diff options
Diffstat (limited to 'gitlab/issues/target_mips/host_missing/accel_missing')
31 files changed, 959 insertions, 0 deletions
diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/115.toml b/gitlab/issues/target_mips/host_missing/accel_missing/115.toml new file mode 100644 index 000000000..fc70fa18a --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/115.toml @@ -0,0 +1,15 @@ +id = 115 +title = "shmat fails on 32-to-64 setup" +state = "closed" +created_at = "2021-05-04T05:44:50.085Z" +closed_at = "2024-03-05T11:17:44.466Z" +labels = ["Closed::Fixed", "Launchpad", "linux-user", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/115" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1238.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1238.toml new file mode 100644 index 000000000..b59d18a2a --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1238.toml @@ -0,0 +1,131 @@ +id = 1238 +title = "qemu-mipsn32el and qemu-mipsn32 problems with coreutils-9*, fadvise64 or fallocate related?" +state = "closed" +created_at = "2022-09-30T17:24:38.478Z" +closed_at = "2023-02-06T09:35:42.826Z" +labels = ["linux-user", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1238" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "both 7.0 and 7.1" +guest-os = "n/a" +guest-arch = "n/a" +description = """- Recently about 15 of the ca. 250 packages in our system set fail during `make install`. A typical error is +> `/usr/bin/install: error deallocating '/var/tmp/portage/sys-apps/groff-1.22.4/image/usr/bin/troff': Invalid argument` +- Given the timing and the involved binaries (most of the times `install`, but also `cp`), I suspect this was triggered by coreutils-9 +- The problem seems to only occur on ext4 (our release engineering box), but not on btrfs (my home development box) +- The problem seems to be limited to n32 (both big and little endian) + +Here's a run with strace functionality enabled: + +``` +dilfridge-mips64el-n32 /var/tmp/portage/sys-apps/groff-1.22.4/work/groff-1.22.4 # /usr/bin/qemu-mipsn32el -strace /usr/bin/install troff '/var/tmp/portage/sys-apps/groff-1.22.4/image/usr/bin' +3216 brk(NULL) = 0x40032000 +3216 mmap(NULL,8192,PROT_READ|PROT_WRITE,MAP_PRIVATE|MAP_ANONYMOUS,-1,0) = 0x3f7ba000 +3216 uname(0x3fffebb0) = 0 +3216 access("/etc/ld.so.preload",R_OK) = -1 errno=2 (No such file or directory) +3216 openat(AT_FDCWD,"/etc/ld.so.cache",O_RDONLY|O_LARGEFILE|O_CLOEXEC) = 3 +3216 statx(3,"",AT_EMPTY_PATH|AT_NO_AUTOMOUNT,STATX_BASIC_STATS,0x3fffe280) = 0 +3216 mmap(NULL,11294,PROT_READ,MAP_PRIVATE,3,0) = 0x3f7b7000 +3216 close(3) = 0 +3216 openat(AT_FDCWD,"/lib32/libacl.so.1",O_RDONLY|O_LARGEFILE|O_CLOEXEC) = 3 +3216 read(3,0x3fffe4c4,512) = 512 +3216 statx(3,"",AT_EMPTY_PATH|AT_NO_AUTOMOUNT,STATX_BASIC_STATS,0x3fffe220) = 0 +3216 mmap(NULL,197008,PROT_NONE,MAP_PRIVATE|MAP_ANONYMOUS,-1,0) = 0x3f786000 +3216 mmap(0x3f790000,131472,PROT_EXEC|PROT_READ,MAP_PRIVATE|MAP_DENYWRITE|MAP_FIXED,3,0) = 0x3f790000 +3216 munmap(0x3f786000,40960) = 0 +3216 munmap(0x3f7b1000,20880) = 0 +3216 mprotect(0x3f797000,98304,PROT_NONE) = 0 +3216 mmap(0x3f7af000,8192,PROT_READ|PROT_WRITE,MAP_PRIVATE|MAP_DENYWRITE|MAP_FIXED,3,0xf000) = 0x3f7af000 +3216 close(3) = 0 +3216 openat(AT_FDCWD,"/lib32/libattr.so.1",O_RDONLY|O_LARGEFILE|O_CLOEXEC) = 3 +3216 read(3,0x3fffe4b4,512) = 512 +3216 statx(3,"",AT_EMPTY_PATH|AT_NO_AUTOMOUNT,STATX_BASIC_STATS,0x3fffe210) = 0 +3216 mmap(NULL,196864,PROT_NONE,MAP_PRIVATE|MAP_ANONYMOUS,-1,0) = 0x3f75f000 +3216 mmap(0x3f760000,131328,PROT_EXEC|PROT_READ,MAP_PRIVATE|MAP_DENYWRITE|MAP_FIXED,3,0) = 0x3f760000 +3216 munmap(0x3f75f000,4096) = 0 +3216 munmap(0x3f781000,57600) = 0 +3216 mprotect(0x3f764000,110592,PROT_NONE) = 0 +3216 mmap(0x3f77f000,8192,PROT_READ|PROT_WRITE,MAP_PRIVATE|MAP_DENYWRITE|MAP_FIXED,3,0xf000) = 0x3f77f000 +3216 close(3) = 0 +3216 openat(AT_FDCWD,"/lib32/libc.so.6",O_RDONLY|O_LARGEFILE|O_CLOEXEC) = 3 +3216 read(3,0x3fffe4a4,512) = 512 +3216 pread64(3,1073734640,32,34504,1065377824,0) = 32 +3216 statx(3,"",AT_EMPTY_PATH|AT_NO_AUTOMOUNT,STATX_BASIC_STATS,0x3fffe200) = 0 +3216 mmap(NULL,2056864,PROT_NONE,MAP_PRIVATE|MAP_ANONYMOUS,-1,0) = 0x3f569000 +3216 mmap(0x3f570000,1991328,PROT_EXEC|PROT_READ,MAP_PRIVATE|MAP_DENYWRITE|MAP_FIXED,3,0) = 0x3f570000 +3216 munmap(0x3f569000,28672) = 0 +3216 munmap(0x3f757000,33440) = 0 +3216 mprotect(0x3f73c000,61440,PROT_NONE) = 0 +3216 mmap(0x3f74b000,28672,PROT_READ|PROT_WRITE,MAP_PRIVATE|MAP_DENYWRITE|MAP_FIXED,3,0x1cb000) = 0x3f74b000 +3216 mmap(0x3f752000,17056,PROT_READ|PROT_WRITE,MAP_PRIVATE|MAP_ANONYMOUS|MAP_FIXED,-1,0) = 0x3f752000 +3216 close(3) = 0 +3216 mmap(NULL,8192,PROT_READ|PROT_WRITE,MAP_PRIVATE|MAP_ANONYMOUS,-1,0) = 0x3f569000 +3216 set_thread_area(0x3f570580) = 0 +3216 set_tid_address(1062637704,1065348616,1065377824,0,-1,0) = 3216 +3216 set_robust_list(1062637712,12,1065377824,0,-1,0) = -1 errno=89 (Function not implemented) +3216 Unknown syscall 6331 +3216 mprotect(0x3f74b000,16384,PROT_READ) = 0 +3216 mprotect(0x3f77f000,4096,PROT_READ) = 0 +3216 mprotect(0x3f7af000,4096,PROT_READ) = 0 +3216 mprotect(0x4002e000,4096,PROT_READ) = 0 +3216 mprotect(0x3f7fc000,8192,PROT_READ) = 0 +3216 getrlimit(3,1073737152,1064664656,1062638996,1064337736,1064664656) = 0 +3216 munmap(0x3f7b7000,11294) = 0 +3216 getrandom(1064649956,4,1,1064337736,2130640639,1077952576) = 4 +3216 brk(NULL) = 0x40032000 +3216 brk(0x40053000) = 0x40053000 +3216 brk(0x40054000) = 0x40054000 +3216 openat(AT_FDCWD,"/usr/lib/locale/locale-archive",O_RDONLY|O_LARGEFILE|O_CLOEXEC) = 3 +3216 statx(3,"",AT_EMPTY_PATH|AT_NO_AUTOMOUNT,STATX_BASIC_STATS,0x3fffed58) = 0 +3216 mmap(NULL,2097152,PROT_READ,MAP_PRIVATE,3,0) = 0x3f369000 +3216 close(3) = 0 +3216 geteuid() = 0 +3216 umask(0) = 18 +3216 openat(AT_FDCWD,"/var/tmp/portage/sys-apps/groff-1.22.4/image/usr/bin",O_RDONLY|O_DIRECTORY|O_LARGEFILE|O_PATH) = 3 +3216 statx(AT_FDCWD,"troff",AT_NO_AUTOMOUNT,STATX_BASIC_STATS,0x3fffe998) = 0 +3216 statx(3,"troff",AT_NO_AUTOMOUNT|AT_SYMLINK_NOFOLLOW,STATX_BASIC_STATS,0x3fffe998) = 0 +3216 unlinkat(3,"troff",0) = 0 +3216 openat(AT_FDCWD,"troff",O_RDONLY|O_LARGEFILE) = 4 +3216 statx(4,"",AT_EMPTY_PATH|AT_NO_AUTOMOUNT,STATX_BASIC_STATS,0x3fffe998) = 0 +3216 openat(3,"troff",O_WRONLY|O_CREAT|O_EXCL|O_LARGEFILE,0600) = 5 +3216 ioctl(5,FICLONE,4) = -1 errno=122 (Operation not supported) +3216 statx(5,"",AT_EMPTY_PATH|AT_NO_AUTOMOUNT,STATX_BASIC_STATS,0x3fffe998) = 0 +3216 lseek(4,0,SEEK_DATA) = 0 +3216 fadvise64(4,0,0,2,1664557525,0) = -1 errno=22 (Invalid argument) +3216 lseek(4,0,SEEK_HOLE) = 716800 +3216 lseek(4,0,SEEK_SET) = 0 +3216 mmap(NULL,139264,PROT_READ|PROT_WRITE,MAP_PRIVATE|MAP_ANONYMOUS,-1,0) = 0x3f347000 +3216 read(4,0x3f348000,131072) = 131072 +3216 write(5,0x3f348000,122880) = 122880 +3216 read(4,0x3f348000,131072) = 131072 +3216 lseek(5,12288,SEEK_CUR) = 135168 +3216 fallocate(5,FALLOC_FL_KEEP_SIZE|FALLOC_FL_PUNCH_HOLE,122880,4290510848) = -1 errno=22 (Invalid argument) +3216 openat(AT_FDCWD,"/usr/share/locale/locale.alias",O_RDONLY|O_CLOEXEC) = 6 +3216 statx(6,"",AT_EMPTY_PATH|AT_NO_AUTOMOUNT,STATX_BASIC_STATS,0x3fffe2c8) = 0 +3216 read(6,0x400333a0,4096) = 2998 +3216 read(6,0x400333a0,4096) = 0 +3216 close(6) = 0 +3216 openat(AT_FDCWD,"/usr/share/locale/C.UTF-8/LC_MESSAGES/coreutils.mo",O_RDONLY) = -1 errno=2 (No such file or directory) +3216 openat(AT_FDCWD,"/usr/share/locale/C.utf8/LC_MESSAGES/coreutils.mo",O_RDONLY) = -1 errno=2 (No such file or directory) +3216 openat(AT_FDCWD,"/usr/share/locale/C/LC_MESSAGES/coreutils.mo",O_RDONLY) = -1 errno=2 (No such file or directory) +3216 write(2,0x3fffc888,18)/usr/bin/install: = 18 +3216 write(2,0x3fffc8b8,79)error deallocating '/var/tmp/portage/sys-apps/groff-1.22.4/image/usr/bin/troff' = 79 +3216 openat(AT_FDCWD,"/usr/share/locale/C.UTF-8/LC_MESSAGES/libc.mo",O_RDONLY) = -1 errno=2 (No such file or directory) +3216 openat(AT_FDCWD,"/usr/share/locale/C.utf8/LC_MESSAGES/libc.mo",O_RDONLY) = -1 errno=2 (No such file or directory) +3216 openat(AT_FDCWD,"/usr/share/locale/C/LC_MESSAGES/libc.mo",O_RDONLY) = -1 errno=2 (No such file or directory) +3216 write(2,0x3fffc428,18): Invalid argument = 18 +3216 write(2,0x3fffc858,1) + = 1 +3216 close(5) = 0 +3216 close(4) = 0 +3216 munmap(0x3f347000,139264) = 0 +3216 lseek(0,0,SEEK_CUR) = -1 errno=29 (Illegal seek) +3216 close(0) = 0 +3216 close(1) = 0 +3216 close(2)dilfridge-mips64el-n32 /var/tmp/portage/sys-apps/groff-1.22.4/work/groff-1.22.4 # +``` + +More information and debugging on request. Any advice is appreciated.""" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1251.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1251.toml new file mode 100644 index 000000000..e3089007d --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1251.toml @@ -0,0 +1,25 @@ +id = 1251 +title = "Octeon Instruction BBIT Bug" +state = "closed" +created_at = "2022-10-12T05:01:21.815Z" +closed_at = "2022-12-07T16:08:30.602Z" +labels = ["target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1251" +host-os = "All" +host-arch = "All" +qemu-version = "7.1.50" +guest-os = "Userspace" +guest-arch = "mips64" +description = "n/a" +reproduce = """1. Compile 64bit binary for Octeon with Octeon instructions +`mips64-octeon-linux-gnu-gcc -o hello hello.c` +2. Run with `qemu-mips64` +`qemu-mips64 -cpu Octeon68XX hello` +3. Get the output below: +``` +qemu: uncaught target signal 4 (Illegal instruction) - core dumped +Illegal instruction +```""" +additional = """I have a patch for this that I will be submitting to trivial-patches. This is not enough to emulate Octeon specific binaries alone. For small binaries mapping the `CVMSEG_LM = 0xFFFFFFFFFFFF8000 - 0xFFFFFFFFFFFF9FFF` to empty RAM and using this patch is enough. There are additional support issues for `N32` binaries that will require a separate issue. + +[hello](/uploads/d8b5e631508fd232b4a7b3a40f7e08f6/hello)""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1531.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1531.toml new file mode 100644 index 000000000..6899ad129 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1531.toml @@ -0,0 +1,23 @@ +id = 1531 +title = "MIPSr6+MSA emulation is broken in QEMU 6.2.0 (Ubuntu 22.04 LTS) and 7.0.0" +state = "closed" +created_at = "2023-03-04T17:46:57.576Z" +closed_at = "2023-03-29T11:09:08.357Z" +labels = ["Closed::WontFix", "Stable::obsolete", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1531" +host-os = "Ubuntu MATE 22.04.2 LTS" +host-arch = "x86_64" +qemu-version = "6.2.0, 7.0.0 (any other version prior to or after, they are all good)" +guest-os = "n/a" +guest-arch = "n/a" +description = """Many tests (8,11,12,13,15,19,23,30,31,36) are failing due to QEMU emulation problem.""" +reproduce = """1. Download the source code from https://github.com/VectorChief/UniSIMD-assembler (master or v1.1.0c) +2. Change to project's test directory and build the binary for MIPS using cross-compiler (see simd_make_m64.mk) +3. Run the binary with QEMU linux-user mode: qemu-mips64el -cpu I6400 simd_test.m64f32Lr6 -c 1 | tee qemu64 +4. Check the output text file qemu64 (with pluma or any other text editor) to see the error printouts""" +additional = """The pre-built binary and its output file are attached as test.tar.gz +[test.tar.gz](/uploads/7a54ba10919a1b221dd8ea0e8c02c064/test.tar.gz) + +Please note, that standalone cross-compiler for MIPS downloaded from the site +(Codescape.GNU.Tools.Package.2020.06-01.for.MIPS.MTI.Linux.CentOS-6.x86_64.tar.gz) +comes with its own version of QEMU 4.1.0 which masks the system's QEMU when added to the PATH.""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1624.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1624.toml new file mode 100644 index 000000000..5d0fb2373 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1624.toml @@ -0,0 +1,31 @@ +id = 1624 +title = "8.0.0: Crash when emulating MIPS executable" +state = "closed" +created_at = "2023-04-25T22:07:03.976Z" +closed_at = "2023-11-08T14:18:12.756Z" +labels = ["linux-user", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1624" +host-os = "Ubuntu 20.04.6 LTS" +host-arch = "x86_64" +qemu-version = "8.0.0 (any version starting from 6.0.0)" +guest-os = "n/a" +guest-arch = "n/a" +description = """A change to QEMU introduced within the 6.0.0 development cycle causes MIPS executable to crash. +Similar problem occurred within the same time-frame for Aarch64 executables, but was fixed. +Patches in QEMU causing both Aarch64 and MIPS occurrences are identified and attached below.""" +reproduce = """1. Download attached core_test.zip archive. +2. Run pre-built MIPS executable with QEMU. +3. Observe the crash somewhere in tdelete. +4. Source for the test is here: https://github.com/VectorChief/QuadRay-engine +5. The binaries were built with GCC 9.4 cross-compilers using slightly modified makefiles (-ggdb3) for gdb-multiarch +6. Building on Ubuntu 22.04 and Ubuntu 23.04 also reproduces the problem, so it's not OS or compiler specific.""" +additional = """Archive with pre-built binaries: [core_test.zip](/uploads/529833c6f83aeec253df647a94868f8a/core_test.zip) + +Patch breaking Aarch64: [qemu_arm_br.diff](/uploads/476321e40a551e964be41a8bfda96613/qemu_arm_br.diff) +commit 8fe35e0444be88de4e3ab80a2a0e210a1f6d663d + +Patch fixing Aarch64: [qemu_arm_fix.diff](/uploads/2db3892d6839e9a4dfaf427359d6f004/qemu_arm_fix.diff) +commit ae30e86661b0f48562cd95918d37cbeec5d02262 + +Patch breaking MIPS: [qemu_mips_br.diff](/uploads/0a482e61c1245e5783364db845a55dfa/qemu_mips_br.diff) +commit 96e5b4c7584d623f6cdcb0083829c19141b2b130""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1639.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1639.toml new file mode 100644 index 000000000..8c9192918 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1639.toml @@ -0,0 +1,15 @@ +id = 1639 +title = "No supported machine for loongson-3A4000 mips64el" +state = "opened" +created_at = "2023-05-09T03:57:18.666Z" +closed_at = "n/a" +labels = ["target: mips", "workflow::Patch available"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1639" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1660.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1660.toml new file mode 100644 index 000000000..614add3c4 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1660.toml @@ -0,0 +1,15 @@ +id = 1660 +title = "tests/avocado/linux_ssh_mips_malta.py references mips image URLs that doesn't exist any more" +state = "opened" +created_at = "2023-05-18T09:42:20.049Z" +closed_at = "n/a" +labels = ["Tests", "kind::Bug", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1660" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1722.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1722.toml new file mode 100644 index 000000000..89c188635 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1722.toml @@ -0,0 +1,95 @@ +id = 1722 +title = "qemu-mipsn32: Illegal Instruction at `exts` instruction" +state = "closed" +created_at = "2023-06-23T00:26:09.313Z" +closed_at = "2024-08-20T06:50:14.350Z" +labels = ["target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1722" +host-os = "Ubuntu 20.04.1" +host-arch = "x86_64" +qemu-version = "8.0.50" +guest-os = "- OS/kernel version:" +guest-arch = "N32 MIPS64" +description = """Run with the command above, I got this error: + +``` +qemu-mipsn32 run +qemu: uncaught target signal 4 (Illegal instruction) - core dumped +Illegal instruction (core dumped) +``` + +I then tried to debug the program with qemu option `-g 1234` and know that + +``` +$ gdb-multiarch run +... + +pwndbg> target remote 0:1234 +... + +pwndbg> c +Continuing. + +Program received signal SIGILL, Illegal instruction. +0x3f7d2434 in ?? () from /lib32/ld.so.1 +warning: GDB can't find the start of the function at 0x3f7d2434. +x/10i + +pwndbg> x/10i $pc +=> 0x3f7d2434:\t0x7047f03a + 0x3f7d2438:\tlui\ta3,0x7000 + 0x3f7d243c:\tori\ta3,a3,0x5e + 0x3f7d2440:\tb\t0x3f7d241c + 0x3f7d2444:\tsubu\tv0,a3,v0 + 0x3f7d2448:\tsltiu\ta7,a3,-3 + 0x3f7d244c:\tbnezl\ta7,0x3f7d246c + 0x3f7d2450:\tsubu\ta3,a4,v0 + 0x3f7d2454:\taddiu\ta3,a3,1 + 0x3f7d2458:\tli\tv0,-4 +``` + +So I know the problem is in libc32/ld.so.1. When I dissasemble that file and look at offset 0x4434, it's an `exts` instruction as below: + +``` +$ file /lib32/ld.so.1 +/lib32/ld-2.15.so: ELF 32-bit MSB shared object, MIPS, N32 MIPS64 rel2 version 1 (SYSV), dynamically linked, stripped + +$ ./mips64-n32--glibc--stable-2022.08-1/bin/mips64-buildroot-linux-gnu-objdump -d /lib32/ld.so.1 | less + ... + 4434: 7047f03a exts a3,v0,0x0,0x1e + 4438: 3c077000 lui a3,0x7000 + 443c: 34e7005e ori a3,a3,0x5e + 4440: 1000fff6 b 441c <GLIBC_2.0@@GLIBC_2.0+0x441c> + 4444: 00e21023 subu v0,a3,v0 + 4448: 2cebfffd sltiu a7,a3,-3 + 444c: 55600007 bnezl a7,446c <GLIBC_2.0@@GLIBC_2.0+0x446c> + 4450: 01023823 subu a3,a4,v0 + 4454: 24e70001 addiu a3,a3,1 + 4458: 2402fffc li v0,-4 +```""" +reproduce = """1. Download toolchain of mips64-n32 on toolchains.bootlin.com [here](https://toolchains.bootlin.com/releases_mips64-n32.html) +2. Write this c code to file `run.c`: + +```c +#include <stdio.h> + +int main(){ +\tputs("hello world"); +\twhile (1); +} +``` + +3. Compile file run.c with downloaded toolchain: + +``` +mips64-n32--glibc--stable-2022.08-1/bin/mips64-buildroot-linux-gnu-gcc run.c -o run +``` + +> Step 1, 2 and 3 can be skip if you download the attached `run` file. + +4. Download the attached ld +5. Make new dir at `/lib32` and move the file ld to `/lib32` +6. Run command `qemu-mipsn32 run`""" +additional = """[ld-2.15.so](/uploads/95f4da26e42d43d39aa2350670134bb5/ld-2.15.so) + +[run](/uploads/01be57442009a75cf2f59cbcf53474f4/run)""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1806.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1806.toml new file mode 100644 index 000000000..d6c961254 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1806.toml @@ -0,0 +1,17 @@ +id = 1806 +title = "Tests: YAMON binaries unavailable" +state = "closed" +created_at = "2023-08-03T20:23:36.799Z" +closed_at = "2024-08-09T17:29:27.372Z" +labels = ["Tests", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1806" +host-os = "n/a" +host-arch = "MIPS" +qemu-version = "master" +guest-os = "n/a" +guest-arch = "MIPS" +description = """The [tests for MIPS](https://gitlab.com/qemu-project/qemu/-/blame/master/tests/avocado/machine_mips_malta.py#L127) download the YAMON firmware binaries, however that link does not exist anymore. It appears that it may have [moved to ](https://www.mips.com/develop/tools/boot-loaders/)mips.com (or maybe that's where it came from?), which states "To support existing users of these, and the QEMU project, YAMON is now available under the GPL License." However those links are also dead. I've not been able to find the referenced binaries or source anywhere. @philmd, do you happen to have a copy you can upload? Alternatively, I've found the 2.16 source [here](https://github.com/binsgit/mips-yamon). + +Another alternative would be to use U-boot, which is easy to get a hold of and would work for this test (just getting to a prompt, although I've had issues with it being able to access an IDE drive). I haven't found prebuilt binaries for MIPS and u-boot though.""" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1922.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1922.toml new file mode 100644 index 000000000..455e879f1 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1922.toml @@ -0,0 +1,28 @@ +id = 1922 +title = "loongson3-virt machine fails to bring up secondary CPUs" +state = "opened" +created_at = "2023-10-05T17:26:24.324Z" +closed_at = "n/a" +labels = ["target: mips", "workflow::Patch available"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1922" +host-os = "Gentoo Linux" +host-arch = "ppc64el" +qemu-version = "QEMU emulator version 8.1.1" +guest-os = "Debian 12" +guest-arch = "mips64el" +description = """When booting Debian netboot on `loongson3-virt` machine with SMP, cores other than number 0 fail to come up. Boot without SMP is successful. + +I provided the details of the first combination I tested, but I have also tested on an x86_64 host, as well as with Debian 11 (kernel `5.10.0-22-loongson-3`) on both hosts, with the same results.""" +reproduce = """1. `wget https://ftp.debian.org/debian/dists/bookworm/main/installer-mips64el/current/images/loongson-3/netboot/vmlinuz-6.1.0-10-loongson-3` +2. `wget https://ftp.debian.org/debian/dists/bookworm/main/installer-mips64el/current/images/loongson-3/netboot/initrd.gz` +3. `qemu-system-mips64el -M loongson3-virt -kernel vmlinuz-6.1.0-10-loongson-3 -initrd initrd.gz -append "console=ttyS0" -serial stdio -smp 2`""" +additional = """Boot is successful when removing `-smp 2` from command line. With it present, the following error is in `dmesg` (extends to all other CPUs when a larger SMP value is passed): +``` +[ 2.248229] rcu: Hierarchical SRCU implementation. +[ 2.248446] rcu: Max phase no-delay instances is 1000. +[ 2.647997] smp: Bringing up secondary CPUs ... +[ 2.749706] Booting CPU#1... +[ 7.093229] CPU1: failed to start +[ 7.096508] smp: Brought up 1 node, 1 CPU +``` +The boot eventually stalls after this.""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/193.toml b/gitlab/issues/target_mips/host_missing/accel_missing/193.toml new file mode 100644 index 000000000..e03b7a691 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/193.toml @@ -0,0 +1,15 @@ +id = 193 +title = "piix crashes on mips when using multiple cpus" +state = "closed" +created_at = "2021-05-06T08:59:28.495Z" +closed_at = "2021-09-07T09:42:14.388Z" +labels = ["ACPI", "Launchpad", "kind::Bug", "target: mips", "workflow::Triaged"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/193" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/1987.toml b/gitlab/issues/target_mips/host_missing/accel_missing/1987.toml new file mode 100644 index 000000000..82a52771b --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/1987.toml @@ -0,0 +1,56 @@ +id = 1987 +title = "snapshot: main thread hangs for a while after 'loadvm'" +state = "opened" +created_at = "2023-11-20T03:35:10.808Z" +closed_at = "n/a" +labels = ["Migration", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/1987" +host-os = "Ubuntu 20.04" +host-arch = "x86-64" +qemu-version = "34a5cb6d843" +guest-os = "n/a" +guest-arch = "mipseb" +description = """When I was testing qemu snapshots, I found that after the `loadvm` command, the virtual machine would often get stuck for a while, and it can **resume execution after I enter some characters into the terminal**, this is weird because my guest system doesn't need to accept input. + +After some debugging, I found that the guest kernel is executing a `wait` instruction in `__r4k_wait()`. + +And I found that the main thread usually does not sleep at `qemu_poll_ns()` during normal execution, but after `loadvm`, the timeout is set to a large value (related to the interval time of snapshot operations), causes the main thread to get stuck on 'qemu_poll_ns()'. + +After some analysis, I think it is because save/load_snapshot() does not handle timers related to QEMU_CLOCK_VIRTUAL well, such as `mips_timer_cb()`, resulting in incorrect value when calculating timeout.""" +reproduce = """1. Start emulation and connect monitor +2. `savevm` and wait for a moment +3. `loadvm`""" +additional = """Stack backtrace of the guest kernel: +``` +► 0 0x80104d40 __r4k_wait+32 + 1 0x80143cc4 cpu_startup_entry+284 + 2 0x80143cc4 cpu_startup_entry+284 + 3 0x80143cc4 cpu_startup_entry+284 + 4 0x80633fe0 kernel_init + 5 0x80825cb8 start_kernel+1072 +``` + +Stack backtrace of the main thread: +``` +0 0x7ffff74f0a96 ppoll+166 +1 0x555555ea4786 qemu_poll_ns+221 +2 0x555555e9fea7 os_host_main_loop_wait+93 +3 0x555555e9ffd6 main_loop_wait+187 +4 0x555555a644fd qemu_main_loop+46 +5 0x5555557d2b6a qemu_default_main+17 +6 0x5555557d2ba9 main+45 +7 0x7ffff7402083 __libc_start_main+243 +``` + +Stack backtrace of the vCPU thread: +``` +#0 futex_wait_cancelable (private=<optimized out>, expected=0, futex_word=0x555556550848) at ../sysdeps/nptl/futex-internal.h:183 +#1 __pthread_cond_wait_common (abstime=0x0, clockid=0, mutex=0x5555564d0860 <qemu_global_mutex>, cond=0x555556550820) at pthread_cond_wait.c:508 +#2 __pthread_cond_wait (cond=0x555556550820, mutex=0x5555564d0860 <qemu_global_mutex>) at pthread_cond_wait.c:647 +#3 0x0000555555e85602 in qemu_cond_wait_impl (cond=0x555556550820, mutex=0x5555564d0860 <qemu_global_mutex>, file=0x5555560122ab "../system/cpus.c", line=431) at ../util/qemu-thread-posix.c:225 +#4 0x0000555555a5618f in qemu_wait_io_event (cpu=0x555556825200) at ../system/cpus.c:431 +#5 0x0000555555c8bcf1 in mttcg_cpu_thread_fn (arg=0x555556825200) at ../accel/tcg/tcg-accel-ops-mttcg.c:118 +#6 0x0000555555e85e50 in qemu_thread_start (args=0x555556550860) at ../util/qemu-thread-posix.c:541 +#7 0x00007ffff75d8609 in start_thread (arg=<optimized out>) at pthread_create.c:477 +#8 0x00007ffff74fd133 in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95 +```""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/2013.toml b/gitlab/issues/target_mips/host_missing/accel_missing/2013.toml new file mode 100644 index 000000000..5065cc7a1 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/2013.toml @@ -0,0 +1,86 @@ +id = 2013 +title = "The avocado test replay_kernel.py:ReplayKernelNormal.test_mips64el_malta is unreliable" +state = "closed" +created_at = "2023-12-01T20:07:49.246Z" +closed_at = "2024-01-09T14:23:32.548Z" +labels = ["Tests", "flaky-ci", "icount", "kind::Bug", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/2013" +host-os = "Linux" +host-arch = "x86_64" +qemu-version = "8.2rc2" +guest-os = "n/a" +guest-arch = "mips64el" +description = """This test keeps hanging on CI""" +reproduce = """Run the test on GitLab's CI infrastructure and it will hang on replay. Examples: https://gitlab.com/stsquad/qemu/-/jobs/5664260736""" +additional = """Excerpt from log: + +``` +18:02:49 DEBUG| Transitioning from 'Runstate.CONNECTING' to 'Runstate.RUNNING'. +18:02:49 DEBUG| Opening console file +18:02:49 DEBUG| Opening console socket +18:02:49 DEBUG| [ 0.000000] Initializing cgroup subsys cpuset +18:02:49 DEBUG| [ 0.000000] Initializing cgroup subsys cpu +18:02:49 DEBUG| [ 0.000000] Linux version 2.6.32-5-5kc-malta (Debian 2.6.32-48) (ben@decadent.org.uk) (gcc version 4.3.5 (Debian 4.3.5-4) ) #1 Fri Feb 15 21:38:11 UTC 2013 +18:02:49 DEBUG| [ 0.000000] +18:02:49 DEBUG| [ 0.000000] LINUX started... +18:02:49 DEBUG| [ 0.000000] bootconsole [early0] enabled +18:02:49 DEBUG| [ 0.000000] CPU revision is: 000182a0 (MIPS 20Kc) +18:02:49 DEBUG| [ 0.000000] FPU revision is: 000f8200 +18:02:49 DEBUG| [ 0.000000] Checking for the multiply/shift bug... no. +18:02:49 DEBUG| [ 0.000000] Checking for the daddiu bug... no. +18:02:49 DEBUG| [ 0.000000] Determined physical RAM map: +18:02:49 DEBUG| [ 0.000000] memory: 0000000000001000 @ 0000000000000000 (reserved) +18:02:49 DEBUG| [ 0.000000] memory: 00000000000ef000 @ 0000000000001000 (ROM data) +18:02:49 DEBUG| [ 0.000000] memory: 0000000000659000 @ 00000000000f0000 (reserved) +18:02:49 DEBUG| [ 0.000000] memory: 00000000078b7000 @ 0000000000749000 (usable) +18:02:49 DEBUG| [ 0.000000] Wasting 104440 bytes for tracking 1865 unused pages +18:02:49 DEBUG| [ 0.000000] Initrd not found or empty - disabling initrd +18:02:49 DEBUG| [ 0.000000] Zone PFN ranges: +18:02:49 DEBUG| [ 0.000000] DMA 0x00000000 -> 0x00001000 +18:02:49 DEBUG| [ 0.000000] Normal 0x00001000 -> 0x00008000 +18:02:49 DEBUG| [ 0.000000] Movable zone start PFN for each node +18:02:49 DEBUG| [ 0.000000] early_node_map[1] active PFN ranges +18:02:49 DEBUG| [ 0.000000] 0: 0x00000000 -> 0x00008000 +18:02:49 DEBUG| [ 0.000000] Built 1 zonelists in Zone order, mobility grouping on. Total pages: 32320 +18:02:49 DEBUG| [ 0.000000] Kernel command line: printk.time=1 panic=-1 console=ttyS0 +18:02:49 DEBUG| Shutting down VM appliance; timeout=30 +18:02:49 DEBUG| Attempting graceful termination +18:02:49 DEBUG| Closing console file +18:02:49 DEBUG| Closing console socket +18:02:49 DEBUG| Politely asking QEMU to terminate +... + +18:02:49 DEBUG| Transitioning from 'Runstate.CONNECTING' to 'Runstate.RUNNING'. +18:02:49 DEBUG| Opening console file +18:02:49 DEBUG| Opening console socket +18:02:49 DEBUG| [ 0.000000] Initializing cgroup subsys cpuset +18:02:49 DEBUG| [ 0.000000] Initializing cgroup subsys cpu +18:02:49 DEBUG| [ 0.000000] Linux version 2.6.32-5-5kc-malta (Debian 2.6.32-48) (ben@decadent.org.uk) (gcc version 4.3.5 (Debian 4.3.5-4) ) #1 Fri Feb 15 21:38:11 UTC 2013 +18:02:49 DEBUG| [ 0.000000] +18:02:49 DEBUG| [ 0.000000] LINUX started... +18:02:49 DEBUG| [ 0.000000] bootconsole [early0] enabled +18:02:49 DEBUG| [ 0.000000] CPU revision is: 000182a0 (MIPS 20Kc) +18:02:49 DEBUG| [ 0.000000] FPU revision is: 000f8200 +18:02:49 DEBUG| [ 0.000000] Checking for the multiply/shift bug... no. +18:02:49 DEBUG| [ 0.000000] Checking for the daddiu bug... no. +18:02:49 DEBUG| [ 0.000000] Determined physical RAM map: +18:02:49 DEBUG| [ 0.000000] memory: 0000000000001000 @ 0000000000000000 (reserved) +18:02:49 DEBUG| [ 0.000000] memory: 00000000000ef000 @ 0000000000001000 (ROM data) +18:02:49 DEBUG| [ 0.000000] memory: 0000000000659000 @ 00000000000f0000 (reserved) +18:02:49 DEBUG| [ 0.000000] m +18:04:48 ERROR| +18:04:48 ERROR| Reproduced traceback from: /builds/stsquad/qemu/build/pyvenv/lib/python3.10/site-packages/avocado/core/test.py:770 +18:04:48 ERROR| Traceback (most recent call last): +18:04:48 ERROR| File "/builds/stsquad/qemu/build/tests/avocado/replay_kernel.py", line 147, in test_mips64el_malta +18:04:48 ERROR| self.run_rr(kernel_path, kernel_command_line, console_pattern, shift=5) +18:04:48 ERROR| File "/builds/stsquad/qemu/build/tests/avocado/replay_kernel.py", line 78, in run_rr +18:04:48 ERROR| t2 = self.run_vm(kernel_path, kernel_command_line, console_pattern, +18:04:48 ERROR| File "/builds/stsquad/qemu/build/tests/avocado/replay_kernel.py", line 61, in run_vm +18:04:48 ERROR| self.wait_for_console_pattern(console_pattern, vm) +18:04:48 ERROR| File "/builds/stsquad/qemu/build/tests/avocado/boot_linux_console.py", line 52, in wait_for_console_pattern +18:04:48 ERROR| wait_for_console_pattern(self, success_message, +18:04:48 ERROR| File "/builds/stsquad/qemu/build/tests/avocado/avocado_qemu/__init__.py", line 199, in wait_for_console_pattern +18:04:48 ERROR| _console_interaction(test, success_message, failure_message, None, vm=vm) +18:04:48 ERROR| File "/builds/stsquad/qemu/build/tests/avocado/avocado_qemu/__init__.py", line 148, in _console_interaction +18:04:48 ERROR| msg = console.readline().decode().strip() +```""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/221.toml b/gitlab/issues/target_mips/host_missing/accel_missing/221.toml new file mode 100644 index 000000000..1ccae3237 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/221.toml @@ -0,0 +1,15 @@ +id = 221 +title = "piix crashes on mips when accessing acpi-pci-hotplug" +state = "closed" +created_at = "2021-05-09T12:11:27.485Z" +closed_at = "2021-09-07T09:41:41.501Z" +labels = ["ACPI", "Launchpad", "kind::Bug", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/221" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/240.toml b/gitlab/issues/target_mips/host_missing/accel_missing/240.toml new file mode 100644 index 000000000..a05531e61 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/240.toml @@ -0,0 +1,15 @@ +id = 240 +title = "qemu-3.1.0-rc0: mips emulation hangs when executing invalid instructions" +state = "opened" +created_at = "2021-05-09T15:57:19.556Z" +closed_at = "n/a" +labels = ["Launchpad", "kind::Bug", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/240" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/241.toml b/gitlab/issues/target_mips/host_missing/accel_missing/241.toml new file mode 100644 index 000000000..9d7365415 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/241.toml @@ -0,0 +1,15 @@ +id = 241 +title = "Please refactor linux-user/mips/cpu_loop.c" +state = "closed" +created_at = "2021-05-09T16:02:48.601Z" +closed_at = "2022-08-01T14:44:05.942Z" +labels = ["Launchpad", "kind::Feature Request", "linux-user", "target: mips", "workflow::Needs Info"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/241" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/2464.toml b/gitlab/issues/target_mips/host_missing/accel_missing/2464.toml new file mode 100644 index 000000000..46236d838 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/2464.toml @@ -0,0 +1,19 @@ +id = 2464 +title = "\"rc4030: invalid read at 0xf0-0xf8\" shows up, then NT MIPS bluescreens" +state = "opened" +created_at = "2024-07-28T16:50:18.179Z" +closed_at = "n/a" +labels = ["target: mips", "workflow::Patch available"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/2464" +host-os = "Arch Linux, last updated July 18th 2024" +host-arch = "AMD64" +qemu-version = "QEMU emulator version 9.0.2" +guest-os = "Windows NT 4/Windows NT 3.51/NetBSD 10" +guest-arch = "mips64el" +description = """The problem is fairly nondescript, but it seems to be a chipset regression that popped up between QEMU 8 and QEMU 9. I had a Windows NT 4 VM that I tried booting in the latest QEMU update after a while of not using it, and it just flat-out refused to do that, outputting the ``INACCESSIBLE_BOOT_DEVICE`` error. Any attempt to boot from the hard drive or reinstall the OS from the CD image would return the same bluescreen, and would show the very message shown in the title in the process log.""" +reproduce = """1. Download a Windows NT 3.5x/4.0 ISO. +2. Create a disk image ≤2GB in size. +3. Enter the command above. +4. Go through the preparatory setup, as described in [here](https://computernewb.com/wiki/QEMU/Guests/Windows_NT_3.x-4.0_(MIPS)). (ignore the networking switches, or replace ``dp83932`` with ``ne2k_isa``) +5. Launch the installer by running ``cd:\\mips\\setupldr``.""" +additional = """""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/2826.toml b/gitlab/issues/target_mips/host_missing/accel_missing/2826.toml new file mode 100644 index 000000000..c15a6ae97 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/2826.toml @@ -0,0 +1,17 @@ +id = 2826 +title = "The host PCI bridge disappeared on the big endian MIPS Malta machine" +state = "opened" +created_at = "2025-02-21T14:44:01.961Z" +closed_at = "n/a" +labels = ["kind::Bug", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/2826" +host-os = "Linux" +host-arch = "x86_64" +qemu-version = "Current head (commit 40efe733e10cc00e4)" +guest-os = "Linux" +guest-arch = "mips (32-bit big endian)" +description = """The tests/avocado/linux_ssh_mips_malta.py test currently fails for the big endian machines. It tries to check for the PCI host bridge with ``lspci -d 11ab:4620``, but that does not show the expected output anymore -- it looks like the host bridge cannot be correctly discovered by the guest Linux kernel anymore.""" +reproduce = """1. Get the kernel and disk image from https://people.debian.org/~aurel32/qemu/mips/ +2. Boot the guest as described above. +3. lspci -d 11ab:4620""" +additional = """This used to work fine before commit 145e2198d749ec09a405f1607a9932499b76f1eb , so this rework likely introduced the bug. Looking at the code that got removed there, I could see an additional check ``phb->config_reg & 0x00fff800`` that is not present in the new code anymore, so the space for the host bridge itself likely should not get swapped. Reverting 3d85c7c15fc7ce986cf1a8e73da1217228f35685 and 145e2198d749ec09a405f1607a9932499b76f1eb seems to fix the problem (at least on little endian hosts).""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/44.toml b/gitlab/issues/target_mips/host_missing/accel_missing/44.toml new file mode 100644 index 000000000..537ccf8ea --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/44.toml @@ -0,0 +1,15 @@ +id = 44 +title = "QEMU aborts when specifying additional isa-vga devices" +state = "closed" +created_at = "2021-04-23T10:36:24.917Z" +closed_at = "2022-03-19T14:16:04.953Z" +labels = ["device:graphics", "kind::Bug", "target: mips", "workflow::In Progress"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/44" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/51.toml b/gitlab/issues/target_mips/host_missing/accel_missing/51.toml new file mode 100644 index 000000000..a18368284 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/51.toml @@ -0,0 +1,15 @@ +id = 51 +title = "Linux kernel oops on Malta board while accessing pflash" +state = "closed" +created_at = "2021-04-29T08:31:37.890Z" +closed_at = "2024-10-08T07:16:24.386Z" +labels = ["Launchpad", "Storage", "kind::Bug", "target: mips", "workflow::Triaged"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/51" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/571.toml b/gitlab/issues/target_mips/host_missing/accel_missing/571.toml new file mode 100644 index 000000000..f7c9815ed --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/571.toml @@ -0,0 +1,15 @@ +id = 571 +title = "maybe-uninitialized warning in mips cpu_loop()" +state = "opened" +created_at = "2021-08-27T14:02:24.711Z" +closed_at = "n/a" +labels = ["target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/571" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/602.toml b/gitlab/issues/target_mips/host_missing/accel_missing/602.toml new file mode 100644 index 000000000..000f5716d --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/602.toml @@ -0,0 +1,21 @@ +id = 602 +title = "Failure to translate host to target errno in IP_RECVERR, IPV6_RECVERR emulation" +state = "opened" +created_at = "2021-09-06T20:56:08.562Z" +closed_at = "n/a" +labels = ["linux-user", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/602" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = """In translated IP_RECVERR (and IPV6_RECVERR) control messages, the `ee_errno` is not translated, so host errnos are observed on guests. E.g., `ECONNREFUSED` is 111 on x86_64 host, but expected to be 146 in MIPS ABI.""" +reproduce = """1. https://cirrus-ci.com/task/5914289870471168""" +additional = """The bugs are on [lines 1970 and 2014 here](https://github.com/qemu/qemu/blob/211364c21e7f757ae1acf4e72b5df39c498fb88b/linux-user/syscall.c#L1970-L2014). + +The fix is something like: + +``` +__put_user(host_to_target_errno(errh->ee.ee_errno), &target_errh->ee.ee_errno); +```""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/63.toml b/gitlab/issues/target_mips/host_missing/accel_missing/63.toml new file mode 100644 index 000000000..9b1245e14 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/63.toml @@ -0,0 +1,15 @@ +id = 63 +title = "Illegal delay slot code causes abort on mips64" +state = "closed" +created_at = "2021-05-01T05:53:30.695Z" +closed_at = "2024-10-08T07:31:46.798Z" +labels = ["Launchpad", "kind::Bug", "target: mips", "workflow::Triaged"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/63" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/644.toml b/gitlab/issues/target_mips/host_missing/accel_missing/644.toml new file mode 100644 index 000000000..5b70e1fb7 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/644.toml @@ -0,0 +1,17 @@ +id = 644 +title = "generic loader does not do virtual to physical address translation when loading MIPS ELF" +state = "opened" +created_at = "2021-09-28T03:31:27.172Z" +closed_at = "n/a" +labels = ["target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/644" +host-os = "(Red Hat Enterprise Linux Server release 7.5 (Maipo))" +host-arch = "(x86)" +qemu-version = "(QEMU emulator version 6.0.0, bug git head (de8ed105) has the same problem)" +guest-os = "(baremetal)" +guest-arch = "(mips)" +description = """""" +reproduce = """1.build two ELFs, whose virtual address is at kseg0<p> +2.load one ELF with generic loader "-device loader,file=test1.elf", the other ELF with "-kernel test2.elf"<p> +3.generic loader loads test1.elf without doing address translation, while mipssim load_kernel will do that with cpu_mips_kseg0_to_phys<p>""" +additional = """generic_loader_realize calls load_elf_as with the argument translate_fn=NULL. Maybe, we can set translate_fn when elf_machine is EM_MIPS.""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/694.toml b/gitlab/issues/target_mips/host_missing/accel_missing/694.toml new file mode 100644 index 000000000..378bcab49 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/694.toml @@ -0,0 +1,15 @@ +id = 694 +title = "Crash using MIPS I7200 CPU with non-nanoMIPS ELF" +state = "opened" +created_at = "2021-10-27T14:45:19.460Z" +closed_at = "n/a" +labels = ["linux-user", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/694" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/695.toml b/gitlab/issues/target_mips/host_missing/accel_missing/695.toml new file mode 100644 index 000000000..77d514319 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/695.toml @@ -0,0 +1,15 @@ +id = 695 +title = "MIPS: nanomips p32 ABI not supported" +state = "closed" +created_at = "2021-10-27T15:06:27.273Z" +closed_at = "2023-09-14T08:21:12.733Z" +labels = ["linux-user", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/695" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "n/a" +guest-os = "n/a" +guest-arch = "n/a" +description = "n/a" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/758.toml b/gitlab/issues/target_mips/host_missing/accel_missing/758.toml new file mode 100644 index 000000000..6944831cc --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/758.toml @@ -0,0 +1,54 @@ +id = 758 +title = "[Cross compilation] qemu: uncaught target signal 4 (Illegal instruction) - core dumped" +state = "opened" +created_at = "2021-12-02T03:51:34.144Z" +closed_at = "n/a" +labels = ["linux-user", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/758" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "qemu-user-static--version 1:6.1+dfsg-8" +guest-os = "n/a" +guest-arch = "n/a" +description = """On the X86 platform, chroot to the latest MIP environment, download the source package, install the dependency, and then compile. It is found that the variation is in error + +Grab logs with GDB on the real machine + +Thread 1 "bash" received signal SIGSEGV, Segmentation fault. +0x00007f094429c656 in code_gen_buffer () +(gdb) bt +#0 0x00007f094429c656 in code_gen_buffer () +#1 0x000000000053878e in cpu_tb_exec (cpu=0x2441050, itb=<optimized out>, tb_exit=0x7ffd5bae38e8) at ../../accel/tcg/cpu-exec.c:353 +#2 0x000000000053965e in cpu_loop_exec_tb (tb_exit=0x7ffd5bae38e8, last_tb=<synthetic pointer>, tb=0x7f09441caac0 <code_gen_buffer+690835>, cpu=0x2441050) at ../../accel/tcg/cpu-exec.c:812 +#3 cpu_exec (cpu=cpu@entry=0x2441050) at ../../accel/tcg/cpu-exec.c:970 +#4 0x0000000000465b60 in cpu_loop (env=env@entry=0x2449340) at ../../linux-user/mips64/cpu_loop.c:78 +#5 0x0000000000413b27 in main (argc=<optimized out>, argv=<optimized out>, envp=<optimized out>) at ../../linux-user/main.c:910 +(gdb) thread apply all bt + +Thread 2 (LWP 26312): +#0 0x0000000000766a19 in syscall () +#1 0x000000000058ee0a in qemu_futex_wait (val=<optimized out>, f=<optimized out>) at ./include/qemu/trace-events:29 +#2 qemu_event_wait (ev=ev@entry=0xd44e68 <rcu_call_ready_event>) at ../../util/qemu-thread-posix.c:480 +#3 0x000000000059690a in call_rcu_thread (opaque=opaque@entry=0x0) at ./b/user-static/thread.h:258 +#4 0x000000000058dc29 in qemu_thread_start (args=<optimized out>) at ../../util/qemu-thread-posix.c:541 +#5 0x00000000006e665e in start_thread (arg=0x7f094c9a3640) at pthread_create.c:463 +#6 0x000000000076836f in clone () + +Thread 1 (LWP 26310): +#0 0x00007f094429c656 in code_gen_buffer () +#1 0x000000000053878e in cpu_tb_exec (cpu=0x2441050, itb=<optimized out>, tb_exit=0x7ffd5bae38e8) at ../../accel/tcg/cpu-exec.c:353 +#2 0x000000000053965e in cpu_loop_exec_tb (tb_exit=0x7ffd5bae38e8, last_tb=<synthetic pointer>, tb=0x7f09441caac0 <code_gen_buffer+690835>, cpu=0x2441050) at ../../accel/tcg/cpu-exec.c:812 +#3 cpu_exec (cpu=cpu@entry=0x2441050) at ../../accel/tcg/cpu-exec.c:970 +#4 0x0000000000465b60 in cpu_loop (env=env@entry=0x2449340) at ../../linux-user/mips64/cpu_loop.c:78 +#5 0x0000000000413b27 in main (argc=<optimized out>, argv=<optimized out>, envp=<optimized out>) at ../../linux-user/main.c:910 +(gdb) +```""" +reproduce = """``` +1.Minimum environment for building MIPS platform on +2.On X86 platform sudo chroot . +3.cd build +4.apt source adwaita-icon-theme +5.cd adwaita-icon-theme-3.30.1 +6.debuild -b +```""" +additional = """""" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/843.toml b/gitlab/issues/target_mips/host_missing/accel_missing/843.toml new file mode 100644 index 000000000..eff147945 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/843.toml @@ -0,0 +1,15 @@ +id = 843 +title = "qemu-binfmt-conf causes duplicate magic mips headers when installing all patterns" +state = "closed" +created_at = "2022-01-28T16:33:25.550Z" +closed_at = "2022-03-29T14:17:25.920Z" +labels = ["kind::Bug", "linux-user", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/843" +host-os = "Debian Buster" +host-arch = "x86_64" +qemu-version = "current head cfe63e46be0a1f8a7fd2fd5547222f8344a43279" +guest-os = "linux-user" +guest-arch = "mips" +description = """The magic/mask patterns are the same for mips[el] and nipsn32[el]""" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/909.toml b/gitlab/issues/target_mips/host_missing/accel_missing/909.toml new file mode 100644 index 000000000..e67b3e6e2 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/909.toml @@ -0,0 +1,23 @@ +id = 909 +title = "qemu-mipsn32(el) user mode emulator fails to execute any recently built n32 binaries" +state = "closed" +created_at = "2022-03-14T22:12:55.273Z" +closed_at = "2022-09-26T19:55:15.531Z" +labels = ["target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/909" +host-os = "Gentoo Linux" +host-arch = "x86-64" +qemu-version = "6.2.0" +guest-os = "Gentoo Linux" +guest-arch = "-march=mips64 -mabi=n32 (both EL and EB), both recent bootstrap and archived binaries from 2020" +description = """**Note: Before trying to reproduce this issue, have a look at issue 843 - the binfmt-misc magic for n32 needs to be fixed.** + +Trying to chroot into a mips n32 installation fails with +``` +/bin/bash: error while loading shared libraries: /lib32/libc.so.6: cannot read file data +``` +however, bash, libc.so.6, and qemu all exist and have the proper abi + +The problem occurs for both big and little endian N32 ABI. O32 and N64 work fine. The same N32 binaries also work fine on native hardware.""" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/939.toml b/gitlab/issues/target_mips/host_missing/accel_missing/939.toml new file mode 100644 index 000000000..6fdfc532a --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/939.toml @@ -0,0 +1,87 @@ +id = 939 +title = "qemu-mipsn32el user mode emulator allocates pointers beyond upper memory limit" +state = "closed" +created_at = "2022-03-26T22:22:18.021Z" +closed_at = "2022-03-29T14:17:25.783Z" +labels = ["target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/939" +host-os = "n/a" +host-arch = "n/a" +qemu-version = "6.2.0 with the mipsn32 patches from issue 909 added" +guest-os = "n/a" +guest-arch = "n/a" +description = """In qemu-based N32 mips chroots (both BE and LE), I became aware of memory-intensive programs segfaulting, apparently at random. tar, gcc, but only in specific situations. Watching the strace output of gcc, I got the impression that it happens when memory beyond 2Gbyte is allocated. (mips n32 and o32 uses only 31 bit of a pointer, I've been told, so this is somewhat expected, but a segfault is nevertheless wrong.) + +So, I used the following test program, statically linked: +``` +#include <stdlib.h> +#include <stdio.h> +#include <string.h> + +int main() { + + char *pointer; + int i; + + for (i=1; i<301; i++) { + + printf("Allocation %i : ", i); + pointer = malloc(20480000 * sizeof(char)); + + printf(" pointer is %p, ", pointer); + + if (! pointer) { + printf("malloc failed\\n"); + exit(0); + }; + + memset(pointer, 0xDB, 20480000); + printf(" filled\\n"); + } +}; +``` + +With mips3 n32 I get the following output: +``` +pinacolada ~ # file /var/lib/machines/mips64el-n32/root/memtest +/var/lib/machines/mips64el-n32/root/memtest: ELF 32-bit LSB executable, MIPS, N32 MIPS-III version 1 (SYSV), statically linked, for GNU/Linux 3.2.0, not stripped +pinacolada ~ # /usr/bin/qemu-mipsn32el /var/lib/machines/mips64el-n32/root/memtest +Allocation 1 : pointer is 0x40802010, filled +Allocation 2 : pointer is 0x41b8b010, filled +Allocation 3 : pointer is 0x42f14010, filled +[...] +Allocation 51 : pointer is 0x7d8c4010, filled +Allocation 52 : pointer is 0x7ec4d010, filled +qemu: unhandled CPU exception 0x15 - aborting +pc=0x0000000010021944 HI=0x0000000000000004 LO=0x00000000100218f0 ds 02ea 00000000100218f0 0 +GPR00: r0 0000000000000000 at 0000000000000001 v0 000000007ffd6010 v1 0000000026f77200 +GPR04: a0 000000007ffd6010 a1 dbdbdbdbdbdbdbdb a2 0000000001388000 a3 0000000001388000 +GPR08: t0 0000000025252525 t1 0000000025252525 t2 ffffffffffffffff t3 000000001006c369 +GPR12: t4 000000001006c368 t5 0000000000000000 t6 0000000000000000 t7 0000000000000010 +GPR16: s0 0000000000000001 s1 00000000407ffd54 s2 000000001009b270 s3 0000000000000000 +GPR20: s4 0000000010000760 s5 00000000407ffd5c s6 0000000000000000 s7 0000000000000000 +GPR24: t8 0000000000000000 t9 00000000100218f0 k0 0000000000000000 k1 0000000000000000 +GPR28: gp 00000000100a7320 sp 00000000407ffbf0 s8 00000000407ffbf0 ra 0000000010000854 +CP0 Status 0x24800010 Cause 0x00000000 EPC 0x0000000000000000 + Config0 0x80004482 Config1 0xbe61309b LLAddr 0x0000000000000000 + Config2 0x80000000 Config3 0x00000000 + Config4 0x00000000 Config5 0x00000000 +** +ERROR:../accel/tcg/cpu-exec.c:928:cpu_exec: assertion failed: (cpu == current_cpu) +Bail out! ERROR:../accel/tcg/cpu-exec.c:928:cpu_exec: assertion failed: (cpu == current_cpu) +``` + +For mips2 o32 I get the more correct looking output +``` +pinacolada ~ # file /var/lib/machines/mips-o32/root/memtest +/var/lib/machines/mips-o32/root/memtest: ELF 32-bit MSB executable, MIPS, MIPS-II version 1 (SYSV), statically linked, for GNU/Linux 3.2.0, not stripped +pinacolada ~ # /usr/bin/qemu-mips /var/lib/machines/mips-o32/root/memtest +Allocation 1 : pointer is 0x3ec76008, filled +Allocation 2 : pointer is 0x3d8ed008, filled +Allocation 3 : pointer is 0x3c564008, filled +[...] +Allocation 104 : pointer is 0x4082c008, filled +Allocation 105 : pointer is (nil), malloc failed +```""" +reproduce = "n/a" +additional = "n/a" diff --git a/gitlab/issues/target_mips/host_missing/accel_missing/995.toml b/gitlab/issues/target_mips/host_missing/accel_missing/995.toml new file mode 100644 index 000000000..c2269a159 --- /dev/null +++ b/gitlab/issues/target_mips/host_missing/accel_missing/995.toml @@ -0,0 +1,19 @@ +id = 995 +title = "Segfault when saving VM snapshot via QEMU monitor on MIPS and MIPSEL" +state = "closed" +created_at = "2022-04-19T15:33:53.632Z" +closed_at = "2022-08-09T02:41:17.200Z" +labels = ["Migration", "target: mips"] +url = "https://gitlab.com/qemu-project/qemu/-/issues/995" +host-os = "Arch Linux" +host-arch = "x86_64" +qemu-version = "7.0.0rc4, commit hash `81c7ed41a1b33031f3e4fe24191a998a492044b8" +guest-os = "Linux (Buildroot)" +guest-arch = "MIPS and MIPSEL" +description = """When entering the QEMU monitor using Ctrl-A then C, and running the savevm QEMU command, the emulator hangs for a while and then exits with a segfault. This occurs on MIPS and MIPSEL system emulators using the same command line arguments. ARM32, aarch64 and x86_64 emulators don't seem to have this problem. I haven't tested it on any other architectures as I don't have kernel or drive images for them. `qemu-img` seems to work fine with the QCOW2 images used for this test, I was able to create and load offline snapshots from them. The images were created from raw EXT2 filesystem images produced by Buildroot, using `qemu-img convert`.""" +reproduce = """1. Start the QEMU system emulator for MIPS/MIPSEL with the given command line. +2. Enter the QEMU monitor with Ctrl-A, C. +3. Run `savevm <vm name>`.""" +additional = """I tried logging what QEMU was doing with the `-D ./log.txt` command line option, but the produced log file was empty. + +If you need me to send you the kernel image files and QCOW2 images used, I would be happy to do so.""" |