CONFIG_IOMMU_DEBUGFS should not be on by default
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Incomplete
|
Undecided
|
Unassigned | ||
Disco |
Won't Fix
|
Undecided
|
Unassigned | ||
Eoan |
New
|
Undecided
|
Unassigned |
Bug Description
This config option causes the following message to be displayed in the kernel log:
[ 0.568713] *******
[ 0.570549] ** NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE **
[ 0.570640] ** **
[ 0.572478] ** IOMMU DebugFS SUPPORT HAS BEEN ENABLED IN THIS KERNEL **
[ 0.574313] ** **
[ 0.574640] ** This means that this kernel is built to expose internal **
[ 0.576481] ** IOMMU data structures, which may compromise security on **
[ 0.578307] ** your system. **
[ 0.578642] ** **
[ 0.580486] ** If you see this message and you are not debugging the **
[ 0.582327] ** kernel, report this immediately to your vendor! **
[ 0.582641] ** **
[ 0.584469] ** NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE **
[ 0.586296] *******
This was pointed out by a cloud vendor, but it should probably be disabled in all kernel configs.
no longer affects: | linux-gcp (Ubuntu) |
description: | updated |
Changed in linux (Ubuntu Disco): | |
status: | Incomplete → Won't Fix |
This bug is missing log files that will aid in diagnosing the problem. While running an Ubuntu kernel (not a mainline or third-party kernel) please enter the following command in a terminal window:
apport-collect 1861057
and then change the status of the bug to 'Confirmed'.
If, due to the nature of the issue you have encountered, you are unable to run this command, please add a comment stating that fact and change the bug status to 'Confirmed'.
This change has been made by an automated script, maintained by the Ubuntu Kernel Team.