My notes on how to set up a lenovo thinkbook gen6 laptop with ubuntu 24.04 as a hypervisor for QEMU/KVM virtualization with GPU passthrough to guests and hibernation.
- 联想 ThinkBook 16+ 2024 AI 酷睿办公笔记本电脑 Ultra5 125H 16G 512GB RTX4050
- swapped the installed 16GB RAM for Crucial DDR5 5600 32GB (two modules)
- swapped the installed 512GB SSD for Samsung 980 Pro 2TB and added a second Crucial T500 2TB
- also added copper heatsinks for the SSDs
- also added copper heatsinks for the SSDs
- Ubuntu 24.04 host with encrypted LUKS partitions, hibernation, and GPU passthrough to guests
- guest VMs running in Virtual Machine Manager with (one at a time) and without NVIDIA GPU passthrough, Intel Arc Graphics (MTL) GPU for the video output.
- must wait around 5 minutes after adding the new RAM and turning on the laptop for the first time. It will play dead for around 5 minutes and then will turn on by itself.
- setting up hiberbation requires entering the engineering bios mode using a special code (below)
-
lenovo by default disabled S3 sleeping state in favor of
modern standbyfor the windows. moreover, lenovo hid/removed BIOS settings for switching it back. I couldn't make the newest kernel 6.8.0 work with thismodern standby. so the other solution for normal everyday computer use was to use hibernation, sleeping state S4 -
because of the bug in 24.04 it is not possible to use encrypted swap file for hibernation. swap file must be changed for an encrypted swap partition https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/2057687
-
all partitions except for the boot, must be encrypted with LUKS. including swap, that is used for hibernation.
-
secure boot must be disabled in order to have hibernation and gpu passthrough working. this is a security risk, as it potentially gives an opportunity to decrypt the disks that are taken out and connected to another machine.
current problems:
- must shut down guests with GPU passthrough before host hibernation. if Ubuntu guest VM with GPU passthrough was running when host went to hibernation, the GPU in the guest is not working correctly after host wakes up from hibernation, the guest would require a reboot.
- Change the virtualization from VM with PCIe GPU passthrough and libvirt GUI to GPU-enabled LXCs using lxc-utils and KasmVNC
- Look into recompiling the kernel to disable lockdown to keep the secure boot
-
change bios settings to enable S4 (there is no option for S3)
-
use the code to enter the service version of lenovo BIOS setup
-
https://www.reddit.com/r/Lenovo/comments/zq3tc5/how_to_disable_modern_sleep_and_enable_s3_sleep/
- if the page gets 404ed:
- shut down the laptop, enter the following sequence, turn on the laptop and enter BIOS by pressing DEL
-
F1 1 Q A Z F2 2 W S X F3 3 E D C F4 4 R F V F5 5 T G B F6 6 Y H N
- if the page gets 404ed:
-
under advanced, ACPI settings, disable acpi autoconfig, enable hibernation
-
-
-
download https://mirrors.tuna.tsinghua.edu.cn/ubuntu-releases/noble/ubuntu-24.04-desktop-amd64.iso (or from https://mirrors.aliyun.com/ubuntu-cdimage/)
-
create a bootable USB stick or copy to my hardware CD-ROM emulator and boot
-
install choosing
encrypted, LVM- set one of the mirrors
-
reboot into live cd again to resize the logical volume for the root partition on the encrypted volume group, then add another logical volume for the new swap partition
- press ctrl alt t
lsblklook for the name of the last partitioncryptsetup open /dev/nvme0n1p3 cryptit will ask for the passphraselsblklvresize --verbose --resizefs -L -96G /dev/mapper/ubuntu--vg-ubuntu--lv# free 150% of RAM size for the new swap partition, because there might be some funny fringe case involving video memory that would require more space on disk than the size of the actual RAMsudo e2fsck -f /dev/mapper/ubuntu--vg-ubuntu--lvsudo lvdisplaysudo lvm lvcreate ubuntu-vg -n swaplv -L 96Greboot
-
boot into the installed system, change swap file for swap partition
swapon --showls /dev/mapperfind the exact name of the mappersudo mkswap /dev/mapper/ubuntu--vg-swaplvsudo nano /etc/fstab-/dev/mapper/ubuntu--vg-swaplv none swap sw 0 0sudo swapon -aswapon --showorfree -msudo rm /swap.img- add options for swap to the grub
sudo nano /etc/default/grub-
GRUB_CMDLINE_LINUX_DEFAULT="resume=/dev/mapper/ubuntu--vg-swaplv"
-
- add resume option
sudo nano /etc/initramfs-tools/conf.d/resume-
RESUME=/dev/mapper/ubuntu--vg-swaplv
-
sudo update-initramfs -k all -u && sudo update-grubreboot- test hibernation with
sudo systemctl hibernate, at this point it should work
-
verify that the BIOS is set up correctly and S4 is present
sudo dmesg | grep "(supports"- ACPI: PM: (supports S0 S4 S5)
-
sudo nano /etc/systemd/logind.conf-
HandlePowerKey=hibernate HandlePowerKeyLongPress=poweroff HandleLidSwitch=hibernate HandleLidSwitchExternalPower=hibernate HandleLidSwitchDocked=hibernate
-
-
optionally, enable automatic power profile switching, original code from https://kobusvs.co.za/blog/power-profile-switching/
-
sudo apt install inotify-tools -
nano /home/$USER/powerswitch.sh-
#! /bin/bash BAT=$(echo /sys/class/power_supply/BAT*) BAT_STATUS="$BAT/status" BAT_CAP="$BAT/capacity" LOW_BAT_PERCENT=20 AC_PROFILE="balanced" BAT_PROFILE="power-saver" LOW_BAT_PROFILE="power-saver" # wait a while if needed [[-z $STARTUP_WAIT]] || sleep "$STARTUP_WAIT" # start the monitor loop prev=0 while true; do # read the current state if [[$(cat "$BAT_STATUS") == "Discharging"]]; then if [[$(cat "$BAT_CAP") -gt $LOW_BAT_PERCENT]]; then profile=$BAT_PROFILE else profile=$LOW_BAT_PROFILE fi else profile=$AC_PROFILE fi # set the new profile if [[ $prev != "$profile" ]]; then echo setting power profile to $profile powerprofilesctl set $profile fi prev=$profile # wait for the next power change event inotifywait -qq "$BAT_STATUS" "$BAT_CAP" done -
sudo chmod u+x /home/$USER/powerswitch.sh -
nano /home/$USER/.config/systemd/user/power-monitor.service-
[Unit] Description=power profile switch After=network.target [Service] Type=simple Environment=STARTUP_WAIT=30s ExecStart=/home/xxx/powerswitch.sh [Install] WantedBy=default.target
-
-
replace xxx with the actual username
sed -i "s/xxx/$(whoami)/g" /home/$USER/.config/systemd/user/power-monitor.service
-
sudo systemctl daemon-reload -
chmod 644 /home/$USER/.config/systemd/user/power-monitor.service -
sudo loginctl enable-linger $USER- disable with
sudo loginctl disable-linger $USER - status:
ls /var/lib/systemd/linger
- disable with
-
systemctl --user enable --now power-monitor.service -
systemctl --user status power-monitor.service -
journalctl --user-unit power-monitor.service -fto get live status updates
-
-
-
nano /etc/modules-
vfio vfio_pci
-
-
sudo update-initramfs -u -k all -
rebootif there were any problems with the discrete GPU and/or hybrid mode before and it was disabled, it must be enabled back at this point -
lshw -c video -
lspci -nn | grep 'NVIDIA'note the address on the PCIe bus -
lspci -n -v -s 32:00.0note the ID -
nano /etc/modprobe.d/vfio.conffill the ID from above-
softdep nouveau pre: vfio vfio-pci softdep nvidia pre: vfio vfio-pci options vfio-pci ids=10de:28a1
-
-
sudo update-initramfs -u -k all -
sudo nano /etc/default/grub-
GRUB_CMDLINE_LINUX_DEFAULT="intel_iommu=on iommu=pt resume=/dev/mapper/ubuntu--vg-swaplv vfio-pci.ids=10de:28a1"
-
-
sudo update-grub -
reboot -
lspci -n -v -s 32:00.0- verify it reports: Kernel driver in use: vfio-pci
-
sudo dmesg | grep -e DMAR -e IOMMU- all must be present -
sudo apt install cpu-checker lm-sensors gufw nmon timeshift gnome-tweakskvm-ok- must report that KVM acceleration can be used
sensorsverify that sensors have readingsgufwenable firewall and set up rulestimeshiftcreate initial system backup to another volumedeja-dupcreate incremental backups latergnome-tweaksand set font scale to 1.5 for retina displays- open Settings app > Power, turn automatic brightness off
lsusb -vcheck recognized USB deviceslspci -nnkcheck loaded drivers
sudo apt install qemu-system qemu-kvm virt-manager bridge-utilssudo useradd -g $USER libvirt && sudo useradd -g $USER kvm && sudo useradd -g $USER libvirt-kvmreboot- import old images and xml, put xml to /etc/libvirt/qemu/
- if making a new VM disk store, set permissions to the directory
sudo chown libvirt-qemu:kvm ~/images -R && sudo chmod 774 ~/images -R && sudo chmod g+s ~/images
- if making a new VM disk store, set permissions to the directory
- run
virt-managerand enable XML editing in the preferences
-
create VM, x86_64, manually add disk, "customize configuration before install", set bus to SCSI, set discard to unmap, add PCI host device on the address 32:00.0 from before (the NVIDIA GPU).
-
normal install, reboot, shutdown
-
edit the XML and verify that disk discard='unmap' detect_zeroes='unmap' bus=scsi. set SCSI controller 0 settings to type='scsi' model='virtio-scsi'. all this is to enable TRIM in the guest working correctly and actually having the effect.
-
start the VM:
fstrim -a -vsudo apt updatesudo apt install qemu-guest-agentsudo systemctl enable --now qemu-guest-agentsudo apt install spice-vdagentreboot
-
install NVIDIA drivers WITHOUT CUDA
sudo apt install ubuntu-drivers-commonshould be already installedsudo ubuntu-drivers devicessudo apt install nvidia-driver-545rebootnvidia-smi --query-gpu=compute_cap --format=csvmodinfo nvidianvidia-smi
-
install conda, Pytorch with CUDA
mkdir ~/miniconda3wget https://mirrors.tuna.tsinghua.edu.cn/anaconda/miniconda/Miniconda3-py311_24.1.2-0-Linux-x86_64.sh -O ~/miniconda.shbash ~/miniconda.sh -b -u -p ~/miniconda3~/miniconda3/bin/conda init bash. .bashrcit's the same assource .bashrc, to load the variables into the current sessionconda config --set show_channel_urls yesnano ~/.condarcand replace it with content from https://mirrors.tuna.tsinghua.edu.cn/help/anaconda/pip config set global.index-url https://pypi.tuna.tsinghua.edu.cn/simpleconda install jupyterlab nb_conda_kernels ipywidgets -c conda-forge -yconda create --name pytorch_env python=3.10 ipykernel -c conda-forge -yconda activate pytorch_envconda install pytorch torchvision torchaudio pytorch-cuda=11.8 -c pytorch -c nvidia -y- test it with
python -c "import torch; print(torch.__version__); out = torch.fft.rfft(torch.randn(1000).cuda()); print(out.sum()); print(torch.cuda.device_count()); print(torch.version.cuda) ; print(torch.backends.cudnn.version()); print(torch.cuda.get_arch_list())"
all of the above, plus
- stop the VM, edit video QXL part of the XML to set vgamem to 65536, otherwise there will be freezes on high resolutions
- disable all display scaling in VM settings and in guest display options, install gnome-tweaks and set font scale to 1.5
- QEMU disk images are sparse (thin-provisioning), and will display full allocated space (
ls -lh .) instead of actual space on disk (du -sh .). it is possible to compress the image to save space and at the same time make displayed space reflect actual volume size (although compressed). https://forums.unraid.net/topic/150854-trim-with-linux-guest-for-minimal-img-file/mv ubuntu22.04.qcow2 ubuntu22.04-old.qcow2qemu-img convert -c -O qcow2 ubuntu22.04-old.qcow2 ubuntu22.04.qcow2sudo chown libvirt-qemu:kvm ubuntu22.04.qcow2rm ubuntu22.04-old.qcow2