[Kernel-packages] [Bug 1984034] Re: Backport patches needed to allow live migration under SEV

Wed, 31 Aug 2022 01:49:13 -0700 

This bug was fixed in the package linux-gcp - 5.4.0-1087.95

---------------
linux-gcp (5.4.0-1087.95) focal; urgency=medium

  * focal/linux-gcp: 5.4.0-1087.95 -proposed tracker (LP: #1983926)

  * Backport patches needed to allow live migration under SEV (LP: #1984034)
    - KVM: X86: Introduce KVM_HC_MAP_GPA_RANGE hypercall
    - x86/kvm: Add AMD SEV specific Hypercall3
    - mm: x86: Invoke hypercall when page encryption status is changed
    - EFI: Introduce the new AMD Memory Encryption GUID.
    - x86/kvm: Add guest support for detecting and enabling SEV Live Migration
      feature.
    - x86/kvm: Add kexec support for SEV Live Migration.

  [ Ubuntu: 5.4.0-125.141 ]

  * focal/linux: 5.4.0-125.141 -proposed tracker (LP: #1983947)
  * nbd: requests can become stuck when disconnecting from server with qemu-nbd
    (LP: #1896350)
    - blk-mq: blk-mq: provide forced completion method
    - blk-mq: move failure injection out of blk_mq_complete_request
    - nbd: don't handle response without a corresponding request message
    - nbd: make sure request completion won't concurrent
    - nbd: don't clear 'NBD_CMD_INFLIGHT' flag if request is not completed
    - nbd: fix io hung while disconnecting device
  * CVE-2021-33656
    - vt: drop old FONT ioctls
  * CVE-2021-33061
    - ixgbe: add the ability for the PF to disable VF link state
    - ixgbe: add improvement for MDD response functionality
    - ixgbevf: add disable link state

 -- Khalid Elmously <khalid.elmou...@canonical.com>  Wed, 17 Aug 2022
23:55:02 -0400

** Changed in: linux-gcp (Ubuntu Focal)
       Status: New => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-33061

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2021-33656

** Changed in: linux-gcp (Ubuntu Jammy)
       Status: New => Fix Released

-- 
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux-gcp in Ubuntu.
https://bugs.launchpad.net/bugs/1984034

Title:
  Backport patches needed to allow live migration under SEV

Status in linux-gcp package in Ubuntu:
  New
Status in linux-gcp source package in Focal:
  Fix Released
Status in linux-gcp source package in Jammy:
  Fix Released

Bug description:
  https://canonical.my.salesforce.com/5004K000009oeuI

  Upstream (v5.16) patches needed to allow live migration of
  confidential VMs.

  [Impact]
  No support for live-migration of confidential VMs currently

  [Fix]
  Backport 5 patches from v5.16

  [Test]
  GCP confirmed that live-migration works with these patches.

  [Regression Potential]
  This was never working so there should be low risk of regression.
  Most of the changes are KVM-related so could have an impact on KVM.
  However most of the changes are new code so risk is low.

  
  More details in the SF case.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux-gcp/+bug/1984034/+subscriptions


-- 
Mailing list: https://launchpad.net/~kernel-packages
Post to     : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help   : https://help.launchpad.net/ListHelp

Reply via email to