QEMU

wrgsbase misemulated in x86_64-softmmu

Bug #1719984 reported by Todd Eisenberger on 2017-09-27

6

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	QEMU	Fix Released	Undecided	Unassigned

Bug Description

qemu revision: cfe4cade054c0e0d00d0185cdc433a9e3ce3e2e4
command: ./qemu-system-x86_64 -m 2048 -nographic -net none -smp 4,threads=2 -machine q35 -kernel zircon.bin -cpu Haswell,+smap,-check -initrd bootdata.bin -append 'TERM=screen kernel.halt-on-panic=true '

On this revision, the VM reports CPUID.07H.0H.EBX[0] = 1. In this VM, with CR4[16] set to 1, wrgsbase triggers #UD, which mismatches the behavior described in Intel's instruction reference.

Revision history for this message

Todd Eisenberger (teisenbe) wrote on 2017-09-27:

#1

For further data, the faulting instruction is
f3 48 0f ae df wrgsbase %rdi

Revision history for this message

Todd Eisenberger (teisenbe) wrote on 2017-10-02:

#2

Fix is in staging: https://github.com/ehabkost/qemu/commit/cdcc80d41360e278b45c91de29a29d797264e85d

Changed in qemu:
status:	New → In Progress

Revision history for this message

Todd Eisenberger (teisenbe) wrote on 2017-11-16:

#3

Fix is in master: https://github.com/qemu/qemu/commit/e0dd5fd41a1a38766009f442967fab700d2d0550

Changed in qemu:
status:	In Progress → Fix Committed

Thomas Huth (th-huth) on 2017-12-15

Changed in qemu:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.