After upgrading to linux-odroid-c2 3.16.57-1 my QEMU VM fails to start from libvirtd. When starting VM with default settings in /etc/libvirt/qemu.conf I see this message in system log:
$this->bbcode_second_pass_code('', '1498: error : qemuProcessReportLogError:1899 : internal error: process exited while connecting to monitor: 2018-09-02T20:12:44.048459Z qemu-system-aarch64: -sandbox on,obsolete=deny,elevateprivileges=deny,spawn=deny,resourcecontrol=deny: failed to install seccomp syscall filter in the kernel')
When I modify /etc/libvirt/qemu.conf to set seccomp_sandbox=0 and enable coredumps - QEMU crashes:
$this->bbcode_second_pass_code('', 'Process 1682 (qemu-system-aar) of user 99 dumped core.
Stack trace of thread 1682:
#0 0x0000007fb33fb494 raise (libc.so.6)
#1 0x0000007fb33e8e68 abort (libc.so.6)
#2 0x000000555f449e74 n/a (qemu-system-aarch64)
#3 0x000000555f6751d4 n/a (qemu-system-aarch64)
#4 0x000000555f6791b8 qbus_walk_children (qemu-system-aarch64)
#5 0x000000555f6793ac qemu_devices_reset (qemu-system-aarch64)
#6 0x000000555f5e0838 qemu_system_reset (qemu-system-aarch64)
#7 0x000000555f37e7b4 main (qemu-system-aarch64)
#8 0x0000007fb33e92a4 __libc_start_main (libc.so.6)
#9 0x000000555f381c84 _start (qemu-system-aarch64)
')
And indeed - there is no entry in /proc/sys/kernel/seccomp now.
I've also rebuilt the kernel with these options added:
$this->bbcode_second_pass_code('', '
CONFIG_HAVE_ARCH_SECCOMP_FILTER=y
CONFIG_SECCOMP_FILTER=y
#...
CONFIG_SECCOMP=y
')
but it didn't solve the problem. I guess that I'm missing something. Also I didn't find any confirmation that KVM is working in Hardkernel's distribution with kernel v. 3.16.
Funny enough - I've requested kernel upgrade to 3.16.x and now I have my VM broken Any help or guidelines are appreciated,