On 06/22/2016 06:49 PM, Zhang Chen wrote:
Hi~ Paolo~
Just a ping...no news for a week~
We want to poll and handle chardev in another thread
other than main loop. But qemu_chr_add_handlers() can only
work for global default context other than thread default context.
So we use g_source_attac
Hi Christoffer,
On 28/06/2016 10:25, Christoffer Dall wrote:
> On Tue, Jun 28, 2016 at 8:41 AM, Auger Eric wrote:
>> Dear all,
>>
>> On 24/11/2015 11:13, Pavel Fedin wrote:
>>> This series introduces support for in-kernel GICv3 ITS emulation.
>>> It is based on kernel API which is not released ye
On 2016-06-29 08:32, Peter Xu wrote:
> Hi, all,
>
> I am thinking about whether it's possible to write up a unit test
> program for emulated IOMMUs (of course, Intel IOMMU would be the first
> one). This can provide us the chance to do quick functional regression
> tests for IOMMU just like other
Hi, all,
I am thinking about whether it's possible to write up a unit test
program for emulated IOMMUs (of course, Intel IOMMU would be the first
one). This can provide us the chance to do quick functional regression
tests for IOMMU just like other devices, as well as customized test
sequences whi
On 06/29/2016 09:55 AM, Jason Wang wrote:
On 2016年06月28日 14:33, Zhang Chen wrote:
primary guest response
pkt(seq=primary_seq+1,ack=client_seq+1+data_len,flag=ACK)
secondary guest response
pkt(seq=secondary_seq+1,ack=client_seq+1+data_len,flag=ACK)
Is ACK a must here?
Yes.
Looks n
On 06/28/2016 03:44 PM, Mark Cave-Ayland wrote:
I didn't see the branch rebase onto aa8151b7df here, although I was able
to manually rebase the tgt-sparc-2 branch onto git master and build
without issues.
I pushed it to tcg-sparc if you wanted to see my branch.
r~
Removing the soundhw hda device prevents the deadlock.
Below was my QEmu start-up command-line:
qemu-system-x86_64 \
-enable-kvm \
-m 8192 \
-drive if=pflash,format=raw,readonly,file=./ovmf-x64/OVMF-pure-efi.fd \
-drive if=pflash,format=raw,file=./OVMF-pure-efi-Win10.fd \
-drive file=/dev/Stuff/W
On Wed, 2016-06-29 at 13:37 +1000, David Gibson wrote:
> AFAICT xirr_owner will be lost on migration, which will break things.
> That will need to be transferred on migration, somehow. If it can be
> recalculated from existing data in post_load() that would be ideal,
> otherwise we'll have to devi
Starting QEMU with -S results in current_cpu containing its initial
value of NULL. It is however possible to connect to such QEMU instance
and query various CPU registers, one example being CPUID, and doing that
results in QEMU segfaulting.
Using qemu_get_cpu(0) seem reasonable enough given that A
Add code to support writing to memory mapped peripherals via
cpu_memory_rw_debug(). The code of that function already supports
reading from such memory regions, so this commit makes that
functionality "symmetric".
One use-case for that functionality is setting various registers of a
non-running CP
Public bug reported:
I was able to install and can log in but whenever a pop-up is attempted the VM
appears to deadlock.
I can still kill -9 the process and recover but the VM and the QEmu console
both hang with no error output.
At first I thought it was UAC but renaming a file causes a pop-up
On Wed, Jun 29, 2016 at 12:35:16AM +0530, Nikunj A Dadhania wrote:
> From: Benjamin Herrenschmidt
>
> Instead of an array of fixed sized blocks, use a list, as we will need
> to have sources with variable number of interrupts. SPAPR only uses
> a single entry. Native will create more. If performa
On Wed, Jun 29, 2016 at 12:35:11AM +0530, Nikunj A Dadhania wrote:
> sPAPR xics related changes required for powernv platform. This brings
> infrastructure to get the xics native mode for powernv. Tested pseries guests
> in KVM and TCG mode.
>
> Changelog v1:
> * Change XICS to XICS_SPAPR and KVM
On Wed, Jun 29, 2016 at 12:59:05PM +1000, Benjamin Herrenschmidt wrote:
> On Wed, 2016-06-29 at 12:41 +1000, David Gibson wrote:
> > > + /* Actually we don't support unbounded RMA anymore since
> > we
> > > + * added proper emulation of HV mode. The max we can get
> > is
> > > +
From: Changlong Xie
s/target bs/to_replace/, also we check to_replace bs is not
blocked in qmp_drive_mirror() not here
Signed-off-by: Changlong Xie
Reviewed-by: Fam Zheng
Reviewed-by: Stefan Hajnoczi
Reviewed-by: Jeff Cody
Message-id: 1466672241-22485-3-git-send-email-xiecl.f...@cn.fujitsu.c
From: Changlong Xie
Callback for block job should always exist
Suggested-by: Paolo Bonzini
Suggested-by: Kevin Wolf
Signed-off-by: Changlong Xie
Reviewed-by: Fam Zheng
Reviewed-by: Stefan Hajnoczi
Reviewed-by: Jeff Cody
Message-id: 1466672241-22485-2-git-send-email-xiecl.f...@cn.fujitsu.co
From: John Snow
During the refactor of mirror_iteration in e5b43573,
we regressed the fix introduced in cae98cb8.
This patch re-adds IOV_MAX checking to cases where we
aren't checking alignment (and size) already.
Signed-off-by: John Snow
Reviewed-by: Eric Blake
Reviewed-by: Fam Zheng
Messag
From: "Denis V. Lunev"
trace_mirror_yield_in_flight accepts 2nd arguments in sectors while here
we pass chunks instead.
Signed-off-by: Denis V. Lunev
Reviewed-by: Eric Blake
Message-id: 1466518157-27140-1-git-send-email-...@openvz.org
CC: Jeff Cody
CC: Kevin Wolf
CC: Max Reitz
Signed-off-by
From: John Snow
mirror_do_read intends to return the number of sectors processed after
the starting sector, without regard to how many sectors were processed
before the starting sector due to alignment.
Clean up the comments and code to hopefully illustrate this more clearly.
This also fixes an
From: John Snow
Signed-off-by: John Snow
Reviewed-by: Eric Blake
Reviewed-by: Fam Zheng
Message-id: 1466625064-11280-4-git-send-email-js...@redhat.com
Signed-off-by: Jeff Cody
---
tests/qemu-iotests/041 | 30 ++
tests/qemu-iotests/041.out | 4 ++--
2 files ch
From: Peter Lieven
upcoming libnfs will have support for a read cache that can
significantly help to speed up requests since libnfs by design
circumvents the kernel cache.
Example:
qemu -cdrom nfs://127.0.0.1/iso/my.iso?pagecache=1024
The pagecache parameters takes the maximum amount of pages
This adds commandline support for the logging level of the
gluster protocol driver, output to stdout. The option is 'debug',
e.g.:
-drive filename=gluster://192.168.15.180/gv2/test.qcow2,debug=9
Debug levels are 0-9, with 9 being the most verbose, and 0 representing
no debugging output. The def
From: Niels de Vos
GlusterFS 3.8 contains support for SEEK_DATA and SEEK_HOLE. This makes
it possible to detect sparse areas in files.
Signed-off-by: Niels de Vos
Reviewed-by: Jeff Cody
---
block/gluster.c | 182
1 file changed, 182 ins
The following changes since commit d7f30403576f04f1f3a5fb5a1d18cba8dfa7a6d2:
cputlb: don't cpu_abort() if guest tries to execute outside RAM or RAM
(2016-06-28 18:50:53 +0100)
are available in the git repository at:
g...@github.com:codyprime/qemu-kvm-jtc.git tags/block-pull-request
for you
From: Peter Lieven
if we open a NFS export with disabled cache we should refuse
the readahead feature as it will cache data inside libnfs.
If a export was opened with readahead enabled it should
futher not be allowed to disable the cache while running.
Cc: qemu-sta...@nongnu.org
Signed-off-by:
On Thu, Jun 23, 2016 at 04:57:19PM +0800, Changlong Xie wrote:
> V2
> p1: put assert(cb) in block_job_create
>
> Changlong Xie (2):
> blockjob: assert(cb) when create job
> mirror: fix misleading comments
>
> block/backup.c | 1 -
> block/mirror.c | 2 +-
> blockjob.c | 1 +
> 3 files ch
On Thu, Jun 23, 2016 at 04:57:21PM +0800, Changlong Xie wrote:
> s/target bs/to_replace/, also we check to_replace bs is not
> blocked in qmp_drive_mirror() not here
>
> Signed-off-by: Changlong Xie
Reviewed-by: Jeff Cody
> ---
> block/mirror.c | 2 +-
> 1 file changed, 1 insertion(+), 1 delet
On Wed, 2016-06-29 at 12:41 +1000, David Gibson wrote:
> > + /* Actually we don't support unbounded RMA anymore since
> we
> > + * added proper emulation of HV mode. The max we can get
> is
> > + * 16G which also happens to be what we configure for PAPR
> > + * mode s
On Thu, Jun 23, 2016 at 04:57:20PM +0800, Changlong Xie wrote:
> Callback for block job should always exist
>
> Suggested-by: Paolo Bonzini
> Suggested-by: Kevin Wolf
> Signed-off-by: Changlong Xie
Reviewed-by: Jeff Cody
> ---
> block/backup.c | 1 -
> blockjob.c | 1 +
> 2 files change
On Wed, 29 Jun 2016 00:15:23 +0530
Kirti Wankhede wrote:
> On 6/25/2016 1:15 AM, Alex Williamson wrote:
> > On Sat, 25 Jun 2016 00:04:27 +0530
> > Kirti Wankhede wrote:
> >
>
> +
> +static int mdev_get_irq_count(struct vfio_mdev *vmdev, int irq_type)
> +{
> +/* Do
On Wed, Jun 22, 2016 at 03:51:01PM -0400, John Snow wrote:
> e5b43573 caused a regression in the preparation of our IO vectors, such
> that if a small granularity but a large buffer size is chosen, we may
> accidentally exceed MAX_IOV and the request will fail.
>
> This has been fixed before in ca
On Tue, 28 Jun 2016 18:32:44 +0530
Kirti Wankhede wrote:
> On 6/22/2016 9:16 AM, Alex Williamson wrote:
> > On Mon, 20 Jun 2016 22:01:48 +0530
> > Kirti Wankhede wrote:
> >
> >>
> >> struct vfio_iommu {
> >>struct list_headdomain_list;
> >> + struct vfio_domain *mediated_
On Tue, Jun 28, 2016 at 06:50:05AM -0700, Aaron Larson wrote:
>
> Eliminate redundant and incorrect booke206_page_size_to_tlb function
> from ppce500_spin.c in preference to previously existing but newly
> exported definition from e500.c
>
> Defect analysis:
>
> The booke206_page_size_to_tlb fun
On Tue, Jun 28, 2016 at 08:48:33AM +0200, Cédric Le Goater wrote:
> From: Benjamin Herrenschmidt
>
> This adds proper support for translating real mode addresses based
> on the combination of HV and LPCR bits. This handles HRMOR offset
> for hypervisor real mode, and both RMA and VRMA modes for g
On Tue, Jun 28, 2016 at 08:48:34AM +0200, Cédric Le Goater wrote:
> From: Benjamin Herrenschmidt
>
> We were always advertising only 4K & 16M. Additionally the code wasn't
> properly matching the page size with the PTE content, which meant we
> could potentially hit an incorrect PTE if the guest
On Tue, Jun 28, 2016 at 08:35:02PM +0530, Bharata B Rao wrote:
> Introduction of core based CPU hotplug for PowerPC sPAPR didn't
> add support for 970 and POWER5+ based core types. Add support for
> the same.
>
> Signed-off-by: Bharata B Rao
Applied to ppc-for-2.7
> ---
> TODO:
> - There are fe
On Tue, Jun 28, 2016 at 11:00:18AM +0300, Marcel Apfelbaum wrote:
> On 06/28/2016 05:56 AM, David Gibson wrote:
> > On Mon, Jun 27, 2016 at 06:38:31PM +0300, Marcel Apfelbaum wrote:
> > > Mac99's PCI root bus is not part of a host bridge,
> > > realize it manually.
> >
> > Um.. how did this ever w
On Tue, Jun 28, 2016 at 11:07:52AM +0300, Marcel Apfelbaum wrote:
> On 06/28/2016 05:57 AM, David Gibson wrote:
> > On Mon, Jun 27, 2016 at 06:38:35PM +0300, Marcel Apfelbaum wrote:
> > > Since iommu devices can be created with '-device' there is
> > > no need to keep iommu as machine and mch prope
On 2016年06月28日 14:33, Zhang Chen wrote:
primary guest response
pkt(seq=primary_seq+1,ack=client_seq+1+data_len,flag=ACK)
secondary guest response
pkt(seq=secondary_seq+1,ack=client_seq+1+data_len,flag=ACK)
Is ACK a must here?
Yes.
Looks not, e.g what happens if guest does not use pi
On 2016年06月27日 17:44, Peter Lieven wrote:
Hi, with the above patch applied:
commit 9f06e71a567ba5ee8b727e65a2d5347fd331d2aa
Author: Cornelia Huck
Date: Fri Jun 10 11:04:12 2016 +0200
virtio-pci: convert to ioeventfd callbacks
a Ubuntu 14.04 VM freezes at startup when blk-mq is set up
ping again...
because get so many "The following message to was undeliverable"
On 06/28/2016 07:19 PM, Cao jin wrote:
ping
On 06/20/2016 02:13 PM, Cao jin wrote:
rebased against upstream, and passed make check.
changelog:
1. vmw_pvscsi: for compatibility, leave the field msi_used alone.
2. s
On Tue, 06/28 12:10, Denis V. Lunev wrote:
> On 06/28/2016 04:27 AM, Fam Zheng wrote:
> > On Mon, 06/27 17:47, Denis V. Lunev wrote:
> > > From: Evgeny Yakovlev
> > >
> > > Some guests (win2008 server for example) do a lot of unnecessary
> > > flushing when underlying media has not changed. This
On Mon, Jun 13, 2016 at 9:27 AM, wrote:
> From: KONRAD Frederic
>
> This introduce Xilinx zynqmp-crf.
> It is extracted from the qemu xilinx tree
> (02d2f0203dd489ed30d9c8d90c14a52c57332b25) and is used as
> an example for the clock framework.
Watch out with this one, the newet register API se
On Mon, Jun 13, 2016 at 9:27 AM, wrote:
> From: KONRAD Frederic
>
> This adds the qemu-clock documentation.
>
> Signed-off-by: KONRAD Frederic
> ---
> docs/clock.txt | 112
> +
> 1 file changed, 112 insertions(+)
> create mode 100644 do
On Mon, Jun 13, 2016 at 9:27 AM, wrote:
> From: KONRAD Frederic
>
> This prints the clock attached to a DeviceState when using "info qtree"
> monitor
> command.
Can you include an example of what this will look like?
Thanks,
Alistair
>
> Signed-off-by: KONRAD Frederic
> ---
> include/qemu
On Mon, Jun 13, 2016 at 9:27 AM, wrote:
> From: KONRAD Frederic
>
> This introduces the clock binding and the update part.
> When the qemu_clk_rate_update(qemu_clk, int) function is called:
> * The clock callback is called on the qemu_clk so it can change the rate.
> * The qemu_clk_rate_upda
On Mon, Jun 13, 2016 at 9:27 AM, wrote:
> From: KONRAD Frederic
>
> This introduces qemu-clk qom object.
>
> Signed-off-by: KONRAD Frederic
> ---
> Makefile.objs | 1 +
> include/qemu/qemu-clock.h | 40
> qemu-clock.c | 47
> +
On Mon, Jun 13, 2016 at 9:27 AM, wrote:
> From: KONRAD Frederic
>
> This allows to attach a clock to a DeviceState.
> Contrary to gpios, the clock pins are not contained in the DeviceState but
> with the child property so they can appears in the qom-tree.
>
> Signed-off-by: KONRAD Frederic
> --
On Jun 28, 2016, at 7:44 PM, qemu-devel-requ...@nongnu.org wrote:
On 28/06/16 14:44, Stefan Hajnoczi wrote:
On Tue, Jun 28, 2016 at 7:11 AM, Jeff Cody wrote:
On Mon, Jun 27, 2016 at 07:48:23AM +0100, Mark Cave-Ayland wrote:
On 21/06/16 14:48, Mark Cave-Ayland wrote:
On 21/06/16 11:28, St
As of e4650c81, we do w32 builds with -Werror enabled. Unfortunately
for cases where we enable VSS support in qemu-ga, we still have
warnings generated by VSS includes that ship as part of the Microsoft
VSS SDK.
We can selectively address a number of these warnings using
#pragma GCC diagnostic
On 28/06/16 01:38, Richard Henderson wrote:
> The primary focus of this patch set is to reduce the number of
> helpers that modify TCG globals, and thus increase the lifetime
> of those globals within each TB, and thus decrease the number
> of times that tcg must spill and fill them from backing s
Hello,
Thomas Huth, on Tue 28 Jun 2016 12:48:31 +0200, wrote:
> Provide basic support for stateless DHCPv6 (see RFC 3736) so
> that guests can also automatically boot via IPv6 with SLIRP
> (for IPv6 network booting, see RFC 5970 for details).
>
> Tested with:
>
> qemu-system-ppc64 -nographic
I ran all the way through the installer in order to test the patch, so
it should be working for you. Is your Spark9.disk labelled? See
http://virtuallyfun.superglobalmegacorp.com/2010/10/03/formatting-disks-
for-solaris/ for more information on how to do this.
--
You received this bug notificatio
From: Lluís Vilanova
Adds two events to trace syscalls in syscall emulation mode (*-user):
* guest_user_syscall: Emitted before the syscall is emulated; contains
the syscall number and arguments.
* guest_user_syscall_ret: Emitted after the syscall is emulated;
contains the syscall number an
From: "Denis V. Lunev"
Moving trace_init_backends() into trace_opt_parse() is not possible. This
should be called after daemonize() in vl.c.
Signed-off-by: Denis V. Lunev
Reviewed-by: Eric Blake
Reviewed-by: Stefan Hajnoczi
Message-id: 1466174654-30130-5-git-send-email-...@openvz.org
CC: Paol
From: "Denis V. Lunev"
Please note, trace_init_backends() must be called in the final process,
i.e. after daemonization. This is necessary to keep tracing thread in
the proper process.
Signed-off-by: Denis V. Lunev
Reviewed-by: Eric Blake
Reviewed-by: Stefan Hajnoczi
Message-id: 1466174654-30
From: "Denis V. Lunev"
The patch also creates trace_opt_parse() helper in trace/control.c to reuse
this code in next patches for qemu-nbd and qemu-io.
The patch also makes trace_init_events() static, as this call is not used
outside the module anymore.
Signed-off-by: Denis V. Lunev
Reviewed-by
From: "Denis V. Lunev"
This is necessary to enable creation of common qemu-img options which will
be specified before command.
The patch also enables '-V' alias to '--version' (exactly like in other
block utilities) and documents this change.
Signed-off-by: Denis V. Lunev
Reviewed-by: Eric Bla
From: "Denis V. Lunev"
The command will work this way:
qemu-img --trace "qcow2*" create -f qcow2 1.img 64G
[Quote "qcow2*" to protect against shell globbing as suggested by Eric
Blake .
--Stefan]
Signed-off-by: Denis V. Lunev
Reviewed-by: Eric Blake
Reviewed-by: Stefan Hajnoczi
Message-i
The following changes since commit d7f30403576f04f1f3a5fb5a1d18cba8dfa7a6d2:
cputlb: don't cpu_abort() if guest tries to execute outside RAM or RAM
(2016-06-28 18:50:53 +0100)
are available in the git repository at:
git://github.com/stefanha/qemu.git tags/tracing-pull-request
for you to fe
From: "Denis V. Lunev"
This text will be included to qemu-nbd/qemu-img mans in the next patches.
Signed-off-by: Denis V. Lunev
Reviewed-by: Eric Blake
Reviewed-by: Stefan Hajnoczi
Message-id: 1466174654-30130-3-git-send-email-...@openvz.org
CC: Paolo Bonzini
CC: Stefan Hajnoczi
CC: Kevin Wo
From: "Denis V. Lunev"
[s/descriprion/description/ in commit message as suggested by Eric Blake
.
--Stefan]
Signed-off-by: Denis V. Lunev
Reviewed-by: Eric Blake
Reviewed-by: Stefan Hajnoczi
Message-id: 1466174654-30130-2-git-send-email-...@openvz.org
CC: Paolo Bonzini
CC: Kevin Wolf
Signed
On 24/06/2016 17:06, Denis V. Lunev wrote:
> From: Evgeny Yakovlev
>
> Some guests (win2008 server for example) do a lot of unnecessary
> flushing when underlying media has not changed. This adds additional
> overhead on host when calling fsync/fdatasync.
>
> This change introduces a dirty fla
On 24/06/2016 17:06, Denis V. Lunev wrote:
> When doing DMA request ide/core.c will set s->retry_unit to s->unit in
> ide_start_dma. When dma completes ide_set_inactive sets retry_unit to -1.
> After that ide_flush_cache runs and fails thanks to blkdebug.
> ide_flush_cb calls ide_handle_rw_error
On 28/06/16 14:44, Stefan Hajnoczi wrote:
> On Tue, Jun 28, 2016 at 7:11 AM, Jeff Cody wrote:
>> On Mon, Jun 27, 2016 at 07:48:23AM +0100, Mark Cave-Ayland wrote:
>>> On 21/06/16 14:48, Mark Cave-Ayland wrote:
>>>
On 21/06/16 11:28, Stefan Hajnoczi wrote:
> On Tue, Jun 21, 2016 at 0
On 06/21/16 00:04, Alex Williamson wrote:
> The kernel currently exposes the SR-IOV capability as read-only
> through vfio-pci. This is sufficient to protect the host kernel, but
> has the potential to confuse guests without further virtualization.
> In particular, OVMF tries to size the VF BARs a
On 05/18/16 05:31, Zhou Jie wrote:
> From: Chen Fan
>
> For vfio pcie device, we could expose the extended capability on
> PCIE bus. due to add a new pcie capability at the tail of the chain,
> in order to avoid config space overwritten, we introduce a copy config
> for parsing extended caps. and
On 28/06/16 22:43, Sergey Fedorov wrote:
> On 03/06/16 23:40, Alex Bennée wrote:
>> While we previously assumed an existing memory lock protected the page
>> look up in the MTTCG SoftMMU case the memory lock is provided by the
>> tb_lock. As a result we push the taking of this lock up the call tree
** Changed in: qemu
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1356969
Title:
qemu-io: the 'map' command hangs on the fuzzed image
Status in QEMU:
** Changed in: qemu
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1353456
Title:
qemu-io: Failure on a qcow2 image with the fuzzed refcount table
Statu
** Changed in: qemu
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1355697
Title:
qemu-img: Segfault on a fuzzed image with large values of L1/L2
entri
** Changed in: qemu
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1354529
Title:
qemu-io: Assert failure on the fuzzed qcow2 image
Status in QEMU:
Fi
From: Corey Minyard
Change 2293c27faddf (i2c: implement broadcast write) added broadcast
capability to the I2C bus, but it broke SMBus read transactions.
An SMBus read transaction does two i2c_start_transaction() calls
without an intervening i2c_end_transfer() call. This will
result in i2c_start
On Tue, Jun 28, 2016 at 08:48:28 -0700, Richard Henderson wrote:
> On 06/28/2016 01:45 AM, Lluís Vilanova wrote:
> >Emilio G Cota writes:
> >[...]
> >>- What to do when atomic ops are used on something other than RAM?
> >> Should we have a "slow path" that is not atomic for these cases, or
> >> i
From: Richard Henderson
Signed-off-by: Richard Henderson
Signed-off-by: Riku Voipio
---
linux-user/host/s390x/hostdep.h | 23
linux-user/host/s390x/safe-syscall.inc.S | 90
2 files changed, 113 insertions(+)
create mode 100644 linux-user/host
From: Laurent Vivier
Reported-by: Peter Maydell
Signed-off-by: Laurent Vivier
Signed-off-by: Riku Voipio
Reviewed-by: Peter Maydell
---
linux-user/syscall.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/linux-user/syscall.c b/linux-user/syscall.c
index b8a0738..33409c0 100644
--- a/lin
From: Laurent Vivier
If the structure pointed by NLMSG_DATA() is bigger
than the size of NLMSG_DATA(), don't swap its fields
to avoid memory corruption.
Signed-off-by: Laurent Vivier
Signed-off-by: Riku Voipio
Reviewed-by: Peter Maydell
---
linux-user/syscall.c | 72 +
From: Richard Henderson
Do what the comment says, test for signal_pending non-zero,
rather than the current code which tests for bit 0 non-zero.
Signed-off-by: Richard Henderson
Signed-off-by: Riku Voipio
Reviewed-by: Peter Maydell
---
linux-user/host/x86_64/safe-syscall.inc.S | 6 +++---
1
On 03/06/16 23:40, Alex Bennée wrote:
> While we previously assumed an existing memory lock protected the page
> look up in the MTTCG SoftMMU case the memory lock is provided by the
> tb_lock. As a result we push the taking of this lock up the call tree.
> This requires a slightly different entry f
From: Laurent Vivier
Signed-off-by: Laurent Vivier
Signed-off-by: Riku Voipio
Reviewed-by: Peter Maydell
---
linux-user/strace.c | 549 ++
linux-user/strace.list| 2 +-
linux-user/syscall_defs.h | 22 +-
3 files changed, 568 insertions(
From: Richard Henderson
Signed-off-by: Richard Henderson
Signed-off-by: Riku Voipio
---
linux-user/host/ppc64/hostdep.h | 23
linux-user/host/ppc64/safe-syscall.inc.S | 92
2 files changed, 115 insertions(+)
create mode 100644 linux-user/host
** Changed in: qemu
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1355738
Title:
qemu-img: Killed by SIGTRAP on check of the fuzzed image
Status in QEM
From: Laurent Vivier
if we process the whole buffer, the netlink helpers can try
to swap invalid data.
Signed-off-by: Laurent Vivier
Signed-off-by: Riku Voipio
Reviewed-by: Peter Maydell
---
linux-user/syscall.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/linux-user/s
From: Richard Henderson
Signed-off-by: Richard Henderson
Reviewed-by: Peter Maydell
Signed-off-by: Riku Voipio
---
linux-user/host/i386/hostdep.h | 23 +++
linux-user/host/i386/safe-syscall.inc.S | 112
2 files changed, 135 insertions(+)
create
From: Laurent Vivier
Signed-off-by: Laurent Vivier
Signed-off-by: Riku Voipio
Reviewed-by: Peter Maydell
---
linux-user/strace.c | 42 --
1 file changed, 20 insertions(+), 22 deletions(-)
diff --git a/linux-user/strace.c b/linux-user/strace.c
index 95f
From: Richard Henderson
Signed-off-by: Richard Henderson
Reviewed-by: Peter Maydell
Signed-off-by: Riku Voipio
[RV] Updated syscall argument comment to match code
---
linux-user/host/aarch64/hostdep.h | 23 +
linux-user/host/aarch64/safe-syscall.inc.S | 75 +++
From: Laurent Vivier
int get_thread_area(struct user_desc *u_info);
int set_thread_area(struct user_desc *u_info);
Signed-off-by: Laurent Vivier
Signed-off-by: Riku Voipio
Reviewed-by: Peter Maydell
---
linux-user/strace.list | 6 --
1 file changed, 4 insertions(+), 2 delet
From: Richard Henderson
Reviewed-by: Peter Maydell
Signed-off-by: Richard Henderson
Signed-off-by: Riku Voipio
---
linux-user/host/arm/hostdep.h | 23 +
linux-user/host/arm/safe-syscall.inc.S | 90 ++
2 files changed, 113 insertions(+)
create
From: Peter Maydell
Support the F_GETPIPE_SZ and F_SETPIPE_SZ fcntl operations.
Signed-off-by: Peter Maydell
Reviewed-by: Laurent Vivier
Signed-off-by: Riku Voipio
---
linux-user/strace.c | 7 +++
linux-user/syscall.c | 6 ++
linux-user/syscall_defs.h | 2 ++
3 files chang
From: Peter Maydell
The third argument to the rt_sigqueueinfo syscall is a pointer to
a siginfo_t, not a pointer to a sigset_t. Fix the error in the
arguments to lock_user(), which meant that we would not have
detected some faults that we should.
Signed-off-by: Peter Maydell
Reviewed-by: Lauren
From: Peter Maydell
Since we dropped darwin-user support many years ago, the code in
user-exec to support hosts which define __APPLE__ is unused; delete it.
Reviewed-by: Laurent Vivier
Reviewed-by: Richard Henderson
Signed-off-by: Riku Voipio
Signed-off-by: Peter Maydell
---
user-exec.c | 4
From: Laurent Vivier
Signed-off-by: Laurent Vivier
Signed-off-by: Riku Voipio
Reviewed-by: Peter Maydell
---
linux-user/strace.c| 23 +++
linux-user/strace.list | 2 +-
2 files changed, 24 insertions(+), 1 deletion(-)
diff --git a/linux-user/strace.c b/linux-user/str
From: Peter Maydell
In commit 4d330cee37a21 a new hostdep.h file was added, with the intent
that host architectures which needed one could provide it, and the
build system would automatically fall back to a generic version if
there was no version for the host architecture. Although this works,
it
From: Peter Maydell
For the user-only targets, we need to know something about the host CPU
architecture even if we are using the TCI interpreter rather than TCG.
(In particular user-exec.c has code for handling signals that needs
to know about that host's context structures.)
Specifically forbi
From: Peter Maydell
Now that configure blocks attempts to build user-mode code on hppa
and m68k hosts, we can delete the cpu_signal_handler() implementations
for those architectures.
Signed-off-by: Peter Maydell
Reviewed-by: Laurent Vivier
Reviewed-by: Richard Henderson
Signed-off-by: Riku Vo
From: Peter Maydell
Use the __get_user() and __put_user() to handle reading and writing the
guest structures in do_ioctl(). This has two benefits:
* avoids possible errors due to misaligned guest pointers
* correctly sign extends signed fields (like l_start in struct flock)
which might be di
From: Peter Maydell
At the moment if configure finds an unknown CPU it will set
ARCH to 'unknown', and then later either bail out or set it
to 'tci' (depending on whether the user passed configure the
--enable-tcg-interpreter switch). This is unnecessarily
confusing, because we could be using TCI
From: Peter Maydell
Use the safe_syscall wrapper for fcntl. This is straightforward now
that we always use 'struct fcntl64' on the host, as we don't need
to select whether to call the host's fcntl64 or fcntl syscall
(a detail that the libc previously hid for us).
Signed-off-by: Peter Maydell
Re
From: Peter Maydell
The kernel and libc have different ideas about what a sigset_t
is -- for the kernel it is only _NSIG / 8 bytes in size (usually
8 bytes), but for libc it is much larger, 128 bytes. In most
situations the difference doesn't matter, because if you pass a
pointer to a libc sigset
From: Peter Maydell
host_to_target_siginfo() is implemented by a combination of
host_to_target_siginfo_noswap() followed by tswap_siginfo().
The first of these two functions assumes that the target_siginfo_t
it is writing to is correctly aligned, but the pointer passed
into host_to_target_siginfo
1 - 100 of 454 matches
Mail list logo
