From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([2001:4830:134:3::10]:52912)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <avg@FreeBSD.org>) id 1VMhty-0003dT-8p
	for qemu-devel@nongnu.org; Thu, 19 Sep 2013 13:20:33 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <avg@FreeBSD.org>) id 1VMhtq-0000nV-VS
	for qemu-devel@nongnu.org; Thu, 19 Sep 2013 13:20:26 -0400
Received: from citadel.icyb.net.ua ([212.40.38.140]:3761)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <avg@FreeBSD.org>) id 1VMhtq-0000nD-IU
	for qemu-devel@nongnu.org; Thu, 19 Sep 2013 13:20:18 -0400
Message-ID: <523B31ED.9020504@FreeBSD.org>
Date: Thu, 19 Sep 2013 20:18:37 +0300
From: Andriy Gapon <avg@FreeBSD.org>
MIME-Version: 1.0
References: <52383EED.6080602@FreeBSD.org> <52384BF6.5030302@suse.de>
	<52386855.7080106@FreeBSD.org>
	<20130917184954.GA5657@redhat.com> <523B0BE0.90102@FreeBSD.org>
	<523B2C06.3060309@redhat.com>
In-Reply-To: <523B2C06.3060309@redhat.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
Subject: Re: [Qemu-devel] in_asm substitute for accel=kvm:tcg
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: Paolo Bonzini <pbonzini@redhat.com>
Cc: =?UTF-8?B?QW5kcmVhcyBGw6RyYmVy?= <afaerber@suse.de>, Gleb Natapov <gleb@redhat.com>, qemu-devel@nongnu.org

on 19/09/2013 19:53 Paolo Bonzini said the following:
> 1) Can you try loading the kvm_intel module with
> emulate_invalid_guest_state=0?

Will do.

> 2) What are the contents of fs and gs?  Why are they not zeroed?
> Perhaps that is causing invalid guest state emulation to run, and then
> something is triggering a bug in emulate_invalid_guest_state itself.

I will try to find this out.

> 3) What is at 0x9315?

This I can answer immediately.  It looks like this address even gets executed
earlier:
 qemu-system-x86-12024 [002] 278153.809990: kvm_emulate_insn:     0:9315:ea 1a
93 00 00 (real)
 qemu-system-x86-12024 [002] 278153.809991: kvm_entry:            vcpu 0
 qemu-system-x86-12024 [002] 278153.809992: kvm_emulate_insn:     0:931a:31 c0
(real)

I guess it's a jump to 931a.
Puzzling that later it becomes a jump to self.
-- 
Andriy Gapon