1005016 – Qemu w/ macvtap backend virtual network hangs when the fd is over 1024

RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 1005016 - Qemu w/ macvtap backend virtual network hangs when the fd is over 1024

Summary: Qemu w/ macvtap backend virtual network hangs when the fd is over 1024

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat Enterprise Linux 6
Classification:	Red Hat
Component:	qemu-kvm
Sub Component:
Version:	6.5
Hardware:	Unspecified
OS:	Unspecified
Priority:	medium
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Vlad Yasevich
QA Contact:	Virtualization Bugs
Docs Contact:
URL:
Whiteboard:
Duplicates (2):	1121589 1196955 (view as bug list)
Depends On:
Blocks:	1024684 1125735 1199873
TreeView+	depends on / blocked

Reported:	2013-09-06 03:09 UTC by Qian Guo
Modified:	2015-07-22 06:03 UTC (History)
CC List:	12 users (show)
Fixed In Version:	qemu-kvm-0.12.1.2-2.462.el6
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2015-07-22 06:03:34 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Bugzilla	892977	0	medium	CLOSED	qemu crashed when using macvtap with fd number is over 1024( already ulimit "open files" to 10240)	2021-02-22 00:41:40 UTC
Red Hat Product Errata	RHBA-2015:1275	0	normal	SHIPPED_LIVE	qemu-kvm bug fix and enhancement update	2015-07-20 17:49:16 UTC

Internal Links: 892977

Description Qian Guo 2013-09-06 03:09:51 UTC

Description of problem:
Boot a guest w/ macvtap, and set fd as 1025 (over 1024), qemu hangs, and from top in host, the qemu-kvm process exhaust 100% cpu resource.

when set fd=1024, qemu-kvm does not hang, but qemu process exhaust 100% cpu resource, and guest can not boot up.

when fd < 1024, all are ok.


Version-Release number of selected component (if applicable):
# uname -r
2.6.32-416.el6.x86_64
# rpm -q qemu-kvm
qemu-kvm-0.12.1.2-2.400.el6.x86_64

How reproducible:
100%

Steps to Reproduce:
1. Open a shell and ulimit to 10240
# ulimit -n 10240

2. In the same shell, launch guest w/ macvtap and fd > 1024
# /usr/libexec/qemu-kvm -cpu SandyBridge -m 2G -smp 2,sockets=1,cores=2,threads=1 -enable-kvm  -name testovs -rtc base=localtime,clock=host,driftfix=slew -drive file=/home/RHEL-Server-6.4-64-virtio.qcow2,if=none,format=qcow2,werror=stop,rerror=stop,cache=none,media=disk,id=drive-scsi0-disk0 -device virtio-scsi-pci,id=scsi0,addr=0x4 -device scsi-hd,scsi-id=0,lun=0,bus=scsi0.0,drive=drive-scsi0-disk0,id=virtio-disk0,bootindex=1 -nodefaults -nodefconfig -monitor stdio   -netdev tap,id=macvtap_netdev,fd=1025 -device virtio-net-pci,netdev=macvtap_netdev,mac=92:65:21:bf:09:3c 1025<>/dev/tap9 -vnc :20 -vga std -boot menu=on
3.

Actual results:
Guest start booting, and in shot time, qemu and guest hangs.

Expected results:
No hang and error.

Additional info:

Comment 2 Ronen Hod 2013-09-11 18:32:37 UTC

Deferring to 6.6 since it is an old bug (not a regression), and the backport is not trivial. Nobody really needs 1024 FDs.
See https://bugzilla.redhat.com/show_bug.cgi?id=892977

Comment 4 Chao Yang 2014-07-22 09:49:06 UTC

*** Bug 1121589 has been marked as a duplicate of this bug. ***

Comment 6 Ronen Hod 2014-08-20 18:32:37 UTC

A big (24 patches + tests) and sensitive fix. (pulls in all the async I/O that is used by storage/networking ...)
Needs a lot of QA, so we have to push it to 6.7, and maybe a Z-stream.

Comment 8 Fam Zheng 2015-02-27 06:58:57 UTC

*** Bug 1196955 has been marked as a duplicate of this bug. ***

Comment 9 Jeff Nelson 2015-03-12 22:01:16 UTC

Patches posted to rhvirt-patches

Comment 10 Jeff Nelson 2015-03-25 23:06:20 UTC

Fix included in qemu-kvm-0.12.1.2-2.462.el6

Comment 12 Chao Yang 2015-03-27 09:42:24 UTC

Reproduced with qemu-kvm-0.12.1.2-2.458.el6.x86_64.

Steps:
1. set limit of open files to 10240
2. set macvtap up
3. start a qemu-kvm instance with fd > 1024

Actual Result:

(qemu) qemu-kvm: /builddir/build/BUILD/qemu-kvm-0.12.1.2/vl.c:4042: main_loop_wait: Assertion `ioh->fd < 1024' failed.

Program received signal SIGABRT, Aborted.
0x00007ffff4a5e625 in raise () from /lib64/libc.so.6
(gdb) bt
#0  0x00007ffff4a5e625 in raise () from /lib64/libc.so.6
#1  0x00007ffff4a5fe05 in abort () from /lib64/libc.so.6
#2  0x00007ffff4a5774e in __assert_fail_base () from /lib64/libc.so.6
#3  0x00007ffff4a57810 in __assert_fail () from /lib64/libc.so.6
#4  0x00007ffff7db2cd6 in main_loop_wait (timeout=1000) at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:4042
#5  0x00007ffff7dd622a in kvm_main_loop () at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:2258
#6  0x00007ffff7db74a7 in main_loop (argc=<value optimized out>, argv=<value optimized out>, envp=<value optimized out>)
    at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:4285
#7  main (argc=<value optimized out>, argv=<value optimized out>, envp=<value optimized out>)
    at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:6742




Verified pass with qemu-kvm-0.12.1.2-2.462.el6.x86_64. Neither crash nor hang happened. Guest owned an available IP.

CLI:

/usr/libexec/qemu-kvm -name sriov-test -S -M rhel6.6.0  ... -netdev tap,id=hostnet0,vhost=on,fd=1025 -device virtio-net-pci,netdev=hostnet0,id=net0,mac=b2:8b:46:58:ab:f1,bus=pci.0,addr=0x3 1025<>/dev/tap11 

As per above, this issue has fixed correctly.

Moving to VERIFIED.

Comment 14 errata-xmlrpc 2015-07-22 06:03:34 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2015-1275.html

Note You need to log in before you can comment on or make changes to this bug.