):
status:	Fix Committed → Fix Released

Revision history for this message

Frank Heimes (fheimes) wrote on 2021-02-22:

#26

Since kernel 5.10 migrated to hirsute (release):
linux-generic | 5.10.0.14.16 | hirsute
this but can now be closed as Fix Released.

Changed in ubuntu-power-systems:
status:	Fix Committed → Fix Released

Revision history for this message

bugproxy (bugproxy) wrote on 2023-03-27:

#27

------- Comment From <email address hidden> 2023-03-27 11:56 EDT-------
This was fixed and closed on the Canonical side. Moving to closed on ours.

Ubuntu
linux package

5.10 kernel fails to boot with secure boot disabled

Bug Description

Other bug subscribers

Bug attachments

Remote bug watches

Affects		Status	Importance	Assigned to	Milestone
	The Ubuntu-power-systems project	Fix Released	High	Ubuntu on IBM Power Systems Bug Triage
	linux (Ubuntu)	Fix Released	High	bugproxy

Ubuntulinux package

5.10 kernel fails to boot with secure boot disabled

Bug Description

Other bug subscribers

Bug attachments

Remote bug watches

Ubuntu
linux package