RHBA-2018:3443 - Bug Fix Advisory

Topic

Updated qemu-kvm-rhev packages that fix several bugs and add various enhancements are now available for Red Hat Virtualization Host 7.

Description

KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.

The qemu-kvm-rhev packages have been upgraded to upstream version 2.12.0, which provides a number of bug fixes and enhancements over the previous version. (BZ#1562081)

This update fixes the following bugs:

• Previously, migrating virtual machines (VMs) from a Red Hat Enterprise Linux 7.5 host with a single-thread indirect branch predictors (STIBP) flag set in some cases failed. This update ensures that the flag is consistently added to VMs with an AMD64 or Intel 64 vCPU, which prevents the problem from occurring. (BZ#1638077)
• Due to an error in the code for resizing the hashed page table (HPT), migrated guests on an IBM POWER host terminated unexpectedly. This update ensures that the size of the HPT is recorded correctly during migration, which prevents the described crashes from occurring. (BZ#1545016)
• Previously, using device passthrough for a SCSI-2 device failed and returned an "Illegal Request" error. With this update, the QEMU emulator checks the SCSI version of the device when performing passthrough. As a result, the described problem no longer occurs. (BZ#1528437)
• Under certain circumstances, snapshots of guests created in Red Hat Virtualization (RHV) could not be deleted due to an error in the snapshot locking mechanism. This update fixes RHV snapshot locking, and the affected snapshots can now be removed as expected. (BZ#1552059)
• Previously, system calls to the address_space_to_flatview function in some cases targeted functions that were not sufficiently synchronized by the read-copy-update (RCU) mechanism. This was a potential security risk. The affected system calls have been fixed, and they can no longer be used as a vector for malicious code. (BZ#1551455)
• Under certain circumstances, resuming a paused guest generated redundant "VIR_DOMAIN_PAUSED_UNKNOWN" error messages in the libvirt log. This update corrects the event sending order when resuming guests, which prevents the errors being logged. (BZ#1566153)

In addition, this update adds the following enhancements:

• With this update, Ceph storage is supported by KVM virtualization on all CPU architectures supported by Red Hat. (BZ#1578664)
• Additional machine types have been introduced for qemu-kvm-rhev that improve the IBM POWER guest protection against the Spectre and Meltdown vulnerabilities. (BZ#1548919)
• This update adds the PCIe-to-PCI bridge device, which provides a new method of managing legacy PCI devices on Q35 virtual machines. In this function, the PCIe-to-PCI bridge replaces the DMI-to-PCI bridge, and introduces additional functions, such as cross-platform and cross-architecture support. In addition, the PCIe-to-PCI bridge provides the PCI hot-plug functionality as a Technology Preview. (BZ#1390329)
• As a Technology Preview, qemu-kvm-rhev introduces the Virtual Machine Generation ID feature, which enables the VM BIOS to expose ID integers that help prevent the corruption of virtual file systems during higher-risk operations, such as restoring a snapshot or loading a configuration backup. This feature is available on VMs that use the following guest operating systems:
• Windows 8 or later
• Windows Server 2012 or later

Note that it is currently only possible to access this feature using arbitrary QEMU commands. However, virtual machines modified by such commands cannot be supported by Red Hat. (BZ#1118834)

Users of qemu-kvm-rhev are advised to upgrade to these updated packages, which fix these bugs and add these enhancements.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/2974891

Affected Products

• Red Hat Virtualization Manager 4.2 x86_64
• Red Hat Virtualization 4 for RHEL 7 x86_64
• Red Hat Virtualization for IBM Power LE 4 for RHEL 7 ppc64le

Fixes

• BZ - 1118834 - [RFE] VM-Generation-ID - Detection of cloned environment using a unique, inmutable, intelligent identifier programmically accessible
• BZ - 1168213 - main-loop: WARNING: I/O thread spun for 1000 iterations while doing stream block device.
• BZ - 1207657 - RFE: QEMU Incremental live backup - push and pull modes
• BZ - 1341103 - No limit for iothrottling burst_length
• BZ - 1344450 - [RFE] SLIT table in KVM differs from Host SLIT table
• BZ - 1390329 - PCIe: Add Generic PCIe-PCI bridge
• BZ - 1416180 - QEMU VFIO based block driver for NVMe devices
• BZ - 1428436 - migration/postcopy+shared memory
• BZ - 1453093 - "block-job-set-speed" does not take effect when setting it to 1 first and then a normal value like 100000000
• BZ - 1471625 - [RFE] scsi-block device should support "stop on error"
• BZ - 1479623 - Scroll wheel of virtio-mouse doesn't work for rhel7.4 guest
• BZ - 1480202 - Occurred core dump with multi-object when quitted qemu during doing IO
• BZ - 1481595 - [7.4-Alt] Unable to execute QEMU command 'dump-guest-memory': dump: failed to save memory
• BZ - 1482537 - [RFE] qemu-img copy-offloading (convert command)
• BZ - 1484073 - Inconsistent value in dmidecode on aarch64 vs. x86_64
• BZ - 1494210 - Document image locking in the qemu-img manpage
• BZ - 1498967 - Chardev TCP server does not reset when TLS handshake with client fails
• BZ - 1506476 - Document more detail about specifying backing file for commit
• BZ - 1512459 - virtio-keyboard-pci missing some keys
• BZ - 1513543 - [RFE] Add block job to create format on a storage device
• BZ - 1518738 - Add 'copy-on-read' filter driver for use with blockdev-add
• BZ - 1519144 - qemu-img: image locking doesn't cover image creation
• BZ - 1519617 - The exit code should be non-zero when qemu-io reports an error
• BZ - 1523065 - "qemu-img resize" should fail to decrease the size of logical partition/lvm/iSCSI image with raw format
• BZ - 1523458 - [disk format] The error info is not accurate when resizing image but not specifying size
• BZ - 1525829 - can not boot up a scsi-block passthrough disk via -blockdev with error "cannot get SG_IO version number: Operation not supported. Is this a SCSI device?"
• BZ - 1527085 - The copied flag should be updated during '-r leaks'
• BZ - 1527898 - [RFE] qemu-img should leave cluster unallocated if it's read as zero throughout the backing chain
• BZ - 1528260 - [data-plane] qemu core dumps after "Ctrl+C"
• BZ - 1528541 - qemu-img check reports tons of leaked clusters after re-start nfs service to resume writing data in guest
• BZ - 1529666 - "qemu-img commit" reports error for luks format image
• BZ - 1531393 - [Q35] "DEVICE_DELETED" event didn't return after delete the second passthrough vf device
• BZ - 1532195 - -cpuid help broken with IBRS because of too long model-id
• BZ - 1533158 - QEMU support for libvirtd restarting qemu-pr-helper
• BZ - 1535914 - Disable io throttling for one member disk of a group during io will induce the other one hang with io
• BZ - 1536636 - qemu-img commit fails with "block/file-posix.c:1774: find_allocation: Assertion `offs >= start' failed"
• BZ - 1536912 - Revert downstream patch for bug 1535992 (qemu-img info -U)
• BZ - 1537956 - RFE: qemu-img amend should list the true supported options
• BZ - 1541839 - Guest can not be rebooted after binding pcie-expander-bus controller to a specified NUMA mode
• BZ - 1542080 - Qemu core dump at cirrus_invalidate_region
• BZ - 1545016 - [ppc64] Migration will fail after HPT resizing
• BZ - 1545155 - gluster volume QAPI schema is not accepted by qemu
• BZ - 1549106 - Incorrect License information in RPM specfile
• BZ - 1549231 - Unable to resize image with preallocation=full mode
• BZ - 1549543 - Use of Nettle crypto library prevents FIPS compliance, need to go back to libgcrypt
• BZ - 1549654 - Reject node-names which would be truncated by the block layer commands
• BZ - 1550022 - Migration can't be performed again after tunnelled migration with copy storage fails.
• BZ - 1551455 - incorrect locking (possible use-after-free) with bug 1481593 fix
• BZ - 1552059 - [Regression] Cannot delete VM's snapshot
• BZ - 1555253 - Request for improving error infos when users wrongly use "/usr/share/qemu-kvm/dump-guest-memory.py"
• BZ - 1556678 - Hot plug usb-ccid for the 2nd time with the same ID as the 1st time failed
• BZ - 1557995 - QAPI schema for RBD storage misses the 'password-secret' option
• BZ - 1558516 - ksmctl is built without any hardening flags set [rhel-7.6]
• BZ - 1558723 - Create RHEL-7.6 QEMU machine type for AArch64
• BZ - 1560667 - qemu/migration: e1000 compatibility
• BZ - 1560854 - Guest is left paused on source host sometimes if kill source libvirtd during live migration due to QEMU image locking
• BZ - 1562750 - VM doesn't boot from HD
• BZ - 1566153 - IOERROR pause code lost after resuming a VM while I/O error is still present
• BZ - 1567733 - qemu abort when migrate during guest reboot
• BZ - 1569835 - qemu-img get wrong backing file path after rebasing image with relative path
• BZ - 1572851 - Core dumped after migration when with usb-host
• BZ - 1572856 - 'block-job-cancel' can not cancel a "drive-mirror" job
• BZ - 1573135 - Update build configure for QEMU 2.12.0
• BZ - 1575541 - qemu core dump while installing win10 guest
• BZ - 1575578 - Failed to convert a source image to the qcow2 image encrypted by luks
• BZ - 1576598 - Segfault in qemu-io and qemu-img with -U --image-opts force-share=off
• BZ - 1578381 - Error message need update when specify numa distance with node index >=128
• BZ - 1578664 - Enable Native Ceph support on non x86_64 CPUs
• BZ - 1582042 - Segfault on 'blockdev-mirror' with same node as source and target
• BZ - 1583050 - Fails to start guest with Intel vGPU device
• BZ - 1584914 - SATA emulator lags and hangs
• BZ - 1586357 - Disable new devices in 2.12
• BZ - 1588039 - Possible assertion failure in qemu when a corrupted image is used during an incoming migration
• BZ - 1589147 - Handle 64 B USB packets for Smart Card redirection
• BZ - 1589634 - Migration failed when rebooting guest with multiple virtio videos
• BZ - 1590640 - qemu-kvm: block/io.c:1098: bdrv_co_do_copy_on_readv: Assertion `skip_bytes < pnum' failed.
• BZ - 1590756 - add qemu-keymap utility
• BZ - 1591076 - The driver of 'throttle' is not whitelisted
• BZ - 1592648 - Create pseries-rhel7.6.0-sxxm machine type
• BZ - 1592817 - Retrying on serial_xmit if the pipe is broken may compromise the Guest
• BZ - 1594135 - system_reset many times linux guests cause qemu process Aborted
• BZ - 1595173 - blockdev-create is blocking
• BZ - 1595180 - Can't set rerror/werror with usb-storage
• BZ - 1598104 - Upgrade failed from qemu-kvm-tools-rhev-2.12.0-6.el7 to qemu-kvm-tools-rhev-2.12.0-7.el7
• BZ - 1599335 - Image creation locking is too tight and is not properly released
• BZ - 1599515 - qemu core-dump with aio_read via hmp (util/qemu-thread-posix.c:64: qemu_mutex_lock_impl: Assertion `mutex->initialized' failed)
• BZ - 1601212 - qemu coredumps on block-commit
• BZ - 1601310 - qemu-img map 'Aborted (core dumped)' when specifying a plain file
• BZ - 1605026 - Quitting VM causes qemu core dump once the block mirror job paused for no enough target space
• BZ - 1607774 - Target files for 'qemu-img convert' do not support thin_provisoning with iscsi/nfs backend
• BZ - 1607891 - Hotplug events are sometimes lost with virtio-scsi + iothread
• BZ - 1608229 - Parts of iotest cases in SRPM don't have execute permission
• BZ - 1608778 - qemu/migration: migrate failed from RHEL.7.6 to RHEL.7.5 with e1000-82540em
• BZ - 1609234 - Win2016 guest can't recognize pc-dimm hotplugged to node 0
• BZ - 1610605 - rbd json format of 7.6 is incompatible with 7.5
• BZ - 1612114 - Anonymous BlockBackends are missing in query-blockstats
• BZ - 1613277 - kernel panic in init_amd_cacheinfo
• BZ - 1624012 - allow using node-names with block-commit
• BZ - 1626059 - RHEL6 guest panics on boot if hotpluggable memory (pc-dimm) is present at boot time
• BZ - 1626061 - qemu blockjobs other than backup do not support job-finalize or job-dismiss
• BZ - 1628191 - ~40% virtio_blk disk performance drop for win2012r2 guest when comparing qemu-kvm-rhev-2.12.0-9 with qemu-kvm-rhev-2.12.0-12
• BZ - 1628373 - blockdev-backup does not accept bitmap parameter

CVEs

(none)

References

(none)