Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.
RHEL Engineering is moving the tracking of its product development work on RHEL 6 through RHEL 9 to Red Hat Jira (issues.redhat.com). If you're a Red Hat customer, please continue to file support cases via the Red Hat customer portal. If you're not, please head to the "RHEL project" in Red Hat Jira and file new tickets here. Individual Bugzilla bugs in the statuses "NEW", "ASSIGNED", and "POST" are being migrated throughout September 2023. Bugs of Red Hat partners with an assigned Engineering Partner Manager (EPM) are migrated in late September as per pre-agreed dates. Bugs against components "kernel", "kernel-rt", and "kpatch" are only migrated if still in "NEW" or "ASSIGNED". If you cannot log in to RH Jira, please consult article #7032570. That failing, please send an e-mail to the RH Jira admins at rh-issues@redhat.com to troubleshoot your issue as a user management inquiry. The email creates a ServiceNow ticket with Red Hat. Individual Bugzilla bugs that are migrated will be moved to status "CLOSED", resolution "MIGRATED", and set with "MigratedToJIRA" in "Keywords". The link to the successor Jira issue will be found under "Links", have a little "two-footprint" icon next to it, and direct you to the "RHEL project" in Red Hat Jira (issue links are of type "https://issues.redhat.com/browse/RHEL-XXXX", where "X" is a digit). This same link will be available in a blue banner at the top of the page informing you that that bug has been migrated.

Bug 1074762

Summary: qemu-kvm Segmentation fault when using -no-kvm-irqchip option and virtio-nic-pci device as the same time
Product: Red Hat Enterprise Linux 6 Reporter: FuXiangChun <xfu>
Component: qemu-kvmAssignee: Amos Kong <akong>
Status: CLOSED ERRATA QA Contact: Virtualization Bugs <virt-bugs>
Severity: high Docs Contact:
Priority: high    
Version: 6.5CC: ailan, bsarathy, chayang, juzhang, michen, mkenneth, pbonzini, qzhang, rbalakri, rhod, rmainz, shu, virt-maint, xfu
Target Milestone: rc   
Target Release: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: qemu-kvm-0.12.1.2-2.425.el6 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-10-14 06:56:27 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
guest console info none

Description FuXiangChun 2014-03-11 03:24:45 UTC 
Description of problem:
Boot RHEL6.5 guest with -no-kvm-irqchip option and virtio-net-pci device in qemu-kvm command line.  qemu-kvm quit(Segmentation fault) when guest loading kernel. I attached guest console log.

Version-Release number of selected component (if applicable):
qemu-kvm-rhev-0.12.1.2-2.422.el6.x86_64
2.6.32-447.el6.x86_64

guest:
2.6.32-424.el6.x86_64

How reproducible:
100%

Steps to Reproduce:
1./usr/libexec/qemu-kvm -M rhel6.5.0 -cpu Opteron_G2 -enable-kvm -m 4G  -smp 4 -name rhel6.5 -rtc base=localtime,clock=host,driftfix=slew -uuid 6afa5f93-2d4f-420f-81c6-e5fdddbd1c83 -vnc :1  -monitor stdio -drive file=/mnt/RHEL6.5-20131019.1_Server_x86_64.qcow2bk,if=none,id=drive-data-disk2,format=qcow2,cache=none,werror=stop,rerror=stop -device virtio-blk-pci,drive=drive-data-disk2,id=systemos -netdev tap,id=hostnet0,vhost=on,script=/etc/qemu-ifup -device virtio-net-pci,netdev=hostnet0,id=virtio-net-pci0,mac=00:22:15:2b:5b:8c  -boot menu=on -numa node,cpus=0 -numa node,cpus=1 -numa node,cpus=2 -numa node,cpus=3 -serial unix:/tmp/monitor2,server,nowait -no-kvm-irqchip

2.
3.

Actual results:
qemu-kvm quit(Segmentation fault). 

Expected results:


Additional info:
rtl8139 and e1000 don't hit this problem.
Comment 1 FuXiangChun 2014-03-11 03:26:25 UTC 
Created attachment 872940 [details]
guest console info
Comment 3 Qunfang Zhang 2014-03-11 06:51:54 UTC 
Hi, Xiangchun

Could you also update the qemu segmentfault bt log?   Thanks.
Comment 4 FuXiangChun 2014-03-11 06:57:26 UTC 
(In reply to Qunfang Zhang from comment #3)
> Hi, Xiangchun
> 
> Could you also update the qemu segmentfault bt log?   Thanks.


Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7fffee8ca700 (LWP 25405)]
0x00007ffff7ddf416 in virtio_pci_mask_vq (dev=0x7ffff88d8a90, vector=1, vq=0x7ffff9ce0800, masked=0)
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/virtio-pci.c:588
588	    int r = kvm_set_irqfd(dev->msix_irq_entries[vector].gsi,
Missing separate debuginfos, use: debuginfo-install alsa-lib-1.0.22-3.el6.x86_64 celt051-0.5.1.3-0.el6.x86_64 cyrus-sasl-lib-2.1.23-13.el6_3.1.x86_64 cyrus-sasl-md5-2.1.23-13.el6_3.1.x86_64 cyrus-sasl-plain-2.1.23-13.el6_3.1.x86_64 db4-4.7.25-18.el6_4.x86_64 dbus-libs-1.2.24-7.el6_3.x86_64 flac-1.2.1-6.1.el6.x86_64 glib2-2.26.1-3.el6.x86_64 glibc-2.12-1.132.el6.x86_64 glusterfs-api-3.4.0.36rhs-1.el6.x86_64 glusterfs-libs-3.4.0.36rhs-1.el6.x86_64 gnutls-2.8.5-10.el6_4.2.x86_64 keyutils-libs-1.4-4.el6.x86_64 krb5-libs-1.10.3-10.el6_4.6.x86_64 libICE-1.0.6-1.el6.x86_64 libSM-1.2.1-2.el6.x86_64 libX11-1.5.0-4.el6.x86_64 libXau-1.0.6-4.el6.x86_64 libXext-1.3.1-2.el6.x86_64 libXi-1.6.1-3.el6.x86_64 libXtst-1.2.1-2.el6.x86_64 libaio-0.3.107-10.el6.x86_64 libasyncns-0.8-1.1.el6.x86_64 libcom_err-1.41.12-18.el6.x86_64 libgcrypt-1.4.5-11.el6_4.x86_64 libgpg-error-1.7-4.el6.x86_64 libjpeg-turbo-1.2.1-1.el6.x86_64 libogg-1.1.4-2.1.el6.x86_64 libselinux-2.0.94-5.3.el6_4.1.x86_64 libsndfile-1.0.20-5.el6.x86_64 libtasn1-2.3-3.el6_2.1.x86_64 libuuid-2.17.2-12.14.el6.x86_64 libvorbis-1.2.3-4.el6_2.1.x86_64 libxcb-1.8.1-1.el6.x86_64 nss-softokn-freebl-3.14.3-9.el6.x86_64 openssl-1.0.1e-15.el6.x86_64 pulseaudio-libs-0.9.21-14.el6_3.x86_64 spice-server-0.12.4-6.el6.x86_64 tcp_wrappers-libs-7.6-57.el6.x86_64 zlib-1.2.3-29.el6.x86_64
(gdb) bt
#0  0x00007ffff7ddf416 in virtio_pci_mask_vq (dev=0x7ffff88d8a90, vector=1, vq=0x7ffff9ce0800, masked=0)
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/virtio-pci.c:588
#1  0x00007ffff7ddf4ff in virtio_pci_mask_notifier (dev=0x7ffff88d8a90, vector=1, masked=0)
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/virtio-pci.c:618
#2  0x00007ffff7defb85 in msix_set_mask_notifier (dev=0x7ffff88d8a90, f=<value optimized out>)
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/msix.c:647
#3  0x00007ffff7ddf337 in virtio_pci_set_guest_notifiers (opaque=0x7ffff88d8a90, assign=true)
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/virtio-pci.c:693
#4  0x00007ffff7de3bb0 in vhost_dev_start (hdev=0x7ffff86f4ed0, vdev=0x7ffff9cd46c0)
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/vhost.c:696
#5  0x00007ffff7de2ef0 in vhost_net_start (net=0x7ffff86f4ed0, dev=0x7ffff9cd46c0)
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/vhost_net.c:155
#6  0x00007ffff7ddcd27 in virtio_net_vhost_status (vdev=0x7ffff9cd46c0, status=7 '\a')
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/virtio-net.c:130
#7  virtio_net_set_status (vdev=0x7ffff9cd46c0, status=7 '\a') at /usr/src/debug/qemu-kvm-0.12.1.2/hw/virtio-net.c:147
#8  0x00007ffff7ddfd87 in virtio_set_status (opaque=0x7ffff88d8a90, addr=<value optimized out>, val=7)
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/virtio.h:138
#9  virtio_ioport_write (opaque=0x7ffff88d8a90, addr=<value optimized out>, val=7)
    at /usr/src/debug/qemu-kvm-0.12.1.2/hw/virtio-pci.c:367
#10 0x00007ffff7dec18f in kvm_handle_io (env=0x7ffff885ea00) at /usr/src/debug/qemu-kvm-0.12.1.2/kvm-all.c:145
#11 kvm_run (env=0x7ffff885ea00) at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:1049
#12 0x00007ffff7dec3c9 in kvm_cpu_exec (env=<value optimized out>) at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:1744
#13 0x00007ffff7ded2ad in kvm_main_loop_cpu (_env=0x7ffff885ea00) at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:2005
#14 ap_main_loop (_env=0x7ffff885ea00) at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:2061
#15 0x00007ffff76ff9d1 in start_thread () from /lib64/libpthread.so.0
#16 0x00007ffff4d50b6d in clone () from /lib64/libc.so.6
Comment 6 Miroslav Rezanina 2014-04-29 06:02:12 UTC 
Fix included in qemu-kvm-0.12.1.2-2.425.el6
Comment 8 Shaolong Hu 2014-06-27 07:31:03 UTC 
Reproduced on qemu-kvm-0.12.1.2-2.415.el6.x86_64:

/usr/libexec/qemu-kvm -M rhel6.5.0 -cpu SandyBridge -enable-kvm -m 4G  -smp 4 -name rhel6.5 -rtc base=localtime,clock=host,driftfix=slew -uuid 6afa5f93-2d4f-420f-81c6-e5fdddbd1c83 -vnc :2  -monitor stdio -drive file=/home/juli/RHEL-Server-6.5-64-virtio.qcow2,if=none,id=drive-data-disk2,format=qcow2,cache=none,werror=stop,rerror=stop -device virtio-blk-pci,drive=drive-data-disk2,id=systemos -netdev tap,id=hostnet0,vhost=on,script=/etc/qemu-ifup -device virtio-net-pci,netdev=hostnet0,id=virtio-net-pci0,mac=00:22:15:2b:5b:8c  -boot menu=on -numa node,cpus=0 -numa node,cpus=1 -numa node,cpus=2 -numa node,cpus=3 -serial unix:/tmp/monitor2,server,nowait -no-kvm-irqchip
QEMU 0.12.1 monitor - type 'help' for more information
(qemu) 
(qemu) 
(qemu) Segmentation fault (core dumped)


Veirfied on qemu-kvm-0.12.1.2-2.428.el6.x86_64.rpm:

No Segmentation fault
Comment 9 errata-xmlrpc 2014-10-14 06:56:27 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

http://rhn.redhat.com/errata/RHBA-2014-1490.html