€•>®      Œsphinx.addnodes”Œdocument”“”)”}”(Œ	rawsource”Œ ”Œchildren”]”(Œtranslations”ŒLanguagesNode”“”)”}”(hhh]”(h Œpending_xref”“”)”}”(hhh]”Œdocutils.nodes”ŒText”“”ŒChinese (Simplified)”…””}”Œparent”hsbaŒ
attributes”}”(Œids”]”Œclasses”]”Œnames”]”Œdupnames”]”Œbackrefs”]”Œ	refdomain”Œstd”Œreftype”Œdoc”Œ	reftarget”Œ6/translations/zh_CN/virt/kvm/x86/running-nested-guests”Œmodname”NŒ	classname”NŒrefexplicit”ˆuŒtagname”hhhubh)”}”(hhh]”hŒChinese (Traditional)”…””}”hh2sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ6/translations/zh_TW/virt/kvm/x86/running-nested-guests”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒItalian”…””}”hhFsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ6/translations/it_IT/virt/kvm/x86/running-nested-guests”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒJapanese”…””}”hhZsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ6/translations/ja_JP/virt/kvm/x86/running-nested-guests”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒKorean”…””}”hhnsbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ6/translations/ko_KR/virt/kvm/x86/running-nested-guests”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubh)”}”(hhh]”hŒSpanish”…””}”hh‚sbah}”(h]”h ]”h"]”h$]”h&]”Œ	refdomain”h)Œreftype”h+Œ	reftarget”Œ6/translations/sp_SP/virt/kvm/x86/running-nested-guests”Œmodname”NŒ	classname”NŒrefexplicit”ˆuh1hhhubeh}”(h]”h ]”h"]”h$]”h&]”Œcurrent_language”ŒEnglish”uh1h
hhŒ	_document”hŒsource”NŒline”NubhŒcomment”“”)”}”(hŒ SPDX-License-Identifier: GPL-2.0”h]”hŒ SPDX-License-Identifier: GPL-2.0”…””}”hh£sbah}”(h]”h ]”h"]”h$]”h&]”Œ	xml:space”Œpreserve”uh1h¡hhhžhhŸŒP/var/lib/git/docbuild/linux/Documentation/virt/kvm/x86/running-nested-guests.rst”h KubhŒsection”“”)”}”(hhh]”(hŒtitle”“”)”}”(hŒRunning nested guests with KVM”h]”hŒRunning nested guests with KVM”…””}”(hh»hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hh¶hžhhŸh³h KubhŒ	paragraph”“”)”}”(hŒöA nested guest is the ability to run a guest inside another guest (it
can be KVM-based or a different hypervisor).  The straightforward
example is a KVM guest that in turn runs on a KVM guest (the rest of
this document is built on this example)::”h]”hŒõA nested guest is the ability to run a guest inside another guest (it
can be KVM-based or a different hypervisor).  The straightforward
example is a KVM guest that in turn runs on a KVM guest (the rest of
this document is built on this example):”…””}”(hhËhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Khh¶hžhubhŒliteral_block”“”)”}”(hX+          .----------------.  .----------------.
        |                |  |                |
        |      L2        |  |      L2        |
        | (Nested Guest) |  | (Nested Guest) |
        |                |  |                |
        |----------------'--'----------------|
        |                                    |
        |       L1 (Guest Hypervisor)        |
        |          KVM (/dev/kvm)            |
        |                                    |
.------------------------------------------------------.
|                 L0 (Host Hypervisor)                 |
|                    KVM (/dev/kvm)                    |
|------------------------------------------------------|
|        Hardware (with virtualization extensions)     |
'------------------------------------------------------'”h]”hX+          .----------------.  .----------------.
        |                |  |                |
        |      L2        |  |      L2        |
        | (Nested Guest) |  | (Nested Guest) |
        |                |  |                |
        |----------------'--'----------------|
        |                                    |
        |       L1 (Guest Hypervisor)        |
        |          KVM (/dev/kvm)            |
        |                                    |
.------------------------------------------------------.
|                 L0 (Host Hypervisor)                 |
|                    KVM (/dev/kvm)                    |
|------------------------------------------------------|
|        Hardware (with virtualization extensions)     |
'------------------------------------------------------'”…””}”hhÛsbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h Khh¶hžhubhÊ)”}”(hŒTerminology:”h]”hŒTerminology:”…””}”(hhéhžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Khh¶hžhubhŒbullet_list”“”)”}”(hhh]”(hŒ	list_item”“”)”}”(hŒ1L0 â€“ level-0; the bare metal host, running KVM
”h]”hÊ)”}”(hŒ0L0 â€“ level-0; the bare metal host, running KVM”h]”hŒ0L0 â€“ level-0; the bare metal host, running KVM”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Khhþubah}”(h]”h ]”h"]”h$]”h&]”uh1hühhùhžhhŸh³h Nubhý)”}”(hŒvL1 â€“ level-1 guest; a VM running on L0; also called the "guest
hypervisor", as it itself is capable of running KVM.
”h]”hÊ)”}”(hŒuL1 â€“ level-1 guest; a VM running on L0; also called the "guest
hypervisor", as it itself is capable of running KVM.”h]”hŒyL1 â€“ level-1 guest; a VM running on L0; also called the â€œguest
hypervisorâ€, as it itself is capable of running KVM.”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K!hj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühhùhžhhŸh³h Nubhý)”}”(hŒEL2 â€“ level-2 guest; a VM running on L1, this is the "nested guest"
”h]”hÊ)”}”(hŒDL2 â€“ level-2 guest; a VM running on L1, this is the "nested guest"”h]”hŒHL2 â€“ level-2 guest; a VM running on L1, this is the â€œnested guestâ€”…””}”(hj2  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K$hj.  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühhùhžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”Œbullet”Œ-”uh1h÷hŸh³h Khh¶hžhubhŒnote”“”)”}”(hX.  The above diagram is modelled after the x86 architecture;
s390x, ppc64 and other architectures are likely to have
a different design for nesting.

For example, s390x always has an LPAR (LogicalPARtition)
hypervisor running on bare metal, adding another layer and
resulting in at least four levels in a nested setup â€” L0 (bare
metal, running the LPAR hypervisor), L1 (host hypervisor), L2
(guest hypervisor), L3 (nested guest).

This document will stick with the three-level terminology (L0,
L1, and L2) for all architectures; and will largely focus on
x86.”h]”(hÊ)”}”(hŒ‘The above diagram is modelled after the x86 architecture;
s390x, ppc64 and other architectures are likely to have
a different design for nesting.”h]”hŒ‘The above diagram is modelled after the x86 architecture;
s390x, ppc64 and other architectures are likely to have
a different design for nesting.”…””}”(hjT  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K&hjP  ubhÊ)”}”(hX  For example, s390x always has an LPAR (LogicalPARtition)
hypervisor running on bare metal, adding another layer and
resulting in at least four levels in a nested setup â€” L0 (bare
metal, running the LPAR hypervisor), L1 (host hypervisor), L2
(guest hypervisor), L3 (nested guest).”h]”hX  For example, s390x always has an LPAR (LogicalPARtition)
hypervisor running on bare metal, adding another layer and
resulting in at least four levels in a nested setup â€” L0 (bare
metal, running the LPAR hypervisor), L1 (host hypervisor), L2
(guest hypervisor), L3 (nested guest).”…””}”(hjb  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K*hjP  ubhÊ)”}”(hŒ€This document will stick with the three-level terminology (L0,
L1, and L2) for all architectures; and will largely focus on
x86.”h]”hŒ€This document will stick with the three-level terminology (L0,
L1, and L2) for all architectures; and will largely focus on
x86.”…””}”(hjp  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K0hjP  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1jN  hh¶hžhhŸh³h Nubhµ)”}”(hhh]”(hº)”}”(hŒ	Use Cases”h]”hŒ	Use Cases”…””}”(hj‡  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj„  hžhhŸh³h K6ubhÊ)”}”(hŒJThere are several scenarios where nested KVM can be useful, to name a
few:”h]”hŒJThere are several scenarios where nested KVM can be useful, to name a
few:”…””}”(hj•  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K8hj„  hžhubhø)”}”(hhh]”(hý)”}”(hXu  As a developer, you want to test your software on different operating
systems (OSes).  Instead of renting multiple VMs from a Cloud
Provider, using nested KVM lets you rent a large enough "guest
hypervisor" (level-1 guest).  This in turn allows you to create
multiple nested guests (level-2 guests), running different OSes, on
which you can develop and test your software.
”h]”hÊ)”}”(hXt  As a developer, you want to test your software on different operating
systems (OSes).  Instead of renting multiple VMs from a Cloud
Provider, using nested KVM lets you rent a large enough "guest
hypervisor" (level-1 guest).  This in turn allows you to create
multiple nested guests (level-2 guests), running different OSes, on
which you can develop and test your software.”h]”hXx  As a developer, you want to test your software on different operating
systems (OSes).  Instead of renting multiple VMs from a Cloud
Provider, using nested KVM lets you rent a large enough â€œguest
hypervisorâ€ (level-1 guest).  This in turn allows you to create
multiple nested guests (level-2 guests), running different OSes, on
which you can develop and test your software.”…””}”(hjª  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K;hj¦  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühj£  hžhhŸh³h Nubhý)”}”(hŒkLive migration of "guest hypervisors" and their nested guests, for
load balancing, disaster recovery, etc.
”h]”hÊ)”}”(hŒjLive migration of "guest hypervisors" and their nested guests, for
load balancing, disaster recovery, etc.”h]”hŒnLive migration of â€œguest hypervisorsâ€ and their nested guests, for
load balancing, disaster recovery, etc.”…””}”(hjÂ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KBhj¾  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühj£  hžhhŸh³h Nubhý)”}”(hŒzVM image creation tools (e.g. ``virt-install``,  etc) often run
their own VM, and users expect these to work inside a VM.
”h]”hÊ)”}”(hŒyVM image creation tools (e.g. ``virt-install``,  etc) often run
their own VM, and users expect these to work inside a VM.”h]”(hŒVM image creation tools (e.g. ”…””}”(hjÚ  hžhhŸNh NubhŒliteral”“”)”}”(hŒ``virt-install``”h]”hŒvirt-install”…””}”(hjä  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjÚ  ubhŒK,  etc) often run
their own VM, and users expect these to work inside a VM.”…””}”(hjÚ  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KEhjÖ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühj£  hžhhŸh³h Nubhý)”}”(hŒjSome OSes use virtualization internally for security (e.g. to let
applications run safely in isolation).

”h]”hÊ)”}”(hŒhSome OSes use virtualization internally for security (e.g. to let
applications run safely in isolation).”h]”hŒhSome OSes use virtualization internally for security (e.g. to let
applications run safely in isolation).”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KHhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühj£  hžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jL  jM  uh1h÷hŸh³h K;hj„  hžhubeh}”(h]”Œ	use-cases”ah ]”h"]”Œ	use cases”ah$]”h&]”uh1h´hh¶hžhhŸh³h K6ubhµ)”}”(hhh]”(hº)”}”(hŒEnabling "nested" (x86)”h]”hŒEnabling â€œnestedâ€ (x86)”…””}”(hj+  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj(  hžhhŸh³h KMubhÊ)”}”(hŒ¥From Linux kernel v4.20 onwards, the ``nested`` KVM parameter is enabled
by default for Intel and AMD.  (Though your Linux distribution might
override this default.)”h]”(hŒ%From Linux kernel v4.20 onwards, the ”…””}”(hj9  hžhhŸNh Nubjã  )”}”(hŒ
``nested``”h]”hŒnested”…””}”(hjA  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj9  ubhŒv KVM parameter is enabled
by default for Intel and AMD.  (Though your Linux distribution might
override this default.)”…””}”(hj9  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KOhj(  hžhubhÊ)”}”(hŒàIn case you are running a Linux kernel older than v4.19, to enable
nesting, set the ``nested`` KVM module parameter to ``Y`` or ``1``.  To
persist this setting across reboots, you can add it in a config file, as
shown below:”h]”(hŒTIn case you are running a Linux kernel older than v4.19, to enable
nesting, set the ”…””}”(hjY  hžhhŸNh Nubjã  )”}”(hŒ
``nested``”h]”hŒnested”…””}”(hja  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjY  ubhŒ KVM module parameter to ”…””}”(hjY  hžhhŸNh Nubjã  )”}”(hŒ``Y``”h]”hŒY”…””}”(hjs  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjY  ubhŒ or ”…””}”(hjY  hžhhŸNh Nubjã  )”}”(hŒ``1``”h]”hŒ1”…””}”(hj…  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjY  ubhŒ[.  To
persist this setting across reboots, you can add it in a config file, as
shown below:”…””}”(hjY  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KShj(  hžhubhŒenumerated_list”“”)”}”(hhh]”(hý)”}”(hŒ»On the bare metal host (L0), list the kernel modules and ensure that
the KVM modules::

 $ lsmod | grep -i kvm
 kvm_intel             133627  0
 kvm                   435079  1 kvm_intel
”h]”(hÊ)”}”(hŒVOn the bare metal host (L0), list the kernel modules and ensure that
the KVM modules::”h]”hŒUOn the bare metal host (L0), list the kernel modules and ensure that
the KVM modules:”…””}”(hj¦  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KXhj¢  ubhÚ)”}”(hŒ_$ lsmod | grep -i kvm
kvm_intel             133627  0
kvm                   435079  1 kvm_intel”h]”hŒ_$ lsmod | grep -i kvm
kvm_intel             133627  0
kvm                   435079  1 kvm_intel”…””}”hj´  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h K[hj¢  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hühjŸ  hžhhŸh³h Nubhý)”}”(hŒpShow information for ``kvm_intel`` module::

 $ modinfo kvm_intel | grep -i nested
 parm:           nested:bool
”h]”(hÊ)”}”(hŒ+Show information for ``kvm_intel`` module::”h]”(hŒShow information for ”…””}”(hjÌ  hžhhŸNh Nubjã  )”}”(hŒ``kvm_intel``”h]”hŒ	kvm_intel”…””}”(hjÔ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjÌ  ubhŒ module:”…””}”(hjÌ  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K_hjÈ  ubhÚ)”}”(hŒ@$ modinfo kvm_intel | grep -i nested
parm:           nested:bool”h]”hŒ@$ modinfo kvm_intel | grep -i nested
parm:           nested:bool”…””}”hjì  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h KahjÈ  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hühjŸ  hžhhŸh³h Nubhý)”}”(hŒÜFor the nested KVM configuration to persist across reboots, place the
below in ``/etc/modprobed/kvm_intel.conf`` (create the file if it
doesn't exist)::

 $ cat /etc/modprobe.d/kvm_intel.conf
 options kvm-intel nested=y
”h]”(hÊ)”}”(hŒ˜For the nested KVM configuration to persist across reboots, place the
below in ``/etc/modprobed/kvm_intel.conf`` (create the file if it
doesn't exist)::”h]”(hŒOFor the nested KVM configuration to persist across reboots, place the
below in ”…””}”(hj  hžhhŸNh Nubjã  )”}”(hŒ!``/etc/modprobed/kvm_intel.conf``”h]”hŒ/etc/modprobed/kvm_intel.conf”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj  ubhŒ) (create the file if it
doesnâ€™t exist):”…””}”(hj  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kdhj   ubhÚ)”}”(hŒ?$ cat /etc/modprobe.d/kvm_intel.conf
options kvm-intel nested=y”h]”hŒ?$ cat /etc/modprobe.d/kvm_intel.conf
options kvm-intel nested=y”…””}”hj$  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h Khhj   ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hühjŸ  hžhhŸh³h Nubhý)”}”(hŒ^Unload and re-load the KVM Intel module::

 $ sudo rmmod kvm-intel
 $ sudo modprobe kvm-intel
”h]”(hÊ)”}”(hŒ)Unload and re-load the KVM Intel module::”h]”hŒ(Unload and re-load the KVM Intel module:”…””}”(hj<  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kkhj8  ubhÚ)”}”(hŒ0$ sudo rmmod kvm-intel
$ sudo modprobe kvm-intel”h]”hŒ0$ sudo rmmod kvm-intel
$ sudo modprobe kvm-intel”…””}”hjJ  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h Kmhj8  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hühjŸ  hžhhŸh³h Nubhý)”}”(hŒkVerify if the ``nested`` parameter for KVM is enabled::

 $ cat /sys/module/kvm_intel/parameters/nested
 Y
”h]”(hÊ)”}”(hŒ7Verify if the ``nested`` parameter for KVM is enabled::”h]”(hŒVerify if the ”…””}”(hjb  hžhhŸNh Nubjã  )”}”(hŒ
``nested``”h]”hŒnested”…””}”(hjj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjb  ubhŒ parameter for KVM is enabled:”…””}”(hjb  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kphj^  ubhÚ)”}”(hŒ/$ cat /sys/module/kvm_intel/parameters/nested
Y”h]”hŒ/$ cat /sys/module/kvm_intel/parameters/nested
Y”…””}”hj‚  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h Krhj^  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hühjŸ  hžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”Œenumtype”Œarabic”Œprefix”hŒsuffix”Œ.”uh1j  hj(  hžhhŸh³h KXubhÊ)”}”(hŒ\For AMD hosts, the process is the same as above, except that the module
name is ``kvm-amd``.”h]”(hŒPFor AMD hosts, the process is the same as above, except that the module
name is ”…””}”(hj¡  hžhhŸNh Nubjã  )”}”(hŒ``kvm-amd``”h]”hŒkvm-amd”…””}”(hj©  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj¡  ubhŒ.”…””}”(hj¡  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kuhj(  hžhubeh}”(h]”Œenabling-nested-x86”ah ]”h"]”Œenabling "nested" (x86)”ah$]”h&]”uh1h´hh¶hžhhŸh³h KMubhµ)”}”(hhh]”(hº)”}”(hŒ1Additional nested-related kernel parameters (x86)”h]”hŒ1Additional nested-related kernel parameters (x86)”…””}”(hjÌ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hjÉ  hžhhŸh³h KzubhÊ)”}”(hX>  If your hardware is sufficiently advanced (Intel Haswell processor or
higher, which has newer hardware virt extensions), the following
additional features will also be enabled by default: "Shadow VMCS
(Virtual Machine Control Structure)", APIC Virtualization on your bare
metal host (L0).  Parameters for Intel hosts::”h]”hXA  If your hardware is sufficiently advanced (Intel Haswell processor or
higher, which has newer hardware virt extensions), the following
additional features will also be enabled by default: â€œShadow VMCS
(Virtual Machine Control Structure)â€, APIC Virtualization on your bare
metal host (L0).  Parameters for Intel hosts:”…””}”(hjÚ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K|hjÉ  hžhubhÚ)”}”(hŒ $ cat /sys/module/kvm_intel/parameters/enable_shadow_vmcs
Y

$ cat /sys/module/kvm_intel/parameters/enable_apicv
Y

$ cat /sys/module/kvm_intel/parameters/ept
Y”h]”hŒ $ cat /sys/module/kvm_intel/parameters/enable_shadow_vmcs
Y

$ cat /sys/module/kvm_intel/parameters/enable_apicv
Y

$ cat /sys/module/kvm_intel/parameters/ept
Y”…””}”hjè  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h K‚hjÉ  hžhubjO  )”}”(hŒIf you suspect your L2 (i.e. nested guest) is running slower,
ensure the above are enabled (particularly
``enable_shadow_vmcs`` and ``ept``).”h]”hÊ)”}”(hŒIf you suspect your L2 (i.e. nested guest) is running slower,
ensure the above are enabled (particularly
``enable_shadow_vmcs`` and ``ept``).”h]”(hŒiIf you suspect your L2 (i.e. nested guest) is running slower,
ensure the above are enabled (particularly
”…””}”(hjú  hžhhŸNh Nubjã  )”}”(hŒ``enable_shadow_vmcs``”h]”hŒenable_shadow_vmcs”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjú  ubhŒ and ”…””}”(hjú  hžhhŸNh Nubjã  )”}”(hŒ``ept``”h]”hŒept”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjú  ubhŒ).”…””}”(hjú  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K‹hjö  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jN  hjÉ  hžhhŸh³h Nubeh}”(h]”Œ/additional-nested-related-kernel-parameters-x86”ah ]”h"]”Œ1additional nested-related kernel parameters (x86)”ah$]”h&]”uh1h´hh¶hžhhŸh³h Kzubhµ)”}”(hhh]”(hº)”}”(hŒStarting a nested guest (x86)”h]”hŒStarting a nested guest (x86)”…””}”(hj=  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj:  hžhhŸh³h K‘ubhÊ)”}”(hŒhOnce your bare metal host (L0) is configured for nesting, you should be
able to start an L1 guest with::”h]”hŒgOnce your bare metal host (L0) is configured for nesting, you should be
able to start an L1 guest with:”…””}”(hjK  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K“hj:  hžhubhÚ)”}”(hŒ$ qemu-kvm -cpu host [...]”h]”hŒ$ qemu-kvm -cpu host [...]”…””}”hjY  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h K–hj:  hžhubhÊ)”}”(hŒ§The above will pass through the host CPU's capabilities as-is to the
guest, or for better live migration compatibility, use a named CPU
model supported by QEMU. e.g.::”h]”hŒ¨The above will pass through the host CPUâ€™s capabilities as-is to the
guest, or for better live migration compatibility, use a named CPU
model supported by QEMU. e.g.:”…””}”(hjg  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K˜hj:  hžhubhÚ)”}”(hŒ)$ qemu-kvm -cpu Haswell-noTSX-IBRS,vmx=on”h]”hŒ)$ qemu-kvm -cpu Haswell-noTSX-IBRS,vmx=on”…””}”hju  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h Kœhj:  hžhubhÊ)”}”(hŒfthen the guest hypervisor will subsequently be capable of running a
nested guest with accelerated KVM.”h]”hŒfthen the guest hypervisor will subsequently be capable of running a
nested guest with accelerated KVM.”…””}”(hjƒ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kžhj:  hžhubeh}”(h]”Œstarting-a-nested-guest-x86”ah ]”h"]”Œstarting a nested guest (x86)”ah$]”h&]”uh1h´hh¶hžhhŸh³h K‘ubhµ)”}”(hhh]”(hº)”}”(hŒEnabling "nested" (s390x)”h]”hŒEnabling â€œnestedâ€ (s390x)”…””}”(hjœ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj™  hžhhŸh³h K£ubjž  )”}”(hhh]”hý)”}”(hŒoOn the host hypervisor (L0), enable the ``nested`` parameter on
s390x::

 $ rmmod kvm
 $ modprobe kvm nested=1
”h]”(hÊ)”}”(hŒGOn the host hypervisor (L0), enable the ``nested`` parameter on
s390x::”h]”(hŒ(On the host hypervisor (L0), enable the ”…””}”(hj±  hžhhŸNh Nubjã  )”}”(hŒ
``nested``”h]”hŒnested”…””}”(hj¹  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj±  ubhŒ parameter on
s390x:”…””}”(hj±  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K¥hj­  ubhÚ)”}”(hŒ#$ rmmod kvm
$ modprobe kvm nested=1”h]”hŒ#$ rmmod kvm
$ modprobe kvm nested=1”…””}”hjÑ  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h K¨hj­  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hühjª  hžhhŸh³h Nubah}”(h]”h ]”h"]”h$]”h&]”jœ  j  jž  hjŸ  j   uh1j  hj™  hžhhŸh³h K¥ubjO  )”}”(hŒ²On s390x, the kernel parameter ``hpage`` is mutually exclusive
with the ``nested`` parameter â€” i.e. to be able to enable
``nested``, the ``hpage`` parameter *must* be disabled.”h]”hÊ)”}”(hŒ²On s390x, the kernel parameter ``hpage`` is mutually exclusive
with the ``nested`` parameter â€” i.e. to be able to enable
``nested``, the ``hpage`` parameter *must* be disabled.”h]”(hŒOn s390x, the kernel parameter ”…””}”(hjï  hžhhŸNh Nubjã  )”}”(hŒ	``hpage``”h]”hŒhpage”…””}”(hj÷  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjï  ubhŒ  is mutually exclusive
with the ”…””}”(hjï  hžhhŸNh Nubjã  )”}”(hŒ
``nested``”h]”hŒnested”…””}”(hj	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjï  ubhŒ) parameter â€” i.e. to be able to enable
”…””}”(hjï  hžhhŸNh Nubjã  )”}”(hŒ
``nested``”h]”hŒnested”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjï  ubhŒ, the ”…””}”(hjï  hžhhŸNh Nubjã  )”}”(hŒ	``hpage``”h]”hŒhpage”…””}”(hj-  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjï  ubhŒ parameter ”…””}”(hjï  hžhhŸNh NubhŒemphasis”“”)”}”(hŒ*must*”h]”hŒmust”…””}”(hjA  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j?  hjï  ubhŒ be disabled.”…””}”(hjï  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K«hjë  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jN  hj™  hžhhŸh³h Nubjž  )”}”(hhh]”(hý)”}”(hŒªThe guest hypervisor (L1) must be provided with the ``sie`` CPU
feature â€” with QEMU, this can be done by using "host passthrough"
(via the command-line ``-cpu host``).
”h]”hÊ)”}”(hŒ©The guest hypervisor (L1) must be provided with the ``sie`` CPU
feature â€” with QEMU, this can be done by using "host passthrough"
(via the command-line ``-cpu host``).”h]”(hŒ4The guest hypervisor (L1) must be provided with the ”…””}”(hjf  hžhhŸNh Nubjã  )”}”(hŒ``sie``”h]”hŒsie”…””}”(hjn  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjf  ubhŒc CPU
feature â€” with QEMU, this can be done by using â€œhost passthroughâ€
(via the command-line ”…””}”(hjf  hžhhŸNh Nubjã  )”}”(hŒ``-cpu host``”h]”hŒ	-cpu host”…””}”(hj€  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjf  ubhŒ).”…””}”(hjf  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K¯hjb  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühj_  hžhhŸh³h Nubhý)”}”(hŒRNow the KVM module can be loaded in the L1 (guest hypervisor)::

 $ modprobe kvm

”h]”(hÊ)”}”(hŒ?Now the KVM module can be loaded in the L1 (guest hypervisor)::”h]”hŒ>Now the KVM module can be loaded in the L1 (guest hypervisor):”…””}”(hj¢  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K³hjž  ubhÚ)”}”(hŒ$ modprobe kvm”h]”hŒ$ modprobe kvm”…””}”hj°  sbah}”(h]”h ]”h"]”h$]”h&]”h±h²uh1hÙhŸh³h Kµhjž  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hühj_  hžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jœ  j  jž  hjŸ  j   Œstart”Kuh1j  hj™  hžhhŸh³h K¯ubeh}”(h]”Œenabling-nested-s390x”ah ]”h"]”Œenabling "nested" (s390x)”ah$]”h&]”uh1h´hh¶hžhhŸh³h K£ubhµ)”}”(hhh]”(hº)”}”(hŒLive migration with nested KVM”h]”hŒLive migration with nested KVM”…””}”(hjÖ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hjÓ  hžhhŸh³h K¹ubhÊ)”}”(hŒ¾Migrating an L1 guest, with a  *live* nested guest in it, to another
bare metal host, works as of Linux kernel 5.3 and QEMU 4.2.0 for
Intel x86 systems, and even on older versions for s390x.”h]”(hŒMigrating an L1 guest, with a  ”…””}”(hjä  hžhhŸNh Nubj@  )”}”(hŒ*live*”h]”hŒlive”…””}”(hjì  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j?  hjä  ubhŒ™ nested guest in it, to another
bare metal host, works as of Linux kernel 5.3 and QEMU 4.2.0 for
Intel x86 systems, and even on older versions for s390x.”…””}”(hjä  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K»hjÓ  hžhubhÊ)”}”(hX»  On AMD systems, once an L1 guest has started an L2 guest, the L1 guest
should no longer be migrated or saved (refer to QEMU documentation on
"savevm"/"loadvm") until the L2 guest shuts down.  Attempting to migrate
or save-and-load an L1 guest while an L2 guest is running will result in
undefined behavior.  You might see a ``kernel BUG!`` entry in ``dmesg``, a
kernel 'oops', or an outright kernel panic.  Such a migrated or loaded L1
guest can no longer be considered stable or secure, and must be restarted.
Migrating an L1 guest merely configured to support nesting, while not
actually running L2 guests, is expected to function normally even on AMD
systems but may fail once guests are started.”h]”(hXL  On AMD systems, once an L1 guest has started an L2 guest, the L1 guest
should no longer be migrated or saved (refer to QEMU documentation on
â€œsavevmâ€/â€loadvmâ€) until the L2 guest shuts down.  Attempting to migrate
or save-and-load an L1 guest while an L2 guest is running will result in
undefined behavior.  You might see a ”…””}”(hj  hžhhŸNh Nubjã  )”}”(hŒ``kernel BUG!``”h]”hŒkernel BUG!”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj  ubhŒ
 entry in ”…””}”(hj  hžhhŸNh Nubjã  )”}”(hŒ	``dmesg``”h]”hŒdmesg”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj  ubhXY  , a
kernel â€˜oopsâ€™, or an outright kernel panic.  Such a migrated or loaded L1
guest can no longer be considered stable or secure, and must be restarted.
Migrating an L1 guest merely configured to support nesting, while not
actually running L2 guests, is expected to function normally even on AMD
systems but may fail once guests are started.”…””}”(hj  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h K¿hjÓ  hžhubhÊ)”}”(hŒtMigrating an L2 guest is always expected to succeed, so all the following
scenarios should work even on AMD systems:”h]”hŒtMigrating an L2 guest is always expected to succeed, so all the following
scenarios should work even on AMD systems:”…””}”(hj6  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KÊhjÓ  hžhubhø)”}”(hhh]”(hý)”}”(hŒQMigrating a nested guest (L2) to another L1 guest on the *same* bare
metal host.
”h]”hÊ)”}”(hŒPMigrating a nested guest (L2) to another L1 guest on the *same* bare
metal host.”h]”(hŒ9Migrating a nested guest (L2) to another L1 guest on the ”…””}”(hjK  hžhhŸNh Nubj@  )”}”(hŒ*same*”h]”hŒsame”…””}”(hjS  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j?  hjK  ubhŒ bare
metal host.”…””}”(hjK  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KÍhjG  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjD  hžhhŸh³h Nubhý)”}”(hŒTMigrating a nested guest (L2) to another L1 guest on a *different*
bare metal host.
”h]”hÊ)”}”(hŒSMigrating a nested guest (L2) to another L1 guest on a *different*
bare metal host.”h]”(hŒ7Migrating a nested guest (L2) to another L1 guest on a ”…””}”(hju  hžhhŸNh Nubj@  )”}”(hŒ*different*”h]”hŒ	different”…””}”(hj}  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j?  hju  ubhŒ
bare metal host.”…””}”(hju  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KÐhjq  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjD  hžhhŸh³h Nubhý)”}”(hŒ4Migrating a nested guest (L2) to a bare metal host.
”h]”hÊ)”}”(hŒ3Migrating a nested guest (L2) to a bare metal host.”h]”hŒ3Migrating a nested guest (L2) to a bare metal host.”…””}”(hjŸ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KÓhj›  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjD  hžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jL  jM  uh1h÷hŸh³h KÍhjÓ  hžhubeh}”(h]”Œlive-migration-with-nested-kvm”ah ]”h"]”Œlive migration with nested kvm”ah$]”h&]”uh1h´hh¶hžhhŸh³h K¹ubhµ)”}”(hhh]”(hº)”}”(hŒ!Reporting bugs from nested setups”h]”hŒ!Reporting bugs from nested setups”…””}”(hjÄ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hjÁ  hžhhŸh³h KÖubhÊ)”}”(hŒ«Debugging "nested" problems can involve sifting through log files across
L0, L1 and L2; this can result in tedious back-n-forth between the bug
reporter and the bug fixer.”h]”hŒ¯Debugging â€œnestedâ€ problems can involve sifting through log files across
L0, L1 and L2; this can result in tedious back-n-forth between the bug
reporter and the bug fixer.”…””}”(hjÒ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KØhjÁ  hžhubhø)”}”(hhh]”(hý)”}”(hŒÿMention that you are in a "nested" setup.  If you are running any kind
of "nesting" at all, say so.  Unfortunately, this needs to be called
out because when reporting bugs, people tend to forget to even
*mention* that they're using nested virtualization.
”h]”hÊ)”}”(hŒþMention that you are in a "nested" setup.  If you are running any kind
of "nesting" at all, say so.  Unfortunately, this needs to be called
out because when reporting bugs, people tend to forget to even
*mention* that they're using nested virtualization.”h]”(hŒÓMention that you are in a â€œnestedâ€ setup.  If you are running any kind
of â€œnestingâ€ at all, say so.  Unfortunately, this needs to be called
out because when reporting bugs, people tend to forget to even
”…””}”(hjç  hžhhŸNh Nubj@  )”}”(hŒ	*mention*”h]”hŒmention”…””}”(hjï  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1j?  hjç  ubhŒ, that theyâ€™re using nested virtualization.”…””}”(hjç  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KÜhjã  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjà  hžhhŸh³h Nubhý)”}”(hXW  Ensure you are actually running KVM on KVM.  Sometimes people do not
have KVM enabled for their guest hypervisor (L1), which results in
them running with pure emulation or what QEMU calls it as "TCG", but
they think they're running nested KVM.  Thus confusing "nested Virt"
(which could also mean, QEMU on KVM) with "nested KVM" (KVM on KVM).
”h]”hÊ)”}”(hXV  Ensure you are actually running KVM on KVM.  Sometimes people do not
have KVM enabled for their guest hypervisor (L1), which results in
them running with pure emulation or what QEMU calls it as "TCG", but
they think they're running nested KVM.  Thus confusing "nested Virt"
(which could also mean, QEMU on KVM) with "nested KVM" (KVM on KVM).”h]”hXd  Ensure you are actually running KVM on KVM.  Sometimes people do not
have KVM enabled for their guest hypervisor (L1), which results in
them running with pure emulation or what QEMU calls it as â€œTCGâ€, but
they think theyâ€™re running nested KVM.  Thus confusing â€œnested Virtâ€
(which could also mean, QEMU on KVM) with â€œnested KVMâ€ (KVM on KVM).”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Káhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjà  hžhhŸh³h Nubeh}”(h]”h ]”h"]”h$]”h&]”jL  jM  uh1h÷hŸh³h KÜhjÁ  hžhubhµ)”}”(hhh]”(hº)”}”(hŒ Information to collect (generic)”h]”hŒ Information to collect (generic)”…””}”(hj.  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hj+  hžhhŸh³h KèubhÊ)”}”(hŒHThe following is not an exhaustive list, but a very good starting point:”h]”hŒHThe following is not an exhaustive list, but a very good starting point:”…””}”(hj<  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kêhj+  hžhubhŒblock_quote”“”)”}”(hXç  - Kernel, libvirt, and QEMU version from L0

- Kernel, libvirt and QEMU version from L1

- QEMU command-line of L1 -- when using libvirt, you'll find it here:
  ``/var/log/libvirt/qemu/instance.log``

- QEMU command-line of L2 -- as above, when using libvirt, get the
  complete libvirt-generated QEMU command-line

- ``cat /sys/cpuinfo`` from L0

- ``cat /sys/cpuinfo`` from L1

- ``lscpu`` from L0

- ``lscpu`` from L1

- Full ``dmesg`` output from L0

- Full ``dmesg`` output from L1
”h]”hø)”}”(hhh]”(hý)”}”(hŒ*Kernel, libvirt, and QEMU version from L0
”h]”hÊ)”}”(hŒ)Kernel, libvirt, and QEMU version from L0”h]”hŒ)Kernel, libvirt, and QEMU version from L0”…””}”(hjW  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KìhjS  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubhý)”}”(hŒ)Kernel, libvirt and QEMU version from L1
”h]”hÊ)”}”(hŒ(Kernel, libvirt and QEMU version from L1”h]”hŒ(Kernel, libvirt and QEMU version from L1”…””}”(hjo  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kîhjk  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubhý)”}”(hŒkQEMU command-line of L1 -- when using libvirt, you'll find it here:
``/var/log/libvirt/qemu/instance.log``
”h]”hÊ)”}”(hŒjQEMU command-line of L1 -- when using libvirt, you'll find it here:
``/var/log/libvirt/qemu/instance.log``”h]”(hŒFQEMU command-line of L1 -- when using libvirt, youâ€™ll find it here:
”…””}”(hj‡  hžhhŸNh Nubjã  )”}”(hŒ&``/var/log/libvirt/qemu/instance.log``”h]”hŒ"/var/log/libvirt/qemu/instance.log”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj‡  ubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kðhjƒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubhý)”}”(hŒnQEMU command-line of L2 -- as above, when using libvirt, get the
complete libvirt-generated QEMU command-line
”h]”hÊ)”}”(hŒmQEMU command-line of L2 -- as above, when using libvirt, get the
complete libvirt-generated QEMU command-line”h]”hŒmQEMU command-line of L2 -- as above, when using libvirt, get the
complete libvirt-generated QEMU command-line”…””}”(hj­  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kóhj©  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubhý)”}”(hŒ``cat /sys/cpuinfo`` from L0
”h]”hÊ)”}”(hŒ``cat /sys/cpuinfo`` from L0”h]”(jã  )”}”(hŒ``cat /sys/cpuinfo``”h]”hŒcat /sys/cpuinfo”…””}”(hjÉ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjÅ  ubhŒ from L0”…””}”(hjÅ  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KöhjÁ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubhý)”}”(hŒ``cat /sys/cpuinfo`` from L1
”h]”hÊ)”}”(hŒ``cat /sys/cpuinfo`` from L1”h]”(jã  )”}”(hŒ``cat /sys/cpuinfo``”h]”hŒcat /sys/cpuinfo”…””}”(hjï  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjë  ubhŒ from L1”…””}”(hjë  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Køhjç  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubhý)”}”(hŒ``lscpu`` from L0
”h]”hÊ)”}”(hŒ``lscpu`` from L0”h]”(jã  )”}”(hŒ	``lscpu``”h]”hŒlscpu”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj  ubhŒ from L0”…””}”(hj  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kúhj  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubhý)”}”(hŒ``lscpu`` from L1
”h]”hÊ)”}”(hŒ``lscpu`` from L1”h]”(jã  )”}”(hŒ	``lscpu``”h]”hŒlscpu”…””}”(hj;  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj7  ubhŒ from L1”…””}”(hj7  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Kühj3  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubhý)”}”(hŒFull ``dmesg`` output from L0
”h]”hÊ)”}”(hŒFull ``dmesg`` output from L0”h]”(hŒFull ”…””}”(hj]  hžhhŸNh Nubjã  )”}”(hŒ	``dmesg``”h]”hŒdmesg”…””}”(hje  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj]  ubhŒ output from L0”…””}”(hj]  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h KþhjY  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubhý)”}”(hŒFull ``dmesg`` output from L1
”h]”hÊ)”}”(hŒFull ``dmesg`` output from L1”h]”(hŒFull ”…””}”(hj‡  hžhhŸNh Nubjã  )”}”(hŒ	``dmesg``”h]”hŒdmesg”…””}”(hj  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj‡  ubhŒ output from L1”…””}”(hj‡  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h M hjƒ  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjP  ubeh}”(h]”h ]”h"]”h$]”h&]”jL  jM  uh1h÷hŸh³h KìhjL  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jJ  hŸh³h Kìhj+  hžhubeh}”(h]”Œinformation-to-collect-generic”ah ]”h"]”Œ information to collect (generic)”ah$]”h&]”uh1h´hjÁ  hžhhŸh³h Kèubhµ)”}”(hhh]”(hº)”}”(hŒx86-specific info to collect”h]”hŒx86-specific info to collect”…””}”(hjÄ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hjÁ  hžhhŸh³h MubhÊ)”}”(hŒ{Both the below commands, ``x86info`` and ``dmidecode``, should be
available on most Linux distributions with the same name:”h]”(hŒBoth the below commands, ”…””}”(hjÒ  hžhhŸNh Nubjã  )”}”(hŒ``x86info``”h]”hŒx86info”…””}”(hjÚ  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjÒ  ubhŒ and ”…””}”(hjÒ  hžhhŸNh Nubjã  )”}”(hŒ``dmidecode``”h]”hŒ	dmidecode”…””}”(hjì  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjÒ  ubhŒE, should be
available on most Linux distributions with the same name:”…””}”(hjÒ  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h MhjÁ  hžhubjK  )”}”(hŒ‘- Output of: ``x86info -a`` from L0

- Output of: ``x86info -a`` from L1

- Output of: ``dmidecode`` from L0

- Output of: ``dmidecode`` from L1
”h]”hø)”}”(hhh]”(hý)”}”(hŒ"Output of: ``x86info -a`` from L0
”h]”hÊ)”}”(hŒ!Output of: ``x86info -a`` from L0”h]”(hŒOutput of: ”…””}”(hj	  hžhhŸNh Nubjã  )”}”(hŒ``x86info -a``”h]”hŒ
x86info -a”…””}”(hj	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj	  ubhŒ from L0”…””}”(hj	  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Mhj	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühj	  ubhý)”}”(hŒ"Output of: ``x86info -a`` from L1
”h]”hÊ)”}”(hŒ!Output of: ``x86info -a`` from L1”h]”(hŒOutput of: ”…””}”(hj9	  hžhhŸNh Nubjã  )”}”(hŒ``x86info -a``”h]”hŒ
x86info -a”…””}”(hjA	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj9	  ubhŒ from L1”…””}”(hj9	  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h M
hj5	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühj	  ubhý)”}”(hŒ!Output of: ``dmidecode`` from L0
”h]”hÊ)”}”(hŒ Output of: ``dmidecode`` from L0”h]”(hŒOutput of: ”…””}”(hjc	  hžhhŸNh Nubjã  )”}”(hŒ``dmidecode``”h]”hŒ	dmidecode”…””}”(hjk	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjc	  ubhŒ from L0”…””}”(hjc	  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Mhj_	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühj	  ubhý)”}”(hŒ!Output of: ``dmidecode`` from L1
”h]”hÊ)”}”(hŒ Output of: ``dmidecode`` from L1”h]”(hŒOutput of: ”…””}”(hj	  hžhhŸNh Nubjã  )”}”(hŒ``dmidecode``”h]”hŒ	dmidecode”…””}”(hj•	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hj	  ubhŒ from L1”…””}”(hj	  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Mhj‰	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühj	  ubeh}”(h]”h ]”h"]”h$]”h&]”jL  jM  uh1h÷hŸh³h Mhj	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jJ  hŸh³h MhjÁ  hžhubeh}”(h]”Œx86-specific-info-to-collect”ah ]”h"]”Œx86-specific info to collect”ah$]”h&]”uh1h´hjÁ  hžhhŸh³h Mubhµ)”}”(hhh]”(hº)”}”(hŒs390x-specific info to collect”h]”hŒs390x-specific info to collect”…””}”(hjÊ	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1h¹hjÇ	  hžhhŸh³h MubhÊ)”}”(hŒPAlong with the earlier mentioned generic details, the below is
also recommended:”h]”hŒPAlong with the earlier mentioned generic details, the below is
also recommended:”…””}”(hjØ	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h MhjÇ	  hžhubjK  )”}”(hŒD- ``/proc/sysinfo`` from L1; this will also include the info from L0”h]”hø)”}”(hhh]”hý)”}”(hŒB``/proc/sysinfo`` from L1; this will also include the info from L0”h]”hÊ)”}”(hjï	  h]”(jã  )”}”(hŒ``/proc/sysinfo``”h]”hŒ/proc/sysinfo”…””}”(hjô	  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1jâ  hjñ	  ubhŒ1 from L1; this will also include the info from L0”…””}”(hjñ	  hžhhŸNh Nubeh}”(h]”h ]”h"]”h$]”h&]”uh1hÉhŸh³h Mhjí	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1hühjê	  ubah}”(h]”h ]”h"]”h$]”h&]”jL  jM  uh1h÷hŸh³h Mhjæ	  ubah}”(h]”h ]”h"]”h$]”h&]”uh1jJ  hŸh³h MhjÇ	  hžhubeh}”(h]”Œs390x-specific-info-to-collect”ah ]”h"]”Œs390x-specific info to collect”ah$]”h&]”uh1h´hjÁ  hžhhŸh³h Mubeh}”(h]”Œ!reporting-bugs-from-nested-setups”ah ]”h"]”Œ!reporting bugs from nested setups”ah$]”h&]”uh1h´hh¶hžhhŸh³h KÖubeh}”(h]”Œrunning-nested-guests-with-kvm”ah ]”h"]”Œrunning nested guests with kvm”ah$]”h&]”uh1h´hhhžhhŸh³h Kubeh}”(h]”h ]”h"]”h$]”h&]”Œsource”h³uh1hŒcurrent_source”NŒcurrent_line”NŒsettings”Œdocutils.frontend”ŒValues”“”)”}”(h¹NŒ	generator”NŒ	datestamp”NŒsource_link”NŒ
source_url”NŒtoc_backlinks”Œentry”Œfootnote_backlinks”KŒsectnum_xform”KŒstrip_comments”NŒstrip_elements_with_classes”NŒstrip_classes”NŒreport_level”KŒ
halt_level”KŒexit_status_level”KŒdebug”NŒwarning_stream”NŒ	traceback”ˆŒinput_encoding”Œ	utf-8-sig”Œinput_encoding_error_handler”Œstrict”Œoutput_encoding”Œutf-8”Œoutput_encoding_error_handler”jY
  Œerror_encoding”Œutf-8”Œerror_encoding_error_handler”Œbackslashreplace”Œlanguage_code”Œen”Œrecord_dependencies”NŒconfig”NŒ	id_prefix”hŒauto_id_prefix”Œid”Œdump_settings”NŒdump_internals”NŒdump_transforms”NŒdump_pseudo_xml”NŒexpose_internals”NŒstrict_visitor”NŒ_disable_config”NŒ_source”h³Œ_destination”NŒ_config_files”]”Œ7/var/lib/git/docbuild/linux/Documentation/docutils.conf”aŒfile_insertion_enabled”ˆŒraw_enabled”KŒline_length_limit”M'Œpep_references”NŒpep_base_url”Œhttps://peps.python.org/”Œpep_file_url_template”Œpep-%04d”Œrfc_references”NŒrfc_base_url”Œ&https://datatracker.ietf.org/doc/html/”Œ	tab_width”KŒtrim_footnote_reference_space”‰Œsyntax_highlight”Œlong”Œsmart_quotes”ˆŒsmartquotes_locales”]”Œcharacter_level_inline_markup”‰Œdoctitle_xform”‰Œdocinfo_xform”KŒsectsubtitle_xform”‰Œimage_loading”Œlink”Œembed_stylesheet”‰Œcloak_email_addresses”ˆŒsection_self_link”‰Œenv”NubŒreporter”NŒindirect_targets”]”Œsubstitution_defs”}”Œsubstitution_names”}”Œrefnames”}”Œrefids”}”Œnameids”}”(j3
  j0
  j%  j"  jÆ  jÃ  j7  j4  j–  j“  jÐ  jÍ  j¾  j»  j+
  j(
  j¾  j»  jÄ	  jÁ	  j#
  j 
  uŒ	nametypes”}”(j3
  ‰j%  ‰jÆ  ‰j7  ‰j–  ‰jÐ  ‰j¾  ‰j+
  ‰j¾  ‰jÄ	  ‰j#
  ‰uh}”(j0
  h¶j"  j„  jÃ  j(  j4  jÉ  j“  j:  jÍ  j™  j»  jÓ  j(
  jÁ  j»  j+  jÁ	  jÁ  j 
  jÇ	  uŒfootnote_refs”}”Œcitation_refs”}”Œautofootnotes”]”Œautofootnote_refs”]”Œsymbol_footnotes”]”Œsymbol_footnote_refs”]”Œ	footnotes”]”Œ	citations”]”Œautofootnote_start”KŒsymbol_footnote_start”K Œ
id_counter”Œcollections”ŒCounter”“”}”…”R”Œparse_messages”]”hŒsystem_message”“”)”}”(hhh]”hÊ)”}”(hŒ:Enumerated list start value not ordinal-1: "2" (ordinal 2)”h]”hŒ>Enumerated list start value not ordinal-1: â€œ2â€ (ordinal 2)”…””}”(hjÀ
  hžhhŸNh Nubah}”(h]”h ]”h"]”h$]”h&]”uh1hÉhj½
  ubah}”(h]”h ]”h"]”h$]”h&]”Œlevel”KŒtype”ŒINFO”Œsource”h³Œline”Kuh1j»
  hj™  hžhhŸh³h K¯ubaŒtransform_messages”]”Œtransformer”NŒinclude_log”]”Œ
decoration”Nhžhub.