Disable Bluetooth in cloud kernels

Bug #1840488 reported by Tyler Hicks on 2019-08-16
18
This bug affects 3 people
Affects Status Importance Assigned to Milestone
linux-aws (Ubuntu)
High
Unassigned
Xenial
Undecided
Unassigned
Bionic
Undecided
Unassigned
Disco
Undecided
Unassigned
Eoan
High
Unassigned
linux-gcp (Ubuntu)
High
Unassigned
Xenial
High
Unassigned
Bionic
High
Unassigned
Disco
High
Unassigned
Eoan
High
Unassigned
linux-gke-4.15 (Ubuntu)
Undecided
Unassigned
Xenial
Undecided
Unassigned
Bionic
High
Unassigned
Disco
Undecided
Unassigned
Eoan
Undecided
Unassigned
linux-gke-5.0 (Ubuntu)
Undecided
Unassigned
Xenial
Undecided
Unassigned
Bionic
High
Unassigned
Disco
Undecided
Unassigned
Eoan
Undecided
Unassigned
linux-oracle (Ubuntu)
High
Unassigned
Xenial
High
Unassigned
Bionic
High
Unassigned
Disco
High
Unassigned
Eoan
High
Unassigned

Bug Description

[Impact]

Some cloud-focused kernels have CONFIG_BT enabled but cloud instances shouldn't need bluetooth support. Disabling the bluetooth subsystem reduces the amount of security-sensitive code we have to worry about in the cloud kernels and also has the nice side effect of minimizing build times and kernel sizes.

The cloud kernels known to have bluetooth enabled include:

* [B/D/E] linux-aws (arm64 only)
* [X/B/D/E] linux-gcp
* [B] linux-gke-4.15
* [B] linux-gke-5.0
* [X/B/D/E] linux-oracle

[Test Case]

1. Install patched kernel and reboot into it
2. Ensure that the following command does NOT display any output:
   $ grep CONFIG_BT=[my] /boot/config-$(uname -r)

[Regression Potential]

There could be an unexpected dependence on bluetooth within one of the clouds but I think it is highly unlikely.

Tyler Hicks (tyhicks) on 2019-08-16
Changed in linux-aws (Ubuntu Disco):
status: New → Triaged
Changed in linux-aws (Ubuntu Bionic):
status: New → Triaged
description: updated
Changed in linux-aws (Ubuntu Xenial):
status: New → Invalid
Tyler Hicks (tyhicks) on 2019-08-16
Changed in linux-gke-4.15 (Ubuntu Xenial):
status: New → Invalid
Changed in linux-gke-4.15 (Ubuntu Disco):
status: New → Invalid
Changed in linux-gke-4.15 (Ubuntu Eoan):
status: New → Invalid
Changed in linux-gke-5.0 (Ubuntu Xenial):
status: New → Invalid
Changed in linux-gke-5.0 (Ubuntu Disco):
status: New → Invalid
Changed in linux-gke-5.0 (Ubuntu Eoan):
status: New → Invalid
Changed in linux-gke-4.15 (Ubuntu Bionic):
status: New → Triaged
Changed in linux-gke-5.0 (Ubuntu Bionic):
importance: Undecided → High
status: New → Triaged
Changed in linux-gke-4.15 (Ubuntu Bionic):
importance: Undecided → High
Changed in linux-gcp (Ubuntu Xenial):
status: New → Triaged
importance: Undecided → High
Changed in linux-gcp (Ubuntu Bionic):
importance: Undecided → High
status: New → Triaged
Changed in linux-gcp (Ubuntu Disco):
importance: Undecided → High
status: New → Triaged
Changed in linux-gcp (Ubuntu Eoan):
importance: Undecided → High
status: New → Triaged
Changed in linux-oracle (Ubuntu Xenial):
importance: Undecided → High
status: New → Triaged
Changed in linux-oracle (Ubuntu Bionic):
importance: Undecided → High
status: New → Triaged
Changed in linux-oracle (Ubuntu Disco):
importance: Undecided → High
status: New → Triaged
Changed in linux-oracle (Ubuntu Eoan):
importance: Undecided → High
status: New → Triaged
Tyler Hicks (tyhicks) on 2019-08-16
description: updated
Steve Langasek (vorlon) on 2020-07-02
Changed in linux-aws (Ubuntu Disco):
status: Triaged → Won't Fix
Changed in linux-gcp (Ubuntu Disco):
status: Triaged → Won't Fix
Changed in linux-oracle (Ubuntu Disco):
status: Triaged → Won't Fix
Brian Murray (brian-murray) wrote :

The Eoan Ermine has reached end of life, so this bug will not be fixed for that release

Changed in linux-aws (Ubuntu Eoan):
status: Triaged → Won't Fix
Changed in linux-gcp (Ubuntu Eoan):
status: Triaged → Won't Fix
Changed in linux-oracle (Ubuntu Eoan):
status: Triaged → Won't Fix
Launchpad Janitor (janitor) wrote :
Download full text (63.4 KiB)

This bug was fixed in the package linux-aws - 5.4.0-1038.40

---------------
linux-aws (5.4.0-1038.40) focal; urgency=medium

  * focal/linux-aws: 5.4.0-1038.40 -proposed tracker (LP: #1913135)

  * Focal update: v5.4.85 upstream stable release (LP: #1910817)
    - [Config] aws: updateconfigs for USB_SISUSBVGA_CON

  * Focal update: v5.4.84 upstream stable release (LP: #1910816)
    - [Config] aws: updateconfigs for PGTABLE_MAPPING

  * Focal update: v5.4.80 upstream stable release (LP: #1908561)
    - [Config] aws: updateconfigs for INFINIBAND_VIRT_DMA

  * Disable Bluetooth in cloud kernels (LP: #1840488)
    - aws: [Config] disable CONFIG_BT
    - aws: [Config] remove disabled BT modules

  * aws: properly support instance types with > 255 cpu cores (LP: #1913739)
    - iommu/vt-d: Gracefully handle DMAR units with no supported address widths

  [ Ubuntu: 5.4.0-66.74 ]

  * focal/linux: 5.4.0-66.74 -proposed tracker (LP: #1913152)
  * Add support for selective build of special drivers (LP: #1912789)
    - [Packaging] Add support for ODM drivers
    - [Packaging] Turn on ODM support for amd64
  * Packaging resync (LP: #1786013)
    - update dkms package versions
    - update dkms package versions
  * Introduce the new NVIDIA 460-server series and update the 460 series
    (LP: #1913200)
    - [Config] dkms-versions -- drop NVIDIA 435 455 and 440-server
    - [Config] dkms-versions -- add the 460-server nvidia driver
  * Enable mute and micmute LED on HP EliteBook 850 G7 (LP: #1910102)
    - ALSA: hda/realtek: Enable mute and micmute LED on HP EliteBook 850 G7
  * SYNA30B4:00 06CB:CE09 Mouse on HP EliteBook 850 G7 not working at all
    (LP: #1908992)
    - HID: multitouch: Enable multi-input for Synaptics pointstick/touchpad device
  * HD Audio Device PCI ID for the Intel Cometlake-R platform (LP: #1912427)
    - SAUCE: ALSA: hda: Add Cometlake-R PCI ID
  * switch to an autogenerated nvidia series based core via dkms-versions
    (LP: #1912803)
    - [Packaging] nvidia -- use dkms-versions to define versions built
    - [Packaging] update-version-dkms -- maintain flags fields
    - [Config] dkms-versions -- add transitional/skip information for nvidia
      packages
  * udpgro.sh in net from ubuntu_kernel_selftests seems not reflecting sub-test
    result (LP: #1908499)
    - selftests: fix the return value for UDP GRO test
  * qede: Kubernetes Internal DNS Failure due to QL41xxx NIC not supporting IPIP
    tx csum offload (LP: #1909062)
    - qede: fix offload for IPIP tunnel packets
  * Use DCPD to control HP DreamColor panel (LP: #1911001)
    - SAUCE: drm/dp: Another HP DreamColor panel brigntness fix
  * kvm: Windows 2k19 with Hyper-v role gets stuck on pending hypervisor
    requests on cascadelake based kvm hosts (LP: #1911848)
    - KVM: x86: Set KVM_REQ_EVENT if run is canceled with req_immediate_exit set
  * Ubuntu 20.10 four needed fixes to 'Add driver for Mellanox Connect-IB
    adapters' (LP: #1905574)
    - net/mlx5: Fix a race when moving command interface to polling mode
  * Fix right sounds and mute/micmute LEDs for HP ZBook Fury 15/17 G7 Mobile
    Workstation (LP: #1910561)
    - ALSA: hda/realtek: fix right sounds and m...

Changed in linux-aws (Ubuntu):
status: Triaged → Fix Released
Launchpad Janitor (janitor) wrote :
Download full text (38.1 KiB)

This bug was fixed in the package linux-aws - 4.15.0-1094.101

---------------
linux-aws (4.15.0-1094.101) bionic; urgency=medium

  * bionic/linux-aws: 4.15.0-1094.101 -proposed tracker (LP: #1913097)

  * Bionic update: upstream stable patchset 2021-01-12 (LP: #1911331)
    - [Config] aws: Update config for USB_SISUSBVGA_CON

  * Disable Bluetooth in cloud kernels (LP: #1840488)
    - aws: [Config] disable CONFIG_BT
    - aws: [Config] remove disabled BT modules

  * aws: properly support instance types with > 255 cpu cores (LP: #1913739)
    - iommu/vt-d: Gracefully handle DMAR units with no supported address widths

  [ Ubuntu: 4.15.0-136.140 ]

  * bionic/linux: 4.15.0-136.140 -proposed tracker (LP: #1913117)
  * Packaging resync (LP: #1786013)
    - update dkms package versions
    - update dkms package versions
  * Introduce the new NVIDIA 460-server series and update the 460 series
    (LP: #1913200)
    - [Config] dkms-versions -- drop NVIDIA 435 455 and 440-server
    - [Config] dkms-versions -- add the 460-server nvidia driver
  * switch to an autogenerated nvidia series based core via dkms-versions
    (LP: #1912803)
    - [Packaging] nvidia -- use dkms-versions to define versions built
    - [Packaging] update-version-dkms -- maintain flags fields
    - [Config] dkms-versions -- add transitional/skip information for nvidia
      packages
  * DMI entry syntax fix for Pegatron / ByteSpeed C15B (LP: #1910639)
    - Input: i8042 - unbreak Pegatron C15B
  * CVE-2020-29372
    - mm: check that mm is still valid in madvise()
  * update ENA driver, incl. new ethtool stats (LP: #1910291)
    - net: ena: change num_queues to num_io_queues for clarity and consistency
    - net: ena: ethtool: get_channels: use combined only
    - net: ena: ethtool: support set_channels callback
    - net: ena: ethtool: remove redundant non-zero check on rc
    - net/amazon: Ensure that driver version is aligned to the linux kernel
    - net: ena: ethtool: clean up minor indentation issue
    - net: ena: remove code that does nothing
    - net: ena: add unmask interrupts statistics to ethtool
    - net: ena: cosmetic: change ena_com_stats_admin stats to u64
    - net: ena: cosmetic: remove unnecessary code
    - net: ena: ethtool: convert stat_offset to 64 bit resolution
    - net: ena: ethtool: Add new device statistics
    - net: ena: Change license into format to SPDX in all files
    - net: ena: Change RSS related macros and variables names
  * CVE-2020-29374
    - gup: document and work around "COW can break either way" issue
  * Bionic update: upstream stable patchset 2021-01-12 (LP: #1911331)
    - spi: bcm2835aux: Fix use-after-free on unbind
    - spi: bcm2835aux: Restore err assignment in bcm2835aux_spi_probe
    - iwlwifi: pcie: limit memory read spin time
    - arm64: dts: rockchip: Assign a fixed index to mmc devices on rk3399 boards.
    - iwlwifi: mvm: fix kernel panic in case of assert during CSA
    - ARC: stack unwinding: don't assume non-current task is sleeping
    - scsi: ufs: Make sure clk scaling happens only when HBA is runtime ACTIVE
    - soc: fsl: dpio: Get the cpumask through cpumask_of(cpu)
    - platform/x86: acer-wmi: add automa...

Changed in linux-aws (Ubuntu Bionic):
status: Triaged → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers