Bug 24576

Summary: QEMU crashes with xhci, patch available
Product: Mageia Reporter: Nicolas Salguero <nicolas.salguero>
Component: RPM PackagesAssignee: Thierry Vignaud <thierry.vignaud>
Status: RESOLVED OLD QA Contact:
Severity: normal    
Priority: Normal CC: marja11, tmb
Version: 6Keywords: PATCH
Target Milestone: ---   
Hardware: All   
OS: Linux   
See Also: https://launchpad.net/bugs/1718222
Whiteboard:
Source RPM: qemu-2.8.1.1-7.mga6 CVE:
Status comment:
Attachments: Patch for regression with fix for CVE-2017-9375

Description Nicolas Salguero 2019-03-28 12:53:08 CET 
Created attachment 10888 [details]
Patch for regression with fix for CVE-2017-9375

Hi,

I tried to launch a VM running RedoxOS using the command given here: https://doc.redox-os.org/book/getting_started/try_vm.html, ie:
"""
qemu-system-x86_64 -serial mon:stdio -d cpu_reset -d guest_errors -smp 4 -m 1024 -s -machine q35 -device ich9-intel-hda -device hda-duplex -net nic,model=e1000 -net user -device nec-usb-xhci,id=xhci -device usb-tablet,bus=xhci.0 -enable-kvm -cpu host -drive file=redox_0.5.0_harddrive.bin,format=raw
"""

The result was:
"""
qemu-system-x86_64: /home/iurt/rpmbuild/BUILD/qemu-2.8.1.1/hw/usb/hcd-xhci.c:2161: xhci_kick_epctx: Assertion `!epctx->kick_active' failed.
Aborted (core dumped)
"""

When I search for a solution, I found this bug: https://bugs.launchpad.net/ubuntu/+source/qemu/+bug/1718222 (CVE-2017-9375 fix cause qemu crash).

I finally found the attached patch (from Debian) and I rebuilt locally qemu with that patch. Using the packages I built solve the issue.

Best regards,

Nico.
Comment 1 Marja Van Waes 2019-03-30 09:17:15 CET 
Assinging to the registered maintainer, tv, CC'ing tmb who submitted Revision1107111 which contained the CVE-2017-9375 fix that causes the qemu crash.

Summary: QEMU crashes with xhci => QEMU crashes with xhci, patch available
Source RPM: (none) => qemu-2.8.1.1-7.mga6
Assignee: bugsquad => thierry.vignaud
Keywords: (none) => PATCH
See Also: (none) => https://launchpad.net/bugs/1718222
CC: (none) => marja11, tmb

Comment 2 Thierry Vignaud 2019-03-31 14:11:42 CEST 
Should be fixed by qemu-2.8.1.1-8.mga7.src.rpm
Comment 3 Nicolas Salguero 2019-04-01 10:24:44 CEST 
Hi,

Yes it is fixed with qemu-2.8.1.1-8.mga6.  Many thanks.

Best regards,

Nico.
Comment 4 Nicolas Salguero 2019-11-06 09:04:49 CET 
Mageia 6 EOL

Resolution: (none) => OLD
Status: NEW => RESOLVED