Day 5: KVM and LibVirt for Linux Virtualization
{{ printf “Estimated reading time: %d minutes” .ReadingTime }}
KVM
KVM stands for Kernel based virtual machine. This technology allows you to abstract the physical resources such as cpu, gpu, RAM, disk into isolated flexible and scalable virtual environments. Contained virtualization extension intel VT amd V in CPU.
Understanding hypervisors
A hypervisor is a virtual machine monitor which manages virtual machines. Effectively splicing up your physical desktop, server or laptop or resources into parts. Each Virtual machine has it’s own CPU, RAM disk and networking. MOdern x86 AMD/INTEL processors have specific CPU instructions for virtualization.
THere’s type 1 and type 2 hypervisors.
Multiple hypervisors include vmware, kvm, xen, hyper-v.
Why KVM? Big Cloud Providers use it
KVM is the backbone of cloud infrastructure in the public internet
I’d estimate it to be way above 50% of total virtualization market share, GCP and AWS together are 42% of market share.
KVM
Everything OPenSource is packaged as a product for the uninitiated to consume
I’m also going to talk about various alternatives which you can use instead of going on the route of a specific CLoud Provider. Most big cloud provieders provide the same software apps, with various API’s which lock you in.
The top 3 cloud providers AWS (Amazon) 28%, GCP (GOogle) 14% and Azure (Microsoft) 21% are followed by hundreds of “smaller” cloud providers such as Alibaba (4%), Oracle (3%) and even smaller ones like Linode, DigitalOcean, Vultr. It’s important to understand that ALL cloud providers use open source technology which you can achieve on your own. Understanding the pitfalls of vendor lock-in will help you tremendously. As if you’d go on the VPS or Baremetal route you can cut your cloud costs by 500%.
Installing KVM and LibVirt
Install libvirt, qemu, kvm, some networking tools, guestfilesystem tools, virtual viewer and the GUI virt-manager for easier beginner management;)
In older versions you might install qemu-kvm which now selects qemu-system-x86 automatically.
Please note that there is an issue on debian 13 resulting in broken network connections when running virt-customize which we wil do later. If you run into this issue, also install these packages:
sudo apt install \ systemd-resolved \ dhcpcd-base
NOTE
On some systems this might make the internet /networking fail so maybe remove it.
Add your user to the correct groups
Apply group changes
Verify if your system is ready for virtualization
Libvirt daemon should start automatically. In case it’s not start and enable libvirt daemon
sudo systemctl enable --now libvirtd
virt-host-validate
This will tell you if hardware virtualization is on
Normally you should enable the specific virtualization for your CPU via BIOS, check if it’s supported.
LXC failures don’t really concern us right now. LXC was a precursor to docker which made the whole containerization possible.
Providing CGROUPS to VM Guest
To fix the warnings in QEMU you need to edit some grub settings such as iommu=pt intel_iommu
https://discussion.fedoraproject.org/t/how-to-enable-devices-and-freezer-in-kconfig-file/118077/2
This really depends how deep you want to nest:)
INstalling a Virtual Machine
The first step to installing a VM is to manually download a ISO and manually go through the installation process.
While this is OK in many cases especially if you want to ensure you install what you want, most of the time we want to atuomate this process.
There’s tools like debootstrap to automate a installation of a debian into a folder, which we can convert to a VM.
THere’s also a better way, there are official cloud images which can be used on
- OpenStack providers
- Local QEMU vm’s
- Amazon EC2
- Microsoft Azure
Local QEMU is what we’re after https://cloud.debian.org/images/cloud/trixie/latest/debian-13-nocloud-amd64.qcow2 https://cloud.debian.org/images/cloud/trixie/latest/debian-13-nocloud-amd64.raw
NOTE: Use .raw files if you have a filesystem with copy on write enabled such as ZFS, btrfs etc. Use qcow2 if you’re using ext4 or anything else. You CAN use qcow2 on ZFS but you’ll have double copy on write allocations for every modified data block. I haven’t found any meaningful
Since I manually installed ZFS on my Debian 13 Trixie pre installation I’m going to use raw, use qcow2 if you have ext4 since it’s 300MB vs 3GB.
Homework for ZFS using zvols
if you’re running zfs you may want to download a qcow2 and convert it to a zvol ;). This maps the VM image to a ZFS zvol. It’s similar to how overlayfs works for docker containers.
qemu-img convert -O raw <infile.(vdi|vmdk|$whatever)> /dev/zvol/rpool/data/<vmid>-disk0
INstallatin process
Add path
Select IMG
You can also choose “browse local”. Select Debian13 as Operating System. 2048 GB 2 CPU is OK, we can change that later
Start VM
NOTE: Make sure you make a copy of the RAW/QCOW2 fileas that’s the disk the virtual machine will use:).
You should be greeted with login interface
Usually the username root with a blank password should work.
setting a root password and customizing some details
Sometimes this won’t work… so we go the route of setting up a password. There are multiple manual ways to do this via grub editing . However, as a DevOps you will want to use commands to automate your workflow.
Shut down your VM before attempting this. DO it via virt-manager or with virsh shutdown debian13 (or whatever name you gave it!)
THe following command will set the root password, hostname and will run ssh-keygen and start sshd;)
Reboot the VM, you should see the VM devopsmagic name changed and you can login with the password for root;).
COmmand Line Usage
First set the libvirt default uri to the system one (root). You can also use the local user’s libvirt session qemu:///session
Accessing QEMU KVM instances via SSH from other machines
Notice the format, you can, you will as you deepen your DevOps
knowledge, use something akin to qemu://192.168.135.27/session to access the KVM qemu sessions from different hosts.
This will usually be done via SSH as qemu+ssh://username@hostname/system.
Because you’re a devops, you will want to use the ocmmand line to manage virtual machines:
Opening a windowed viewer for the machine
Opening a console in your terminal
SSH-ing into the console is the best, however virsh allows you to get access to a console within the virtual machine automatically. Meaning you can copy paste commands.
cloud init configuration and virtual magine install
Oftentimes you can use cloud init for configuration of cloud images.
The previous if run in Linux will automatically open the console ;).
Internet issues in VM?
IF running the cloudinit version internet should WORK properly, when running the non cloud init version networking MAY fail to work.
Run this on host
Check ip forwarding
cat /proc/sys/net/ipv4/ip_forward
If it returns 0, enable it:
sudo sysctl -w net.ipv4.ip_forward=1
If all else fails… reboot your HOST machine
Explore LibVirt Extra Might and Magic
You can use libvirt, virt-manager, virsh etc to connect to multiple machines running KVM/Linux THis enables failover, high availability and a plethora of other nice features like live migration of
Explore these on your own.
COnclusion
RUnning KVM locally
TODO
TODO still have to explain how to set it up ;) and make a video about it:) but this is for later
What’s next?
We’ll automate things even more with terraform for libvirt;)
https://medium.com/@sydasif78/automating-virtual-machine-provisioning-with-terraform-and-libvirt-c6d438a1a7d2 https://dev.to/ahmed_marzougui_4f08a0e78/building-a-virtual-cloud-lab-with-ansible-kvm-and-libvirt-48k8 https://packetroutes.qzz.io/posts/automating-vm-provisioning-terraform-libvirt/
-
COmpanies using KVM https://theirstack.com/en/technology/kvm ↩︎
-
AWS migrating to KVM https://medium.com/@dbclin/aws-just-announced-a-move-from-xen-towards-kvm-so-what-is-kvm-2091f123991 ↩︎
-
GCP using KVM https://docs.cloud.google.com/compute/docs/instances/nested-virtualization/overview ↩︎