cpu hotplug crashes the guest!
| Affects | Status | Importance | Assigned to | Milestone | ||
|---|---|---|---|---|---|---|
| The Ubuntu-power-systems project |
In Progress
|
High
|
Ubuntu on IBM Power Systems Bug Triage | |||
| qemu (Ubuntu) | Status tracked in Oracular | |||||
| Noble |
Triaged
|
High
|
Sergio Durigan Junior | |||
| Oracular |
Fix Released
|
High
|
Sergio Durigan Junior | |||
Bug Description
SRU Justification:
[ Impact ]
* While running a (nested) KVM guest on Power 10 (with PowerVM)
and performing a CPU hotplug, trying to set to 68 vCPUs,
the KVM guest crashes.
* In the failure case the KVM guest has maxvcpus 128,
and it starts fine with an initial value of 4 vCPUs,
but fails after a larger increase (here to 68 vCPUs).
* The error reported is:
[ 662.102542] KVM: Create Guest vcpu hcall failed, rc=-44
error: Unable to read from monitor: Connection reset by peer
* This especially seems to happen in memory constraint systems.
* This can be avoided by pre-creating and parking vCPUs on success
or return error otherwise, which then leads to a graceful error
in case of a vCPU hotplug failure, while the guest keeps running.
[ Fix ]
* 08c3286822 ("accel/kvm: Extract common KVM vCPU {creation,parking} code") [pre-req]
* c6a3d7bc9e ("accel/kvm: Introduce kvm_create_
* 18530e7c57 ("cpu-common.c: export cpu_get_free_index to be reused later")
* cfb52d07f5 ("target/ppc: handle vcpu hotplug failure gracefully")
[ Test Plan ]
* Setup an IBM Power10 system (with firmware FW1060 or newer,
that comes with nested KVM support), running Ubuntu Server 24.04.
* Install and configure KVM on this system with a (higher)
maxvcpus value of 128, but have a (smaller) initial value of 4 vCPUs.
$ virsh define ubu2404.xml
(https:/
* Now after successful definition, start the VM:
$ virsh start ubu2404 --console
* If the VM is up and running increase the vCPUs to a larger value
here 68:
$ virsh setvcpus ubu2404 68
* A system with an unpatched qemu will crash, showing:
[ 662.102542] KVM: Create Guest vcpu hcall failed, rc=-44
error: Unable to read from monitor: Connection reset by peer
* A patches environment will:
- either just successfully hotplug the new amount (68) of vCPUs
without further messages
- or (in case very memory constraint) print a (graceful) error
message that hotplug couldn't be performed,
but stays up and running:
error: internal error: unable to execute QEMU command 'device_add': \
kvmppc_
* Since certain firmware is required, IBM is doing the test and validation
(and already successfully verified based on the PPA test builds).
[ Where problems could occur ]
* All modification were done in target/ppc/kvm.c
and are with that limited to the IBM Power platform,
and will not affect other architectures.
* The implementation of the pre-creation of vCPUs (init cpu_target_realize)
may lead to early failures when a user doesn't expect to have such an
amount of vCPUs yet.
* And the pre-creation and especially parking (kvm_create_
will probably consume more resources than before.
* Hence a patched system might run with a reduced max amount of vCPUs,
but instead will not crash hard, but gracefully fail on lack of resources.
* This case and the patch(es) are also discussed in more detail here:
https://<email address hidden>/T/#t
and here:
https:/
[ Other Info ]
* The code is upstream accepted with qemu v9.1.0(-rc0),
and the upload to oracular was done,
and now only noble is affected.
* Ubuntu releases older than noble are not affected,
since (nested) KVM virtualization on P10
was introduced starting with noble.
__________
== Comment: #0 - SEETEENA THOUFEEK <email address hidden> - 2024-08-12 03:47:06 ==
+++ This bug was initially created as a clone of Bug #205620 +++
---Problem Description---
cpu hotplug crashes the guest!cpu hotplug crashes the guest!
---Steps to Reproduce---
I have been trying for the CPU hotplugging to the guest with maxvcpus as 128 and current value I am giving as 4! but when I try to hotplug 68 vcpus to the guest, it crahses and we get error message as:
[ 303.808494] KVM: Create Guest vcpu hcall failed, rc=-44
error: Unable to read from monitor: Connection reset by peer
Steps to reproduce:
1) virsh define bug.xml
2) virsh start Fedora39 --console
3) virsh setvcpus Fedora39 68
Output :
[ 662.102542] KVM: Create Guest vcpu hcall failed, rc=-44
error: Unable to read from monitor: Connection reset by peer
If resources are less, in my thinking it should fail gracefully!
Attaching the XML file that i have used and will post the observations on MDC system there i saw this same failure on higher number.
fixed with upstream commit
https:/
Machine Type = na
---Debugger---
A debugger is not configured
Contact Information = <email address hidden>
---uname output---
NA
Related branches
- git-ubuntu bot: Approve
- Andreas Hasenack: Approve
- Canonical Server Reporter: Pending requested
-
Diff: 536 lines (+496/-0)6 files modifieddebian/changelog (+8/-0)
debian/patches/series (+4/-0)
debian/patches/ubuntu/lp2076587-cpu-hotplug-crashes-guest-01.patch (+250/-0)
debian/patches/ubuntu/lp2076587-cpu-hotplug-crashes-guest-02.patch (+64/-0)
debian/patches/ubuntu/lp2076587-cpu-hotplug-crashes-guest-03.patch (+66/-0)
debian/patches/ubuntu/lp2076587-cpu-hotplug-crashes-guest-04.patch (+104/-0)
| tags: | added: architecture-ppc64le bugnameltc-208538 severity-high targetmilestone-inin--- |
| Changed in ubuntu: | |
| assignee: | nobody → Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) |
| affects: | ubuntu → qemu (Ubuntu) |
| Changed in ubuntu-power-systems: | |
| assignee: | nobody → Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) |
| Changed in qemu (Ubuntu Oracular): | |
| assignee: | Ubuntu on IBM Power Systems Bug Triage (ubuntu-power-triage) → nobody |
| Changed in ubuntu-power-systems: | |
| status: | New → Triaged |
| Changed in qemu (Ubuntu Noble): | |
| status: | New → Triaged |
| Changed in qemu (Ubuntu Oracular): | |
| status: | New → Triaged |
| importance: | Undecided → High |
| Changed in qemu (Ubuntu Noble): | |
| importance: | Undecided → High |
| Changed in ubuntu-power-systems: | |
| importance: | Undecided → Medium |
| importance: | Medium → High |
| Sergio Durigan Junior (sergiodj) wrote | #1 |
| bugproxy (bugproxy) wrote backported-patch-0001 | #2 |
| bugproxy (bugproxy) wrote Comment bridged from LTC Bugzilla | #3 |
| bugproxy (bugproxy) wrote backported-patch-0002 | #4 |
| bugproxy (bugproxy) wrote backported-patch-0003 | #5 |
| bugproxy (bugproxy) wrote backported-patch-0004 | #6 |
| Sergio Durigan Junior (sergiodj) wrote | #7 |
| Changed in qemu (Ubuntu Noble): | |
| assignee: | nobody → Sergio Durigan Junior (sergiodj) |
| Changed in qemu (Ubuntu Oracular): | |
| assignee: | nobody → Sergio Durigan Junior (sergiodj) |
| tags: | added: server-todo |
| Sergio Durigan Junior (sergiodj) wrote | #8 |
| Sergio Durigan Junior (sergiodj) wrote | #9 |
| bugproxy (bugproxy) wrote Comment bridged from LTC Bugzilla | #10 |
| bugproxy (bugproxy) wrote | #11 |
| Sergio Durigan Junior (sergiodj) wrote | #12 |
| bugproxy (bugproxy) wrote | #13 |
| Sergio Durigan Junior (sergiodj) wrote | #14 |
| Changed in qemu (Ubuntu Oracular): | |
| status: | Triaged → Fix Committed |
| Frank Heimes (fheimes) wrote | #15 |
| Frank Heimes (fheimes) wrote | #16 |
| description: | updated |
| Changed in ubuntu-power-systems: | |
| status: | Triaged → In Progress |
| bugproxy (bugproxy) wrote guest xml for cpu hotplug test | #17 |
| Launchpad Janitor (janitor) wrote | #18 |
| Changed in qemu (Ubuntu Oracular): | |
| status: | Fix Committed → Fix Released |
| description: | updated |
Hello Seeteena,
Thanks for your bug report.
While working on backporting the patch mentioned above to QEMU 8.2.2 (which is the version we have on Ubuntu Noble), I noticed that there are extra commits that are required for this one to work. Based on what I've seen, at least the following commits are necessary:
08c328682231b64
c6a3d7bc9e3acf2
The second one is simple, but depends on the first one, which is a bit more involved; it moves code around but also changes things (even though, according to its description, no functional changes were intended). Because we're talking about an LTS release, I'm a bit more hesitant to proceed. Also, it's worth mentioning that we may very well have to backport even more patches; the first patch does not apply cleanly either and I haven't checked the reason.
I will continue looking tomorrow, but it would be great to have IBM's assistance with this backport.
Thank you!