On Fri, Nov 23, 2018 at 12:03:07PM -0800, Guenter Roeck wrote: > [ 0.762832] EIP: read_tsc+0x4/0x10 > [ 0.762832] Code: 00 01 00 eb 89 90 55 89 e5 5d c3 90 90 90 90 90 90 90 90 > 90 90 90 55 a1 44 5a 8b c5 89 e5 5d c3 8d b6 00 00 00 00 55 89 e5 57 <0f> ae > f0b
Where does that 'b' in f0b come from? But ok, I was able to reproduce and decode myself. So if the Code: section is correct, qemu chokes on MFENCE. [ 0.854209] Code: 90 90 90 90 90 90 90 a1 84 37 11 cd c3 8d b4 26 00 00 00 00 8d 76 00 c3 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 90 55 89 e5 <0f> ae f0 0f 31 5d c3 8d b6 00 00 00 00 55 89 e5 57 31 ff 56 53 89 All code ======== 0: 90 nop 1: 90 nop 2: 90 nop 3: 90 nop 4: 90 nop 5: 90 nop 6: 90 nop 7: a1 84 37 11 cd mov 0xcd113784,%eax c: c3 ret d: 8d b4 26 00 00 00 00 lea 0x0(%esi,%eiz,1),%esi 14: 8d 76 00 lea 0x0(%esi),%esi 17: c3 ret 18: 8d b4 26 00 00 00 00 lea 0x0(%esi,%eiz,1),%esi 1f: 8d b4 26 00 00 00 00 lea 0x0(%esi,%eiz,1),%esi 26: 90 nop 27: 55 push %ebp 28: 89 e5 mov %esp,%ebp 2a:* 0f ae f0 mfence <-- trapping instruction 2d: 0f 31 rdtsc 2f: 5d pop %ebp 30: c3 ret 31: 8d b6 00 00 00 00 lea 0x0(%esi),%esi 37: 55 push %ebp 38: 89 e5 mov %esp,%ebp 3a: 57 push %edi 3b: 31 ff xor %edi,%edi 3d: 56 push %esi 3e: 53 push %ebx 3f: 89 .byte 0x89 Doing this: asm volatile(ALTERNATIVE_2("mfence", ... fails too which confirms that P3 can't do MFENCE. I need to think about how to handle that old cruft. Thx for the report. -- Regards/Gruss, Boris. Good mailing practices for 400: avoid top-posting and trim the reply.