I imagine the fix should be inserted here:
static inline void helper_ret_protected(CPUX86State *env, int shift,
int is_iret, int addend,
uintptr_t retaddr)
{
uint32_t new_cs, new_eflags, new_ss;
uint32_t new_es
Still happens with qemu 5.1.92
** Changed in: qemu
Status: Incomplete => New
--
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1613817
Title:
x86: ret, lret and iret with noncanonical IP saves
** Description changed:
This test program:
# compile with: gcc -nostartfiles -nostdlib
_start: .globl _start
- mov %ss,%eax
- push%rax
- push%rsp
- pushf
- mov %cs,%eax
-
# qemu-system-x86_64 --version
QEMU emulator version 2.6.92(qemu-2.7.0-0.1.rc2.fc26), Copyright (c) 2003-2008
Fabrice Bellard
Running it like this:
qemu-system-x86_64 -no-reboot -kernel "$bzImage" -initrd initramfs.cpio
-append "panic=1"
(i.e. no KVM, no unusual options)
--
You received this
Public bug reported:
This test program:
# compile with: gcc -nostartfiles -nostdlib
_start: .globl _start
mov %ss,%eax
push%rax
push%rsp
pushf
mov %cs,%eax
push%rax
