Bug 1067225
| Summary: | Windows guest performing out-of-bounds accesses on virtio device | ||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Product: | Red Hat Enterprise Linux 6 | Reporter: | David Gibson <dgibson> | ||||||||||||
| Component: | virtio-win | Assignee: | Vadim Rozenfeld <vrozenfe> | ||||||||||||
| Status: | CLOSED ERRATA | QA Contact: | Virtualization Bugs <virt-bugs> | ||||||||||||
| Severity: | high | Docs Contact: | |||||||||||||
| Priority: | high | ||||||||||||||
| Version: | 6.4 | CC: | adevolder, areis, dgibson, dgilbert, jherrman, juzhang, knoel, lijin, mdeng, michen, mkalinin, rbalakri, rpacheco, vrozenfe | ||||||||||||
| Target Milestone: | rc | ||||||||||||||
| Target Release: | --- | ||||||||||||||
| Hardware: | Unspecified | ||||||||||||||
| OS: | Unspecified | ||||||||||||||
| Whiteboard: | |||||||||||||||
| Fixed In Version: | Doc Type: | Bug Fix | |||||||||||||
| Doc Text: |
Previously, Windows guests in some cases issued out-of-bounds read and write requests to a virtio device, which caused the guest to become unresponsive. Now, the Windows virtio-blk device drive performs logical block addressing (LBA) sanity checks before submitting requests to QEMU, and does not submit requests that are out-of-bounds. As a result, the described problem no longer occurs.
|
Story Points: | --- | ||||||||||||
| Clone Of: | |||||||||||||||
| : | 1195487 (view as bug list) | Environment: | |||||||||||||
| Last Closed: | 2016-05-10 16:35:27 UTC | Type: | Bug | ||||||||||||
| Regression: | --- | Mount Type: | --- | ||||||||||||
| Documentation: | --- | CRM: | |||||||||||||
| Verified Versions: | Category: | --- | |||||||||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||||||||
| Embargoed: | |||||||||||||||
| Bug Depends On: | |||||||||||||||
| Bug Blocks: | 1195487 | ||||||||||||||
| Attachments: |
|
||||||||||||||
|
Description
David Gibson
2014-02-19 23:59:02 UTC
Created attachment 865302 [details]
Patch showing diagnostic alterations to qemu
This is the debug patch I used to generate the diagnostics for out of bounds accesses. The code can also be found in the 'private-dgibson-sfdc01018528' branch of the qemu-kvm-rhev rhpkg tree.
Can you try to reproduce it with virito-win-1.6.8-4 ? Do you know which app is running when this issue occurs ? This bug may dup of https://bugzilla.redhat.com/show_bug.cgi?id=1080996 @Mike, This is closely related to bug 1080996, but it's not a dupe per se. Bug 1080996 (itself a dupe of 1064643) is covering the fact that qemu and the stack above don't deal well with errors like this which are unambiguously the guest's fault. The proposed fix is to differently classify guest parameter caused errors, and (usually) always report them rather than pausing the VM. This bug is addressing the fact that the guest is initiating the bad accesses in the first place. The proposal is to either fix the virtio-win drivers so it doesn't make these accesses, or to determine that the problem lies within something else on the guest side. Hi Mike, Can we try reproducing this problem on a fresh system with the following apps installed: Sophos Anti-Virus Sophos AutoUpdate Sophos Remote Management System Thanks, Vadim. mdeng ,pls handle the needinfo per comment #11. Created attachment 948817 [details]
couldnotshutdown
Created attachment 948818 [details]
rhevandspice-install-service-up
Created attachment 948819 [details]
fromdevicemanager
Created attachment 948820 [details]
nclogfromhost
(In reply to David Gibson from comment #10) > This bug is addressing the fact that the guest is initiating the bad > accesses in the first place. The proposal is to either fix the virtio-win > drivers so it doesn't make these accesses, or to determine that the problem > lies within something else on the guest side. It looks like some application(s) - presumably Sophos Anti-Virus performs raw reads/writes, bypassing file system driver. I will add an extra sanity check to validate IO boundaries. Should be fixed in build 101, available at http://download.devel.redhat.com/brewroot/packages/virtio-win-prewhql/0.1/101/win/virtio-win-prewhql-0.1.zip cannot reproduce this issue from QE side,guest works fine. package info: kernel-2.6.32-540.el6.x86_64 qemu-kvm-rhev-0.12.1.2-2.415.el6_5.14.x86_64 virtio-win-1.6.4-1.el6_4.noarch/virtio-win-prewhql-102 seabios-0.6.1.2-29.el6.x86_64 steps: 1.boot win2k8R2 guest with virtio-blk device: 2.install software “Sophos Endpoint Security and Control 10.3” which include "Sophos Anti-Virus" and "Sophos AutoUpdate" on guest; 3.configure schedule of scan computers and autoupdate of sophos 4.make the guest running two days guest works fine after Sophos Anti-Virus scan the computer; And I got following error message after Sophos AutoUpdate try to update,I guess it's due to I have no product license: Message: ERROR: Download of Sophos Endpoint Security and Control failed from server sophos Message: ERROR: Could not find a source for updated packages Please re-check again with the latest build http://download.devel.redhat.com/brewroot/packages/virtio-win-prewhql/0.1/104/win/virtio-win-prewhql-0.1.zip Thanks, Vadim. Mike,please verify the bug with build104 (In reply to Vadim Rozenfeld from comment #27) > Please re-check again with the latest build > http://download.devel.redhat.com/brewroot/packages/virtio-win-prewhql/0.1/ > 104/win/virtio-win-prewhql-0.1.zip > > Thanks, > Vadim. Vadim ,I can not find Sophos Endpoint Security and Control 10.3 on the internet Can you suggest some other similiar tools instead? Mike (In reply to Mike Cao from comment #29) > (In reply to Vadim Rozenfeld from comment #27) > > Please re-check again with the latest build > > http://download.devel.redhat.com/brewroot/packages/virtio-win-prewhql/0.1/ > > 104/win/virtio-win-prewhql-0.1.zip > > > > Thanks, > > Vadim. > > Vadim ,I can not find Sophos Endpoint Security and Control 10.3 on the > internet > Can you suggest some other similiar tools instead? Hi Mike, No idea. But if needed, I can create a simple app which will do out-of-bound IOs. Best regards, Vadim. > > Mike (In reply to Vadim Rozenfeld from comment #30) > (In reply to Mike Cao from comment #29) > > (In reply to Vadim Rozenfeld from comment #27) > > > Please re-check again with the latest build > > > http://download.devel.redhat.com/brewroot/packages/virtio-win-prewhql/0.1/ > > > 104/win/virtio-win-prewhql-0.1.zip > > > > > > Thanks, > > > Vadim. > > > > Vadim ,I can not find Sophos Endpoint Security and Control 10.3 on the > > internet > > Can you suggest some other similiar tools instead? > > Hi Mike, > No idea. But if needed, I can create a simple app which will do out-of-bound > IOs. > > Best regards, > Vadim. Hi, Vadim Pls help do it. Thanks, Mike > > > > > Mike As rhel6.8 will ship the same viostor version with rhel7.2 and the same bug1195487 on rhel7.2 has been verified,change status to verified. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHBA-2016-1011.html *** Bug 1388553 has been marked as a duplicate of this bug. *** |