i40e: general protection fault in i40e_config_vf_promiscuous_mode
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Fix Released
|
Undecided
|
gerald.yang | ||
Eoan |
Fix Released
|
Undecided
|
gerald.yang |
Bug Description
SRU Justification
[Impact]
Assign some VFs to VMs, when deleting VMs, a general protection fault occurs in i40e_config_
general protection fault: 0000 [#1] SMP PTI
CPU: 54 PID: 6200 Comm: libvirtd Not tainted 5.3.0-21-generic #22~18.
RIP: 0010:i40e_
Code: 48 8b 00 83 d1 00 48 85 c0 75 ef 49 83 c4 08 4c 39 e6 75 dd 85 c9 74 73 0f b6 45 c0 45 31 d2 89 45 d0 4d 8b 3e 4d 85 ff 74 53 <41> 0f b7 4f 16 66 81 f9 ff 0f 77 3f 0f b7 b3 ea 0c 00 00 8b 55 d0
RSP: 0018:ffffb987b5
RAX: 0000000000000000 RBX: ffff9bb5df5a9000 RCX: 0000000000000000
RDX: 0000000000000000 RSI: 0000000006000000 RDI: ffff9bace4bce350
RBP: ffffb987b5c777b0 R08: 0000000000000000 R09: ffff9bace56a9da0
R10: 0000000000000000 R11: 0000000000000100 R12: ffff9bb5df5a9a28
R13: ffff9bace4bce008 R14: ffff9bb5df5a9338 R15: 26c2b975d54f5980
FS: 00007f9f07fff70
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fa73c9c0e10 CR3: 000000f6ab37a002 CR4: 00000000007626e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
PKRU: 55555554
Call Trace:
i40e_ndo_
do_setlink+
?update_
?update_
?__switch_
?__switch_
?__switch_
?__switch_
rtnl_setlink+
rtnetlink_
?aa_label_
?_cond_
?rtnl_calcit.
netlink_
rtnetlink_
netlink_
netlink_
sock_sendmsg+
___sys_
?aa_label_
?_raw_spin_
?release_
__sys_sendmsg+
?__sys_
__x64_sys_
do_syscall_
entry_SYSCALL_
This issue also happens when deleting k8s pod if VF is used by k8s pod, there was a bug reported in the e1000-devel mailing list
https:/
The fix is suggested by Billy McFall, to add protection when accessing the hash list(vsi-
[Test Case]
Spin up some VMs with VFs, then delete all VMs
[Regression Potential]
Low, the fix is to add a protection for a hash list, shouldn't have potential regression
CVE References
Changed in linux (Ubuntu): | |
assignee: | nobody → gerald.yang (gerald-yang-tw) |
Changed in linux (Ubuntu Eoan): | |
assignee: | nobody → gerald.yang (gerald-yang-tw) |
Changed in linux (Ubuntu): | |
status: | New → In Progress |
Changed in linux (Ubuntu Eoan): | |
status: | New → In Progress |
tags: | added: sts |
Changed in linux (Ubuntu Eoan): | |
status: | In Progress → Fix Committed |
Changed in linux (Ubuntu Eoan): | |
status: | Fix Committed → Invalid |
status: | Invalid → Fix Committed |
This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification- needed- eoan' to 'verification- done-eoan' . If the problem still exists, change the tag 'verification- needed- eoan' to 'verification- failed- eoan'.
If verification is not done by 5 working days from today, this fix will be dropped from the source code, and this bug will be closed.
See https:/ /wiki.ubuntu. com/Testing/ EnableProposed for documentation how to enable and use -proposed. Thank you!