retpoline hints: primary infrastructure and initial hints
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
| linux (Ubuntu) |
High
|
Andy Whitcroft | ||
| Trusty |
Undecided
|
Unassigned | ||
| Xenial |
Undecided
|
Unassigned | ||
| Artful |
Undecided
|
Unassigned | ||
| Bionic |
High
|
Andy Whitcroft |
Bug Description
Tracking bug for the application of the retpoline hint tracking support.
We are having terrible trouble with hints changing on every build. Upstream is moving to hinting those indirections which have been reviewed and are good. This includes direct hinting of PVOPS and the like which are the ones which change all the time as new ones appear and dissappear.
Backport the hint support and add our own bespoke checkers against this data.
Changed in linux (Ubuntu): | |
status: | New → Confirmed |
importance: | Undecided → High |
assignee: | nobody → Andy Whitcroft (apw) |
description: | updated |
summary: |
- retpoline hints: primary infrastructure + retpoline hints: primary infrastructure and initial hints |
Changed in linux (Ubuntu Bionic): | |
status: | Confirmed → Fix Committed |
Rico Tzschichholz (ricotz) wrote : | #1 |
Thomas Faller (tfaller1) wrote : | #2 |
There is a patch: https:/
But it did not solve the problem for me.
If I build via "make-kpkg", then the debian/rules gets overwritten which contains the patch.
Building just with "make bindeb-pkg" doesn't work either, because the debian/rules is not called.
Changed in linux (Ubuntu Xenial): | |
status: | New → Fix Committed |
Changed in linux (Ubuntu Artful): | |
status: | New → Fix Committed |
Changed in linux (Ubuntu Trusty): | |
status: | New → Fix Committed |
This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-
If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.
See https:/
tags: | added: verification-needed-trusty |
Brad Figg (brad-figg) wrote : | #4 |
This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-
If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.
See https:/
tags: | added: verification-needed-xenial |
tags: | added: verification-needed-artful |
Brad Figg (brad-figg) wrote : | #5 |
This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-
If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.
See https:/
Launchpad Janitor (janitor) wrote : | #6 |
This bug was fixed in the package linux - 4.15.0-15.16
---------------
linux (4.15.0-15.16) bionic; urgency=medium
* linux: 4.15.0-15.16 -proposed tracker (LP: #1761177)
* FFe: Enable configuring resume offset via sysfs (LP: #1760106)
- PM / hibernate: Make passing hibernate offsets more friendly
* /dev/bcache/by-uuid links not created after reboot (LP: #1729145)
- SAUCE: (no-up) bcache: decouple emitting a cached_dev CHANGE uevent
* Ubuntu18.
type(
Transactional Memory, try cap-htm=off" (kvm) (LP: #1752026)
- powerpc: Use feature bit for RTC presence rather than timebase presence
- powerpc: Book E: Remove unused CPU_FTR_L2CSR bit
- powerpc: Free up CPU feature bits on 64-bit machines
- powerpc: Add CPU feature bits for TM bug workarounds on POWER9 v2.2
- powerpc/powernv: Provide a way to force a core into SMT4 mode
- KVM: PPC: Book3S HV: Work around transactional memory bugs in POWER9
- KVM: PPC: Book3S HV: Work around XER[SO] bug in fake suspend mode
- KVM: PPC: Book3S HV: Work around TEXASR bug in fake suspend state
* Important Kernel fixes to be backported for Power9 (kvm) (LP: #1758910)
- powerpc/mm: Fixup tlbie vs store ordering issue on POWER9
* Ubuntu 18.04 - IO Hang on some namespaces when running HTX with 16
namespaces (Bolt / NVMe) (LP: #1757497)
- powerpc/64s: Fix lost pending interrupt due to race causing lost update to
irq_happened
* fwts-efi-
failed to build (LP: #1760876)
- [Packaging] include the retpoline extractor in the headers
linux (4.15.0-14.15) bionic; urgency=medium
* linux: 4.15.0-14.15 -proposed tracker (LP: #1760678)
* [Bionic] mlx4 ETH - mlnx_qos failed when set some TC to vendor
(LP: #1758662)
- net/mlx4_en: Change default QoS settings
* AT_BASE_PLATFORM in AUXV is absent on kernels available on Ubuntu 17.10
(LP: #1759312)
- powerpc/64s: Fix NULL AT_BASE_PLATFORM when using DT CPU features
* Bionic update to 4.15.15 stable release (LP: #1760585)
- net: dsa: Fix dsa_is_user_port() test inversion
- openvswitch: meter: fix the incorrect calculation of max delta_t
- qed: Fix MPA unalign flow in case header is split across two packets.
- tcp: purge write queue upon aborting the connection
- qed: Fix non TCP packets should be dropped on iWARP ll2 connection
- sysfs: symlink: export sysfs_create_
- net: phy: relax error checking when creating sysfs link netdev->phydev
- devlink: Remove redundant free on error path
- macvlan: filter out unsupported feature flags
- net: ipv6: keep sk status consistent after datagram connect failure
- ipv6: old_dport should be a __be16 in __ip6_datagram_
- ipv6: sr: fix NULL pointer dereference when setting encap source address
- ipv6: sr: fix scheduling in RCU when creating seg6 lwtunnel state
- mlxsw: spectrum_buffers: Set a minimum quota for CPU port traffic
- net: phy: Tell caller result ...
Changed in linux (Ubuntu Bionic): | |
status: | Fix Committed → Fix Released |
Retpoline files for Xenial kernel 4.4.0-121-generic are being generated as expected.
tags: |
added: verification-done-xenial removed: verification-needed-xenial |
Retpoline files for Artful kernel 4.13.0-39-generic are being generated as expected.
tags: |
added: verification-done-artful removed: verification-needed-artful |
Retpoline files for Trusty kernel 3.13.0-145-generic are being generated as expected.
tags: |
added: verification-done-trusty removed: verification-needed-trusty |
Launchpad Janitor (janitor) wrote : | #10 |
This bug was fixed in the package linux - 3.13.0-145.194
---------------
linux (3.13.0-145.194) trusty; urgency=medium
* linux: 3.13.0-145.194 -proposed tracker (LP: #1761430)
* intel-microcode 3.20180312.0 causes lockup at login screen(w/ linux-
image-
- Revert "UBUNTU: SAUCE: x86/mm: Only set IBPB when the new thread cannot
ptrace current thread"
- x86/speculation: Use Indirect Branch Prediction Barrier in context switch
* DKMS driver builds fail with: Cannot use CONFIG_
install libelf-dev, libelf-devel or elfutils-
- [Packaging] include the retpoline extractor in the headers
* retpoline hints: primary infrastructure and initial hints (LP: #1758856)
- [Packaging] retpoline-extract: flag *0xNNN(%reg) branches
- x86/speculation, objtool: Annotate indirect calls/jumps for objtool
- x86/speculation, objtool: Annotate indirect calls/jumps for objtool on 32bit
- x86/paravirt, objtool: Annotate indirect calls
- x86/asm: Stop depending on ptrace.h in alternative.h
- [Packaging] retpoline -- add safe usage hint support
- [Packaging] retpoline-check -- only report additions
- [Packaging] retpoline -- widen indirect call/jmp detection
- [Packaging] retpoline -- elide %rip relative indirections
- [Packaging] retpoline -- clear hint information from packages
- SAUCE: modpost: add discard to non-allocatable whitelist
- KVM: x86: Make indirect calls in emulator speculation safe
- KVM: VMX: Make indirect call speculation safe
- x86/boot, objtool: Annotate indirect jump in secondary_
- SAUCE: early/late -- annotate indirect calls in early/late initialisation
code
- SAUCE: vga_set_mode -- avoid jump tables
- [Config] retpoline -- switch to new format
- [Packaging] retpoline hints -- handle missing files when RETPOLINE not
enabled
- [Packaging] final-checks -- remove check for empty retpoline files
* retpoline: ignore %cs:0xNNN constant indirections (LP: #1752655)
- [Packaging] retpoline -- elide %cs:0xNNNN constants on i386
* Boot crash with Trusty 3.13 (LP: #1757193)
- Revert "UBUNTU: SAUCE: x86, extable: fix uaccess fixup detection"
- x86/mm: Expand the exception table logic to allow new handling options
* Segmentation fault in ldt_gdt_64 (LP: #1755817) // CVE-2017-5754
- x86/kvm: Rename VMX's segment access rights defines
- x86/signal/64: Fix SS if needed when delivering a 64-bit signal
-- Kleber Sacilotto de Souza <email address hidden> Thu, 05 Apr 2018 16:26:39 +0200
Changed in linux (Ubuntu Trusty): | |
status: | Fix Committed → Fix Released |
Launchpad Janitor (janitor) wrote : | #11 |
This bug was fixed in the package linux - 4.4.0-121.145
---------------
linux (4.4.0-121.145) xenial; urgency=medium
* linux: 4.4.0-121.145 -proposed tracker (LP: #1763687)
* Ubuntu-
- [Config] arm64: disable BPF_JIT_ALWAYS_ON
linux (4.4.0-120.144) xenial; urgency=medium
* linux: 4.4.0-120.144 -proposed tracker (LP: #1761438)
* intel-microcode 3.20180312.0 causes lockup at login screen(w/ linux-
image-
- Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
thread"
- x86/speculation: Use Indirect Branch Prediction Barrier in context switch
* DKMS driver builds fail with: Cannot use CONFIG_
install libelf-dev, libelf-devel or elfutils-
- [Packaging] include the retpoline extractor in the headers
* retpoline hints: primary infrastructure and initial hints (LP: #1758856)
- [Packaging] retpoline-extract: flag *0xNNN(%reg) branches
- x86/speculation, objtool: Annotate indirect calls/jumps for objtool
- x86/speculation, objtool: Annotate indirect calls/jumps for objtool on 32bit
- x86/paravirt, objtool: Annotate indirect calls
- x86/asm: Stop depending on ptrace.h in alternative.h
- [Packaging] retpoline -- add safe usage hint support
- [Packaging] retpoline-check -- only report additions
- [Packaging] retpoline -- widen indirect call/jmp detection
- [Packaging] retpoline -- elide %rip relative indirections
- [Packaging] retpoline -- clear hint information from packages
- SAUCE: modpost: add discard to non-allocatable whitelist
- KVM: x86: Make indirect calls in emulator speculation safe
- KVM: VMX: Make indirect call speculation safe
- x86/boot, objtool: Annotate indirect jump in secondary_
- SAUCE: early/late -- annotate indirect calls in early/late initialisation
code
- SAUCE: vga_set_mode -- avoid jump tables
- [Config] retpoline -- switch to new format
- [Packaging] final-checks -- remove check for empty retpoline files
* Xenial update to 4.4.117 stable release (LP: #1756860)
- IB/mlx4: Fix incorrectly releasing steerable UD QPs when have only ETH ports
- PM / devfreq: Propagate error from devfreq_
- s390: fix handling of -1 in set{,fs}[gu]id16 syscalls
- ARM: dts: STi: Add gpio polarity for "hdmi,hpd-gpio" property
- arm: spear600: Add missing interrupt-parent of rtc
- arm: spear13xx: Fix dmas cells
- arm: spear13xx: Fix spics gpio controller's warning
- ALSA: seq: Fix regression by incorrect ioctl_mutex usages
- KVM/x86: Reduce retpoline performance impact in slot_handle_
by always inlining iterator helper methods
- x86/cpu: Change type of x86_cache_size variable to unsigned int
- drm/radeon: adjust tested variable
- rtc-opal: Fix handling of firmware error codes, prevent busy loops
- ext4: save error to disk in __ext4_
- ext4: correct documentation for grpid mount option
- mm: hide a #warning fo...
Changed in linux (Ubuntu Xenial): | |
status: | Fix Committed → Fix Released |
Launchpad Janitor (janitor) wrote : | #12 |
This bug was fixed in the package linux - 4.13.0-39.44
---------------
linux (4.13.0-39.44) artful; urgency=medium
* linux: 4.13.0-39.44 -proposed tracker (LP: #1761456)
* intel-microcode 3.20180312.0 causes lockup at login screen(w/ linux-
image-
Intel) // CVE-2017-5754
- x86/mm: Reinitialize TLB state on hotplug and resume
* intel-microcode 3.20180312.0 causes lockup at login screen(w/ linux-
image-
- Revert "x86/mm: Only set IBPB when the new thread cannot ptrace current
thread"
- x86/speculation: Use Indirect Branch Prediction Barrier in context switch
* DKMS driver builds fail with: Cannot use CONFIG_
install libelf-dev, libelf-devel or elfutils-
- [Packaging] include the retpoline extractor in the headers
* retpoline hints: primary infrastructure and initial hints (LP: #1758856)
- [Packaging] retpoline-extract: flag *0xNNN(%reg) branches
- x86/speculation, objtool: Annotate indirect calls/jumps for objtool
- x86/speculation, objtool: Annotate indirect calls/jumps for objtool on 32bit
- x86/paravirt, objtool: Annotate indirect calls
- [Packaging] retpoline -- add safe usage hint support
- [Packaging] retpoline-check -- only report additions
- [Packaging] retpoline -- widen indirect call/jmp detection
- [Packaging] retpoline -- elide %rip relative indirections
- [Packaging] retpoline -- clear hint information from packages
- KVM: x86: Make indirect calls in emulator speculation safe
- KVM: VMX: Make indirect call speculation safe
- x86/boot, objtool: Annotate indirect jump in secondary_
- SAUCE: early/late -- annotate indirect calls in early/late initialisation
code
- SAUCE: vga_set_mode -- avoid jump tables
- [Config] retpoline -- switch to new format
- [Packaging] retpoline hints -- handle missing files when RETPOLINE not
enabled
- [Packaging] final-checks -- remove check for empty retpoline files
* retpoline: ignore %cs:0xNNN constant indirections (LP: #1752655)
- [Packaging] retpoline -- elide %cs:0xNNNN constants on i386
* zfs system process hung on container stop/delete (LP: #1754584)
- SAUCE: Fix non-prefaulted page deadlock (LP: #1754584)
* zfs-linux 0.6.5.11-1ubuntu5 ADT test failure with linux 4.15.0-1.2
(LP: #1737761)
- SAUCE: (noup) Update zfs to 0.6.5.11-1ubuntu3.2
* AT_BASE_PLATFORM in AUXV is absent on kernels available on Ubuntu 17.10
(LP: #1759312)
- powerpc/64s: Fix NULL AT_BASE_PLATFORM when using DT CPU features
* btrfs and tar sparse truncate archives (LP: #1757565)
- Btrfs: move definition of the function btrfs_find_
- Btrfs: fix reported number of inode blocks after buffered append writes
* efifb broken on ThunderX-based Gigabyte nodes (LP: #1758375)
- drivers/
* Intel i40e PF reset due to incorrect MDD detection (continues...)
(LP: #1723127)
- i40e/i40ev...
Changed in linux (Ubuntu Artful): | |
status: | Fix Committed → Fix Released |
Brad Figg (brad-figg) wrote : | #13 |
This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-
If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.
See https:/
tags: | added: verification-needed-bionic |
tags: |
added: kernel-fixup-verification-needed-bionic removed: verification-needed-bionic |
Andy Whitcroft (apw) wrote : | #14 |
This bug was erroneously marked for verification in bionic; verification is not required and verification-
tags: | added: verification-done-bionic |
tags: | added: cscc |
https:/ /git.launchpad. net/~ubuntu- kernel/ ubuntu/ +source/ linux/+ git/unstable/ commit/ ?id=9bcff854bde 0d85d74a4f9e711 96ca2931c07d7c
This changes the installed file "scripts/ Makefile. build" and causes build failures of dkms modules due to not found command "./debian/ scripts/ retpoline- extract- one"