From: bugzilla-daemon@bugzilla.kernel.org
To: kvm@vger.kernel.org
Subject: [Bug 64801] New: Nested Virtualisation with KVM on Intel and AMD processors: L2 unreachable
Date: Mon, 11 Nov 2013 15:47:57 +0000 [thread overview]
Message-ID: <bug-64801-28872@https.bugzilla.kernel.org/> (raw)
https://bugzilla.kernel.org/show_bug.cgi?id=64801
Bug ID: 64801
Summary: Nested Virtualisation with KVM on Intel and AMD
processors: L2 unreachable
Product: Virtualization
Version: unspecified
Kernel Version: 3.12
Hardware: x86-64
OS: Linux
Tree: Mainline
Status: NEW
Severity: normal
Priority: P1
Component: kvm
Assignee: virtualization_kvm@kernel-bugs.osdl.org
Reporter: 2005@kuarepoti-dju.net
Regression: No
With the recent kernel version(s) it seems to be impossible to reach an L2
guest. The issues sometimes even render the L0 machine unusable, and hence
could be considered relevant to system security.
On three machines, the combination of KVM 1.2 and Linux 3.12 produces the
following results when invoking the L2 VM:
* Intel Core i5 680: register dump
* Intel Core i7 M620: "nested_vmx_run: VMCS MSR_{LOAD,STORE} unsupported"
* AMD Athlon X2 3800+: "skip emulated instructions" messages thrown over all
host ttys
On another machine, AMD Athlon II X2 240e which runs Linux 3.2.0 as host with
KVM 1.1 and Linux 3.9.0 as guests, L2 can be reached. Booting the test setup
from above with Linux 3.12 on all levels for comparing the results was not yet
possible. The test setup consists of a minimal textmode VM which nests itself
twice and contains some extra configuration for L0 for hardware support. Both
SMP and single-core configurations seem to show the same behaviour.
Kernel 3.12 host (L0) minimal configuration; may need tweaks depending on the
hardware in use:
http://serviceplatform.org/cgi-bin/gitweb.cgi?p=space-cloud;a=blob_plain;f=nestedcloud/kernel-boot/customkernel/nestedcloud.hostkernel.config;hb=master
Kernel 3.12 guest (L1+L2) minimal configuration:
https://gitorious.org/recvirt/recvirt/raw/2d4aeef70e53df7a2199256550515cd3bdbd4ecd:recvirt-basevm/kernel/recvirt.kvmkernel-smpfull.config
Complete L0 test image (~800 MB) with extlinux as bootloader; may need root=
and kvm_intel.nested=1 parameters, or PROMPT 1 in extlinux.conf; login is root,
password is demo:
http://141.76.41.201/recvirt/
--
You are receiving this mail because:
You are watching the assignee of the bug.
next reply other threads:[~2013-11-11 15:48 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2013-11-11 15:47 bugzilla-daemon [this message]
2013-11-11 20:47 ` [Bug 64801] Nested Virtualisation with KVM on Intel and AMD processors: L2 unreachable bugzilla-daemon
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=bug-64801-28872@https.bugzilla.kernel.org/ \
--to=bugzilla-daemon@bugzilla.kernel.org \
--cc=kvm@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox