From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([2001:4830:134:3::10]:50048)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <bounces@canonical.com>) id 1bpGc8-0003YK-Ff
	for qemu-devel@nongnu.org; Wed, 28 Sep 2016 11:17:41 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <bounces@canonical.com>) id 1bpGc2-0004mP-CQ
	for qemu-devel@nongnu.org; Wed, 28 Sep 2016 11:17:39 -0400
Received: from indium.canonical.com ([91.189.90.7]:48825)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <bounces@canonical.com>) id 1bpGc2-0004m6-76
	for qemu-devel@nongnu.org; Wed, 28 Sep 2016 11:17:34 -0400
Received: from loganberry.canonical.com ([91.189.90.37])
	by indium.canonical.com with esmtp (Exim 4.76 #1 (Debian))
	id 1bpGc1-0003OF-Ai
	for <qemu-devel@nongnu.org>; Wed, 28 Sep 2016 15:17:33 +0000
Received: from loganberry.canonical.com (localhost [127.0.0.1])
	by loganberry.canonical.com (Postfix) with ESMTP id 031972E8179
	for <qemu-devel@nongnu.org>; Wed, 28 Sep 2016 15:17:32 +0000 (UTC)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Date: Wed, 28 Sep 2016 14:59:07 -0000
From: Duane Voth <duanev@gmail.com>
Reply-To: Bug 1180970 <1180970@bugs.launchpad.net>
Sender: bounces@canonical.com
References: <20130516195843.983.69688.malonedeb@soybean.canonical.com>
	<20160928142839.21379.84015.malone@soybean.canonical.com>
Message-Id: <CABpPS=o+HP1PjCkHtDjauJQ9-JZwqbzW5_GoMYqGYwsoyFUfkQ@mail.gmail.com>
Errors-To: bounces@canonical.com
Subject: Re: [Qemu-devel] [Bug 1180970] Re: qemu: fatal: Trying to execute
 code outside RAM or ROM; worked in 1.4.0, fails in 1.4.92
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel/>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: qemu-devel@nongnu.org

Sigh.  3 years ago I could test this - today?  Not possible.  I'm sorry I
can't confirm.  :/

-- =

You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1180970

Title:
  qemu: fatal: Trying to execute code outside RAM or ROM; worked in
  1.4.0, fails in 1.4.92

Status in QEMU:
  Fix Released

Bug description:
  I'm using qemu to run and debug the EDK2 uEFI environment. OVMF is
  being built out of the EDK2 tree I've checked out (r14367).
  (Reproducing all this could be tedious so I am available for
  debugging/testing.)

  qemu 1.4.0 was able to execute this guest environment with no trouble,
  qemu 1.4.92 however issues an error message and aborts.  The command
  line I use to start qemu is:

  $ /usr/local/bin/qemu-system-x86_64 -m 1024 -bios OVMF.fd -monitor
  stdio

  1.4.92 gives the following register dump:

  QEMU 1.4.92 monitor - type 'help' for more information
  (qemu) qemu: fatal: Trying to execute code outside RAM or ROM at 0x000000=
0100000000

  RAX=3D000000003e084da8 RBX=3D000000003e084868 RCX=3D0000000000000000 RDX=
=3D000000003e084f00
  RSI=3D0000000000000001 RDI=3D000000003e085000 RBP=3D000000003e084708 RSP=
=3D000000003fac8510
  R8 =3D0000000000000000 R9 =3D000000003e14c3e3 R10=3D0000000000000033 R11=
=3D00000000000000d3
  R12=3D000000003e0848a0 R13=3D0000000000000000 R14=3D0000000000000000 R15=
=3D0000000000000000
  RIP=3D00000000ffffffe4 RFL=3D00000046 [---Z-P-] CPL=3D0 II=3D0 A20=3D1 SM=
M=3D0 HLT=3D0
  ES =3D0008 0000000000000000 ffffffff 00cf9300 DPL=3D0 DS   [-WA]
  CS =3D0028 0000000000000000 ffffffff 00af9b00 DPL=3D0 CS64 [-RA]
  SS =3D0008 0000000000000000 ffffffff 00cf9300 DPL=3D0 DS   [-WA]
  DS =3D0008 0000000000000000 ffffffff 00cf9300 DPL=3D0 DS   [-WA]
  FS =3D0008 0000000000000000 ffffffff 00cf9300 DPL=3D0 DS   [-WA]
  GS =3D0008 0000000000000000 ffffffff 00cf9300 DPL=3D0 DS   [-WA]
  LDT=3D0000 0000000000000000 0000ffff 00008200 DPL=3D0 LDT
  TR =3D0000 0000000000000000 0000ffff 00008b00 DPL=3D0 TSS64-busy
  GDT=3D     000000003fa50e98 0000003f
  IDT=3D     000000003f9d6e20 00000fff
  CR0=3D80000033 CR2=3D0000000000000000 CR3=3D000000003fa67000 CR4=3D000006=
68
  ...

  =

  Questions:
  1) Is this problem relevant?  (is full backward compatability to be suppo=
rted?)
  2) Are there new guest execution controls in 1.4.9x that might cause this?
  3) If #2, can they be disabled by a qemu command line switch?
  4) If not #2, in what qemu source file specifically can I find the logic =
causing the abort? (help me help you :)
  5) If guest memory is corrupted or improperly mapped, how can I keep qemu=
 alive to examime/dump guest memory?

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1180970/+subscriptions