This bug was fixed in the package linux - 5.15.0-43.46
---------------
linux (5.15.0-43.46) jammy; urgency=medium
* jammy/linux: 5.15.0-43.46 -proposed tracker (LP: #1981243)
* Packaging resync (LP: #1786013)
- debian/dkms-versions -- update from kernel-versions (main/2022.07.11)
* nbd: requests can become stuck when disconnecting from server with qemu-nbd
(LP: #1896350)
- nbd: don't handle response without a corresponding request message
- nbd: make sure request completion won't concurrent
- nbd: don't clear 'NBD_CMD_INFLIGHT' flag if request is not completed
- nbd: fix io hung while disconnecting device
* Ubuntu 22.04 and 20.04 DPC Fixes for Failure Cases of DownPort Containment
events (LP: #1965241)
- PCI/portdrv: Rename pm_iter() to pcie_port_device_iter()
- PCI: pciehp: Ignore Link Down/Up caused by error-induced Hot Reset
- [Config] Enable config option CONFIG_PCIE_EDR
* [SRU] Ubuntu 22.04 Feature Request-Add support for a NVMe-oF-TCP CDC Client
- TP 8010 (LP: #1948626)
- nvme: add CNTRLTYPE definitions for 'identify controller'
- nvme: send uevent on connection up
- nvme: expose cntrltype and dctype through sysfs
* [UBUNTU 22.04] Kernel oops while removing device from cio_ignore list
(LP: #1980951)
- s390/cio: derive cdev information only for IO-subchannels
* Jammy Charmed OpenStack deployment fails over connectivity issues when using
converged OVS bridge for control and data planes (LP: #1978820)
- net/mlx5e: TC NIC mode, fix tc chains miss table
* Hairpin traffic does not work with centralized NAT gw (LP: #1967856)
- net: openvswitch: fix misuse of the cached connection on tuple changes
* alsa: asoc: amd: the internal mic can't be dedected on yellow carp machines
(LP: #1980700)
- ASoC: amd: Add driver data to acp6x machine driver
- ASoC: amd: Add support for enabling DMIC on acp6x via _DSD
* AMD ACP 6.x DMIC Supports (LP: #1949245)
- ASoC: amd: add Yellow Carp ACP6x IP register header
- ASoC: amd: add Yellow Carp ACP PCI driver
- ASoC: amd: add acp6x init/de-init functions
- ASoC: amd: add platform devices for acp6x pdm driver and dmic driver
- ASoC: amd: add acp6x pdm platform driver
- ASoC: amd: add acp6x irq handler
- ASoC: amd: add acp6x pdm driver dma ops
- ASoC: amd: add acp6x pci driver pm ops
- ASoC: amd: add acp6x pdm driver pm ops
- ASoC: amd: enable Yellow carp acp6x drivers build
- ASoC: amd: create platform device for acp6x machine driver
- ASoC: amd: add YC machine driver using dmic
- ASoC: amd: enable Yellow Carp platform machine driver build
- ASoC: amd: fix uninitialized variable in snd_acp6x_probe()
- [Config] Enable AMD ACP 6 DMIC Support
* [UBUNTU 20.04] Include patches to avoid self-detected stall with Secure
Execution (LP: #1979296)
- KVM: s390: pv: add macros for UVC CC values
- KVM: s390: pv: avoid stalls when making pages secure
* [22.04 FEAT] KVM: Attestation support for Secure Execution (crypto)
(LP: #1959973)
- drivers/s390/char: Add Ultravisor io device
- s390/uv_uapi: depend on CONFIG_S390
- [Config] CONFIG_S390_UV_UAPI=y for s390x
* CVE-2022-1679
- SAUCE: ath9k: fix use-after-free in ath9k_hif_usb_rx_cb
* CVE-2022-28893
- SUNRPC: Ensure we flush any closed sockets before xs_xprt_free()
- SUNRPC: Don't leak sockets in xs_local_connect()
* CVE-2022-34918
- netfilter: nf_tables: stricter validation of element data
* CVE-2022-1652
- floppy: use a statically allocated error counter
-- Stefan Bader <stefan.ba...@canonical.com> Tue, 12 Jul 2022 10:51:03
+0200
** Changed in: linux (Ubuntu Jammy)
Status: Fix Committed => Fix Released
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-1652
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-1679
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-28893
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-34918
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/1980951
Title:
[UBUNTU 22.04] Kernel oops while removing device from cio_ignore list
Status in Ubuntu on IBM z Systems:
Fix Committed
Status in linux package in Ubuntu:
Invalid
Status in linux source package in Jammy:
Fix Released
Bug description:
SRU Justification:
==================
[Impact]
* A kernel Oops occurs when a device is removed from the cio_ignore list
(that is used to hide ccw devices) on a system with non-I/O subchannels
(e.g. SCM or CHSC subchannels).
* As a result, previously ignored devices cannot be activated again,
and new devices cannot be found.
[Fix]
* 0c3812c347bf 0c3812c347bfb0dc213556a195e79850c55702f5 "s390/cio:
derive cdev information only for IO-subchannels"
[Test Plan]
* An IBM zSystems or LinuxONE LPAR with with non-I/O subchannels.
* Ubuntu Server 22.04 LTS (with GA kernel 5.15) installed.
* Define a cio_ignore list (to hide ccw devices).
* Remove a device from the cio_ignore list.
* Due to hardware requirements this test needs to be conducted by
IBM.
[Where problems could occur]
* General problems may occur with ccw device activation/deactivation
in case the new initialization is erroneous.
* Issues may also have an impact on the type of ccw devices,
and may no longer be limited to non-I/O subchannels.
* Things could still go wrong in case cdev is still not properly
derived from sch-type SUBCHANNEL_TYPE_IO.
[Other Info]
* The commit is upstream since kernel 5.16 (next-20220315).
__________
---Problem Description from Peter---
A kernel oops occurs when a device is removed from the cio_ignore list on a
system with non-I/O subchannels (e.g. SCM or CHSC subchannels). As a result,
previously ignored devices cannot be activated, and new devices cannot be found.
---uname output---
Linux localhost 5.15.0-40-generic #43-Ubuntu SMP Wed Jun 15 12:53:53 UTC 2022
s390x s390x s390x GNU/Linux
Machine Type = s390x
---Steps to Reproduce---
On an s390x-LPAR with non-I/O subchannels, remove a device from the
cio_ignore list.
Oops output:
[ 51.597505] Unable to handle kernel pointer dereference in virtual kernel
address space
[ 51.597516] Failing address: 2081e99191e98000 TEID: 2081e99191e98803
[ 51.597520] Fault in home space mode while using kernel ASCE.
[ 51.597524] AS:0000000082adc007 R3:0000000000000024
[ 51.597665] Oops: 0038 ilc:3 [#1] SMP
[ 51.597671] Modules linked in: scm_block chsc_sch vfio_ccw mdev
vfio_iommu_type1 vfio eadm_sch sch_fq_codel dm_multipath scsi_dh_rdac
scsi_dh_emc scsi_dh_alua drm i2c_core drm_panel_orientation_quirks ip_tables
x_tables btrfs blake2b_generic zstd_compress raid10 raid456 async_raid6_recov
async_memcpy async_pq async_
xor async_tx xor raid6_pq libcrc32c raid1 raid0 linear pkey zcrypt
crc32_vx_s390 ghash_s390 prng chacha_s390 libchacha aes_s390 des_s390 libdes
qeth_l2 bridge stp llc zfcp qeth qdio scsi_transport_fc ccwgroup sha512_s390
sha256_s390 sha1_s390 sha_common
[ 51.597735] CPU: 6 PID: 1418 Comm: cio_ignore Not tainted
5.15.0-40-generic #43-Ubuntu
[ 51.597740] Hardware name: IBM 2964 NC9 702 (LPAR)
[ 51.597742] Krnl PSW : 0704e00180000000 0000000081b0c632
(__unset_online+0x22/0x70)
[ 51.597752] R:0 T:1 IO:1 EX:1 Key:0 M:1 W:0 P:0 AS:3 CC:2 PM:0
RI:0 EA:3
[ 51.597756] Krnl GPRS: 0000000000000001 00000000004a3ca8 0000038007e49000
2081e99191e98528
[ 51.597760] 0000000000000000 0000000081b0c610 0000000000000000
0000000081b07f10
[ 51.597762] 000002aa00000000 0000000081b0c610 0000038007e49000
0000038007a6bc98
[ 51.597765] 00000000941f9200 000003ffa8cf95e0 0000000081818900
0000038007a6bbf8
[ 51.597773] Krnl Code: 0000000081b0c624: a784000c brc
8,0000000081b0c63c
[ 51.597773] 0000000081b0c628: e33030200002 ltg
%r3,32(%r3)
[ 51.597773] #0000000081b0c62e: a7840007 brc
8,0000000081b0c63c
[ 51.597773] >0000000081b0c632: e33032000012 lt
%r3,512(%r3)
[ 51.597773] 0000000081b0c638: a7740007 brc
7,0000000081b0c646
[ 51.597773] 0000000081b0c63c: a7290000 lghi %r2,0
[ 51.597773] 0000000081b0c640: c0f400089854 brcl
15,0000000081c1f6e8
[ 51.597773] 0000000081b0c646: ebeff0880024 stmg
%r14,%r15,136(%r15)
[ 51.597818] Call Trace:
[ 51.597820] [<0000000081b0c632>] __unset_online+0x22/0x70
[ 51.597824] ([<00000000818188e6>] bus_for_each_dev+0x66/0xc0)
[ 51.597828] [<0000000081b0e378>] css_schedule_eval_cond+0xe8/0x130
[ 51.597832] [<0000000081b08062>] cio_ignore_write+0x152/0x190
[ 51.597838] [<00000000814be36e>] proc_reg_write+0x9e/0xf0
[ 51.597843] [<00000000813f3470>] vfs_write+0xc0/0x280
[ 51.597848] [<00000000813f59a8>] ksys_write+0x68/0x100
[ 51.597852] [<0000000081b495d0>] __do_syscall+0x1c0/0x1f0
[ 51.597857] [<0000000081b56858>] system_call+0x78/0xa0
[ 51.597862] Last Breaking-Event-Address:
[ 51.597864] [<000000000000a000>] 0xa000
[ 51.597868] ---[ end trace 166ba86e913d2c60 ]---
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu-z-systems/+bug/1980951/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
