Bug 1908693

Summary: [ppc64le]boot up a guest with 128 numa nodes ,qemu got coredump
Product: Red Hat Enterprise Linux Advanced Virtualization Reporter: Min Deng <mdeng>
Component: qemu-kvmAssignee: Greg Kurz <gkurz>
qemu-kvm sub component: General QA Contact: Min Deng <mdeng>
Status: CLOSED ERRATA Docs Contact:
Severity: high    
Priority: high CC: dgibson, gkurz, mdeng, qzhang, virt-maint
Version: 8.4Keywords: Regression, Triaged
Target Milestone: rc   
Target Release: 8.4   
Hardware: ppc64le   
OS: Linux   
Whiteboard:
Fixed In Version: qemu-kvm-5.2.0-3.module+el8.4.0+9499+42e58f08 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2021-05-25 06:46:30 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
commandanderror
none
cmd none

Description Min Deng 2020-12-17 11:07:52 UTC 
Description of problem:
[ppc64le]boot up a guest with 128 numa nodes ,qemu got coredump

Version-Release number of selected component (if applicable):
kenrel-4.18.0-259.el8.dt4.ppc64le
qemu-kvm-core-5.2.0-1.module+el8.4.0+9091+650b220a.ppc64le

How reproducible:
4/4

Steps to Reproduce:
1.boot up a guest with 128 numa nodes 
2.
3.

Actual results:
(qemu) qemu-kvm: ../util/error.c:59: error_setv: Assertion `*errp == NULL' failed.
128.sh: line 1: 320147 Aborted                 (core dumped) /usr/libexec/qemu-kvm -name 'avocado-vt-vm1' -s
Expected results:
Boot up successfully
Additional info:
See command line in attachment, it can be reproduced via manual and auto test.
Comment 1 Min Deng 2020-12-17 11:11:03 UTC 
It's not reproducible on the following builds,
qemu-kvm-5.0.0-0.module+el8.3.0+6620+5d5e1420.ppc64le
kernel-4.18.0-213.el8.ppc64le
Comment 2 Min Deng 2020-12-17 11:11:43 UTC 
Created attachment 1739952 [details]
commandanderror
Comment 3 Min Deng 2020-12-17 11:13:21 UTC 
Created attachment 1739953 [details]
cmd
Comment 4 Greg Kurz 2020-12-18 11:48:45 UTC 
Easily reproduced upstream. There's a buffer overflow in the sPAPR NUMA
init code. Fix looks trivial. I'll post it ASAP.
Comment 5 Greg Kurz 2020-12-18 14:07:59 UTC 
Posted fix for upstream:

https://lists.nongnu.org/archive/html/qemu-devel/2020-12/msg05313.html
Comment 9 Min Deng 2021-01-19 07:31:38 UTC 
Tried this bug with the new builds,
qemu-kvm-5.2.0-3.module+el8.4.0+9499+42e58f08
Steps,
please refer to comment0

Actual results,
Qemu worked well without any core dump
Expected results,
Qemu works well without any core dump
Comment 12 Min Deng 2021-01-21 03:16:39 UTC 
Base on comment9, move it to be verified, thanks a lot.
Comment 14 errata-xmlrpc 2021-05-25 06:46:30 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (virt:av bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2021:2098