Branch: refs/heads/master
Home: https://github.com/qemu/qemu
Commit: 799fa30a6e3cfb21d6b46b33d4e8a12cac439ac4
https://github.com/qemu/qemu/commit/799fa30a6e3cfb21d6b46b33d4e8a12cac439ac4
Author: Paolo Bonzini <[email protected]>
Date: 2025-11-17 (Mon, 17 Nov 2025)
Changed paths:
M hw/intc/ioapic.c
Log Message:
-----------
ioapic: fix typo in irqfd check
Not registering the IEC notifier results in a regression with interrupt
remapping
when running a VM configured with an intel-iommu device and an assigned
PCI VF. At boot, Linux complains with :
[ 15.416794] __common_interrupt: 2.37 No irq handler for vector
Reported-by: Cédric Le Goater <[email protected]>
Analyzed-by: Magnus Kulke <[email protected]>
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: 46b06eaeb48d82ec231e9a09ce032ab1d5df8d33
https://github.com/qemu/qemu/commit/46b06eaeb48d82ec231e9a09ce032ab1d5df8d33
Author: Nguyen Dinh Phi <[email protected]>
Date: 2025-11-17 (Mon, 17 Nov 2025)
Changed paths:
M target/i386/emulate/x86_decode.c
Log Message:
-----------
target/i386: emulate: Make sure fetch_instruction exist before calling it
Currently, this function is only available in MSHV. If a different accelerator
is used, and the code jumps to this section, a segfault will occur.
(I ran into this with HVF)
Signed-off-by: Nguyen Dinh Phi <[email protected]>
Link: https://lore.kernel.org/r/[email protected]
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: ebd9ea2947d88f237e20333fe547ca8817d0b0ee
https://github.com/qemu/qemu/commit/ebd9ea2947d88f237e20333fe547ca8817d0b0ee
Author: Peter Maydell <[email protected]>
Date: 2025-11-17 (Mon, 17 Nov 2025)
Changed paths:
M target/i386/tcg/decode-new.c.inc
Log Message:
-----------
target/i386: Mark VPERMILPS as not valid with prefix 0
There are a small set of binary SSE insns which have no MMX
equivalent, which we create the gen functions for with the
BINARY_INT_SSE() macro. This forwards to gen_binary_int_sse() with a
NULL pointer for 'mmx'.
For almost all of these insns we correctly mark them in the decode
table as not permitting a zero prefix byte; however we got this wrong
for VPERMILPS, with the result that a bogus instruction would get
through the decode checks and end up in gen_binary_int_sse() trying
to call a NULL pointer.
Correct the decode table entry for VPERMILPS so that we get the
expected #UD exception.
In the x86 SDM, table A-4 "Three-byte Opcode Map: 08H-FFH
(First Two Bytes are 0F 38H)" confirms that there is no pfx 0
version of VPERMILPS.
Cc: [email protected]
Resolves: https://gitlab.com/qemu-project/qemu/-/issues/3199
Signed-off-by: Peter Maydell <[email protected]>
Link:
https://lore.kernel.org/r/[email protected]
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: ebb46ba6a4a20d393a6889c21e8a80dabab4cc8e
https://github.com/qemu/qemu/commit/ebb46ba6a4a20d393a6889c21e8a80dabab4cc8e
Author: Paolo Bonzini <[email protected]>
Date: 2025-11-17 (Mon, 17 Nov 2025)
Changed paths:
M target/i386/tcg/decode-new.c.inc
Log Message:
-----------
target/i386/tcg: validate segment registers
Correctly reject invalid segment registers, including CS when used as
the destination of a MOV. Ignore the REX prefix as well.
Fixes: 5e9e21bcc4d ("target/i386: move 60-BF opcodes to new decoder",
2024-05-07)
Cc: [email protected]
Resolves: https://gitlab.com/qemu-project/qemu/-/issues/3195
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: 9c3afb9d9b92d166d227b43d890c6a8ad33a928d
https://github.com/qemu/qemu/commit/9c3afb9d9b92d166d227b43d890c6a8ad33a928d
Author: Paolo Bonzini <[email protected]>
Date: 2025-11-17 (Mon, 17 Nov 2025)
Changed paths:
M target/i386/tcg/helper-tcg.h
M target/i386/tcg/system/svm_helper.c
Log Message:
-----------
target/i386: svm: fix sign extension of exit code
The exit_code parameter of cpu_vmexit is declared as uint32_t, but exit
codes are 64 bits wide according to the AMD SVM specification. And because
uint32_t is unsigned, this causes exit codes to be zero-extended, for example
writing SVM_EXIT_ERR as 0xffff_ffff instead of the expected
0xffff_ffff_ffff_ffff.
Cc: [email protected]
Resolves: https://gitlab.com/qemu-project/qemu/-/issues/2977
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: 106d766c9d5b549bc9780d2d2c519aa2bbebc89a
https://github.com/qemu/qemu/commit/106d766c9d5b549bc9780d2d2c519aa2bbebc89a
Author: Paolo Bonzini <[email protected]>
Date: 2025-11-17 (Mon, 17 Nov 2025)
Changed paths:
M target/i386/tcg/seg_helper.c
Log Message:
-----------
target/i386: fix stack size when delivering real mode interrupts
The stack can be 32-bit even in real mode, and in this case
the stack pointer must be updated in its entirety rather than
just the bottom 16 bits. The same is true of real mode IRET,
for which there was even a comment suggesting the right thing
to do.
Resolves: https://gitlab.com/qemu-project/qemu/-/issues/1506
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: 50797af6e8ed8b7d3921413d6879cac772ded956
https://github.com/qemu/qemu/commit/50797af6e8ed8b7d3921413d6879cac772ded956
Author: Paolo Bonzini <[email protected]>
Date: 2025-11-19 (Wed, 19 Nov 2025)
Changed paths:
M Makefile
M scripts/mtest2make.py
Log Message:
-----------
mtest2make: cleanup mtest-suites variables
Remove the "--suite" argument from the .*.mtest-suites variables, and
add it only when actually computing the arguments to "meson test".
This makes it possible to set ninja-cmd-goals from the set of suites,
instead of doing it via many different .ninja-goals.* variables.
Reviewed-by: Alex Bennée <[email protected]>
Tested-by: Alex Bennée <[email protected]>
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: b1085f87ef868e1153591c6e596b0e2b03b0e066
https://github.com/qemu/qemu/commit/b1085f87ef868e1153591c6e596b0e2b03b0e066
Author: Paolo Bonzini <[email protected]>
Date: 2025-11-19 (Wed, 19 Nov 2025)
Changed paths:
M scripts/mtest2make.py
Log Message:
-----------
mtest2make: add dependencies to the "speed-qualified" suite
Thorough tests may have more dependencies than faster ones.
Dependencies are now looked up based on the suites being
executed, not on the suites passed as goals to the makefile.
Therefore, it is possible to limit dependencies to the
speeds that need them.
Reviewed-by: Alex Bennée <[email protected]>
Tested-by: Alex Bennée <[email protected]>
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: 5f9d28a2f8d3d42bf17643e62064100d977f9f7b
https://github.com/qemu/qemu/commit/5f9d28a2f8d3d42bf17643e62064100d977f9f7b
Author: Paolo Bonzini <[email protected]>
Date: 2025-11-19 (Wed, 19 Nov 2025)
Changed paths:
M scripts/mtest2make.py
Log Message:
-----------
mtest2make: do not repeat the same speed over and over
There are just two of them (slow and thorough; quick is simply the
default). Avoid repeating them for as many times as there are tests.
Reviewed-by: Alex Bennée <[email protected]>
Tested-by: Alex Bennée <[email protected]>
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: 58f88d0bf7c4c0676b54f97ba91eecccbca968c9
https://github.com/qemu/qemu/commit/58f88d0bf7c4c0676b54f97ba91eecccbca968c9
Author: Paolo Bonzini <[email protected]>
Date: 2025-11-19 (Wed, 19 Nov 2025)
Changed paths:
M meson.build
M replay/replay-internal.c
A replay/trace-events
A replay/trace.h
Log Message:
-----------
replay: add tracing events
The replay subsystem does not provide any way to see what's going on
and how the replay events interleave with other things happening in QEMU.
Add trace events to improve debuggability; to avoid having too many
events reimplement all functions in terms of (non-traced) replay_getc
and replay_putc and add a single trace event for each datum that is
extracted or written.
Signed-off-by: Paolo Bonzini <[email protected]>
Commit: 5a5b06d2f6f71d7789719b97143fc5b543bec07a
https://github.com/qemu/qemu/commit/5a5b06d2f6f71d7789719b97143fc5b543bec07a
Author: Richard Henderson <[email protected]>
Date: 2025-11-20 (Thu, 20 Nov 2025)
Changed paths:
M Makefile
M meson.build
M replay/replay-internal.c
A replay/trace-events
A replay/trace.h
M scripts/mtest2make.py
M target/i386/emulate/x86_decode.c
M target/i386/tcg/decode-new.c.inc
M target/i386/tcg/helper-tcg.h
M target/i386/tcg/seg_helper.c
M target/i386/tcg/system/svm_helper.c
Log Message:
-----------
Merge tag 'for-upstream' of https://gitlab.com/bonzini/qemu into staging
* i386 fixes
* mtest2make cleanups to enable per-speed dependencies
* record/replay tracepoints
# -----BEGIN PGP SIGNATURE-----
#
# iQFIBAABCgAyFiEE8TM4V0tmI4mGbHaCv/vSX3jHroMFAmkdftoUHHBib256aW5p
# QHJlZGhhdC5jb20ACgkQv/vSX3jHroOv9Af/foJ7LXUHok8xnPrvKYEIkkVmJFpM
# dt7NzLRoyVHh/zOd/MOfOJCw2+/RLGxA7o1Mm+10DCM6+hcs9VeqeIGSElIP0Uvk
# NGau6/3l/pkE+oyDcziNf1zsgexQ5s258GknlF+QOddcDC1qmpud8Szw/7wHrqcN
# QzxtcYcrbf8USFuekd+5z8GgzMC9CGn6f2Qr5eG40raLB4l+ZKNHIGyR7J0WtxHT
# DcdSDmpHn5qyvAVg3NTkxgzlOnDYNpfnXzXNQ6B+QHb16d6ys4sdMwgxm0aAlzhO
# voLmj5rY1CfQD6EqZmq3sqKwVYLtyHAHtzu4MoAiRGW/7Lhg6QWNiCceGw==
# =b3oh
# -----END PGP SIGNATURE-----
# gpg: Signature made Wed 19 Nov 2025 09:24:58 AM CET
# gpg: using RSA key F13338574B662389866C7682BFFBD25F78C7AE83
# gpg: issuer "[email protected]"
# gpg: Good signature from "Paolo Bonzini <[email protected]>" [unknown]
# gpg: aka "Paolo Bonzini <[email protected]>" [unknown]
# gpg: WARNING: The key's User ID is not certified with a trusted signature!
# gpg: There is no indication that the signature belongs to the owner.
# Primary key fingerprint: 46F5 9FBD 57D6 12E7 BFD4 E2F7 7E15 100C CD36 69B1
# Subkey fingerprint: F133 3857 4B66 2389 866C 7682 BFFB D25F 78C7 AE83
* tag 'for-upstream' of https://gitlab.com/bonzini/qemu:
replay: add tracing events
mtest2make: do not repeat the same speed over and over
mtest2make: add dependencies to the "speed-qualified" suite
mtest2make: cleanup mtest-suites variables
target/i386: fix stack size when delivering real mode interrupts
target/i386: svm: fix sign extension of exit code
target/i386/tcg: validate segment registers
target/i386: Mark VPERMILPS as not valid with prefix 0
target/i386: emulate: Make sure fetch_instruction exist before calling it
ioapic: fix typo in irqfd check
Signed-off-by: Richard Henderson <[email protected]>
Compare: https://github.com/qemu/qemu/compare/e5eb98b3cae7...5a5b06d2f6f7
To unsubscribe from these emails, change your notification settings at
https://github.com/qemu/qemu/settings/notifications
