Ubuntu
xen package

[Xen/xl] dom0 needs to run qemu for qcow access

Bug #1396068 reported by Stefan Bader
12
This bug affects 2 people
Affects Status Importance Assigned to Milestone
xen (Debian)
Fix Released
Unknown
xen (Ubuntu)
Fix Released
Medium
Unassigned
Trusty
Fix Released
Medium
Unassigned
Utopic
Fix Released
Medium
Unassigned

Bug Description

Running a qemu process for dom0 will enable paravirtualized guests (PVM) to use special disk images like qcow2. The problem is that in order to boot those with pygrub, the image has to be temporarily accessed from dom0. But without the qemu process running only raw images can be used.
Openstack by default uses qcow2 images and PVM guests. So trying to use nova on a Xen hosts currently fails to bring up instances (xl via libvirt). This bug is related to bug #1394327 (we also need a bug fix in qemu to make this work).

Stefan Bader (smb)
no longer affects: debian
Changed in xen (Ubuntu Trusty):
importance: Undecided → Medium
status: New → Triaged
Changed in xen (Ubuntu Utopic):
importance: Undecided → Medium
status: New → Triaged
Bug Watch Updater (bug-watch-updater)
Changed in debian:
status: Unknown → New
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package xen - 4.4.1-3ubuntu2

---------------
xen (4.4.1-3ubuntu2) vivid; urgency=low

  * Applying Xen Security Advisories:
    - CVE-2014-8594 / XSA-109
      * x86: don't allow page table updates on non-PV page tables in
        do_mmu_update()
    - CVE-2014-8595 / XSA-110
      * x86emul: enforce privilege level restrictions when loading CS
    - CVE-2014-8866 / XSA-111
      * x86: limit checks in hypercall_xlat_continuation() to actual arguments
    - CVE-2014-8867 / XSA-112
      * x86/HVM: confine internally handled MMIO to solitary regions
    - CVE-2014-9030 / XSA-113
      * x86/mm: fix a reference counting error in MMU_MACHPHYS_UPDATE
  * Pulling in Debian change to start qemu in dom0 (LP: #1396068)
  * Picking up Debian change to recommend grub-xen-host from xen-utils.
  * Picking up Debian change to really include xen-init-name.
 -- Stefan Bader <email address hidden> Wed, 19 Nov 2014 13:47:12 +0100

Changed in xen (Ubuntu):
status: Triaged → Fix Released
Revision history for this message
Stefan Bader (smb) wrote :

SRU justification:

Impact: Without starting a QEMU instance for dom0 it is not possible to use advanced disk image types for PV guests because pygrub then cannot peek into them to pick kernel images to start. However this setup is the default for nova-xen (openstack).

Fix: Picking up changes from Debian (and now also in Vivid already) to the init script which starts and stops QEMU for dom0.

Testcase: After package upgrade and subsequent reboots there is a qemu-system-i386 process attached to dom0.

Revision history for this message
Chris J Arges (arges) wrote : Please test proposed package

Hello Stefan, or anyone else affected,

Accepted xen into trusty-proposed. The package will build now and be available at http://launchpad.net/ubuntu/+source/xen/4.4.1-0ubuntu0.14.04.3 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, and change the tag from verification-needed to verification-done. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

Changed in xen (Ubuntu Trusty):
status: Triaged → Fix Committed
tags: added: verification-needed
Changed in xen (Ubuntu Utopic):
status: Triaged → Fix Committed
Revision history for this message
Chris J Arges (arges) wrote :

Hello Stefan, or anyone else affected,

Accepted xen into utopic-proposed. The package will build now and be available at http://launchpad.net/ubuntu/+source/xen/4.4.1-0ubuntu0.14.10.3 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, and change the tag from verification-needed to verification-done. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

Mathew Hodson (mhodson)
affects: debian → xen (Debian)
Revision history for this message
Stefan Bader (smb) wrote :

Upgraded a Trusty and Utopic host to the proposed version and verified that the qemu process was running in dom0 after that.

tags: added: verification-done
removed: verification-needed
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package xen - 4.4.1-0ubuntu0.14.04.3

---------------
xen (4.4.1-0ubuntu0.14.04.3) trusty; urgency=low

  * d/xen-utils-common.xen.init: Update script to start a QEMU process for
    dom0. (LP: #1396068)
 -- Stefan Bader <email address hidden> Thu, 11 Dec 2014 18:36:54 +0100

Changed in xen (Ubuntu Trusty):
status: Fix Committed → Fix Released
Revision history for this message
Brian Murray (brian-murray) wrote : Update Released

The verification of the Stable Release Update for xen has completed successfully and the package has now been released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regressions.

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package xen - 4.4.1-0ubuntu0.14.10.3

---------------
xen (4.4.1-0ubuntu0.14.10.3) utopic; urgency=low

  * d/xen-utils-common.xen.init: Update script to start a QEMU process for
    dom0. (LP: #1396068)
 -- Stefan Bader <email address hidden> Thu, 11 Dec 2014 18:23:20 +0100

Changed in xen (Ubuntu Utopic):
status: Fix Committed → Fix Released
Stefan Bader (smb)
Changed in xen (Ubuntu):
assignee: Stefan Bader (smb) → nobody
Bug Watch Updater (bug-watch-updater)
Changed in xen (Debian):
status: New → Fix Committed
Bug Watch Updater (bug-watch-updater)
Changed in xen (Debian):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.