From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1MgjNb-0003Sn-Bv
	for qemu-devel@nongnu.org; Thu, 27 Aug 2009 14:07:23 -0400
Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1MgjNU-0003Ia-MT
	for qemu-devel@nongnu.org; Thu, 27 Aug 2009 14:07:21 -0400
Received: from [199.232.76.173] (port=57564 helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1MgjNU-0003I4-Ht
	for qemu-devel@nongnu.org; Thu, 27 Aug 2009 14:07:16 -0400
Received: from fmmailgate03.web.de ([217.72.192.234]:34553)
	by monty-python.gnu.org with esmtp (Exim 4.60)
	(envelope-from <jan.kiszka@web.de>) id 1MgjNT-0003Wt-LE
	for qemu-devel@nongnu.org; Thu, 27 Aug 2009 14:07:16 -0400
Message-ID: <4A96CB4D.30401@web.de>
Date: Thu, 27 Aug 2009 20:07:09 +0200
From: Jan Kiszka <jan.kiszka@web.de>
MIME-Version: 1.0
References: <alpine.DEB.1.00.0808111616530.24820@pacific.mpi-cbg.de.mpi-cbg.de>
	<48A297F0.9000700@web.de>
	<alpine.DEB.1.00.0808171703510.24820@pacific.mpi-cbg.de.mpi-cbg.de>
	<48A8574B.6010704@web.de>
	<alpine.DEB.1.00.0908131819360.7429@intel-tinevez-2-302>
	<4A938B26.5040609@web.de>
	<alpine.DEB.1.00.0908251340090.8306@pacific.mpi-cbg.de>
	<4A93D986.4060206@web.de>
	<alpine.DEB.1.00.0908251535570.19140@intel-tinevez-2-302>
In-Reply-To: <alpine.DEB.1.00.0908251535570.19140@intel-tinevez-2-302>
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature";
	boundary="------------enigDE4A819B12A999274CD56F00"
Sender: jan.kiszka@web.de
Subject: [Qemu-devel] Re: Breakage with local APIC routing
List-Id: qemu-devel.nongnu.org
List-Unsubscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: Johannes Schindelin <Johannes.Schindelin@gmx.de>
Cc: qemu-devel@nongnu.org, Avi Kivity <avi@qumranet.com>

This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enigDE4A819B12A999274CD56F00
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

Johannes Schindelin wrote:
> Hi,
>=20
> On Tue, 25 Aug 2009, Jan Kiszka wrote:
>=20
>> Johannes Schindelin wrote:
>>
>>> On Tue, 25 Aug 2009, Jan Kiszka wrote:
>>>
>>>> Johannes Schindelin wrote:
>>>>
>>>>> On Sun, 17 Aug 2008, Jan Kiszka wrote:
>>>>>
>>>>>> Johannes Schindelin wrote:
>>>>>>
>>>>>>> On Wed, 13 Aug 2008, Jan Kiszka wrote:
>>>>>>>
>>>>>>>> Johannes Schindelin wrote:
>>>>>>>>> due to the change in revision 3371 (well, at that time, CVS was=
=20
>>>>>>>>> used, which was no better than Subversion) installation of win6=
4=20
>>>>>>>>> is broken in QEmu.  The commit message reads like this:
>>>>>>>>>
>>>>>>>>> 	Don't route PIC interrupts through the local APIC if the local=
=20
>>>>>>>>> 	APIC config says so. By Ari Kivity.
>>>>>>>> I recalled some earlier post on this which claimed to fix the is=
sue=20
>>>>>>>> and found it in the archive:
>>>>>>>>
>>>>>>>> http://permalink.gmane.org/gmane.comp.emulators.qemu/25415
>>>>>>> I tried this, and it changes the symptoms, indeed.  Instead of an=
=20
>>>>>>> endless loop, it results in a bluescreen.
>>>>>>>
>>>>>>> As the OP said that it worked for him, I guess it is either in=20
>>>>>>> commits that came after his post, or in my add-on patches.
>>>>>> So we are likely on the wrong path. Maybe we have to understand wh=
at
>>>>>> happens here first...
>>>>>>
>>>>>>> Hopefully I will find some time to work more on this bug.
>>>>>> Would be interesting to know
>>>>>>  - if pic_irq_request is continuously called or if it stops when w=
indows=20
>>>>>>    hangs
>>>>>>  - what IRQ vectors are delivered
>>>>>>  - in what state the apic is, namely the s->lvt[APIC_LVT_LINT0]
>>>>> Sorry for the long delay.  I just don't have time to take care of t=
he=20
>>>>> issue, but I quickly verified that it still does not work, with aa0=
cba4=20
>>>>> (Aug 13 2009).
>>>>>
>>>>> If you are still interested in this issue, could you give me a hint=
=20
>>>>> _where_ I should output _which_ values?  I'll gladly take time for =
that=20
>>>>> now.
>>>> If some OS does not properly install due to a possible emulation bug=
, I
>>>> am interested, for sure. Let's restart this by specifying the test c=
ase
>>>> more precisely: What version of Windows are you trying to install?
>>> As far as I remember, it is a plain version of 64-bit XP Pro.  (Maybe=
 it=20
>>> is a custom .iso for my day-job, but I think this is not the case).
>>>
>>>> What is your qemu command line?
>>> test -h pc-bios/keymaps || ln -s ../keymaps pc-bios/
>>>
>>> ./x86_64-softmmu/qemu-system-x86_64 \
>>>         -L pc-bios/ \
>>>         -m 1024 \
>>>         -monitor stdio \
>>>         -k en-us \
>>>         -hda w64.img \
>>>         -cdrom en_win_xp_pro_x64bit.iso \
>>>         -fda fat:fat \
>>>         -boot d \
>>>         -net none \
>>>         -localtime
>>>
>>>> Where does the installation fail?
>>> "Setup is starting Windows". (Just after "Setup is loading files (...=
)"=20
>>> phase.)
>>>
>>>> Are there specific steps required during the installation to reprodu=
ce=20
>>>> the problem?
>>> You need a 64-bit XP Pro, then call the command line as I did.  It ha=
ngs=20
>>> at
>>>
>>> 	(qemu) info cpus
>>> 	* CPU #0: pc=3D0xfffff800010cabeb
>>>
>>> This is 100% reproducible.
>>>
>>>> And one more question: Did you check that you were using the=20
>>>> corresponding BIOS to aa0cba4?
>>> Yes, I always use -L pc-bios/ in the same Git working directory, and =
I=20
>>> just verified that indeed, the source is clean.
>>>
>>> A tiny, gentle reminder: the revision which is now available as 0e21e=
12b=20
>>> introduced this particular breakage.
>> OK, just found some 64-bit Windows ISO (Server 2003) that also makes n=
o
>> progress at the point you described. Will play with it later today,
>> specifically with the LAPIC changes you referred to.
>=20
> Thank you very much!
>=20
> If you need me to test something, just let me know; I'll try to squeeze=
=20
> that into my time schedule.

I'm starting to get clueless about this issue. It looks like a timing
issue as I was able to crash Windows when using qemu-kvm (in kvm mode)
and attaching a guest debugger to the "right" spot. As you may know,
this also happens today (after dyngen to TCG switch) when resetting the
CPU interrupt in pic_irq_request on !level. To exclude that Windows is
simply fragile here, I need a better test case, ideally some with source
code. Think I will look into Mohammed's Ubuntu case again.

Jan


--------------enigDE4A819B12A999274CD56F00
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org

iEYEARECAAYFAkqWy1AACgkQniDOoMHTA+lKdgCfeY5oWHqYKpixv/kW8o09s4FN
gHAAnAqBgKI9r5F+l20+iAAmP5XDNw9H
=/dYl
-----END PGP SIGNATURE-----

--------------enigDE4A819B12A999274CD56F00--