refactor: Eliminate double call to Vmm::stop() AND fix(vcpu): Don't treat KVM_EXIT_{SHUTDOWN,HLT} as successful termination

[ilstam]

Changes

These patches address the following in the VM shutdown path:

• Duplicate calls to terminate and join the vCPU threads and duplicate messages in the logs
• KVM_EXIT_SHUTDOWN and KVM_EXIT_HLT being treated as successful terminations, but the first one is an error condition that signals a triple-fault on x86 and the second one we should never get since we use the in-kernel LAPIC
• Code comments that explain the shutdown path incorrectly

License Acceptance

By submitting this pull request, I confirm that my contribution is made under
the terms of the Apache 2.0 license. For more information on following Developer
Certificate of Origin and signing off your commits, please check
CONTRIBUTING.md.

PR Checklist

• I have read and understand CONTRIBUTING.md.
• I have run tools/devtool checkbuild --all to verify that the PR passes
  build checks on all supported architectures.
• I have run tools/devtool checkstyle to verify that the PR passes the
  automated style checks.
• I have described what is done in these changes, why they are needed, and
  how they are solving the problem in a clear and encompassing way.
• I have updated any relevant documentation (both in code and in the docs)
  in the PR.
• I have mentioned all user-facing changes in CHANGELOG.md.
• If a specific issue led to this PR, this PR closes the issue.
• When making API changes, I have followed the
  Runbook for Firecracker API changes.
• I have tested all new and changed functionalities in unit tests and/or
  integration tests.
• I have linked an issue to every new TODO.

---

• This functionality cannot be added in rust-vmm.

[codecov]

Codecov Report

❌ Patch coverage is 83.33333% with 1 line in your changes missing coverage. Please review.
✅ Project coverage is 83.23%. Comparing base (89702a7) to head (2cec293).
⚠️ Report is 1 commits behind head on main.

Files with missing lines	Patch %	Lines
src/vmm/src/lib.rs	83.33%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #5611      +/-   ##
==========================================
- Coverage   83.23%   83.23%   -0.01%     
==========================================
  Files         277      277              
  Lines       29262    29258       -4     
==========================================
- Hits        24357    24353       -4     
  Misses       4905     4905              

Flag	Coverage Δ
5.10-m5n.metal	83.56% <83.33%> (-0.01%)	⬇️
5.10-m6a.metal	82.91% <83.33%> (+<0.01%)	⬆️
5.10-m6g.metal	80.18% <83.33%> (-0.01%)	⬇️
5.10-m6i.metal	83.57% <83.33%> (-0.01%)	⬇️
5.10-m7a.metal-48xl	82.90% <83.33%> (+<0.01%)	⬆️
5.10-m7g.metal	80.18% <83.33%> (-0.01%)	⬇️
5.10-m7i.metal-24xl	83.54% <83.33%> (+<0.01%)	⬆️
5.10-m7i.metal-48xl	83.54% <83.33%> (-0.01%)	⬇️
5.10-m8g.metal-24xl	80.18% <83.33%> (-0.01%)	⬇️
5.10-m8g.metal-48xl	80.18% <83.33%> (-0.01%)	⬇️
6.1-m5n.metal	83.59% <83.33%> (-0.01%)	⬇️
6.1-m6a.metal	82.93% <83.33%> (-0.01%)	⬇️
6.1-m6g.metal	80.17% <83.33%> (-0.02%)	⬇️
6.1-m6i.metal	83.59% <83.33%> (-0.01%)	⬇️
6.1-m7a.metal-48xl	82.92% <83.33%> (-0.01%)	⬇️
6.1-m7g.metal	80.18% <83.33%> (-0.01%)	⬇️
6.1-m7i.metal-24xl	83.61% <83.33%> (+<0.01%)	⬆️
6.1-m7i.metal-48xl	83.61% <83.33%> (-0.01%)	⬇️
6.1-m8g.metal-24xl	80.17% <83.33%> (-0.01%)	⬇️
6.1-m8g.metal-48xl	80.18% <83.33%> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[ShadowCurse]

You can replace this by:

        assert!(matches!(
            res,
            Err(EmulationError::UnhandledKvmExit(s)) if s == "Hlt",
        ));

to avoid nasty conversion to strings

[ilstam]

Sure, can do. Even though everywhere else in the file to_string() is used..