From: Greg KH <gregkh@linuxfoundation.org>
To: Paolo Bonzini <pbonzini@redhat.com>
Cc: "Herongguang (Stephen)" <herongguang.he@huawei.com>,
Chris Friesen <chris.friesen@windriver.com>,
"Han, Huaitong" <huaitong.han@intel.com>,
"hangaohuai@huawei.com" <hangaohuai@huawei.com>,
stable@vger.kernel.org,
"kvm@vger.kernel.org" <kvm@vger.kernel.org>,
"fangying1@huawei.com" <fangying1@huawei.com>,
"xudong.hao@linux.intel.com" <xudong.hao@linux.intel.com>,
"qemu-devel@nongnu.org" <qemu-devel@nongnu.org>,
"wangxinxin.wang@huawei.com" <wangxinxin.wang@huawei.com>,
"kai.huang@linux.intel.com" <kai.huang@linux.intel.com>,
"rkrcmar@redhat.com" <rkrcmar@redhat.com>,
"guangrong.xiao@linux.intel.com" <guangrong.xiao@linux.intel.com>,
linux-kernel@vger.kernel.org
Subject: Re: [Qemu-devel] kvm bug in __rmap_clear_dirty during live migration
Date: Fri, 24 Feb 2017 11:07:06 +0100 [thread overview]
Message-ID: <20170224100706.GA12001@kroah.com> (raw)
In-Reply-To: <044a553e-83d4-7c1b-fc93-292da7e678a4@redhat.com>
On Fri, Feb 24, 2017 at 11:00:32AM +0100, Paolo Bonzini wrote:
>
>
> On 24/02/2017 10:59, Greg KH wrote:
> > On Fri, Feb 24, 2017 at 05:35:17PM +0800, Herongguang (Stephen) wrote:
> >>
> >>
> >> On 2017/2/24 10:23, Herongguang (Stephen) wrote:
> >>>
> >>>
> >>> On 2017/2/22 22:43, Paolo Bonzini wrote:
> >>>>
> >>>>
> >>>> On 22/02/2017 14:31, Chris Friesen wrote:
> >>>>>>>
> >>>>>>
> >>>>>> Can you reproduce it with kernel 4.8+? I'm suspecting commmit
> >>>>>> 4e59516a12a6 ("kvm: vmx: ensure VMCS is current while enabling PML",
> >>>>>> 2016-07-14) to be the fix.
> >>>>>
> >>>>> I can't easily try with a newer kernel, the software package we're using
> >>>>> has kernel patches that would have to be ported.
> >>>>>
> >>>>> I'm at a conference, don't really have time to set up a pair of test
> >>>>> machines from scratch with a custom kernel.
> >>>>
> >>>> Hopefully Gaohuai and Rongguang can help with this too.
> >>>>
> >>>> Paolo
> >>>>
> >>>> .
> >>>>
> >>> Yes, we are looking into and testing this.
> >>>
> >>> I think this can result in any memory corruption, if VM1 writes its
> >>> PML buffer into VM2’s VMCS (since sched_in/sched_out notifier of VM1
> >>> is not registered yet), then VM1 is destroyed (hence its PML buffer
> >>> is freed back to kernel), after that, VM2 starts migration, so CPU
> >>> logs VM2’s dirty GFNS into a freed memory, results in any memory corruption.
> >>>
> >>> As its severity, this commit (http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4e59516a12a6ef6dcb660cb3a3f70c64bd60cfec)
> >>> is eligible to back port to kernel stable.
> >>
> >> Hi, Greg, can you cherry pick commit 4e59516a12a6ef6dcb660cb3a3f70c64bd60cfec to 4.4-y?
> >
> > If the KVM maintainers say it is ok to do so, yes, I will.
>
> Yes, he beat me by minutes. :)
Heh, ok, I'll go add it to the recently-announced 4.4.52-rc1 release.
thanks,
greg k-h
next prev parent reply other threads:[~2017-02-24 10:08 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <589C7E96.9060905@huawei.com>
[not found] ` <589D83CE.1090803@huawei.com>
[not found] ` <589DDC05.9010807@windriver.com>
[not found] ` <58AA51D6.6020508@huawei.com>
[not found] ` <1487565495.3740.27.camel@intel.com>
[not found] ` <58AD0094.90304@windriver.com>
[not found] ` <4dd92012-626a-2d80-9adb-0be398f73eb1@redhat.com>
[not found] ` <58AD92AE.6040502@windriver.com>
[not found] ` <6c5567f4-192d-aefd-90e4-89f53479c24e@redhat.com>
2017-02-24 2:23 ` [Qemu-devel] kvm bug in __rmap_clear_dirty during live migration Herongguang (Stephen)
2017-02-24 9:35 ` Herongguang (Stephen)
2017-02-24 9:59 ` Greg KH
2017-02-24 10:00 ` Paolo Bonzini
2017-02-24 10:07 ` Greg KH [this message]
2017-02-24 15:10 ` Chris Friesen
2017-02-24 15:14 ` Paolo Bonzini
2017-02-25 1:44 ` Herongguang (Stephen)
2017-02-27 7:38 ` Huang, Kai
2017-03-13 14:58 ` fangying
2017-03-13 16:57 ` Paolo Bonzini
2017-03-16 1:40 ` Huang, Kai
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20170224100706.GA12001@kroah.com \
--to=gregkh@linuxfoundation.org \
--cc=chris.friesen@windriver.com \
--cc=fangying1@huawei.com \
--cc=guangrong.xiao@linux.intel.com \
--cc=hangaohuai@huawei.com \
--cc=herongguang.he@huawei.com \
--cc=huaitong.han@intel.com \
--cc=kai.huang@linux.intel.com \
--cc=kvm@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=pbonzini@redhat.com \
--cc=qemu-devel@nongnu.org \
--cc=rkrcmar@redhat.com \
--cc=stable@vger.kernel.org \
--cc=wangxinxin.wang@huawei.com \
--cc=xudong.hao@linux.intel.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).