* [Qemu-devel] [PATCH v2 1/1] s390x/css: catch section mismatch on load
@ 2017-05-18 11:14 Halil Pasic
2017-05-23 12:18 ` Cornelia Huck
0 siblings, 1 reply; 3+ messages in thread
From: Halil Pasic @ 2017-05-18 11:14 UTC (permalink / raw)
To: Cornelia Huck
Cc: Dr. David Alan Gilbert, Dong Jia Shi, Juan Quintela, qemu-devel,
Halil Pasic, qemu-stable
Prior to the virtio-ccw-2.7 machine (and commit 2a79eb1a), our virtio
devices residing under the virtual-css bus do not have qdev_path based
migration stream identifiers (because their qdev_path is NULL). The ids
are instead generated when the device is registered as a composition of
the so called idstr, which takes the vmsd name as its value, and an
instance_id, which is which is calculated as a maximal instance_id
registered with the same idstr plus one, or zero (if none was registered
previously).
That means, under certain circumstances, one device might try, and even
succeed, to load the state of a different device. This can lead to
trouble.
Let us fail the migration if the above problem is detected during load.
How to reproduce the problem:
1) start qemu-system-s390x making sure you have the following devices
defined on your command line:
-device virtio-rng-ccw,id=rng1,devno=fe.0.0001
-device virtio-rng-ccw,id=rng2,devno=fe.0.0002
2) detach the devices and reattach in reverse order using the monitor:
(qemu) device_del rng1
(qemu) device_del rng2
(qemu) device_add virtio-rng-ccw,id=rng2,devno=fe.0.0002
(qemu) device_add virtio-rng-ccw,id=rng1,devno=fe.0.0001
3) save the state of the vm into a temporary file and quit QEMU:
(qemu) migrate "exec:gzip -c > /tmp/tmp_vmstate.gz"
(qemu) q
4) use your command line from step 1 with
-incoming "exec:gzip -c -d /tmp/tmp_vmstate.gz"
appended to reproduce the problem (while trying to to load the saved vm)
CC: qemu-stable@nongnu.org
Signed-off-by: Halil Pasic <pasic@linux.vnet.ibm.com>
Reviewed-by: Dong Jia Shi <bjsdjshi@linux.vnet.ibm.com>
---
v1 --> v2:
* Fixed grammar in error message (s/prior/prior to/).
We (Connie and me) are still interested in learning how to do verbose
error messages with VMSTATE.
---
hw/s390x/css.c | 14 ++++++++++++++
hw/s390x/virtio-ccw.c | 6 +++++-
2 files changed, 19 insertions(+), 1 deletion(-)
diff --git a/hw/s390x/css.c b/hw/s390x/css.c
index 15c4f4b249..b8e6b0b648 100644
--- a/hw/s390x/css.c
+++ b/hw/s390x/css.c
@@ -14,6 +14,7 @@
#include "qapi/visitor.h"
#include "hw/qdev.h"
#include "qemu/bitops.h"
+#include "qemu/error-report.h"
#include "exec/address-spaces.h"
#include "cpu.h"
#include "hw/s390x/ioinst.h"
@@ -1721,13 +1722,26 @@ void subch_device_save(SubchDev *s, QEMUFile *f)
int subch_device_load(SubchDev *s, QEMUFile *f)
{
SubchDev *old_s;
+ Error *err = NULL;
uint16_t old_schid = s->schid;
+ uint16_t old_devno = s->devno;
int i;
s->cssid = qemu_get_byte(f);
s->ssid = qemu_get_byte(f);
s->schid = qemu_get_be16(f);
s->devno = qemu_get_be16(f);
+ if (s->devno != old_devno) {
+ /* Only possible if machine < 2.7 (no css_dev_path) */
+
+ error_setg(&err, "%x != %x", old_devno, s->devno);
+ error_append_hint(&err, "Devno mismatch, tried to load wrong section!"
+ " Likely reason: some sequences of plug and unplug"
+ " can break migration for machine versions prior to"
+ " 2.7 (known design flaw).\n");
+ error_report_err(err);
+ return -EINVAL;
+ }
/* Re-assign subch. */
if (old_schid != s->schid) {
old_s = channel_subsys.css[s->cssid]->sch_set[s->ssid]->sch[old_schid];
diff --git a/hw/s390x/virtio-ccw.c b/hw/s390x/virtio-ccw.c
index e7167e3d05..4f7efa240d 100644
--- a/hw/s390x/virtio-ccw.c
+++ b/hw/s390x/virtio-ccw.c
@@ -1274,9 +1274,13 @@ static int virtio_ccw_load_config(DeviceState *d, QEMUFile *f)
SubchDev *s = ccw_dev->sch;
VirtIODevice *vdev = virtio_ccw_get_vdev(s);
int len;
+ int ret;
s->driver_data = dev;
- subch_device_load(s, f);
+ ret = subch_device_load(s, f);
+ if (ret) {
+ return ret;
+ }
/* Re-fill subch_id after loading the subchannel states.*/
if (ck->refill_ids) {
ck->refill_ids(ccw_dev);
--
2.11.2
^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [Qemu-devel] [PATCH v2 1/1] s390x/css: catch section mismatch on load
2017-05-18 11:14 [Qemu-devel] [PATCH v2 1/1] s390x/css: catch section mismatch on load Halil Pasic
@ 2017-05-23 12:18 ` Cornelia Huck
2017-05-23 12:55 ` Christian Borntraeger
0 siblings, 1 reply; 3+ messages in thread
From: Cornelia Huck @ 2017-05-23 12:18 UTC (permalink / raw)
To: Halil Pasic, Christian Borntraeger
Cc: Dr. David Alan Gilbert, Dong Jia Shi, Juan Quintela, qemu-devel,
qemu-stable
On Thu, 18 May 2017 13:14:05 +0200
Halil Pasic <pasic@linux.vnet.ibm.com> wrote:
> Prior to the virtio-ccw-2.7 machine (and commit 2a79eb1a), our virtio
> devices residing under the virtual-css bus do not have qdev_path based
> migration stream identifiers (because their qdev_path is NULL). The ids
> are instead generated when the device is registered as a composition of
> the so called idstr, which takes the vmsd name as its value, and an
> instance_id, which is which is calculated as a maximal instance_id
> registered with the same idstr plus one, or zero (if none was registered
> previously).
>
> That means, under certain circumstances, one device might try, and even
> succeed, to load the state of a different device. This can lead to
> trouble.
>
> Let us fail the migration if the above problem is detected during load.
>
> How to reproduce the problem:
> 1) start qemu-system-s390x making sure you have the following devices
> defined on your command line:
> -device virtio-rng-ccw,id=rng1,devno=fe.0.0001
> -device virtio-rng-ccw,id=rng2,devno=fe.0.0002
> 2) detach the devices and reattach in reverse order using the monitor:
> (qemu) device_del rng1
> (qemu) device_del rng2
> (qemu) device_add virtio-rng-ccw,id=rng2,devno=fe.0.0002
> (qemu) device_add virtio-rng-ccw,id=rng1,devno=fe.0.0001
> 3) save the state of the vm into a temporary file and quit QEMU:
> (qemu) migrate "exec:gzip -c > /tmp/tmp_vmstate.gz"
> (qemu) q
> 4) use your command line from step 1 with
> -incoming "exec:gzip -c -d /tmp/tmp_vmstate.gz"
> appended to reproduce the problem (while trying to to load the saved vm)
>
> CC: qemu-stable@nongnu.org
> Signed-off-by: Halil Pasic <pasic@linux.vnet.ibm.com>
> Reviewed-by: Dong Jia Shi <bjsdjshi@linux.vnet.ibm.com>
Hum, missed that one for my pull request, sorry.
Reviewed-by: Cornelia Huck <cornelia.huck@de.ibm.com>
Christian, can you please pick for the next set of s390x patches?
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [Qemu-devel] [PATCH v2 1/1] s390x/css: catch section mismatch on load
2017-05-23 12:18 ` Cornelia Huck
@ 2017-05-23 12:55 ` Christian Borntraeger
0 siblings, 0 replies; 3+ messages in thread
From: Christian Borntraeger @ 2017-05-23 12:55 UTC (permalink / raw)
To: Cornelia Huck, Halil Pasic
Cc: Dr. David Alan Gilbert, Dong Jia Shi, Juan Quintela, qemu-devel,
qemu-stable
On 05/23/2017 02:18 PM, Cornelia Huck wrote:
> On Thu, 18 May 2017 13:14:05 +0200
> Halil Pasic <pasic@linux.vnet.ibm.com> wrote:
>
>> Prior to the virtio-ccw-2.7 machine (and commit 2a79eb1a), our virtio
>> devices residing under the virtual-css bus do not have qdev_path based
>> migration stream identifiers (because their qdev_path is NULL). The ids
>> are instead generated when the device is registered as a composition of
>> the so called idstr, which takes the vmsd name as its value, and an
>> instance_id, which is which is calculated as a maximal instance_id
>> registered with the same idstr plus one, or zero (if none was registered
>> previously).
>>
>> That means, under certain circumstances, one device might try, and even
>> succeed, to load the state of a different device. This can lead to
>> trouble.
>>
>> Let us fail the migration if the above problem is detected during load.
>>
>> How to reproduce the problem:
>> 1) start qemu-system-s390x making sure you have the following devices
>> defined on your command line:
>> -device virtio-rng-ccw,id=rng1,devno=fe.0.0001
>> -device virtio-rng-ccw,id=rng2,devno=fe.0.0002
>> 2) detach the devices and reattach in reverse order using the monitor:
>> (qemu) device_del rng1
>> (qemu) device_del rng2
>> (qemu) device_add virtio-rng-ccw,id=rng2,devno=fe.0.0002
>> (qemu) device_add virtio-rng-ccw,id=rng1,devno=fe.0.0001
>> 3) save the state of the vm into a temporary file and quit QEMU:
>> (qemu) migrate "exec:gzip -c > /tmp/tmp_vmstate.gz"
>> (qemu) q
>> 4) use your command line from step 1 with
>> -incoming "exec:gzip -c -d /tmp/tmp_vmstate.gz"
>> appended to reproduce the problem (while trying to to load the saved vm)
>>
>> CC: qemu-stable@nongnu.org
>> Signed-off-by: Halil Pasic <pasic@linux.vnet.ibm.com>
>> Reviewed-by: Dong Jia Shi <bjsdjshi@linux.vnet.ibm.com>
>
> Hum, missed that one for my pull request, sorry.
>
> Reviewed-by: Cornelia Huck <cornelia.huck@de.ibm.com>
>
> Christian, can you please pick for the next set of s390x patches?
applied to my tree, Thanks.
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2017-05-23 12:55 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2017-05-18 11:14 [Qemu-devel] [PATCH v2 1/1] s390x/css: catch section mismatch on load Halil Pasic
2017-05-23 12:18 ` Cornelia Huck
2017-05-23 12:55 ` Christian Borntraeger
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).