Description of problem: We hit an issue with PCI passthrough - after we reboot the VM IOMMU mappings are incorrect and devices will access invalid memory. The issue is quite easy to reproduce, we were using NICs (e.g. Intel 40 Gig Ethernet NICs hit the issue reliably) but you could probably just pass through any PCI device which does a bit of DMA. How reproducible: 100% Steps to Reproduce: With NICs we do the following to reproduce: - configure the NIC for SR-IOV passthrough [1]; - create two standard VMs; - configure VMs with 4GB current allocation and 15GB maximum allocation of memory (my machines have 32 or 64GB total); - pass a VF to each machine; Note1: the current/maximum allocation of memory seem to play a role here. I'm not 100% sure, however, if it causes the bug or just makes it more likely to be triggered. Note2: we leave <on_reboot>restart</on_reboot> so that VMs can reboot. I was able to reproduce easily on 3 distinct machines (dual CPU Haswell E, single CPU Haswell E, single Sandy Bridge EP). With the VMs created above do the following: (1) boot; (2) configure VF interfaces; (3) run ping -c30 to confirm they can communicate; (4) run iperf -P4 -t30 between the machines; (5) reboot; (6) goto 2; Results: First time (fresh after boot) ping and iperf should work fine. After first reboot, there should already be communication problems. From traffic inspection with tcpdump it appears that VFs receive zeroed packets. Only some of the packets are zeroed so depending on your luck the communication may work for a while. Usually it breaks down when ARP or important TCP segment gets placed in area that device reads as zero. Reboot will not fix this condition, shutdown/start will. System info: Intel NIC i40e (configured for SR-IOV) Machine with any of following CPU configurations: dual CPU Haswell E, single CPU Haswell E, single Sandy Bridge EP 32-64GB RAM Linux Ubuntu 14.04 LTS Linux kernel linux-next.git 4ef76753 Qemu git 38a762fe (libvirt 1.2.2)
Reproduced easily on fully up-to-date CentOS 7 with ixgbe (Intel's 10gig cards): CentOS Linux release 7.2.1511 (Core) # rpm -q libvirt qemu-kvm kernel libvirt-1.2.17-13.el7_2.2.x86_64 qemu-kvm-1.5.3-105.el7_2.1.x86_64 kernel-3.10.0-327.el7.x86_64 kernel-3.10.0-327.3.1.el7.x86_64 Ivy Bridge CPU
Postings to libvir-list that may (or may not) contain more information: https://www.redhat.com/archives/libvir-list/2015-December/msg00917.html https://www.redhat.com/archives/libvir-list/2016-January/msg00040.html
Thank you for reporting this issue to the libvirt project. Unfortunately we have been unable to resolve this issue due to insufficient maintainer capacity and it will now be closed. This is not a reflection on the possible validity of the issue, merely the lack of resources to investigate and address it, for which we apologise. If you none the less feel the issue is still important, you may choose to report it again at the new project issue tracker https://gitlab.com/libvirt/libvirt/-/issues The project also welcomes contribution from anyone who believes they can provide a solution.