SEV-SNP instances on AWS fail to boot
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| linux-aws (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
| Questing |
Fix Committed
|
High
|
Magali Lemes do Sacramento | ||
Bug Description
[Impact]
AWS instances with SEV-SNP enabled running the 6.17 kernel fail to boot
following upstream commit 81256a50aa0f ("x86/mm: Make memremap(
memory as encrypted by default"). The failure occurs because the vmgenid
driver relies on memory that must be shared, but is now mapped as encrypted by
default.
[Fix]
Clean cherry-pick of bb9ff576fdff ("virt: vmgenid: remap memory as
decrypted") from linux-next.
[Test Plan]
Compile the kernel with this patch applied and boot test on AWS c7a.8xlarge
instances with SEV-SNP enabled and disabled, verifying that the system boots
successfully in both configurations.
[Where problems could occur]
This patch only touches the vmgenid driver, and only affects the memory
attributes of the vmgenid mapping. However, incorrect assumptions about the
sharing requirements of the vmgenid memory region could potentially lead to
loss of vmgenid functionality or boot failures.
| Changed in linux-aws (Ubuntu Questing): | |
| assignee: | nobody → Magali Lemes do Sacramento (magalilemes) |
| status: | New → Incomplete |
| status: | Incomplete → In Progress |
| importance: | Undecided → High |
| description: | updated |
| tags: | added: kernel-daily-bug |
| Changed in linux-aws (Ubuntu Questing): | |
| status: | In Progress → Fix Committed |
| Ubuntu Kernel Bot (ubuntu-kernel-bot) wrote | #1 |
| tags: | added: kernel-spammed-questing-linux-aws-v2 verification-needed-questing-linux-aws |
This bug is awaiting verification that the linux-aws/
If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.
See https:/