Bug 1056010 - guest kernel crash when installing guest rhel7.0 on host rhel6.6
Summary: guest kernel crash when installing guest rhel7.0 on host rhel6.6
Keywords:
Status: CLOSED INSUFFICIENT_DATA
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: kernel
Version: 7.0
Hardware: Unspecified
OS: Unspecified
medium
medium
Target Milestone: rc
: 7.0
Assignee: fs-maint
QA Contact: Red Hat Kernel QE team
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2014-01-21 11:31 UTC by xhan
Modified: 2014-06-18 08:10 UTC (History)
13 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2014-03-24 11:24:54 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)

Description xhan 2014-01-21 11:31:08 UTC 
Description of problem:

On host RHEL6.6, install guest rhel7.0. The qemu crash.

BUG: unable to handle kernel paging request at ffff8d002afcd750
[  632.978949] IP: [<ffffffffa049937b>] xfs_check_page_type+0x4b/0xb0 [xfs]
[  632.979006] PGD 0 
[  632.979006] Oops: 0000 [#1] SMP 
[  632.979006] Modules linked in: xfs libcrc32c fcoe libfcoe libfc scsi_transport_fc scsi_tgt microcode i2c_piix4 serio_raw pcspkr mperf uinput ext4 mbcache jbd2 loop nls_utf8 isofs vfat fat sd_mod crc_t10dif sr_mod cdrom ata_generic pata_acpi virtio_net virtio_scsi cirrus syscopyarea sysfillrect sysimgblt drm_kms_helper crct10dif_pclmul crct10dif_common crc32_pclmul crc32c_intel ttm ghash_clmulni_intel drm aesni_intel glue_helper ablk_helper cryptd ata_piix i2c_core libata virtio_pci virtio_ring virtio sunrpc xts lrw gf128mul sha256_ssse3 dm_crypt dm_round_robin dm_snapshot dm_mirror dm_region_hash dm_log dm_zero linear raid10 raid456 async_raid6_recov async_memcpy async_pq raid6_pq async_xor xor async_tx raid1 raid0 iscsi_ibft iscsi_boot_sysfs floppy iscsi_tcp libiscsi_tcp libiscsi scsi_transport_iscsi squashfs cramfs edd dm_multipath dm_mod
[  632.979006] CPU: 0 PID: 6 Comm: kworker/u4:0 Not tainted 3.10.0-71.el7.x86_64 #1
[  632.979006] Hardware name: Red Hat KVM, BIOS 0.5.1 01/01/2007
[  632.979006] Workqueue: writeback bdi_writeback_workfn (flush-253:3)
[  632.979006] task: ffff880119b13610 ti: ffff880119b32000 task.ti: ffff880119b32000
[  632.979006] RIP: 0010:[<ffffffffa049937b>]  [<ffffffffa049937b>] xfs_check_page_type+0x4b/0xb0 [xfs]
[  632.979006] RSP: 0018:ffff880119b33818  EFLAGS: 00010287
[  632.979006] RAX: ffff8d002afcd750 RBX: ffffea0000963e00 RCX: 0000000000000001
[  632.979006] RDX: 0000000000000001 RSI: 0000000000000001 RDI: ffff88002afcd750
[  632.979006] RBP: ffff880119b33818 R08: 000000000000000e R09: ffff880119b33c78
[  632.979006] R10: 57ffe7a709963dc0 R11: 000000000000000b R12: ffff88002afdc590
[  632.979006] R13: ffff880119b339f0 R14: ffff880119b339e8 R15: ffff880119b33c78
[  632.979006] FS:  0000000000000000(0000) GS:ffff88011fc00000(0000) knlGS:0000000000000000
[  632.979006] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  632.979006] CR2: ffff8d002afcd750 CR3: 00000000d9e90000 CR4: 00000000000406f0
[  632.979006] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  632.979006] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  632.979006] Stack:
[  632.979006]  ffff880119b338a0 ffffffffa049aa62 ffff880119b33c78 ffff880119b339e8
[  632.979006]  0000000081138604 ffff880119b339f0 ffff880119b33a00 ffff88002afcd6e8
[  632.979006]  ffffea0000963dc0 0000000000001000 0000000000000001 000000000000000e
[  632.979006] Call Trace:
[  632.979006]  [<ffffffffa049aa62>] xfs_convert_page.isra.11+0x82/0x300 [xfs]
[  632.979006]  [<ffffffffa049adf0>] xfs_cluster_write+0x110/0x190 [xfs]
[  632.979006]  [<ffffffffa049b176>] xfs_vm_writepage+0x306/0x5a0 [xfs]
[  632.979006]  [<ffffffff8113f673>] __writepage+0x13/0x40
[  632.979006]  [<ffffffff81140071>] write_cache_pages+0x241/0x4b0
[  632.979006]  [<ffffffff8113f660>] ? global_dirtyable_memory+0x50/0x50
[  632.979006]  [<ffffffff81140320>] generic_writepages+0x40/0x60
[  632.979006]  [<ffffffffa049a9d3>] xfs_vm_writepages+0x43/0x50 [xfs]
[  632.979006]  [<ffffffff8114180e>] do_writepages+0x1e/0x40
[  632.979006]  [<ffffffff811c7be0>] __writeback_single_inode+0x40/0x220
[  632.979006]  [<ffffffff811c85e7>] writeback_sb_inodes+0x247/0x3e0
[  632.979006]  [<ffffffff811c881f>] __writeback_inodes_wb+0x9f/0xd0
[  632.979006]  [<ffffffff811c9013>] wb_writeback+0x243/0x2c0
[  632.979006]  [<ffffffff811ca733>] bdi_writeback_workfn+0x2c3/0x430
[  632.979006]  [<ffffffff8107862b>] process_one_work+0x17b/0x460
[  632.979006]  [<ffffffff810793db>] worker_thread+0x11b/0x400
[  632.979006]  [<ffffffff810792c0>] ? rescuer_thread+0x3e0/0x3e0
[  632.979006]  [<ffffffff8107fb90>] kthread+0xc0/0xd0
[  632.979006]  [<ffffffff8107fad0>] ? kthread_create_on_node+0x110/0x110
[  632.979006]  [<ffffffff815cd66c>] ret_from_fork+0x7c/0xb0
[  632.979006]  [<ffffffff8107fad0>] ? kthread_create_on_node+0x110/0x110
[  632.979006] Code: 48 8b 07 f6 c4 08 74 7c 48 8b 7f 30 31 d2 48 89 f8 eb 18 0f 1f 44 00 00 31 c9 83 fe 02 0f 94 c1 01 ca 48 8b 40 08 48 39 c7 74 25 <48> 8b 08 80 e5 10 75 e5 48 8b 08 80 e5 02 74 2d 48 8b 40 08 31 
[  632.979006] RIP  [<ffffffffa049937b>] xfs_check_page_type+0x4b/0xb0 [xfs]
[  632.979006]  RSP <ffff880119b33818>
[  632.979006] CR2: ffff8d002afcd750
[  632.979006] ---[ end trace c4c92520f4ef02d7 ]---

Version-Release number of selected component (if applicable):
qemu-kvm-0.12.1.2-2.419.el6.x86_64
kernel-2.6.32-438.el6.x86_64

How reproducible:
once 

Steps to Reproduce:
1. install guest rhel7.0
/usr/libexec/qemu-kvm \
    -S  \
    -name 'virt-tests-vm1' \
    -M rhel6.5.0  \
    -nodefaults  \
    -vga cirrus \
    -device AC97,bus=pci.0,addr=03  \
    -monitor stdio \
    -chardev socket,id=serial_id_serial0,path=/tmp/serial-serial0-20140120-154938-d39aarxB,server,nowait \
    -device isa-serial,chardev=serial_id_serial0  \
    -chardev socket,id=seabioslog_id_20140120-154938-d39aarxB,path=/tmp/seabios-20140120-154938-d39aarxB,server,nowait \
    -device isa-debugcon,chardev=seabioslog_id_20140120-154938-d39aarxB,iobase=0x402 \
    -device ich9-usb-uhci1,id=usb1,bus=pci.0,addr=04 \
    -device virtio-scsi-pci,id=virtio_scsi_pci0,bus=pci.0,addr=05 \
    -drive id=drive_image1,if=none,cache=none,snapshot=off,aio=native,file=./RHEL-Server-7.0-64-virtio.raw \
    -device scsi-hd,id=image1,drive=drive_image1 \
    -device virtio-net-pci,mac=9a:40:41:42:43:44,id=idYDvPeP,netdev=idZiB1je,bus=pci.0,addr=06  \
    -netdev tap,id=idZiB1je,vhost=on,script=/home/autotest/autotest-devel/client/tests/virt/shared/scripts/qemu-ifup-switch  \
    -m 4096  \
    -smp 2,maxcpus=2,cores=1,threads=1,sockets=2  \
    -cpu 'SandyBridge' \
    -drive id=drive_cd1,if=none,snapshot=off,aio=native,media=cdrom,file=./RHEL7.0-Server-x86_64.iso \
    -device scsi-cd,id=cd1,drive=drive_cd1 \
    -drive id=drive_fl,if=none,cache=none,snapshot=off,readonly=off,aio=native,file=./rhel70-64/ks.vfd \
    -global isa-fdc.driveA=drive_fl \
    -device usb-tablet,id=usb-tablet1,bus=usb1.0,port=1  \
    -kernel './rhel70-64/vmlinuz'  \
    -append 'ks=hd:fd0:/ks.cfg nicdelay=60 console=ttyS0,115200 console=tty0'  \
    -initrd './rhel70-64/initrd.img'  \
    -vnc :0  \
    -rtc base=utc,clock=host,driftfix=slew  \
    -boot order=cdn,once=d,menu=off  \
    -no-kvm-pit-reinjection \
    -no-shutdown \
    -enable-kvm

2.
3.

Actual results:
qemu crashes.

Expected results:
qemu should work normally.

Additional info:
processor	: 0
vendor_id	: GenuineIntel
cpu family	: 6
model		: 42
model name	: Intel(R) Xeon(R) CPU E31225 @ 3.10GHz
stepping	: 7
cpu MHz		: 3101.000
cache size	: 6144 KB
physical id	: 0
siblings	: 4
core id		: 0
cpu cores	: 4
apicid		: 0
initial apicid	: 0
fpu		: yes
fpu_exception	: yes
cpuid level	: 13
wp		: yes
flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe syscall nx rdtscp lm constant_tsc arch_perfmon pebs bts xtopology nonstop_tsc aperfmperf pni pclmulqdq dtes64 ds_cpl vmx smx est tm2 ssse3 cx16 xtpr pdcm pcid sse4_1 sse4_2 x2apic popcnt tsc_deadline_timer aes xsave avx lahf_lm ida arat epb xsaveopt pln pts dts tpr_shadow vnmi flexpriority ept vpid
bogomips	: 6184.37
clflush size	: 64
cache_alignment	: 64
address sizes	: 36 bits physical, 48 bits virtual
power management:

mem info :
MemTotal:        7878916 kB
MemFree:         6435596 kB
Buffers:           41640 kB
Cached:          1079572 kB
SwapCached:            0 kB
Active:           543076 kB
Inactive:         638740 kB
Active(anon):      60924 kB
Inactive(anon):      412 kB
Active(file):     482152 kB
Inactive(file):   638328 kB
Unevictable:           0 kB
Mlocked:               0 kB
SwapTotal:      58720240 kB
SwapFree:       58720240 kB
Dirty:            652612 kB
Writeback:             0 kB
AnonPages:         60644 kB
Mapped:            15860 kB
Shmem:               664 kB
Slab:             138932 kB
SReclaimable:      78400 kB
SUnreclaim:        60532 kB
KernelStack:        1360 kB
PageTables:         3872 kB
NFS_Unstable:          0 kB
Bounce:                0 kB
WritebackTmp:          0 kB
CommitLimit:    62659696 kB
Committed_AS:     245108 kB
VmallocTotal:   34359738367 kB
VmallocUsed:      574704 kB
VmallocChunk:   34359157588 kB
HardwareCorrupted:     0 kB
AnonHugePages:         0 kB
HugePages_Total:       0
HugePages_Free:        0
HugePages_Rsvd:        0
HugePages_Surp:        0
Hugepagesize:       2048 kB
DirectMap4k:        9216 kB
DirectMap2M:     8202240 kB
Comment 4 xhan 2014-01-22 02:59:24 UTC 
Run this rhel7 guest installation 6 times, met the defect once.

Reproduce ratio:
1/6
Comment 6 Ric Wheeler 2014-01-27 01:59:52 UTC 
Is there enough of the log to see what happened here?
Comment 7 RHEL Program Management 2014-03-22 06:11:03 UTC 
This request was not resolved in time for the current release.
Red Hat invites you to ask your support representative to
propose this request, if still desired, for consideration in
the next release of Red Hat Enterprise Linux.
Note You need to log in before you can comment on or make changes to this bug.