Description of problem: The default behaviour of CVE-2012-2934 is to prevent the host from booting when AMD processor with erratum #121 is detected. This might prevent the remotely managed host to be started. Instead of boot denial just deny guest creation by default. allow_unsafe(=on) behaviour is preserved. Upstream commit: http://xenbits.xensource.com/hg/xen-unstable.hg/rev/e6ca45ca03c2 References: https://bugzilla.redhat.com/show_bug.cgi?id=824966#c19
This request was evaluated by Red Hat Product Management for inclusion in a Red Hat Enterprise Linux release. Product Management has requested further review of this request by Red Hat Engineering, for potential inclusion in a Red Hat Enterprise Linux release for currently deployed products. This request is not yet committed for inclusion in a release.
Patch(es) available in kernel-2.6.18-341.el5 You can download this test kernel (or newer) from http://people.redhat.com/plougher/el5/ Detailed testing feedback is always welcomed. If you require guidance regarding testing, please ask the bug assignee.
reproduce: ---------- HOST:2.6.18-340.el5xen Guest:2.6.32-267.el6.bz813428.x86_64 can't boot the dom0 on AMD Opteron(tm) Processor 246 append hypervisor parameter kernel /xen.gz-2.6.18-340.el5 allow_unsafe=on dom0 could launch up successfully, and we could create domU. verified: --------- HOST:2.6.18-341.el5xen Guest:2.6.32-267.el6.bz813428.x86_64 # xm cr xm-test.conf Using config file "./xm-test.conf". Using <class 'grub.GrubConf.GrubConfigFile'> to parse /grub/menu.lst Error: (12, 'Cannot allocate memory') dom0 could boot up without allow_unsafe parameter but we can't create any domU.
(In reply to comment #9) > reproduce: > ---------- > HOST:2.6.18-340.el5xen > Guest:2.6.32-267.el6.bz813428.x86_64 > > can't boot the dom0 on AMD Opteron(tm) Processor 246 > > append hypervisor parameter > kernel /xen.gz-2.6.18-340.el5 allow_unsafe=on > > dom0 could launch up successfully, and we could create domU. > > > verified: > --------- > HOST:2.6.18-341.el5xen > Guest:2.6.32-267.el6.bz813428.x86_64 > > # xm cr xm-test.conf > Using config file "./xm-test.conf". > Using <class 'grub.GrubConf.GrubConfigFile'> to parse /grub/menu.lst > Error: (12, 'Cannot allocate memory') > > dom0 could boot up without allow_unsafe parameter but we can't create any > domU. With the latest kernel: HOST:2.6.18-344.el5xen Guest:2.6.32-267.el6.bz813428.x86_64 # xm cr xm-test.conf Using config file "./xm-test.conf". Using <class 'grub.GrubConf.GrubConfigFile'> to parse /grub/menu.lst Error: (12, 'Cannot allocate memory')
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2013-0006.html