[Bug 1543185] Re: Malformed query causing timeouts due to ignored upstream queries

[Peter Maydell]

This post to the dnsmasq-discuss list:
http://lists.thekelleys.org.uk/pipermail/dnsmasq-
discuss/2015q2/009575.html  suggests that the bug has been fixed in a
later version of dnsmasq and should be fairly easy to backport.

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to dnsmasq in Ubuntu.
https://bugs.launchpad.net/bugs/1543185

Title:
  Malformed query causing timeouts due to ignored upstream queries

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/1543185/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1543185] Re: Malformed query causing timeouts due to ignored upstream queries

[Peter Maydell]

Ah, it looks like Colin did just cherry pick the fix for this bug; from
the backport .deb's changelog:

+dnsmasq (2.68-1ubuntu0.1ppa1) trusty; urgency=medium
+
+  * Cherry-pick from 2.73:
+- Correctly sanitise DNS header bits in answer when recreating query for
+  retry.
+
+ -- Colin Watson   Mon, 08 Feb 2016 15:46:48 +

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to dnsmasq in Ubuntu.
https://bugs.launchpad.net/bugs/1543185

Title:
  Malformed query causing timeouts due to ignored upstream queries

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/1543185/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1062220] Re: qemu-system-arm crashed with SIGABRT in cpu_abort()

[Peter Maydell]

#10: if that's your entire command line then that's expected behaviour,
and is saying "we just executed a pile of zeros and fell off the end of
RAM". You need to supply a kernel to run.

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1062220

Title:
  qemu-system-arm crashed with SIGABRT in cpu_abort()

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1062220/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1463172] Re: destination arm board hangs after migration from x86 source

[Peter Maydell]

I think it is in theory supposed to work, but possibly in practice it
doesn't...

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1463172

Title:
  destination arm board hangs after migration from x86 source

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1463172/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1349277] Re: AArch64 emulation ignores SPSel=0 when taking (or returning from) an exception at EL1 or greater

[Peter Maydell]

** Changed in: qemu
   Status: New = Fix Committed

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1349277

Title:
  AArch64 emulation ignores SPSel=0 when taking (or returning from) an
  exception at EL1 or greater

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1349277/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

Re: [Qemu-devel] [Bug 1042388] Re: qemu: Unsupported syscall: 257 (timer_create)

[Peter Maydell]

On 9 August 2014 07:15, Erik de Castro Lopo 1042...@bugs.launchpad.net wrote:
 Unfortunately the test case @pittit submitted is far harder to support
 than the original test case. In this case the timer_create() syscall
 gets passed pointers to functions and data in the target's address space
 and I have not figured out how to handle that yet.

Didn't we discuss this on the list a while back? You're confusing
the libc API with the kernel syscall API here -- the kernel definitely
does not take a pointer to a function to call here. (The timer_create
manpage explicitly says that the SIGEV_THREAD functionality
is implemented in the C library, not the kernel.) You can see
this if you strace it:

clone(child_stack=0xb76e5494,
flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID,
parent_tidptr=0xb76e5bd8, {entry_number:6, base_addr:0xb76e5b70,
limit:1048575, seg_32bit:1, contents:0, read_exec_only:0,
limit_in_pages:1, seg_not_present:0, useable:1},
child_tidptr=0xb76e5bd8) = 12666
rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
futex(0xb76d324c, FUTEX_WAKE_PRIVATE, 2147483647) = 0
timer_create(CLOCK_REALTIME, {0x984b098, 32, SIGEV_THREAD_ID,
{12666}}, {0x1}) = 0
timer_settime(0x1, 0, {it_interval={0, 0}, it_value={0, 5000}}, NULL) = 0

Under the hood libc is creating a new thread with clone, and
what the timer_create() syscall gets passed is a struct including
the thread ID to be sent a signal when the timer expires (here
that's 12666).

So all you need to do is support SIGEV_THREAD_ID,
which I think doesn't require much more than copying
across the thread ID struct field.

(On the other hand that does mean that all programs which
use SIGEV_THREAD are by definition multithreaded, which
puts them into this isn't supported territory because of our
well known and longstanding threading issues.)

-- PMM

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1042388

Title:
  qemu: Unsupported syscall: 257 (timer_create)

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1042388/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1042388] Re: qemu: Unsupported syscall: 257 (timer_create)

[Peter Maydell]

Patch which seems to at least make the test case work (tested with
i386-on-i386 linux-user): http://patchwork.ozlabs.org/patch/378769/

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1042388

Title:
  qemu: Unsupported syscall: 257 (timer_create)

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1042388/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1350435] Re: tcg.c:1693: tcg fatal error

[Peter Maydell]

I think it's likely to happen eventually; it depends rather on the
balance between this and other work priorities (at least if it's going
to be Linaro doing the work). Regardless, I'm not taking hacky
workarounds like this into mainline (hacks are hard to get out once you
let them in, and they remove any motivation anybody might have had for
fixing things properly).

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1350435

Title:
  tcg.c:1693: tcg fatal error

To manage notifications about this bug go to:
https://bugs.launchpad.net/launchpad-buildd/+bug/1350435/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1350435] Re: tcg.c:1693: tcg fatal error

[Peter Maydell]

Well, it won't make anything any worse, so it's your call based on how
much it actually improves your failure rate I guess.

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1350435

Title:
  tcg.c:1693: tcg fatal error

To manage notifications about this bug go to:
https://bugs.launchpad.net/launchpad-buildd/+bug/1350435/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1350435] Re: tcg.c:1693: tcg fatal error

[Peter Maydell]

That patch is not in mainline because it's an appalling hack. If we care
about multi-threaded guests we need to fix them properly, not paper over
the issues by constraining multiple threads to one CPU in the hopes the
race conditions don't bite us so often.

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1350435

Title:
  tcg.c:1693: tcg fatal error

To manage notifications about this bug go to:
https://bugs.launchpad.net/launchpad-buildd/+bug/1350435/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

Re: [Qemu-devel] [Bug 1317090] Re: qemu fails on ELF files with no section headers

[Peter Maydell]

On 9 May 2014 09:14, Riku Voipio riku.voi...@iki.fi wrote:
 Hi Craig,

 On Wed, May 07, 2014 at 03:53:38PM +0100, Peter Maydell wrote:
 Original 2011 patch:
 http://lists.gnu.org/archive/html/qemu-trivial/2011-12/msg00025.html

 (hitting the 'reply' button gets us back the original email
 address to fix up the signed-off-by line with, so we can
 credit the fix to Craig properly.)

 Can you resend the patch with your Signed-Off-By: ?

Seems a bit unnecessary to force a resend -- the original
has the signoff, it's just the mailing list archive has mangled
it, so we can just restore it...

thanks
-- PMM

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1317090

Title:
  qemu fails on ELF files with no section headers

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1317090/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

Re: [Qemu-devel] [Bug 1317090] Re: qemu fails on ELF files with no section headers

[Peter Maydell]

On 7 May 2014 15:34, Paul Jimenez 1317...@bugs.launchpad.net wrote:
 Bug description:
   Using the latest version of qemu-user-static from trusty, 2.0.0+dfsg-
   2ubuntu1.

   Reported to qemu and patch submitted long ago by the guy who wrote 
 http://www.devttys0.com/2011/12/qemu-vs-sstrip/
   but apparently dropped on the floor - at least, I can't find it in any qemu 
 bug tracker anywhere.  It's now keeping me from running openwrt binaries 
 under qemu-arm-static (because the openwrt guys strip section headers to save 
 space on their teeny embedded boxes).  It's a one-line patch, reproduced here:

   --- qemu/linux-user/elfload.c   2011-12-02 15:16:07.637541215 -0500
   +++ qemu-patched/linux-user/elfload.c   2011-12-02 15:27:24.061522798 -0500
   @@ -1068,7 +1068,6 @@ static bool elf_check_ehdr(struct elfhdr
return (elf_check_arch(ehdr-e_machine)
 ehdr-e_ehsize == sizeof(struct elfhdr)
 ehdr-e_phentsize == sizeof(struct elf_phdr)
   - ehdr-e_shentsize == sizeof(struct elf_shdr)
 (ehdr-e_type == ET_EXEC || ehdr-e_type == ET_DYN));
}

Yeah; the equivalent kernel code:
http://lxr.linux.no/#linux+v3.14.3/fs/binfmt_elf.c#L595
doesn't check the section header size, and nor should QEMU.

thanks
-- PMM

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1317090

Title:
  qemu fails on ELF files with no section headers

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1317090/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

Re: [Qemu-devel] [Bug 1317090] Re: qemu fails on ELF files with no section headers

[Peter Maydell]

On 7 May 2014 15:48, Peter Maydell peter.mayd...@linaro.org wrote:
 On 7 May 2014 15:34, Paul Jimenez 1317...@bugs.launchpad.net wrote:
 Bug description:
   Using the latest version of qemu-user-static from trusty, 2.0.0+dfsg-
   2ubuntu1.

   Reported to qemu and patch submitted long ago by the guy who wrote 
 http://www.devttys0.com/2011/12/qemu-vs-sstrip/
   but apparently dropped on the floor - at least, I can't find it in any 
 qemu bug tracker anywhere.  It's now keeping me from running openwrt 
 binaries under qemu-arm-static (because the openwrt guys strip section 
 headers to save space on their teeny embedded boxes).  It's a one-line 
 patch, reproduced here:

   --- qemu/linux-user/elfload.c   2011-12-02 15:16:07.637541215 -0500
   +++ qemu-patched/linux-user/elfload.c   2011-12-02 15:27:24.061522798 -0500
   @@ -1068,7 +1068,6 @@ static bool elf_check_ehdr(struct elfhdr
return (elf_check_arch(ehdr-e_machine)
 ehdr-e_ehsize == sizeof(struct elfhdr)
 ehdr-e_phentsize == sizeof(struct elf_phdr)
   - ehdr-e_shentsize == sizeof(struct elf_shdr)
 (ehdr-e_type == ET_EXEC || ehdr-e_type == ET_DYN));
}

 Yeah; the equivalent kernel code:
 http://lxr.linux.no/#linux+v3.14.3/fs/binfmt_elf.c#L595
 doesn't check the section header size, and nor should QEMU.

Original 2011 patch:
http://lists.gnu.org/archive/html/qemu-trivial/2011-12/msg00025.html

(hitting the 'reply' button gets us back the original email
address to fix up the signed-off-by line with, so we can
credit the fix to Craig properly.)

thanks
-- PMM

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1317090

Title:
  qemu fails on ELF files with no section headers

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1317090/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1285363] Re: qemu-aarch64-static segfaults

[Peter Maydell]

Doing this only for aarch64 targets seems like a bad idea to me -- this
isn't an aarch64 specific issue. QEMU needs SIGSEGV to go to its own
handler (so we can unprotect pages we've marked as read-only in order to
catch guest writes to them so we can throw away invalidated translated
code), and that's true for all targets. It probably just happens more
often on the aarch64 target than others you've tested because aarch64
has a signal-return trampoline on the stack frame, so we'll often see
that page get translated and thrown away again. (Other targets with a
trampoline include sparc, cris, openrisc and ppc.)

PS: the comment this is not required for qemu to work just means that
QEMU will work fine whether we tell the guest a lie about what's going
on with SIGSEGV in one way (saying it's blocked) or the other (saying
it's not blocked).

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1285363

Title:
  qemu-aarch64-static segfaults

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1285363/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1285505] Re: [ppa 2.0~git-20140225] SIGABRT with -virtfs

[Peter Maydell]

Actually, the interesting bit of the stack trace starts just below where
you cut it off, because object_initialize_with_type() is just asserting
that it wasn't called with a NULL pointer, so what we really want to
know is what the caller was...

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1285505

Title:
  [ppa 2.0~git-20140225] SIGABRT with -virtfs

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1285505/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1256546] Re: qemu-s390x-static: segmentation fault entering chroot

[Peter Maydell]

Does this patch fix this issue?
http://patchwork.ozlabs.org/patch/309529/

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1256546

Title:
  qemu-s390x-static: segmentation fault entering chroot

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1256546/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 1246990] Re: [qemu-x86-64-linux-user 1.6.1] qemu: uncaught target signal 11 (Segmentation fault) - core dumped

[Peter Maydell]

The backtrace indicates that this is a multithreaded application. These
won't work reliably under qemu-user : they tend to crash, as you have
found.

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu in Ubuntu.
https://bugs.launchpad.net/bugs/1246990

Title:
  [qemu-x86-64-linux-user 1.6.1] qemu: uncaught target signal 11
  (Segmentation fault) - core dumped

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1246990/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 571432] Re: qemu-system-arm crashed with SIGSEGV in subpage_register()

[Peter Maydell]

Closing as invalid for QEMU because it's an Incomplete bug against an
ancient QEMU version.


** Changed in: qemu
   Status: Incomplete = Invalid

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in Ubuntu.
https://bugs.launchpad.net/bugs/571432

Title:
  qemu-system-arm crashed with SIGSEGV in subpage_register()

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/571432/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 393430] Re: kvm: use PulseAudio instead of ALSA

[Peter Maydell]

(ancient distro packaging bug so never valid for QEMU upstream itself;
marking Invalid there)


** Changed in: qemu
   Status: Incomplete = Invalid

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to kvm in Ubuntu.
https://bugs.launchpad.net/bugs/393430

Title:
  kvm: use PulseAudio instead of ALSA

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/393430/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 694059] Re: qemu fatal cp15 message report and image creation block

[Peter Maydell]

The 'qemu' binary (which is for x86 and kvm) is not always the same version as 
the one used for ARM user-mode emulation (and in particular it is in a 
different package for newer Ubuntu releases). What is the output of:
 qemu-arm-static -h | grep version

?

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in Ubuntu.
https://bugs.launchpad.net/bugs/694059

Title:
  qemu fatal cp15 message report and image creation block

To manage notifications about this bug go to:
https://bugs.launchpad.net/linaro-image-tools/+bug/694059/+subscriptions

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 721801] Re: llseek bug in amd64 host

[Peter Maydell]

** Changed in: qemu-linaro
   Status: Fix Committed = Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in ubuntu.
https://bugs.launchpad.net/bugs/721801

Title:
  llseek bug in amd64 host

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 721801] Re: llseek bug in amd64 host

[Peter Maydell]

** Changed in: qemu-linaro
   Status: In Progress = Fix Committed

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in ubuntu.
https://bugs.launchpad.net/bugs/721801

Title:
  llseek bug in amd64 host

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 584480] Re: qemu-system-arm segfaults emulating versatile machine

[Peter Maydell]

Moving back to qemu-kvm as specific to that package.

** Package changed: qemu-linaro (Ubuntu) = qemu-kvm (Ubuntu)

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in ubuntu.
https://bugs.launchpad.net/bugs/584480

Title:
  qemu-system-arm segfaults emulating versatile machine

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 579227] Re: [qemu-system-arm] hardware error: pl011_read: Bad offset 16000018

[Peter Maydell]

Moving back to qemu-kvm as specific to that package.

** Package changed: qemu-linaro (Ubuntu) = qemu-kvm (Ubuntu)

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in ubuntu.
https://bugs.launchpad.net/bugs/579227

Title:
  [qemu-system-arm] hardware error: pl011_read: Bad offset 1618

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 721801] Re: llseek bug in amd64 host

[Peter Maydell]

Suggested patch sent upstream: http://patchwork.ozlabs.org/patch/83964/

I'll put this in qemu-linaro 2011.03 one way or another.


** Changed in: qemu-linaro
   Status: New = In Progress

** Changed in: qemu-linaro
   Importance: Undecided = Medium

** Changed in: qemu-linaro
Milestone: None = 2011.03

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in ubuntu.
https://bugs.launchpad.net/bugs/721801

Title:
  llseek bug in amd64 host

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 604872] Re: qemu-system-arm segfaults emulating versatile machine after running debootstrap --second-stage inside vm

[Peter Maydell]

I've now posted this patchset; it comes in 7 parts:

http://patchwork.ozlabs.org/patch/77887/
http://patchwork.ozlabs.org/patch/77882/
http://patchwork.ozlabs.org/patch/77884/
http://patchwork.ozlabs.org/patch/77885/
http://patchwork.ozlabs.org/patch/77888/
http://patchwork.ozlabs.org/patch/77881/
http://patchwork.ozlabs.org/patch/77883/

An upstream qemu with those patches applied successfully runs the test
case given in this bug.

(it is patch 5/7 http://patchwork.ozlabs.org/patch/77888/ in particular
which is dealing with the specific case you've hit here, but I haven't
tested with that patch alone.)

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in ubuntu.
https://bugs.launchpad.net/bugs/604872

Title:
  qemu-system-arm segfaults emulating versatile machine after running 
debootstrap --second-stage inside vm

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 604872] Re: qemu-system-arm segfaults emulating versatile machine after running debootstrap --second-stage inside vm

[Peter Maydell]

I have a patchset which fixes this bug, which I need to do a bit more
cleanup and testing with before I post it to the list.


** Changed in: qemu
   Status: New = In Progress

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in ubuntu.
https://bugs.launchpad.net/bugs/604872

Title:
  qemu-system-arm segfaults emulating versatile machine after running 
debootstrap --second-stage inside vm

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs

[Bug 604872] Re: qemu-system-arm segfaults emulating versatile machine after running debootstrap --second-stage inside vm

[Peter Maydell]

I've analysed this segfault. The problem is that we're not correctly
taking account of the IT state on entry to a Thumb translation block if
we're retranslating it for cpu_restore_state().

The offending TB here is:
0x0003dc00:  movle  r2, #0
0x0003dc02:  ldrr1, [pc, #644]  (0x3de88)
0x0003dc04:  cmpr3, #2
0x0003dc06:  strr2, [r1, #0]
0x0003dc08:  it eq
0x0003dc0a:  ldreq  r3, [r5, #8]
0x0003dc0c:  beq.w  0x3ddce

where the 'le' is because the TB before that ended with an 'it le'. When
we execute this the str gets a data abort. qemu handles this by calling
cpu_restore_state(), which reruns the translation process but this time
generating a mapping between target and host addresses, so we can turn
the host PC of the fault into a target PC. Unfortunately we retranslate
without taking account of what the IT state at the start of the TB
should have been:

0x0003dc00:  movs   r2, #0
0x0003dc02:  ldrr1, [pc, #644]  (0x3de88)
0x0003dc04:  cmpr3, #2
0x0003dc06:  strr2, [r1, #0]
0x0003dc08:  it eq
0x0003dc0a:  ldreq  r3, [r5, #8]
0x0003dc0c:  beq.w  0x3ddce

...note that that mov has become unconditional. (It's not just the disassembly, 
the generated intermediate code changes too.)
Since cpu_restore_state() works by (a) actually rewriting the translated code 
into the buffer and (b) stopping when we get to the PC which faulted, this 
means we end up writing over the old generated code with half of a different 
version of the generated code. This is never going to go well, and we end up 
jumping off into the weeds the next time we execute the TB.

I think this is related to but not the same as
https://bugs.launchpad.net/qemu/+bug/581335.

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to qemu-kvm in ubuntu.
https://bugs.launchpad.net/bugs/604872

Title:
  qemu-system-arm segfaults emulating versatile machine after running 
debootstrap --second-stage inside vm

-- 
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs