Bug 905297

Summary: core dump while booting guest with -M q35
Product: Red Hat Enterprise Linux 7 Reporter: Chao Yang <chayang>
Component: qemu-kvmAssignee: Hai Huang <hhuang>
Status: CLOSED NOTABUG QA Contact: Virtualization Bugs <virt-bugs>
Severity: high Docs Contact:
Priority: high    
Version: 7.0CC: acathrow, chayang, hhuang, juzhang, michen, shuang, virt-maint
Target Milestone: rc   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2013-01-31 03:03:17 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Chao Yang 2013-01-29 05:34:17 UTC
Description of problem:
Booting a rhel6.4 guest with -M q35 leads to qemu-kvm core dump.
CLI:
/usr/libexec/qemu-kvm -M q35 -monitor stdio -drive file=/home/RHEL-Server-6.4-64-virtio.qcow2,if=none,id=drive-ide0-0-0,format=qcow2,cache=none -device virtio-blk-pci,drive=drive-ide0-0-0 -vnc :1 -m 2048 -smp 2 -net none -enable-kvm -vga cirrus -boot c

Version-Release number of selected component (if applicable):
3.7.0-0.32.el7.x86_64
qemu-kvm-1.3.0-3.el7.x86_64

How reproducible:
100%

Steps to Reproduce:
1.
2.
3.
  
Actual results:
QEMU 1.3.0 monitor - type 'help' for more information
(qemu) 
Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7fffe7dfe700 (LWP 5398)]
0x00007ffff2b5053c in __memcmp_sse2 () from /lib64/libc.so.6
(gdb) bt
#0  0x00007ffff2b5053c in __memcmp_sse2 () from /lib64/libc.so.6
#1  0x000055555579d1b2 in patch_hypercalls (s=0x555556660310) at /usr/src/debug/qemu-1.3.0/hw/kvmvapic.c:546
#2  vapic_prepare (s=s@entry=0x555556660310) at /usr/src/debug/qemu-1.3.0/hw/kvmvapic.c:611
#3  0x000055555579d536 in vapic_write (opaque=0x555556660310, addr=<optimized out>, data=<optimized out>, size=<optimized out>)
    at /usr/src/debug/qemu-1.3.0/hw/kvmvapic.c:648
#4  0x00005555557c9322 in access_with_adjusted_size (addr=addr@entry=0, value=value@entry=0x7fffe7dfdb38, size=2, access_size_min=<optimized out>, 
    access_size_max=<optimized out>, access=access@entry=0x5555557c9940 <memory_region_write_accessor>, opaque=opaque@entry=0x555556662638)
    at /usr/src/debug/qemu-1.3.0/memory.c:364
#5  0x00005555557ca997 in memory_region_iorange_write (iorange=<optimized out>, offset=0, width=2, data=32)
    at /usr/src/debug/qemu-1.3.0/memory.c:439
#6  0x00005555557c77c6 in kvm_handle_io (count=1, size=2, direction=1, data=<optimized out>, port=126) at /usr/src/debug/qemu-1.3.0/kvm-all.c:1426
#7  kvm_cpu_exec (env=env@entry=0x55555664d600) at /usr/src/debug/qemu-1.3.0/kvm-all.c:1571
#8  0x00005555557746d1 in qemu_kvm_cpu_thread_fn (arg=0x55555664d600) at /usr/src/debug/qemu-1.3.0/cpus.c:757
#9  0x00007ffff6272d15 in start_thread () from /lib64/libpthread.so.0
#10 0x00007ffff2bba2cd in clone () from /lib64/libc.so.6


Expected results:


Additional info:
This core dump doesn't happen if booting this guest with -M pc-1.3

Comment 2 Hai Huang 2013-01-30 14:53:00 UTC
Extracting comments from Bug 893302:

q35 in qemu 1.3 needs the dsdt passed in to work correctly:

"-acpitable file=/path/to/q35-acpi-dsdt.aml"

q35-acpi-dsdt.aml should come with seabios

Note that this is temporary, in qemu 1.4 it will not be needed any more (but wouldn't hurt either).

Comment 3 Suqin Huang 2013-01-31 02:25:25 UTC
Hi chayang,
pls update seabios to https://brewweb.devel.redhat.com/buildinfo?buildID=248709

Comment 4 Chao Yang 2013-01-31 03:03:17 UTC
(In reply to comment #2)
> Extracting comments from Bug 893302:
> 
> q35 in qemu 1.3 needs the dsdt passed in to work correctly:
> 
> "-acpitable file=/path/to/q35-acpi-dsdt.aml"
> 
> q35-acpi-dsdt.aml should come with seabios
> 
> Note that this is temporary, in qemu 1.4 it will not be needed any more (but
> wouldn't hurt either).

Thanks for reminding.
Retested again with seabios-1.7.2-0.2.gita810e4e7.el7.x86_64.rpm. No core dump happened. Closing as CURRENTRELEASE.

(In reply to comment #3)
> Hi chayang,
> pls update seabios to
> https://brewweb.devel.redhat.com/buildinfo?buildID=248709

Thanks.