qemu crashing on fedora42
Hi, i'm running win11 in a kvm/libvirt environment. I assume that since the latest update (2:9.2.4-2.fc42 updates-testing) the stability has gotten worse, the VM just crashes after a while 'just sittin' around.
PID: 213628 (qemu-system-x86)
UID: 107 (qemu)
GID: 107 (qemu)
Signal: 6 (ABRT)
Timestamp: Mon 2025-10-06 12:41:52 CEST (35min ago)
Command Line: /usr/bin/qemu-system-x86_64 -name guest=win11,debug-threads=on -S -object $'{"qom-type":"secret","id":"masterKey0","format":"raw","file":"/var/lib/libvirt/qemu/>
Executable: /usr/bin/qemu-system-x86_64
Control Group: /machine.slice/machine-qemu\x2d1\x2dwin11.scope/libvirt/emulator
Unit: machine-qemu\x2d1\x2dwin11.scope
Slice: machine.slice
Boot ID: 19238a08af74425d934248875825c4d7
Machine ID: 5ec69b2adbf74679820be2dbd870ea41
Hostname: p14s
Storage: /var/lib/systemd/coredump/core.qemu-system-x86.107.19238a08af74425d934248875825c4d7.213628.1759747312000000.zst (present)
Size on Disk: 5.7M
Package: qemu/9.2.4-2.fc42
build-id: bcc5656551bf1be4d300b8c36ff660236ca73f87
Message: Process 213628 (qemu-system-x86) of user 107 dumped core.
Module /usr/bin/qemu-system-x86_64 from rpm qemu-9.2.4-2.fc42.x86_64
Module libXext.so.6 from rpm libXext-1.3.6-3.fc42.x86_64
Module libGLX.so.0 from rpm libglvnd-1.7.0-7.fc42.x86_64
Module libGL.so.1 from rpm libglvnd-1.7.0-7.fc42.x86_64
Module libusbredirparser.so.1 from rpm usbredir-0.15.0-1.fc42.x86_64
Module hw-usb-redirect.so from rpm qemu-9.2.4-2.fc42.x86_64
Module libva-drm.so.2 from rpm libva-2.22.0-4.fc42.x86_64
Module libva.so.2 from rpm libva-2.22.0-4.fc42.x86_64
Module libvulkan.so.1 from rpm vulkan-loader-1.4.313.0-1.fc42.x86_64
Module libX11.so.6 from rpm libX11-1.8.12-1.fc42.x86_64
Module libvirglrenderer.so.1 from rpm virglrenderer-1.1.0-2.fc42.x86_64
Module hw-display-virtio-gpu-gl.so from rpm qemu-9.2.4-2.fc42.x86_64
Module hw-display-virtio-gpu.so from rpm qemu-9.2.4-2.fc42.x86_64
Module hw-display-virtio-vga-gl.so from rpm qemu-9.2.4-2.fc42.x86_64
...I tried a coredump/debug... maybe this helps:
(gdb) bt full
#0 __pthread_kill_implementation (threadid=<optimized out>, signo=signo@entry=6, no_tid=no_tid@entry=0) at pthread_kill.c:44
tid = <optimized out>
ret = 0
pd = <optimized out>
old_mask = {__val = {0}}
ret = <optimized out>
#1 0x00007f8662504f63 in __pthread_kill_internal (threadid=<optimized out>, signo=6) at pthread_kill.c:89
No locals.
#2 0x00007f86624aaf3e in __GI_raise (sig=sig@entry=6) at ../sysdeps/posix/raise.c:26
ret = <optimized out>
#3 0x00007f86624926d0 in __GI_abort () at abort.c:77
act = {__sigaction_handler = {sa_handler = 0x7f866091e430, sa_sigaction = 0x7f866091e430}, sa_mask = {__val = {140205055245488, 93961645585920, 140215153302208,
140215122503631, 140205052730144, 140721849728960, 140215157667429, 140721849728976, 140205052730144, 140721849728992, 140215157810926, 0, 8, 140721849729040,
140215157818969, 93961645585936}}, sa_flags = -1629055488, sa_restorer = 0x7f84085d1b20}
#4 0x00007f86608a1c5d in spice_logv (log_domain=0x7f866091a711 "Spice", log_domain=0x7f866091a711 "Spice", log_level=<optimized out>, strloc=0x7f866091e430 "red-qxl.cpp:435",
function=0x7f866091e40b "spice_qxl_gl_scanout", format=0x7f866091a7cf "condition `%s' failed", args=0x7ffc5bdd8020) at ../subprojects/spice-common/common/backtrace.c:132
log_msg = 0x7f84085d1b20
#5 spice_log (log_level=<optimized out>, strloc=0x7f866091e430 "red-qxl.cpp:435", function=0x7f866091e40b "spice_qxl_gl_scanout",
format=0x7f866091a7cf "condition `%s' failed") at ../subprojects/spice-common/common/log.c:69
args = {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 0x7ffc5bdd8130, reg_save_area = 0x7ffc5bdd8040}}
#6 0x00007f8660870c5b in spice_qxl_gl_scanout (qxl=qxl@entry=0x557527494f18, fd=fd@entry=140, width=<optimized out>, height=height@entry=2098, stride=<optimized out>,
format=format@entry=875709016, y_0_top=0) at /usr/src/debug/spice-0.15.1-8.fc42.x86_64/server/red-qxl.cpp:435
payload = {dummy_empty_field = 0x7ffc5bdd8147 ""}
qxl_state = 0x557525b5f2a0
__FUNCTION__ = <optimized out>
#7 0x00007f86618c9ad6 in spice_gl_switch (dcl=0x557527494ed8, new_surface=<optimized out>) at ../ui/spice-display.c:902
ssd = 0x557527494ec0
stride = 9216
fourcc = 875709016
fd = 140
__mptr = <optimized out>
#8 0x00005574e4e477b3 in displaychangelistener_gfx_switch (dcl=0x557527494ed8, new_surface=0x7f84086f3580, update=true) at ../ui/console.c:229
No locals.
#9 0x00005574e4e48e4d in dpy_gfx_replace_surface (con=0x5575283c46a0, surface=surface@entry=0x0) at ../ui/console.c:843
placeholder_msg = "Display output is not active."
s = <optimized out>
old_surface = 0x557527017f10
new_surface = 0x7f84086f3580
dcl = 0x557527494ed8
width = <optimized out>
height = <optimized out>
__PRETTY_FUNCTION__ = "dpy_gfx_replace_surface"
#10 0x00007f864fdbc8aa in virtio_gpu_reset_bh (opaque=<optimized out>) at ../hw/display/virtio-gpu.c:1561
g = 0x557528102230
vgc = 0x557528106f10
res = <optimized out>
tmp = <optimized out>
resource_id = <optimized out>
local_err = 0x0
i = 0
__func__ = "virtio_gpu_reset_bh"
#11 0x00007f864fdbca45 in virtio_gpu_reset (vdev=vdev@entry=0x557528102230) at ../hw/display/virtio-gpu.c:1580
g = 0x557528102230
cmd = <optimized out>
#12 0x00007f864c4104c3 in virtio_gpu_gl_reset (vdev=0x557528102230) at ../hw/display/virtio-gpu-gl.c:109
g = 0x557528102230
gl = 0x557528102230
#13 0x00005574e519b6a2 in virtio_reset (opaque=0x557528102230) at ../hw/virtio/virtio.c:2345
vdev = 0x557528102230
k = 0x557528106f10
i = <optimized out>
#14 0x00005574e50006b9 in virtio_pci_reset (qdev=<optimized out>) at ../hw/virtio/virtio-pci.c:2296
proxy = 0x5575280e8f40
bus = <optimized out>
i = <optimized out>
#15 0x00005574e5002ec4 in virtio_pci_bus_reset_hold (obj=0x5575280e8f40, type=<optimized out>) at ../hw/virtio/virtio-pci.c:2336
dev = 0x5575280e8f40
qdev = <optimized out>
#16 0x00007f86601cbfa8 in virtio_vga_base_reset_hold (obj=0x5575280e8f40, type=RESET_TYPE_COLD) at ../hw/display/virtio-vga.c:190
klass = 0x5575280e6da0
vvga = 0x5575280e8f40
#17 0x00005574e5240632 in resettable_phase_hold (obj=0x5575280e8f40, opaque=<optimized out>, type=RESET_TYPE_COLD) at ../hw/core/resettable.c:162
rc = 0x5575280e8690
s = 0x5575280e8fc4
obj_typename = 0x5575280e6cf0 "virtio-vga-gl"
__PRETTY_FUNCTION__ = "resettable_phase_hold"
#18 0x00005574e523c6fd in bus_reset_child_foreach (obj=<optimized out>, cb=0x5574e5240560 <resettable_phase_hold>, opaque=0x0, type=RESET_TYPE_COLD) at ../hw/core/bus.c:97
_rcu_read_auto11 = 0x1
bus = <optimized out>
kid = 0x5575280e5220
--Type <RET> for more, q to quit, c to continue without paging--c
#19 0x00005574e52405e6 in resettable_child_foreach (rc=0x557525d30db0, obj=0x55752642beb0, cb=0x5574e5240560 <resettable_phase_hold>, opaque=0x0, type=RESET_TYPE_COLD)
at ../hw/core/resettable.c:92
No locals.
#20 resettable_phase_hold (obj=0x55752642beb0, opaque=<optimized out>, type=RESET_TYPE_COLD) at ../hw/core/resettable.c:155
rc = 0x557525d30db0
s = 0x55752642bf20
obj_typename = 0x557525bc1c40 "PCIE"
__PRETTY_FUNCTION__ = "resettable_phase_hold"
#21 0x00005574e523ebfc in device_reset_child_foreach (obj=<optimized out>, cb=0x5574e5240560 <resettable_phase_hold>, opaque=0x0, type=RESET_TYPE_COLD) at ../hw/core/qdev.c:260
dev = <optimized out>
bus = 0x55752642beb0
#22 0x00005574e52405e6 in resettable_child_foreach (rc=0x557525c905a0, obj=0x5575262cc0a0, cb=0x5574e5240560 <resettable_phase_hold>, opaque=0x0, type=RESET_TYPE_COLD)
at ../hw/core/resettable.c:92
No locals.
#23 resettable_phase_hold (obj=0x5575262cc0a0, opaque=<optimized out>, type=RESET_TYPE_COLD) at ../hw/core/resettable.c:155
rc = 0x557525c905a0
s = 0x5575262cc124
obj_typename = 0x557525bc54e0 "q35-pcihost"
__PRETTY_FUNCTION__ = "resettable_phase_hold"
#24 0x00005574e523c6fd in bus_reset_child_foreach (obj=<optimized out>, cb=0x5574e5240560 <resettable_phase_hold>, opaque=0x0, type=RESET_TYPE_COLD) at ../hw/core/bus.c:97
_rcu_read_auto11 = 0x1
bus = <optimized out>
kid = 0x5575263f0fe0
#25 0x00005574e52405e6 in resettable_child_foreach (rc=0x557525ddcab0, obj=0x557525e9dc70, cb=0x5574e5240560 <resettable_phase_hold>, opaque=0x0, type=RESET_TYPE_COLD)
at ../hw/core/resettable.c:92
No locals.
#26 resettable_phase_hold (obj=0x557525e9dc70, opaque=<optimized out>, type=RESET_TYPE_COLD) at ../hw/core/resettable.c:155
rc = 0x557525ddcab0
s = 0x557525e9dce0
obj_typename = 0x557525b90560 "System"
__PRETTY_FUNCTION__ = "resettable_phase_hold"
#27 0x00005574e52403c0 in resettable_container_child_foreach (obj=<optimized out>, cb=0x5574e5240560 <resettable_phase_hold>, opaque=0x0, type=RESET_TYPE_COLD)
at ../hw/core/resetcontainer.c:54
i = 10
rc = 0x557525c4e660
len = 14
__PRETTY_FUNCTION__ = "resettable_container_child_foreach"
#28 0x00005574e52405e6 in resettable_child_foreach (rc=0x557525e69c40, obj=0x557525c4e660, cb=0x5574e5240560 <resettable_phase_hold>, opaque=0x0, type=RESET_TYPE_COLD)
at ../hw/core/resettable.c:92
No locals.
#29 resettable_phase_hold (obj=obj@entry=0x557525c4e660, opaque=opaque@entry=0x0, type=type@entry=RESET_TYPE_COLD) at ../hw/core/resettable.c:155
rc = 0x557525e69c40
s = 0x557525c4e688
obj_typename = 0x557525c08790 "resettable-container"
__PRETTY_FUNCTION__ = "resettable_phase_hold"
#30 0x00005574e5240883 in resettable_assert_reset (obj=0x557525c4e660, type=RESET_TYPE_COLD) at ../hw/core/resettable.c:58
__PRETTY_FUNCTION__ = "resettable_assert_reset"
#31 0x00005574e5240907 in resettable_reset (obj=0x557525c4e660, type=RESET_TYPE_COLD) at ../hw/core/resettable.c:45
No locals.
#32 0x00005574e50e7bb4 in pc_machine_reset (machine=<optimized out>, type=<optimized out>) at ../hw/i386/pc.c:1722
cs = <optimized out>
cpu = <optimized out>
#33 0x00005574e503fcc0 in qemu_system_reset (reason=reason@entry=SHUTDOWN_CAUSE_GUEST_RESET) at ../system/runstate.c:525
mc = 0x557525e2bdb0
type = RESET_TYPE_COLD
__PRETTY_FUNCTION__ = "qemu_system_reset"
#34 0x00005574e50404e8 in main_loop_should_exit (status=<synthetic pointer>) at ../system/runstate.c:801
r = <optimized out>
request = SHUTDOWN_CAUSE_GUEST_RESET
#35 qemu_main_loop () at ../system/runstate.c:834
status = 0
#36 0x00005574e53558a1 in qemu_default_main () at ../system/main.c:37
status = <optimized out>
#37 0x00007f8662494575 in __libc_start_call_main (main=main@entry=0x5574e4e41ea0 <main>, argc=argc@entry=149, argv=argv@entry=0x7ffc5bdd87c8)
at ../sysdeps/nptl/libc_start_call_main.h:58
self = <optimized out>
result = <optimized out>
unwind_buf = {cancel_jmp_buf = {{jmp_buf = {0, -5796333419327532904, 140721849731016, 149, 140215175192576, 93960554931448, -5796333419304464232,
-5801979516823809896}, mask_was_saved = 0}}, priv = {pad = {0x0, 0x0, 0x5574e53e059a <register_module_init+26>, 0x0}, data = {prev = 0x0, cleanup = 0x0,
canceltype = -448920166}}}
not_first_call = <optimized out>
#38 0x00007f8662494628 in __libc_start_main_impl (main=0x5574e4e41ea0 <main>, argc=149, argv=0x7ffc5bdd87c8, init=<optimized out>, fini=<optimized out>,
rtld_fini=<optimized out>, stack_end=0x7ffc5bdd87b8) at ../csu/libc-start.c:360
No locals.
#39 0x00005574e4e42395 in _start ()
No symbol table info available.My system is:
Operating System: Fedora Linux 42
KDE Plasma Version: 6.5.80
KDE Frameworks Version: 6.20.0
Qt Version: 6.9.2
Kernel Version: 6.16.10-200.fc42.x86_64 (64-bit)
Graphics Platform: Wayland
Processors: 16 × AMD Ryzen 7 PRO 7840U w/ Radeon 780M Graphics
Memory: 64 GiB of RAM (58,5 GiB usable)
Graphics Processor: AMD Radeon 780M Graphics
Manufacturer: LENOVO
Product Name: 21K5000JGE
System Version: ThinkPad P14s Gen 4