5.15.0-58.64 breaks xen bridge networking (pvh domU)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Confirmed
|
High
|
Unassigned | ||
Xenial |
Fix Committed
|
High
|
Thadeu Lima de Souza Cascardo | ||
Bionic |
Fix Released
|
High
|
Thadeu Lima de Souza Cascardo | ||
Focal |
Fix Released
|
High
|
Thadeu Lima de Souza Cascardo | ||
Jammy |
Fix Released
|
High
|
Thadeu Lima de Souza Cascardo | ||
Kinetic |
Fix Released
|
High
|
Thadeu Lima de Souza Cascardo |
Bug Description
[Impact]
Xen guests will not have network access. This fixes a regression due to the fix
for CVE-2022-3643.
[Testing]
This has only been build-tested.
[Potential regression]
Xen guests might not have network access.
-------
With 5.15.0-
no packet (check with tcpdump) flowing between dom0 and any domUs
attached to a network bridge.
downgrading to 5.15.0-57-generic fix the issue. Thus the patch to the netback driver seems the cause.
relevant network config :
brtctl show :
br0 8000.XXXXXXXXXXX no eno1
vif1.0
relevant domU config :
kernel = '/usr/lib/
type = 'pvh'
vif = [ 'ip=192.168.10.10 ,bridge=br0' ]
No message in dmesg, journal, xen logs..
CVE References
Changed in linux (Ubuntu): | |
status: | Incomplete → Confirmed |
importance: | Undecided → High |
Changed in linux (Ubuntu Xenial): | |
status: | New → In Progress |
Changed in linux (Ubuntu Bionic): | |
status: | New → In Progress |
Changed in linux (Ubuntu Focal): | |
status: | New → In Progress |
Changed in linux (Ubuntu Jammy): | |
status: | New → In Progress |
Changed in linux (Ubuntu Kinetic): | |
status: | New → In Progress |
assignee: | nobody → Thadeu Lima de Souza Cascardo (cascardo) |
Changed in linux (Ubuntu Jammy): | |
assignee: | nobody → Thadeu Lima de Souza Cascardo (cascardo) |
Changed in linux (Ubuntu Focal): | |
assignee: | nobody → Thadeu Lima de Souza Cascardo (cascardo) |
Changed in linux (Ubuntu Bionic): | |
assignee: | nobody → Thadeu Lima de Souza Cascardo (cascardo) |
Changed in linux (Ubuntu Xenial): | |
assignee: | nobody → Thadeu Lima de Souza Cascardo (cascardo) |
importance: | Undecided → High |
Changed in linux (Ubuntu Bionic): | |
importance: | Undecided → High |
Changed in linux (Ubuntu Focal): | |
importance: | Undecided → High |
Changed in linux (Ubuntu Jammy): | |
importance: | Undecided → High |
Changed in linux (Ubuntu Kinetic): | |
importance: | Undecided → High |
description: | updated |
Changed in linux (Ubuntu Kinetic): | |
status: | In Progress → Fix Committed |
tags: |
added: verification-done-focal verification-done-jammy removed: verification-needed-focal verification-needed-jammy |
Changed in linux (Ubuntu Xenial): | |
status: | In Progress → Fix Committed |
This bug is missing log files that will aid in diagnosing the problem. While running an Ubuntu kernel (not a mainline or third-party kernel) please enter the following command in a terminal window:
apport-collect 2002889
and then change the status of the bug to 'Confirmed'.
If, due to the nature of the issue you have encountered, you are unable to run this command, please add a comment stating that fact and change the bug status to 'Confirmed'.
This change has been made by an automated script, maintained by the Ubuntu Kernel Team.