Debian Bug report logs - #964247
qemu-kvm: 5.0-6 breaks macos guests

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Simon John <debian@the-jedi.co.uk>

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: qemu-kvm: 5.0-6 breaks macos guests

Date: Sat, 4 Jul 2020 12:23:08 +0100

Package: qemu-kvm
Version: 1:5.0-6
Severity: important

Dear Maintainer,

A previously working macos catalina VM now fails to boot, see screenshot 
for where it crashes: https://i.imgur.com/5lhufGv.png

5.0-5 worked fine.

Same result with or without GPU passthrough.

Windows/Linux/esxi guests seem unaffected.


-- System Information:
Debian Release: bullseye/sid
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 5.7.0-1-amd64 (SMP w/32 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

Versions of packages qemu-kvm depends on:
ii  qemu-system-x86  1:5.0-6

qemu-kvm recommends no packages.

qemu-kvm suggests no packages.

-- no debconf information


-- 
Simon John

Message #10 received at 964247@bugs.debian.org (full text, mbox, reply):

From: Michael Tokarev <mjt@tls.msk.ru>

To: Simon John <debian@the-jedi.co.uk>, 964247@bugs.debian.org

Subject: Re: Bug#964247: qemu-kvm: 5.0-6 breaks macos guests

Date: Sat, 4 Jul 2020 15:21:03 +0300

Control: reassign -1 qemu-system-x86 1:5.0-6
04.07.2020 14:23, Simon John пишет:
> Package: qemu-kvm
> Version: 1:5.0-6
> Severity: important
> 
> Dear Maintainer,
> 
> A previously working macos catalina VM now fails to boot, see screenshot for where it crashes: https://i.imgur.com/5lhufGv.png
> 
> 5.0-5 worked fine.

Hello!

Please share your complete qemu-system command line.
It's difficul to guess which device/change gave such
effect, with command-line at hand at least we can
narrow it down much more easily.

BTW, please take a look what qemu-kvm package contains,
and take a look at that file :)

Thanks,

/mjt

Message #21 received at 964247@bugs.debian.org (full text, mbox, reply):

From: Simon John <debian@the-jedi.co.uk>

To: 964247@bugs.debian.org

Subject: Re: Bug#964247: qemu-kvm: 5.0-6 breaks macos guests

Date: Sat, 4 Jul 2020 13:58:27 +0100

Thanks Michael,

I usually use libvirt, but this qemu script has the same problem:

qemu-system-x86_64 \
    -enable-kvm \
    -m 4G \
    -machine q35,accel=kvm \
    -smp 4,sockets=1,cores=2,threads=2 \
    -cpu 
Penryn,vendor=GenuineIntel,kvm=on,+sse3,+sse4.2,+aes,+xsave,+avx,+xsaveopt,+xsavec,+xgetbv1,+avx2,+bmi2,+smep,+bmi1,+fma,+movbe,+invtsc 
\
    -device 
isa-applesmc,osk="ourhardworkbythesewordsguardedpleasedontsteal(c)AppleComputerInc" 
\
    -smbios type=2 \
    -drive if=pflash,format=raw,readonly,file="/tmp/OVMF_CODE.fd" \
    -drive if=pflash,format=raw,file="/tmp/macos_catalina_VARS.fd" \
    -vga qxl \
    -device ich9-ahci,id=sata \
    -drive id=ESP,if=none,format=raw,file=/tmp/ESP.img \
    -device ide-hd,bus=sata.2,drive=ESP \
    -drive id=InstallMedia,format=raw,if=none,file=/tmp/BaseSystem.img \
    -device ide-hd,bus=sata.3,drive=InstallMedia \
    -drive id=SystemDisk,if=none,format=raw,file=/tmp/macos_catalina.img \
    -device ide-hd,bus=sata.4,drive=SystemDisk \
    -usb -device usb-host,hostbus=1,hostaddr=3

my modprobe script is below, i haven't changed anything:

options kvm ignore_msrs=1 report_ignored_msrs=0
options kvm-intel nested=y ept=y enable_apicv=1
options vfio-pci ids=10de:128b,10de:0e0f
softdep nouveau pre: vfio-pci
softdep snd_hda_intel pre: vfio-pci

kernel 5.6 and 5.7 broke VFIO in macos guests, but now qemu itself has 
broken the guest even without vfio (and even in 5.5 kernel).

Regards.

-- 
Simon John

Message #26 received at 964247@bugs.debian.org (full text, mbox, reply):

From: Simon John <debian@the-jedi.co.uk>

To: 964247@bugs.debian.org

Subject: Re: Bug#964247: qemu-kvm: 5.0-6 breaks macos guests

Date: Sat, 4 Jul 2020 15:08:57 +0100

Just tried compiling qemu from their git master and it has the same problem.

Compiling tag v5.0.0 and even branch 4.2.1 works fine.

So i guess the problem isn't the debian patches, but whatever changed in 
master since the debian build 5.0-5

Regards.

-- 
Simon John

Message #31 received at 964247@bugs.debian.org (full text, mbox, reply):

From: Michael Tokarev <mjt@tls.msk.ru>

To: Simon John <debian@the-jedi.co.uk>, 964247@bugs.debian.org

Subject: Re: Bug#964247: qemu-kvm: 5.0-6 breaks macos guests

Date: Sat, 4 Jul 2020 17:19:30 +0300

04.07.2020 17:08, Simon John wrote:
> Just tried compiling qemu from their git master and it has the same problem.
> 
> Compiling tag v5.0.0 and even branch 4.2.1 works fine.
> 
> So i guess the problem isn't the debian patches, but whatever changed in master since the debian build 5.0-5

The changes in debian since build 5.0-5 come from upstream as bugfixes,
all the changes are in debian/patches/series file.  Here's the list:

$ git diff debian/qemu_5.0-5..debian-unstable debian/patches/series
diff --git a/debian/patches/series b/debian/patches/series
index 59817de0958..88329162f59 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -9,3 +9,21 @@ aio-posix-dont-duplicate-fd-handler-deletion-in-fdmon_io_uring_destroy.patch
 aio-posix-disable-fdmon-io_uring-when-GSource-is-used.patch
 hostmem-dont-use-mbind-if-host-nodes-is-empty.patch
 net-use-peer-when-purging-queue-in-qemu_flush_or_purge_queue_packets.patch
+qemu-nbd-close-inherited-stderr.patch
+9p-lock-directory-streams-with-a-CoMutex.patch
+virtio-balloon-fix-free-page-hinting-check-on-unreal.patch
+virtio-balloon-fix-free-page-hinting-without-an-iothread.patch
+virtio-balloon-unref-the-iothread-when-unrealizing.patch
+net-do-not-include-a-newline-in-the-id-of-nic-device.patch
+fix-tulip-breakage.patch
+fix-qga-assert-regression.patch
+ati-vga-check-mm_index-before-recursive-call-CVE-2020-13800.patch
+revert-memory-accept-mismatching-sizes-in-memory_region_access_valid-CVE-2020-13754.patch
+exec-set-map-length-to-zero-when-returning-NULL-CVE-2020-13659.patch
+megasas-use-unsigned-type-for-reply_queue_head-and-check-index-CVE-2020-13362.patch
+megasas-use-unsigned-type-for-positive-numeric-fields.patch
+megasas-fix-possible-out-of-bounds-array-access.patch
+nbd-server-avoid-long-error-message-assertions-CVE-2020-10761.patch
+es1370-check-total-frame-count-against-current-frame-CVE-2020-13361.patch
+sdcard-update-coding-style-to-make-checkpatch-happy.patch
+sdcard-dont-switch-to-ReceivingData-if-address-is-invalid-CVE-2020-13253.patch

Most of that seems to be unrelated. I can only think about
sdcard changes, but that is hardly relevant, either..

/mjt

Message #36 received at 964247@bugs.debian.org (full text, mbox, reply):

From: Simon John <debian@the-jedi.co.uk>

To: 964247@bugs.debian.org

Subject: Re: Bug#964247: qemu-kvm: 5.0-6 breaks macos guests

Date: Sat, 11 Jul 2020 23:03:36 +0100

From a git bisect, I've narrowed it down to this commit:

https://github.com/qemu/qemu/commit/5d971f9e672507210e77d020d89e0e89165c8fc9

which in terms of debian patches is:

+revert-memory-accept-mismatching-sizes-in-memory_region_access_valid-CVE-2020-13754.patch

Reported upstream: https://bugs.launchpad.net/qemu/+bug/1886318

Not sure how I'd build a new deb minus that patch, would i need to build 
all of these again:

qemu
qemu-block-extra
qemu-efi-aarch64
qemu-efi-arm
qemu-kvm
qemu-system
qemu-system-arm
qemu-system-common
qemu-system-data
qemu-system-gui
qemu-system-mips
qemu-system-misc
qemu-system-ppc
qemu-system-sparc
qemu-system-x86
qemu-utils

?

-- 
Simon John

Message #41 received at 964247-close@bugs.debian.org (full text, mbox, reply):

From: Debian FTP Masters <ftpmaster@ftp-master.debian.org>

To: 964247-close@bugs.debian.org

Subject: Bug#964247: fixed in qemu 1:5.0-7

Date: Thu, 16 Jul 2020 16:06:17 +0000

Source: qemu
Source-Version: 1:5.0-7
Done: Michael Tokarev <mjt@tls.msk.ru>

We believe that the bug you reported is fixed in the latest version of
qemu, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 964247@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Michael Tokarev <mjt@tls.msk.ru> (supplier of updated qemu package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 16 Jul 2020 18:36:08 +0300
Source: qemu
Architecture: source
Version: 1:5.0-7
Distribution: unstable
Urgency: medium
Maintainer: Debian QEMU Team <pkg-qemu-devel@lists.alioth.debian.org>
Changed-By: Michael Tokarev <mjt@tls.msk.ru>
Closes: 964247 964372
Changes:
 qemu (1:5.0-7) unstable; urgency=medium
 .
   * Revert "d/rules: report config log from the correct subdir - base build"
   * Revert "d/rules: report config log from the correct subdir - microvm build"
   * acpi-tmr-allow-2-byte-reads.patch (Closes: #964247)
   * remove sdcard-dont-switch-to-ReceivingData-if-add...-CVE-2020-13253.patch -
     upstream decided to fix it differently (Reopens: #961297, CVE-2020-13253)
   * explicitly specify --enable-tools on hppa and do the same trick
     with --enable-tcg-interpreter --enable-tools on a few other unnsupported
     arches (Closes: #964372)
Checksums-Sha1:
 6c7458cf90b00e07bdc19f666e7fd354baaa3eeb 6720 qemu_5.0-7.dsc
 4903edd9448c0dfc4c546d434abd15a6f6865d51 102048 qemu_5.0-7.debian.tar.xz
 d1a26fd56d10c29e93751726e3b7adb5b8be352b 9226 qemu_5.0-7_source.buildinfo
Checksums-Sha256:
 28f315b8dc0e8320d8165c1b7e7a0ce9784e1aedea8052f27a91f648578f3f3d 6720 qemu_5.0-7.dsc
 4a85a97a46debc03b78ef07dc67d2233a28efa4f3117d8c73874bce9169837de 102048 qemu_5.0-7.debian.tar.xz
 3513d1fa14f5fdf2bcbfdd8a5bde7fb9f1fd853834d2e20bb27c93b0d46c1c73 9226 qemu_5.0-7_source.buildinfo
Files:
 2ee73f640d95a352d0051433c8311d02 6720 otherosfs optional qemu_5.0-7.dsc
 d9a96932233ad65b1e53308600e1a2f6 102048 otherosfs optional qemu_5.0-7.debian.tar.xz
 d4ddcc0e0b605b58d050247355336984 9226 otherosfs optional qemu_5.0-7_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQFDBAEBCAAtFiEEe3O61ovnosKJMUsicBtPaxppPlkFAl8QdPIPHG1qdEB0bHMu
bXNrLnJ1AAoJEHAbT2saaT5ZR10H/24M4abobwJeR6LvK2aqBjqTSflZ20fYrqdy
WFNCqQzGLNENxbBsLvgJ8qkasRutd35DT776wKciDyc9xj1kHqeANWNFIlU56v2a
YRi7xFAFqtIdfNX8Ocvr+YbZeWhEsfZuqgifoyCl06eRiqqHvUjsKF2+hUMctfYz
pzbDBeC+Wo3DZw2FyOvbeN347WUC2pL0QOYRPPBy78SXpyXgw4pOu8X9er67W0Rb
mL4pdo4zLraiyy0d8Rgx/nNIrGO+gH7sOY/BlpLH629RhfhcStlB53DYNZNlWsNo
+wO7Rg4ovjgi3FLNgHW/KfOjkYTMh04rmAfOPAFpwFmxwwQoS+s=
=Y1eB
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.