summary refs log tree commit diff stats
path: root/gitlab/issues/target_arm/host_missing/accel_HVF
diff options
context:
space:
mode:
Diffstat (limited to 'gitlab/issues/target_arm/host_missing/accel_HVF')
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/1029.toml61
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/1073.toml37
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/1990.toml29
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/2665.toml23
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/2938.toml19
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/743.toml21
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/747.toml38
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/797.toml17
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/864.toml23
-rw-r--r--gitlab/issues/target_arm/host_missing/accel_HVF/949.toml322
10 files changed, 590 insertions, 0 deletions
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/1029.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/1029.toml
new file mode 100644
index 00000000..8ae1abf3
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/1029.toml
@@ -0,0 +1,61 @@
+id = 1029
+title = "Unable to build qemu on macOS Monterey, M1 Pro"
+state = "closed"
+created_at = "2022-05-18T00:13:52.322Z"
+closed_at = "2022-08-19T10:30:15.794Z"
+labels = ["accel: HVF", "hostos: macOS", "target: arm", "workflow::In Progress"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/1029"
+host-os = "macOS Monterey"
+host-arch = "Apple M1 Pro"
+qemu-version = "git master"
+guest-os = "n/a"
+guest-arch = "n/a"
+description = """qemu doesn't build, producing the following error:
+```
+$ make
+# snip
+FAILED: libqemu-aarch64-softmmu.fa.p/target_arm_hvf_hvf.c.o 
+cc -Ilibqemu-aarch64-softmmu.fa.p -I. -I.. -Itarget/arm -I../target/arm -I../dtc/libfdt -I../capstone/include/capstone -Iqapi -Itrace -Iui -Iui/shader -I/opt/homebrew/Cellar/pixman/0.40.0/include/pixman-1 -I/opt/homebrew/Cellar/glib/2.72.1/include -I/opt/homebrew/Cellar/glib/2.72.1/include/glib-2.0 -I/opt/homebrew/Cellar/glib/2.72.1/lib/glib-2.0/include -I/opt/homebrew/opt/gettext/include -I/opt/homebrew/Cellar/pcre/8.45/include -fcolor-diagnostics -Wall -Winvalid-pch -std=gnu11 -O2 -g -iquote . -iquote /Users/duncanbayne/code/qemu -iquote /Users/duncanbayne/code/qemu/include -iquote /Users/duncanbayne/code/qemu/disas/libvixl -iquote /Users/duncanbayne/code/qemu/tcg/aarch64 -DOS_OBJECT_USE_OBJC=0 -D_GNU_SOURCE -D_FILE_OFFSET_BITS=64 -D_LARGEFILE_SOURCE -Wstrict-prototypes -Wredundant-decls -Wundef -Wwrite-strings -Wmissing-prototypes -fno-strict-aliasing -fno-common -fwrapv -Wold-style-definition -Wtype-limits -Wformat-security -Wformat-y2k -Winit-self -Wignored-qualifiers -Wempty-body -Wnested-externs -Wendif-labels -Wexpansion-to-defined -Wno-initializer-overrides -Wno-missing-include-dirs -Wno-shift-negative-value -Wno-string-plus-int -Wno-typedef-redefinition -Wno-tautological-type-limit-compare -Wno-psabi -fstack-protector-strong -DNEED_CPU_H '-DCONFIG_TARGET="aarch64-softmmu-config-target.h"' '-DCONFIG_DEVICES="aarch64-softmmu-config-devices.h"' -MD -MQ libqemu-aarch64-softmmu.fa.p/target_arm_hvf_hvf.c.o -MF libqemu-aarch64-softmmu.fa.p/target_arm_hvf_hvf.c.o.d -o libqemu-aarch64-softmmu.fa.p/target_arm_hvf_hvf.c.o -c ../target/arm/hvf/hvf.c
+../target/arm/hvf/hvf.c:586:15: error: unknown type name 'ARMCPRegInfo'; did you mean 'ARMCPUInfo'?
+        const ARMCPRegInfo *ri;
+              ^~~~~~~~~~~~
+              ARMCPUInfo
+../target/arm/cpu-qom.h:38:3: note: 'ARMCPUInfo' declared here
+} ARMCPUInfo;
+  ^
+../target/arm/hvf/hvf.c:589:14: error: implicit declaration of function 'get_arm_cp_reginfo' is invalid in C99 [-Werror,-Wimplicit-function-declaration]
+        ri = get_arm_cp_reginfo(arm_cpu->cp_regs, key);
+             ^
+../target/arm/hvf/hvf.c:589:12: warning: incompatible integer to pointer conversion assigning to 'const ARMCPUInfo *' (aka 'const struct ARMCPUInfo *') from 'int' [-Wint-conversion]
+        ri = get_arm_cp_reginfo(arm_cpu->cp_regs, key);
+           ^ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+../target/arm/hvf/hvf.c:591:26: error: no member named 'type' in 'struct ARMCPUInfo'
+            assert(!(ri->type & ARM_CP_NO_RAW));
+                     ~~  ^
+/Library/Developer/CommandLineTools/SDKs/MacOSX.sdk/usr/include/assert.h:99:25: note: expanded from macro 'assert'
+    (__builtin_expect(!(e), 0) ? __assert_rtn(__func__, __ASSERT_FILE_NAME, __LINE__, #e) : (void)0)
+                        ^
+../target/arm/hvf/hvf.c:591:33: error: use of undeclared identifier 'ARM_CP_NO_RAW'
+            assert(!(ri->type & ARM_CP_NO_RAW));
+                                ^
+1 warning and 4 errors generated.
+ninja: build stopped: subcommand failed.
+make[1]: *** [run-ninja] Error 1
+make: *** [all] Error 2
+```"""
+reproduce = """```
+git clone https://gitlab.com/qemu-project/qemu.git
+cd qemu
+./configure
+make
+```"""
+additional = """```
+$ cc --version
+Apple clang version 13.1.6 (clang-1316.0.21.2.5)
+Target: arm64-apple-darwin21.4.0
+Thread model: posix
+InstalledDir: /Library/Developer/CommandLineTools/usr/bin
+
+$ ninja --version
+1.10.2.git.kitware.jobserver-1
+```"""
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/1073.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/1073.toml
new file mode 100644
index 00000000..5085cc2c
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/1073.toml
@@ -0,0 +1,37 @@
+id = 1073
+title = "SIGABRT with -M raspi3b,accel=hvf on macOS"
+state = "closed"
+created_at = "2022-06-12T00:36:27.428Z"
+closed_at = "2022-06-27T22:55:20.049Z"
+labels = ["Closed::Fixed", "accel: HVF", "target: arm"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/1073"
+host-os = "macOS 12.4"
+host-arch = "arm64"
+qemu-version = "QEMU emulator version 7.0.50 (v7.0.0-1760-g30796f5567-dirty)"
+guest-os = "N/A"
+guest-arch = "N/A"
+description = """There is a `SIGUSR2` or `SIGUSR1` raised which causes QEMU to abort:
+```
+(lldb) bt
+* thread #3, stop reason = signal SIGUSR2
+  * frame #0: 0x0000000184c384a4 libsystem_kernel.dylib`__sigsuspend + 8
+    frame #1: 0x0000000100b7ff34 qemu-system-aarch64`qemu_coroutine_new at coroutine-sigaltstack.c:221:9
+    frame #2: 0x0000000100b91f0c qemu-system-aarch64`qemu_coroutine_create(entry=(qemu-system-aarch64`monitor_qmp_dispatcher_co at qmp.c:211), opaque=0x0000000000000000) at qemu-coroutine.c:90:14
+    frame #3: 0x0000000100a833d8 qemu-system-aarch64`monitor_init_globals_core at monitor.c:707:25
+```
+
+I tried skipping over it with `lldb`:
+```
+(lldb) b main
+(lldb) r
+(lldb) process handle SIGUSR1 -s false -p true
+(lldb) process handle SIGUSR2 -s false -p true
+(lldb) c
+qemu-system-aarch64: Unknown Error
+```
+
+I investigated the Unknown Error and and it's actually `HV_ILLEGAL_GUEST_STATE` which is unhandled in the `assert_hvf_ok` function. From here the VM will fail."""
+reproduce = """1. Get a fake disk. Or create a fake one with: `qemu-img create -f qcow2 zero.qcow2 2G`
+2. Run QEMU with the HVF accelerator: `qemu-system-aarch64 -M raspi3b,accel=hvf -drive id=card0,if=none,format=qcow2,index=0,file=./zero.qcow2 -device sd-card,drive=card0 -serial stdio
+`"""
+additional = """"""
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/1990.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/1990.toml
new file mode 100644
index 00000000..262bdb82
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/1990.toml
@@ -0,0 +1,29 @@
+id = 1990
+title = "qemu ASSERT [ArmCpuDxe] DefaultExceptionHandler.c:333 on Mac M3"
+state = "opened"
+created_at = "2023-11-20T22:51:55.968Z"
+closed_at = "n/a"
+labels = ["accel: HVF", "hostos: macOS", "target: arm"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/1990"
+host-os = "macOS Sonoma 14.1.1"
+host-arch = "aarch64"
+qemu-version = "8.1.2"
+guest-os = "fedora-coreos-39.20231101.2.1"
+guest-arch = "aarch64"
+description = """I am installing Podman 4.7.2 and `podman-machine` uses `qemu-system-aarch64` to boot up an embedded coreos image to run containers.
+With the new Apple M3 hardware, I am experiencing a QEMU assertion failure almost all of the time.
+
+![image](/uploads/372b9ae2dfaa2d70e704a0f30b1964f1/image.png)
+
+`ASSERT [ArmCpuDxe] /home/kraxel/projects/qemu/roms/edk2/ArmPkg/Library/DefaultExceptionHandlerLib/AArch64/DefaultExceptionHandler.c(333): ((BOOLEAN)(0==1))`
+
+I have been unable to get the full crash output - I didn't figure out how to resize the console any larger, and I tried a couple different ways to hook the console up to qemu stdout without any success. (since the kernel command line parameters are not passed in, but instead the image uses a bootloader)
+
+I believe this is the same issue I experience, but with a better capture of the crash:
+https://github.com/lima-vm/lima/issues/1996"""
+reproduce = """1. Use Mac M3 (Max in my case)
+2. Install Podman
+3. Run `podman-machine init`
+4. Run `podman-machine start --log-level=debug`
+5. Crash (almost certainly)"""
+additional = "n/a"
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/2665.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/2665.toml
new file mode 100644
index 00000000..f640b751
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/2665.toml
@@ -0,0 +1,23 @@
+id = 2665
+title = "target/arm: cannot boot when CPU supports SME"
+state = "closed"
+created_at = "2024-11-11T05:18:05.252Z"
+closed_at = "2025-03-03T12:11:47.718Z"
+labels = ["accel: HVF", "hostos: macOS", "target: arm"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/2665"
+host-os = "macOS"
+host-arch = "ARM64 (Apple M4)"
+qemu-version = "main branch"
+guest-os = "any"
+guest-arch = "ARM64"
+description = """On macOS 15.2 beta, Apple's Hypervisor.framework exposes the SME feat flag to QEMU. As a result, in `arm_cpu_sme_finalize`, `cpu_isar_feature(aa64_sme, cpu)` returns true and the program will always exit with the following:
+
+```
+qemu-aarch64-softmmu: cannot disable sme4224
+All SME vector lengths are disabled.
+With SME enabled, at least one vector length must be enabled.
+```
+
+This is because `vq_supported` and `vq_init` are both 0 as they are not initialized anywhere. It seems that in the original commit e74c097638d38b46d9c68f11565432034afc0ad0 the only place `cpu->sme_vq.supported` is initialized is with `aarch64_max_initfn` when KVM and HVF are not used as the backend."""
+reproduce = "n/a"
+additional = "n/a"
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/2938.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/2938.toml
new file mode 100644
index 00000000..c15f6093
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/2938.toml
@@ -0,0 +1,19 @@
+id = 2938
+title = "10.0.0 HVF x86_64 regression: can't boot NetBSD 10.1 with -smp 2"
+state = "opened"
+created_at = "2025-04-28T18:35:47.768Z"
+closed_at = "n/a"
+labels = ["accel: HVF", "guest: BSD", "target: arm"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/2938"
+host-os = "macOS 15.4.1"
+host-arch = "x86_64"
+qemu-version = "10.0.0 (built from pkgsrc)"
+guest-os = "NetBSD 10.1"
+guest-arch = "amd64"
+description = """Under 9.2.3, a NetBSD/amd64 10.1 guest with `-smp 2` booted and ran fine.
+
+Under 10.0.0, the same guest never finishes loading the kernel. It looks like it's retrying many times per second, possibly even reloading the NetBSD boot loader each time, though it's redrawing so fast I can't tell for sure. (I'll attempt to link to an asciinema capture shortly.) `-smp 1` lets the machine come up.
+
+For comparison, a NetBSD/aarch64 10.1 with `-smp 4` runs with `-accel hvf` under macOS/aarch64 15.4.1 just as well with 10.0.0 as it did with 9.2.3."""
+reproduce = """1. With x86 macOS host and NetBSD guest (possibly a wider range than the exact versions I'm currently using), attempt to boot NetBSD with `-smp 2`"""
+additional = """"""
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/743.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/743.toml
new file mode 100644
index 00000000..3cea56ff
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/743.toml
@@ -0,0 +1,21 @@
+id = 743
+title = "aarch64: Number of SMP CPUS exceeds max CPUs supported by machine (10 > 8) for M1 Pro/Max"
+state = "closed"
+created_at = "2021-11-23T01:25:52.101Z"
+closed_at = "2024-04-18T09:08:36.323Z"
+labels = ["accel: HVF", "target: arm"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/743"
+host-os = "macOS Monterey 12.0.1"
+host-arch = "ARM64"
+qemu-version = "6.1.0"
+guest-os = "N/A"
+guest-arch = "ARM64"
+description = """Trying to launch QEMU with more than 8 cores gives the following error:
+
+`qemu-system-aarch64: Number of SMP CPUs requested (10) exceeds max CPUs supported by machine 'mach-virt' (8)`
+
+Apple M1 Pro can have up to 10 cores while M1 Max only has 10 cores."""
+reproduce = """1. Install QEMU via homebrew (or MacPorts or from source)
+2. Run `qemu-system-aarch64 -machine virt,highmem=off -accel hvf -cpu cortex-a72 -smp 10`
+3. Get error, QEMU doesn't start"""
+additional = "n/a"
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/747.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/747.toml
new file mode 100644
index 00000000..699d1a0f
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/747.toml
@@ -0,0 +1,38 @@
+id = 747
+title = "hvf-accelerated aarch64 hangs when switching to big endian mode"
+state = "closed"
+created_at = "2021-11-24T19:30:04.332Z"
+closed_at = "2021-11-26T20:44:43.497Z"
+labels = ["Closed::WontFix", "accel: HVF", "target: arm", "workflow::Needs Info"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/747"
+host-os = "macOS Monterey Version 12.0.1"
+host-arch = "ARM"
+qemu-version = "QEMU emulator version 6.1.0"
+guest-os = "Gentoo Linux"
+guest-arch = "ARM (64 bit big endian)"
+description = """Trying to boot a big endian Linux kernel using the above command line on an M1 Mac Mini just hangs, there is not a single output.  However, by replacing `hvf` with `tcg`, the kernel boots up fine.  The kernel also starts if I use KVM acceleration on a Linux host system."""
+reproduce = """1. Build a Linux kernel for big endian arm64
+2. Try to boot it with -accel hvf on an M1 Mac
+3. Observe a lot of nothing happening  :-)"""
+additional = """Sample run, TCG vs HVF
+```
+mikan:/tmp% qemu-system-aarch64 -accel tcg -machine virt,highmem=off -cpu cortex-a72 -nographic -kernel /tmp/vmlinuz-5.10.76-gentoo-r1-arm64.be |& head -16
+[    0.000000] Booting Linux on physical CPU 0x0000000000 [0x410fd083]
+[    0.000000] Linux version 5.10.76-gentoo-r1-arm64 (root@localhost) (aarch64-unknown-linux-gnu-gcc (Gentoo 11.2.0 p1) 11.2.0, GNU ld (Gentoo 2.37_p1 p0) 2.37) #1 SMP Sun Nov 21 16:30:21 -00 2021
+[    0.000000] Machine model: linux,dummy-virt
+[    0.000000] NUMA: No NUMA configuration found
+[    0.000000] NUMA: Faking a node at [mem 0x0000000040000000-0x0000000047ffffff]
+[    0.000000] NUMA: NODE_DATA [mem 0x47f65300-0x47f76fff]
+[    0.000000] Zone ranges:
+[    0.000000]   DMA      [mem 0x0000000040000000-0x0000000047ffffff]
+[    0.000000]   DMA32    empty
+[    0.000000]   Normal   empty
+[    0.000000] Movable zone start for each node
+[    0.000000] Early memory node ranges
+[    0.000000]   node   0: [mem 0x0000000040000000-0x0000000047ffffff]
+[    0.000000] Initmem setup node 0 [mem 0x0000000040000000-0x0000000047ffffff]
+[    0.000000] psci: probing for conduit method from DT.
+[    0.000000] psci: PSCIv0.2 detected in firmware.
+mikan:/tmp% qemu-system-aarch64 -accel hvf -machine virt,highmem=off -cpu cortex-a72 -nographic -kernel /tmp/vmlinuz-5.10.76-gentoo-r1-arm64.be       
+```
+(followed by tumbleweeds)"""
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/797.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/797.toml
new file mode 100644
index 00000000..b45e72d1
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/797.toml
@@ -0,0 +1,17 @@
+id = 797
+title = "ARM64 hvf fails to boot Windows 11 on 6.2.0"
+state = "opened"
+created_at = "2021-12-29T23:23:49.727Z"
+closed_at = "n/a"
+labels = ["accel: HVF", "target: arm", "workflow::Triaged"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/797"
+host-os = "macOS 12.1"
+host-arch = "ARM64"
+qemu-version = "6.2.0"
+guest-os = "Windows 11"
+guest-arch = "ARM64"
+description = """On QEMU v6.1.0 with patches from @agraf manually applied, Windows 11 boots fine from the VHDX. Now that the patches have been mainlined, I would expect it to work the same but it gets stuck at EFI (no Windows "spinner")."""
+reproduce = """1. `brew install qemu`
+2. Download Windows 11 VHDX from https://www.microsoft.com/en-us/software-download/windowsinsiderpreviewARM64
+3. Run command from above."""
+additional = """"""
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/864.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/864.toml
new file mode 100644
index 00000000..91907f99
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/864.toml
@@ -0,0 +1,23 @@
+id = 864
+title = "HVF virtual counter diverges from CLOCK_VIRTUAL when the host sleeps"
+state = "opened"
+created_at = "2022-02-10T01:36:27.240Z"
+closed_at = "n/a"
+labels = ["accel: HVF", "target: arm"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/864"
+host-os = "macOS"
+host-arch = "arm64"
+qemu-version = "6621441db50d5bae7e34dbd04bf3c57a27a71b32"
+guest-os = "Fedora 35"
+guest-arch = "aarch64"
+description = """HVF's virtual counter diverges from `CLOCK_VIRTUAL` when the host sleeps and causes the inconsistency between Linux's system counter and everything else.
+
+HVF's virtual counter apparently relies on something similar to `mach_absolute_time`, which stops when the host sleeps and resumes after it wakes up. However, `CLOCK_VIRTUAL` is implemented with `mach_continuous_time`, which continues even while the host sleeps. Linux uses the virtual counter as the source of the system counter and sees inconsistencies between the system counter and the other devices."""
+reproduce = """1. Launch Fedora.
+2. Compare the time shown at the top of the guest display and one at the top of the host display. The difference should be less than 2 minutes.
+3. Let the host sleep for 3 minutes.
+4. Compare the times again. The difference is now greater than 2 minutes."""
+additional = """Here are solutions I've came up with so far. There are trade-offs but any of them should be better than the current situation. I'm happy to implement one if the maintainers have decided which one is the best or figure out a superior alternative.
+- Implement `cpus_get_virtual_clock` of `AccelOpsClass` with `mach_absolute_time`. It would make HVF inconsistent with the other accelerators. Linux also expects the virtual clock is "continuous" and it leaves the divergence from the real time.
+- Request XNU `HOST_NOTIFY_CALENDAR_CHANGE` to update the virtual clock with the continuous time. The interface is undocumented.
+- Use `IORegisterForSystemPower` to update the virtual clock with the continuous time. It is undocumented that the interface handles every cases where `mach_absolute_time` and `mach_continuous_time`, but it actually does if I read XNU's source code correctly."""
diff --git a/gitlab/issues/target_arm/host_missing/accel_HVF/949.toml b/gitlab/issues/target_arm/host_missing/accel_HVF/949.toml
new file mode 100644
index 00000000..fb965768
--- /dev/null
+++ b/gitlab/issues/target_arm/host_missing/accel_HVF/949.toml
@@ -0,0 +1,322 @@
+id = 949
+title = "M1 MacOS Panic with qemu version 6.2.0"
+state = "closed"
+created_at = "2022-03-30T10:16:33.564Z"
+closed_at = "2022-04-05T09:37:27.016Z"
+labels = ["accel: HVF", "hostos: macOS", "target: arm"]
+url = "https://gitlab.com/qemu-project/qemu/-/issues/949"
+host-os = "macOS Monterrey version 12.2.1"
+host-arch = "ARM"
+qemu-version = "QEMU emulator version 6.2.0`"
+guest-os = "Debian 11"
+guest-arch = "ARM"
+description = """After running the command above, the macbook freeze and reboots, here is the stacktrace:
+```
+panic(cpu 2 caller 0xfffffe001748de90): vm_fault() KERN_FAILURE from guest fault on state 0xfffffe600c57c000 @sleh.c:3091
+Debugger message: panic
+Memory ID: 0x1
+OS release type: User
+OS version: 21D62
+Kernel version: Darwin Kernel Version 21.3.0: Wed Jan  5 21:37:58 PST 2022; root:xnu-8019.80.24~20/RELEASE_ARM64_T6000
+Fileset Kernelcache UUID: FA4EB485BA9DC1EBAA5D0E80232A48CC
+Kernel UUID: BADF56F4-2876-3FF4-AC12-F25E78B09AA1
+iBoot version: iBoot-7429.81.3
+secure boot?: YES
+Paniclog version: 13
+KernelCache slide: 0x000000000f9e8000
+KernelCache base:  0xfffffe00169ec000
+Kernel slide:      0x000000001021c000
+Kernel text base:  0xfffffe0017220000
+Kernel text exec slide: 0x0000000010304000
+Kernel text exec base:  0xfffffe0017308000
+mach_absolute_time: 0x2c74ea4beb
+Epoch Time:        sec       usec
+  Boot    : 0x62437319 0x0002a603
+  Sleep   : 0x62441e87 0x00018bb3
+  Wake    : 0x62442289 0x00044ebb
+  Calendar: 0x62442c00 0x000ccb26
+
+Zone info:
+Foreign   : 0xfffffe001fb94000 - 0xfffffe001fba8000
+Native    : 0xfffffe10001a8000 - 0xfffffe30001a8000
+Readonly  : 0xfffffe14cce74000 - 0xfffffe1666808000
+Metadata  : 0xfffffe62f056c000 - 0xfffffe62fc4f0000
+Bitmaps   : 0xfffffe62fc4f0000 - 0xfffffe6302084000
+CORE 0 PVH locks held: None
+CORE 1 PVH locks held: None
+CORE 2 PVH locks held: None
+CORE 3 PVH locks held: None
+CORE 4 PVH locks held: None
+CORE 5 PVH locks held: None
+CORE 6 PVH locks held: None
+CORE 7 PVH locks held: None
+CORE 0: PC=0xfffffe001738ef4c, LR=0xfffffe001738ef4c, FP=0xfffffe60ba06bef0
+CORE 1: PC=0xfffffe001738ef4c, LR=0xfffffe001738ef4c, FP=0xfffffe60b7003ef0
+CORE 2 is the one that panicked. Check the full backtrace for details.
+CORE 3: PC=0xfffffe001738ef50, LR=0xfffffe001738ef4c, FP=0xfffffe600c773ef0
+CORE 4: PC=0xfffffe001738ef50, LR=0xfffffe001738ef4c, FP=0xfffffe60a4dabef0
+CORE 5: PC=0xfffffe001738ef50, LR=0xfffffe001738ef4c, FP=0xfffffe600c683ef0
+CORE 6: PC=0xfffffe001738ef50, LR=0xfffffe001738ef4c, FP=0xfffffe60a5553ef0
+CORE 7: PC=0xfffffe001738ef4c, LR=0xfffffe001738ef4c, FP=0xfffffe60b7ae3ef0
+Panicked task 0xfffffe2997ce2d48: 24310 pages, 11 threads: pid 12708: qemu-system-aarc
+Panicked thread: 0xfffffe1ffd861860, backtrace: 0xfffffe600c5c3300, tid: 97347
+\t\t  lr: 0xfffffe001735a4e8  fp: 0xfffffe600c5c3370
+\t\t  lr: 0xfffffe001735a1b8  fp: 0xfffffe600c5c33e0
+\t\t  lr: 0xfffffe001749a2bc  fp: 0xfffffe600c5c3400
+\t\t  lr: 0xfffffe001748c6c8  fp: 0xfffffe600c5c3480
+\t\t  lr: 0xfffffe001748a118  fp: 0xfffffe600c5c3540
+\t\t  lr: 0xfffffe001730f7f8  fp: 0xfffffe600c5c3550
+\t\t  lr: 0xfffffe0017359e2c  fp: 0xfffffe600c5c38f0
+\t\t  lr: 0xfffffe0017359e2c  fp: 0xfffffe600c5c3960
+\t\t  lr: 0xfffffe0017b6d738  fp: 0xfffffe600c5c3980
+\t\t  lr: 0xfffffe001748de90  fp: 0xfffffe600c5c39e0
+\t\t  lr: 0xfffffe001748da14  fp: 0xfffffe600c5c3a50
+\t\t  lr: 0xfffffe001731a828  fp: 0xfffffe600c5c3a60
+\t\t  lr: 0xfffffe00174a222c  fp: 0xfffffe600c5c3e50
+\t\t  lr: 0xfffffe001748a530  fp: 0xfffffe600c5c3f10
+\t\t  lr: 0xfffffe001730f7f8  fp: 0xfffffe600c5c3f20
+
+last started kext at 861542788: com.apple.driver.driverkit.serial\t6.0.0 (addr 0xfffffe00170fced0, size 3432)
+loaded kexts:
+com.apple.fileutil\t20.036.15
+com.apple.filesystems.autofs\t3.0
+com.apple.driver.AppleBiometricServices\t1
+com.apple.driver.CoreKDL\t1
+com.apple.driver.AppleTopCaseHIDEventDriver\t5020.1
+com.apple.driver.DiskImages.ReadWriteDiskImage\t493.0.0
+com.apple.driver.DiskImages.UDIFDiskImage\t493.0.0
+com.apple.driver.DiskImages.RAMBackingStore\t493.0.0
+com.apple.driver.DiskImages.FileBackingStore\t493.0.0
+com.apple.driver.SEPHibernation\t1
+com.apple.driver.BCMWLANFirmware4387.Hashstore\t1
+com.apple.filesystems.apfs\t1933.80.3
+com.apple.driver.AppleUSBDeviceNCM\t5.0.0
+com.apple.driver.AppleThunderboltIP\t4.0.3
+com.apple.driver.AppleFileSystemDriver\t3.0.1
+com.apple.nke.l2tp\t1.9
+com.apple.filesystems.tmpfs\t1
+com.apple.filesystems.lifs\t1
+com.apple.IOTextEncryptionFamily\t1.0.0
+com.apple.filesystems.hfs.kext\t582.60.2
+com.apple.security.BootPolicy\t1
+com.apple.BootCache\t40
+com.apple.AppleFSCompression.AppleFSCompressionTypeZlib\t1.0.0
+com.apple.AppleFSCompression.AppleFSCompressionTypeDataless\t1.0.0d1
+com.apple.AppleEmbeddedSimpleSPINORFlasher\t1
+com.apple.driver.ApplePMP\t1
+com.apple.driver.AppleCS42L84Audio\t530.2
+com.apple.driver.AppleSmartIO2\t1
+com.apple.driver.AppleSN012776Amp\t530.2
+com.apple.driver.AppleT6000SOCTuner\t1
+com.apple.driver.AppleT6000CLPCv3\t1
+com.apple.driver.AppleSmartBatteryManager\t161.0.0
+com.apple.driver.AppleALSColorSensor\t1.0.0d1
+com.apple.driver.AppleAOPVoiceTrigger\t100.1
+com.apple.driver.ApplePMPFirmware\t1
+com.apple.driver.AppleSPMIPMU\t1.0.1
+com.apple.driver.AppleM68Buttons\t1.0.0d1
+com.apple.driver.AppleSDXC\t3.1.1
+com.apple.driver.AppleSamsungSerial\t1.0.0d1
+com.apple.driver.AppleSerialShim\t1
+com.apple.AGXG13X\t188.10
+com.apple.driver.AppleAVD\t555
+com.apple.driver.AppleAVE2\t530.3.0
+com.apple.driver.AppleJPEGDriver\t4.7.9
+com.apple.driver.AppleProResHW\t128.2.0
+com.apple.driver.AppleMobileDispT600X-DCP\t140.0
+com.apple.driver.usb.AppleSynopsysUSB40XHCI\t1
+com.apple.driver.AppleMCDP29XXUpdateSupport\t1
+com.apple.driver.AppleDPDisplayTCON\t1
+com.apple.driver.AppleEventLogHandler\t1
+com.apple.driver.AppleS5L8960XNCO\t1
+com.apple.driver.AppleT6000PMGR\t1
+com.apple.driver.AppleS8000AES\t1
+com.apple.driver.AppleS8000DWI\t1.0.0d1
+com.apple.driver.AppleInterruptControllerV2\t1.0.0d1
+com.apple.driver.AppleT8110DART\t1
+com.apple.driver.AppleBluetoothModule\t1
+com.apple.driver.AppleBCMWLANBusInterfacePCIe\t1
+com.apple.driver.AppleS5L8920XPWM\t1.0.0d1
+com.apple.driver.AudioDMAController-T600x\t100.51
+com.apple.driver.AppleT6000DART\t1
+com.apple.driver.AppleSPIMC\t1
+com.apple.driver.AppleS5L8940XI2C\t1.0.0d2
+com.apple.driver.AppleT6000\t1
+com.apple.iokit.IOUserEthernet\t1.0.1
+com.apple.driver.usb.AppleUSBUserHCI\t1
+com.apple.iokit.IOKitRegistryCompatibility\t1
+com.apple.iokit.EndpointSecurity\t1
+com.apple.driver.AppleDiskImages2\t126.60.3
+com.apple.AppleSystemPolicy\t2.0.0
+com.apple.nke.applicationfirewall\t402
+com.apple.kec.InvalidateHmac\t1
+com.apple.kec.AppleEncryptedArchive\t1
+com.apple.driver.driverkit.serial\t6.0.0
+com.apple.kext.triggers\t1.0
+com.apple.iokit.IOAVBFamily\t1010.2
+com.apple.plugin.IOgPTPPlugin\t1000.11
+com.apple.iokit.IOEthernetAVBController\t1.1.0
+com.apple.driver.AppleMesaSEPDriver\t100.99
+com.apple.iokit.IOBiometricFamily\t1
+com.apple.driver.AppleHIDKeyboard\t228
+com.apple.driver.AppleActuatorDriver\t5430.21
+com.apple.driver.AppleMultitouchDriver\t5430.21
+com.apple.driver.AppleHSBluetoothDriver\t5020.1
+com.apple.driver.IOBluetoothHIDDriver\t9.0.0
+com.apple.driver.DiskImages.KernelBacked\t493.0.0
+com.apple.driver.AppleSEPHDCPManager\t1.0.1
+com.apple.driver.AppleTrustedAccessory\t1
+com.apple.iokit.AppleSEPGenericTransfer\t1
+com.apple.driver.AppleXsanScheme\t3
+com.apple.driver.usb.networking\t5.0.0
+com.apple.driver.AppleThunderboltUSBDownAdapter\t1.0.4
+com.apple.driver.AppleThunderboltPCIDownAdapter\t4.1.1
+com.apple.driver.AppleThunderboltDPInAdapter\t8.5.1
+com.apple.driver.AppleThunderboltDPAdapterFamily\t8.5.1
+com.apple.nke.ppp\t1.9
+com.apple.driver.AppleBSDKextStarter\t3
+com.apple.filesystems.hfs.encodings.kext\t1
+com.apple.driver.AppleConvergedIPCOLYBTControl\t1
+com.apple.driver.AppleConvergedPCI\t1
+com.apple.driver.AppleBluetoothDebug\t1
+com.apple.driver.AppleBTM\t1.0.1
+com.apple.driver.AppleHIDTransportSPI\t5400.30
+com.apple.driver.AppleHIDTransport\t5400.30
+com.apple.driver.AppleInputDeviceSupport\t5400.30
+com.apple.driver.AppleDCPDPTXProxy\t1.0.0
+com.apple.driver.DCPDPFamilyProxy\t1
+com.apple.driver.AppleDiagnosticDataAccessReadOnly\t1.0.0
+com.apple.driver.AppleCSEmbeddedAudio\t530.2
+com.apple.driver.ApplePassthroughPPM\t3.0
+com.apple.driver.AppleAOPAudio\t102.2
+com.apple.driver.AppleEmbeddedAudio\t530.2
+com.apple.iokit.AppleARMIISAudio\t100.1
+com.apple.driver.AppleSPU\t1
+com.apple.AGXFirmwareKextG13XRTBuddy\t188.10
+com.apple.AGXFirmwareKextRTBuddy64\t188.10
+com.apple.driver.AppleStockholmControl\t1.0.0
+com.apple.iokit.IONVMeFamily\t2.1.0
+com.apple.driver.AppleNANDConfigAccess\t1.0.0
+com.apple.driver.AppleDialogPMU\t1.0.1
+com.apple.driver.usb.AppleUSBHostPacketFilter\t1.0
+com.apple.iokit.IOGPUFamily\t35.11
+com.apple.driver.DCPAVFamilyProxy\t1
+com.apple.iokit.IOMobileGraphicsFamily-DCP\t343.0.0
+com.apple.driver.AppleDCP\t1
+com.apple.driver.AppleFirmwareKit\t1
+com.apple.iokit.IOMobileGraphicsFamily\t343.0.0
+com.apple.driver.AppleSPMI\t1.0.1
+com.apple.driver.AppleUSBXDCIARM\t1.0
+com.apple.driver.AppleUSBXDCI\t1.0
+com.apple.iokit.IOUSBDeviceFamily\t2.0.0
+com.apple.driver.usb.AppleSynopsysUSBXHCI\t1
+com.apple.driver.usb.AppleUSBXHCI\t1.2
+com.apple.driver.AppleEmbeddedUSBHost\t1
+com.apple.driver.usb.AppleUSBHub\t1.2
+com.apple.driver.usb.AppleUSBHostCompositeDevice\t1.2
+com.apple.driver.AppleT6000TypeCPhy\t1
+com.apple.driver.AppleT8103TypeCPhy\t1
+com.apple.driver.AppleHPM\t3.4.4
+com.apple.driver.AppleSART\t1
+com.apple.driver.ApplePMGR\t1
+com.apple.driver.AppleARMWatchdogTimer\t1
+com.apple.driver.AppleDisplayCrossbar\t1.0.0
+com.apple.iokit.IODisplayPortFamily\t1.0.0
+com.apple.driver.AppleTypeCPhy\t1
+com.apple.driver.AppleThunderboltNHI\t7.2.8
+com.apple.driver.AppleT6000PCIeC\t1
+com.apple.iokit.IOThunderboltFamily\t9.3.3
+com.apple.driver.ApplePIODMA\t1
+com.apple.driver.AppleT600xPCIe\t1
+com.apple.driver.AppleMultiFunctionManager\t1
+com.apple.driver.AppleBluetoothDebugService\t1
+com.apple.driver.AppleBCMWLANCore\t1.0.0
+com.apple.iokit.IO80211Family\t1200.12.2b1
+com.apple.driver.IOImageLoader\t1.0.0
+com.apple.driver.AppleOLYHAL\t1
+com.apple.driver.corecapture\t1.0.4
+com.apple.driver.AppleEmbeddedPCIE\t1
+com.apple.driver.AppleMCA2-T600x\t600.95
+com.apple.driver.AppleEmbeddedAudioLibs\t100.9.1
+com.apple.driver.AppleFirmwareUpdateKext\t1
+com.apple.driver.AppleH13CameraInterface\t4.87.0
+com.apple.driver.AppleH10PearlCameraInterface\t17.0.3
+com.apple.driver.AppleGPIOICController\t1.0.2
+com.apple.driver.AppleFireStormErrorHandler\t1
+com.apple.driver.AppleMobileApNonce\t1
+com.apple.iokit.IOTimeSyncFamily\t1000.11
+com.apple.driver.DiskImages\t493.0.0
+com.apple.iokit.IOGraphicsFamily\t593
+com.apple.iokit.IOBluetoothSerialManager\t9.0.0
+com.apple.iokit.IOBluetoothHostControllerUSBTransport\t9.0.0
+com.apple.iokit.IOBluetoothHostControllerUARTTransport\t9.0.0
+com.apple.iokit.IOBluetoothHostControllerTransport\t9.0.0
+com.apple.driver.IOBluetoothHostControllerPCIeTransport\t9.0.0
+com.apple.iokit.IOBluetoothFamily\t9.0.0
+com.apple.driver.FairPlayIOKit\t68.13.1
+com.apple.iokit.CSRBluetoothHostControllerUSBTransport\t9.0.0
+com.apple.iokit.BroadcomBluetoothHostControllerUSBTransport\t9.0.0
+com.apple.driver.AppleSSE\t1.0
+com.apple.driver.AppleSEPKeyStore\t2
+com.apple.driver.AppleUSBTDM\t532.40.7
+com.apple.iokit.IOUSBMassStorageDriver\t209.40.6
+com.apple.iokit.IOPCIFamily\t2.9
+com.apple.iokit.IOSCSIBlockCommandsDevice\t452.60.2
+com.apple.iokit.IOSCSIArchitectureModelFamily\t452.60.2
+com.apple.driver.AppleIPAppender\t1.0
+com.apple.driver.AppleFDEKeyStore\t28.30
+com.apple.driver.AppleEffaceableStorage\t1.0
+com.apple.driver.AppleCredentialManager\t1.0
+com.apple.driver.KernelRelayHost\t1
+com.apple.iokit.IOUSBHostFamily\t1.2
+com.apple.driver.AppleUSBHostMergeProperties\t1.2
+com.apple.driver.usb.AppleUSBCommon\t1.0
+com.apple.driver.AppleSMC\t3.1.9
+com.apple.driver.RTBuddy\t1.0.0
+com.apple.driver.AppleEmbeddedTempSensor\t1.0.0
+com.apple.driver.AppleARMPMU\t1.0
+com.apple.iokit.IOAccessoryManager\t1.0.0
+com.apple.driver.AppleOnboardSerial\t1.0
+com.apple.iokit.IOSkywalkFamily\t1.0
+com.apple.driver.mDNSOffloadUserClient\t1.0.1b8
+com.apple.iokit.IONetworkingFamily\t3.4
+com.apple.iokit.IOSerialFamily\t11
+com.apple.driver.AppleSEPManager\t1.0.1
+com.apple.driver.AppleA7IOP\t1.0.2
+com.apple.driver.IOSlaveProcessor\t1
+com.apple.driver.AppleBiometricSensor\t2
+com.apple.iokit.IOHIDFamily\t2.0.0
+com.apple.iokit.CoreAnalyticsFamily\t1
+com.apple.driver.AppleANELoadBalancer\t5.35.2
+com.apple.driver.AppleH11ANEInterface\t5.35.0
+com.apple.AUC\t1.0
+com.apple.iokit.IOAVFamily\t1.0.0
+com.apple.iokit.IOHDCPFamily\t1.0.0
+com.apple.iokit.IOCECFamily\t1
+com.apple.iokit.IOAudio2Family\t1.0
+com.apple.driver.AppleIISController\t100.1
+com.apple.driver.AppleAudioClockLibs\t100.9.1
+com.apple.driver.AppleM2ScalerCSCDriver\t265.0.0
+com.apple.iokit.IOSurface\t302.11.1
+com.apple.driver.IODARTFamily\t1
+com.apple.security.quarantine\t4
+com.apple.security.sandbox\t300.0
+com.apple.kext.AppleMatch\t1.0.0d1
+com.apple.driver.AppleMobileFileIntegrity\t1.0.5
+com.apple.security.AppleImage4\t4.2.0
+com.apple.kext.CoreTrust\t1
+com.apple.iokit.IOCryptoAcceleratorFamily\t1.0.1
+com.apple.driver.AppleARMPlatform\t1.0.2
+com.apple.iokit.IOStorageFamily\t2.1
+com.apple.iokit.IOSlowAdaptiveClockingFamily\t1.0.0
+com.apple.iokit.IOReportFamily\t47
+com.apple.kec.pthread\t1
+com.apple.kec.Libm\t1
+com.apple.kec.corecrypto\t12.0
+
+
+
+** Stackshot Succeeded ** Bytes Traced 456730 (Uncompressed 1205472) **
+```"""
+reproduce = """1. run the qemu command above"""
+additional = """"""