summary refs log tree commit diff stats
path: root/results/classifier/108/other/240
diff options
context:
space:
mode:
Diffstat (limited to '')
-rw-r--r--results/classifier/108/other/24016
-rw-r--r--results/classifier/108/other/240058
-rw-r--r--results/classifier/108/other/240239
-rw-r--r--results/classifier/108/other/240531
-rw-r--r--results/classifier/108/other/240622
-rw-r--r--results/classifier/108/other/240768
-rw-r--r--results/classifier/108/other/2408252
7 files changed, 486 insertions, 0 deletions
diff --git a/results/classifier/108/other/240 b/results/classifier/108/other/240
new file mode 100644
index 000000000..a0c05018f
--- /dev/null
+++ b/results/classifier/108/other/240
@@ -0,0 +1,16 @@
+device: 0.885
+performance: 0.783
+network: 0.744
+socket: 0.589
+boot: 0.469
+debug: 0.450
+files: 0.437
+PID: 0.428
+permissions: 0.425
+vnc: 0.415
+graphic: 0.320
+semantic: 0.298
+other: 0.186
+KVM: 0.026
+
+qemu-3.1.0-rc0: mips emulation hangs when executing invalid instructions
diff --git a/results/classifier/108/other/2400 b/results/classifier/108/other/2400
new file mode 100644
index 000000000..2516f03ca
--- /dev/null
+++ b/results/classifier/108/other/2400
@@ -0,0 +1,58 @@
+boot: 0.916
+performance: 0.873
+device: 0.871
+graphic: 0.840
+semantic: 0.832
+files: 0.721
+debug: 0.701
+socket: 0.657
+network: 0.653
+KVM: 0.555
+other: 0.506
+PID: 0.489
+vnc: 0.436
+permissions: 0.365
+
+Qemu fails to boot snapshot image if its header is qcow2 but its payload and backing image extension are luks
+Description of problem:
+Qemu fails to recognize snapshot image E:\\test_snapshot.qcow2 saying Volume is not in LUKS format
+
+You need three commands to reproduce:
+
+`qemu-img create -f luks --object secret,id=sec0,data=123 -o key-secret=sec0 E:\test.luks 1G`
+
+`qemu-img create --object secret,id=sec0,data=123 -f qcow2 -o encrypt.format=luks,encrypt.key-secret=sec0 -b E:\test.luks -F luks E:\test_snapshot.qcow2`
+
+`qemu-system-x86_64 -drive file=E:\test_snapshot.qcow2,format=luks,key-secret=sec0 -object secret,id=sec0,data=123`
+
+This error is printed:
+
+`qemu-system-x86_64: -drive file=E:\test_snapshot.qcow2,format=luks,key-secret=sec0: Volume is not in LUKS format`
+
+But fourth command shows that payload of `E:\test_snapshot.qcow2` has LUKS format:
+
+`qemu-img info E:\test_snapshot.qcow2`
+
+\[output\]
+
+```bash
+virtual size: 1 GiB (1073741824 bytes)
+disk size: 2.25 MiB
+encrypted: yes
+cluster_size: 65536
+backing file: E:\test.luks
+backing file format: luks
+Format specific information:
+    compat: 1.1
+    compression type: zlib
+    lazy refcounts: false
+    refcount bits: 16
+    encrypt:
+        ivgen alg: plain64
+        detached header: false
+        hash alg: sha256
+        cipher alg: aes-256
+        uuid: xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
+        format: luks
+        cipher mode: xts ...
+```
diff --git a/results/classifier/108/other/2402 b/results/classifier/108/other/2402
new file mode 100644
index 000000000..605b3b480
--- /dev/null
+++ b/results/classifier/108/other/2402
@@ -0,0 +1,39 @@
+device: 0.651
+performance: 0.647
+files: 0.617
+boot: 0.586
+vnc: 0.581
+graphic: 0.538
+PID: 0.519
+permissions: 0.454
+socket: 0.453
+other: 0.379
+semantic: 0.369
+debug: 0.210
+network: 0.195
+KVM: 0.130
+
+WHPX accelerator run with edk2 EFI fails to process the reboot signal from guest OS
+Description of problem:
+Qemu freezes any time WHPX-accelerated guest Windows 11 sends a reboot signal to Qemu while running on edk2 EFI. At rare cases, Qemu errors out with `qemu: WHPX: Unexpected VP exit code 4`
+Steps to reproduce:
+1. Grab Windows 11 23H2 ISO from https://www.microsoft.com/en-Us/software-download/windows11 using either Media Creation Tool or directly and save it under C:\\windows11_23H2.iso
+2. Download QEMU 9.0 from https://qemu.weilnetz.de/w64/qemu-w64-setup-20240423.exe and install it into C:\\Program Files\\qemu
+3. Make one merged EFI file from two ones bundled in QEMU 9.0 (merged EFI is the only working option for edk2 EFI on windows host): `cd /d C:\Program Files\qemu\share`
+
+`copy /B edk2-i386-vars.fd + edk2-x86_64-code.fd edk2-x86_64.fd`
+
+4. Run this command:
+
+`qemu-system-x86_64.exe -accel whpx -bios share\edk2-x86_64.fd -cpu Westmere,aes=on,avx=on,sse4.1=on,sse4.2=on,ssse3=on,x2apic=on,xsave=on -machine q35 -m 4096 -cdrom C:\windows11_23H2.iso`
+
+5. Press any key once you see "Press any key to boot from CD..." and wait until Windows Setup suggests to opt for language and currency.
+6. Click red "X" close button inside Windows Setup and confirm your choice when Windows Setup asks you to.
+
+Windows Setup sends a reboot signal to the underlying hardware and Qemu freezes.
+Additional information:
+If `-bios share\edk2-x86_64.fd` switch is omitted, this command works ok:
+
+`qemu-system-x86_64 -accel whpx -cpu Westmere,aes=on,avx=on,sse4.1=on,sse4.2=on,ssse3=on,x2apic=on,xsave=on -machine q35 -m 4096 -cdrom D:\originalWindows11_23H2.iso`
+
+This bug seems to be closely related to this one: https://gitlab.com/qemu-project/qemu/-/issues/2042 - Not able to reboot Linux guest on Windows host
diff --git a/results/classifier/108/other/2405 b/results/classifier/108/other/2405
new file mode 100644
index 000000000..09db0941b
--- /dev/null
+++ b/results/classifier/108/other/2405
@@ -0,0 +1,31 @@
+graphic: 0.898
+files: 0.802
+boot: 0.801
+device: 0.771
+performance: 0.769
+semantic: 0.540
+PID: 0.348
+other: 0.264
+debug: 0.204
+vnc: 0.155
+socket: 0.120
+network: 0.119
+KVM: 0.051
+permissions: 0.046
+
+Qemu on Windows fails to parse absolute file path in -acpitable switch
+Description of problem:
+I expect qemu-system-x86_64.exe to navigate to the path provided with -acpitable switch and to try to parse it. Instead, Qemu prints: "can't open file C: No such file or directory" if provided with absolute path. Qemu thinks "C:" itself is a file with acpi table.
+
+However, Qemu correctly processes files with relative path. If I run this command to try to parse file COPYING bundled in default qemu build:
+
+`qemu-system-x86_64.exe -acpitable "file=copying"`
+
+Qemu says: `qemu-system-x86_64.exe: -acpitable file=copying: warning: ACPI table has wrong length, header says 1313284128, actual size 17992 bytes`
+
+Then it proceeds to boot BIOS, as usual.
+Steps to reproduce:
+1. Run `qemu-system-x86_64.exe -acpitable "file=C:\temp\temp.txt"`
+2. Experience "can't open file C: No such file or directory" error message returning you to the command prompt. No BIOS screen.
+3. Run `qemu-system-x86_64.exe -acpitable "file=copying"` 
+4. Experience insignificant warning and then a normal BIOS screen.
diff --git a/results/classifier/108/other/2406 b/results/classifier/108/other/2406
new file mode 100644
index 000000000..b35178d84
--- /dev/null
+++ b/results/classifier/108/other/2406
@@ -0,0 +1,22 @@
+device: 0.804
+graphic: 0.792
+performance: 0.709
+boot: 0.562
+other: 0.529
+semantic: 0.502
+network: 0.430
+socket: 0.429
+permissions: 0.383
+PID: 0.375
+debug: 0.360
+vnc: 0.327
+files: 0.227
+KVM: 0.134
+
+SDL UI on KMSDRM Frontend flips qemu-consoles
+Description of problem:
+If I launch qemu on the kms/drm console (without X11 or Wayland), the screen flips automatically between all qemu-consoles. The first (500?) milliseconds, there is the maschine output (boot messages), than the next (200?) milliseconds there is the monitor0 console, the next milliseconds, the serial0 console, and than the parallel0 console. And again from beginning (maschine, monitor0, serial0, parallel0, ... maschine, monitor0, serial0, parallel0, ...) - I dont press any key.
+
+If I disable monitor0, serial0, parallel0, all is fine, except one thing: I cannot issue a command on monitor0, because its disabled ;).
+Steps to reproduce:
+1. Start qemu without X11 and without wayland on the KMSDRM console.
diff --git a/results/classifier/108/other/2407 b/results/classifier/108/other/2407
new file mode 100644
index 000000000..33ec1b3a0
--- /dev/null
+++ b/results/classifier/108/other/2407
@@ -0,0 +1,68 @@
+graphic: 0.911
+other: 0.900
+semantic: 0.853
+permissions: 0.848
+performance: 0.842
+device: 0.828
+boot: 0.796
+debug: 0.790
+PID: 0.765
+files: 0.761
+KVM: 0.756
+socket: 0.696
+network: 0.674
+vnc: 0.659
+
+"code should not be reached" in ati_2d_blt()
+Description of problem:
+My fuzzer detected a "code should not be reached" bug in ati_2d_blt()
+
+The stack trace is:
+
+```
+ERROR:include/qemu/bswap.h:418:stn_he_p: code should not be reached
+Bail out! ERROR:include/qemu/bswap.h:418:stn_he_p: code should not be reached
+==69534== ERROR: libFuzzer: deadly signal
+    #0 0x559e65667f5e in __sanitizer_print_stack_trace llvm-project-15.0.0.src/compiler-rt/lib/asan/asan_stack.cpp:87:3
+    #1 0x559e655a73bc in fuzzer::PrintStackTrace() llvm-project-15.0.0.src/compiler-rt/lib/fuzzer/FuzzerUtil.cpp:210:38
+    #2 0x559e65585a66 in fuzzer::Fuzzer::CrashCallback() (.part.0) llvm-project-15.0.0.src/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:236:18
+    #3 0x559e65585b2b in fuzzer::Fuzzer::CrashCallback() llvm-project-15.0.0.src/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:208:1
+    #4 0x559e65585b2b in fuzzer::Fuzzer::StaticCrashSignalCallback() llvm-project-15.0.0.src/compiler-rt/lib/fuzzer/FuzzerLoop.cpp:207:19
+    #5 0x7fa8835e351f  (/lib/x86_64-linux-gnu/libc.so.6+0x4251f) (BuildId: c289da5071a3399de893d2af81d6a30c62646e1e)
+    #6 0x7fa8836379fb in __pthread_kill_implementation nptl/pthread_kill.c:43:17
+    #7 0x7fa8836379fb in __pthread_kill_internal nptl/pthread_kill.c:78:10
+    #8 0x7fa8836379fb in pthread_kill nptl/pthread_kill.c:89:10
+    #9 0x7fa8835e3475 in gsignal signal/../sysdeps/posix/raise.c:26:13
+    #10 0x7fa8835c97f2 in abort stdlib/abort.c:79:7
+    #11 0x7fa8848e5b56  (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x1eb56) (BuildId: c74e800dfd5f72649d673b44292f4a817e45150b)
+    #12 0x7fa88493f70e in g_assertion_message_expr (/lib/x86_64-linux-gnu/libglib-2.0.so.0+0x7870e) (BuildId: c74e800dfd5f72649d673b44292f4a817e45150b)
+    #13 0x559e65fc7d70 in stn_he_p include/qemu/bswap.h:418:1
+    #14 0x559e65fc55dc in ati_2d_blt hw/display/ati_2d.c:224:21
+    #15 0x559e65faccff in ati_mm_write hw/display/ati.c:857:9
+    #16 0x559e685b8363 in memory_region_write_accessor system/memory.c:497:5
+    #17 0x559e685b7a45 in access_with_adjusted_size system/memory.c:573:18
+    #18 0x559e685b59a9 in memory_region_dispatch_write system/memory.c:1521:16
+    #19 0x559e6865938e in flatview_write_continue_step system/physmem.c:2757:18
+    #20 0x559e68658c24 in flatview_write_continue system/physmem.c:2787:19
+    #21 0x559e6863024b in flatview_write system/physmem.c:2818:12
+    #22 0x559e6862fd18 in address_space_write system/physmem.c:2938:18
+...
+```
+Steps to reproduce:
+Arguments: `export QEMU_ARGS="-machine q35 -nodefaults -device ati-vga,romfile=\"\" -display vnc=localhost:99 -L ../pc-bios/"`
+
+The base addresses of memory regions:
+
+ati.mmregs: 0xe1000000
+
+Reproducer:
+
+```
+writew 0xe100146c 0x44e4c5c1
+writeb 0xe10016c0 0x773b93cf
+writeb 0xe10016e4 0x2beb6e13
+writel 0xe100143c 0x118b71f6
+EOF
+```
+Additional information:
+Ack: Chuhong Yuan (hslester96@gmail.com)
diff --git a/results/classifier/108/other/2408 b/results/classifier/108/other/2408
new file mode 100644
index 000000000..0c7042409
--- /dev/null
+++ b/results/classifier/108/other/2408
@@ -0,0 +1,252 @@
+other: 0.952
+device: 0.951
+files: 0.946
+graphic: 0.942
+performance: 0.940
+permissions: 0.932
+debug: 0.925
+semantic: 0.925
+KVM: 0.913
+boot: 0.912
+vnc: 0.912
+PID: 0.902
+socket: 0.897
+network: 0.840
+
+QEMU crashes during guest OS boot if virtserialport is present
+Description of problem:
+QEMU will load the firmware (`OVMF_CODE.fd`) and run the boot manager (`BootDisk.qcow2`) just fine, then shortly after control is passed to the OS installer (`InstallDisk.raw`) it will crash.
+
+This only happens if a `virtioserialport` is present: dropping that single device from the configuration will allow the installer to run, even if the `virtio-serial-pci` device is still present. The exact value of the `name` attribute doesn't seem to make a difference either, I'm just using the standard one for qemu-ga here.
+
+Note that `InstallDisk.raw` is attached using `virtio-blk-pci`, so it's this specific virtio device triggering the crash, not the use of virtio devices in general.
+Additional information:
+The crash happens 100% of the time.
+
+Running a bisect between 8.2 (known to work) and 9.0 (known to crash) has identified the commit 2ce6cff94df2650c460f809e5ad263f1d22507c0 as the culpit:
+
+```
+commit 2ce6cff94df2650c460f809e5ad263f1d22507c0
+Author: Cindy Lu <lulu@redhat.com>
+Date:   Fri Apr 12 14:26:55 2024 +0800
+
+    virtio-pci: fix use of a released vector
+
+    During the booting process of the non-standard image, the behavior of the
+    called function in qemu is as follows:
+
+    1. vhost_net_stop() was triggered by guest image. This will call the function
+    virtio_pci_set_guest_notifiers() with assgin= false,
+    virtio_pci_set_guest_notifiers() will release the irqfd for vector 0
+
+    2. virtio_reset() was triggered, this will set configure vector to VIRTIO_NO_VECTOR
+
+    3.vhost_net_start() was called (at this time, the configure vector is
+    still VIRTIO_NO_VECTOR) and then call virtio_pci_set_guest_notifiers() with
+    assgin=true, so the irqfd for vector 0 is still not "init" during this process
+
+    4. The system continues to boot and sets the vector back to 0. After that
+    msix_fire_vector_notifier() was triggered to unmask the vector 0 and  meet the crash
+
+    To fix the issue, we need to support changing the vector after VIRTIO_CONFIG_S_DRIVER_OK is set.
+
+    (gdb) bt
+    0  __pthread_kill_implementation (threadid=<optimized out>, signo=signo@entry=6, no_tid=no_tid@entry=0)
+        at pthread_kill.c:44
+    1  0x00007fc87148ec53 in __pthread_kill_internal (signo=6, threadid=<optimized out>) at pthread_kill.c:78
+    2  0x00007fc87143e956 in __GI_raise (sig=sig@entry=6) at ../sysdeps/posix/raise.c:26
+    3  0x00007fc8714287f4 in __GI_abort () at abort.c:79
+    4  0x00007fc87142871b in __assert_fail_base
+        (fmt=0x7fc8715bbde0 "%s%s%s:%u: %s%sAssertion `%s' failed.\n%n", assertion=0x5606413efd53 "ret == 0", file=0x5606413ef87d "../accel/kvm/kvm-all.c", line=1837, function=<optimized out>) at assert.c:92
+    5  0x00007fc871437536 in __GI___assert_fail
+        (assertion=0x5606413efd53 "ret == 0", file=0x5606413ef87d "../accel/kvm/kvm-all.c", line=1837, function=0x5606413f06f0 <__PRETTY_FUNCTION__.19> "kvm_irqchip_commit_routes") at assert.c:101
+    6  0x0000560640f884b5 in kvm_irqchip_commit_routes (s=0x560642cae1f0) at ../accel/kvm/kvm-all.c:1837
+    7  0x0000560640c98f8e in virtio_pci_one_vector_unmask
+        (proxy=0x560643c65f00, queue_no=4294967295, vector=0, msg=..., n=0x560643c6e4c8)
+        at ../hw/virtio/virtio-pci.c:1005
+    8  0x0000560640c99201 in virtio_pci_vector_unmask (dev=0x560643c65f00, vector=0, msg=...)
+        at ../hw/virtio/virtio-pci.c:1070
+    9  0x0000560640bc402e in msix_fire_vector_notifier (dev=0x560643c65f00, vector=0, is_masked=false)
+        at ../hw/pci/msix.c:120
+    10 0x0000560640bc40f1 in msix_handle_mask_update (dev=0x560643c65f00, vector=0, was_masked=true)
+        at ../hw/pci/msix.c:140
+    11 0x0000560640bc4503 in msix_table_mmio_write (opaque=0x560643c65f00, addr=12, val=0, size=4)
+        at ../hw/pci/msix.c:231
+    12 0x0000560640f26d83 in memory_region_write_accessor
+        (mr=0x560643c66540, addr=12, value=0x7fc86b7bc628, size=4, shift=0, mask=4294967295, attrs=...)
+        at ../system/memory.c:497
+    13 0x0000560640f270a6 in access_with_adjusted_size
+
+         (addr=12, value=0x7fc86b7bc628, size=4, access_size_min=1, access_size_max=4, access_fn=0x560640f26c8d <memory_region_write_accessor>, mr=0x560643c66540, attrs=...) at ../system/memory.c:573
+    14 0x0000560640f2a2b5 in memory_region_dispatch_write (mr=0x560643c66540, addr=12, data=0, op=MO_32, attrs=...)
+        at ../system/memory.c:1521
+    15 0x0000560640f37bac in flatview_write_continue
+        (fv=0x7fc65805e0b0, addr=4273803276, attrs=..., ptr=0x7fc871e9c028, len=4, addr1=12, l=4, mr=0x560643c66540)
+        at ../system/physmem.c:2714
+    16 0x0000560640f37d0f in flatview_write
+        (fv=0x7fc65805e0b0, addr=4273803276, attrs=..., buf=0x7fc871e9c028, len=4) at ../system/physmem.c:2756
+    17 0x0000560640f380bf in address_space_write
+        (as=0x560642161ae0 <address_space_memory>, addr=4273803276, attrs=..., buf=0x7fc871e9c028, len=4)
+        at ../system/physmem.c:2863
+    18 0x0000560640f3812c in address_space_rw
+        (as=0x560642161ae0 <address_space_memory>, addr=4273803276, attrs=..., buf=0x7fc871e9c028, len=4, is_write=true) at ../system/physmem.c:2873
+    --Type <RET> for more, q to quit, c to continue without paging--
+    19 0x0000560640f8aa55 in kvm_cpu_exec (cpu=0x560642f205e0) at ../accel/kvm/kvm-all.c:2915
+    20 0x0000560640f8d731 in kvm_vcpu_thread_fn (arg=0x560642f205e0) at ../accel/kvm/kvm-accel-ops.c:51
+    21 0x00005606411949f4 in qemu_thread_start (args=0x560642f292b0) at ../util/qemu-thread-posix.c:541
+    22 0x00007fc87148cdcd in start_thread (arg=<optimized out>) at pthread_create.c:442
+    23 0x00007fc871512630 in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:81
+    (gdb)
+
+    MST: coding style and typo fixups
+
+    Fixes: f9a09ca3ea ("vhost: add support for configure interrupt")
+    Cc: qemu-stable@nongnu.org
+    Signed-off-by: Cindy Lu <lulu@redhat.com>
+    Message-ID: <2321ade5f601367efe7380c04e3f61379c59b48f.1713173550.git.mst@redhat.com>
+    Cc: Lei Yang <leiyang@redhat.com>
+    Cc: Jason Wang <jasowang@redhat.com>
+    Signed-off-by: Michael S. Tsirkin <mst@redhat.com>
+    Tested-by: Cindy Lu <lulu@redhat.com>
+```
+
+Considering that it touches virtio-pci, the results seem plausible.
+
+This commit was also backported to stable as part of the 8.2.3 release, and indeed I have verified that that version suffers from the crash while 8.2.2 didn't.
+
+Reverting the commit makes the crash go away, but obviously the change was made for a reason so we probably need a follow-up fix rather than a plain revert.
+
+Crash and stack trace:
+
+```
+Thread 10 "qemu-system-x86" received signal SIGSEGV, Segmentation fault.
+[Switching to Thread 0x7fffe56006c0 (LWP 323938)]
+kvm_virtio_pci_vq_vector_use (vector=0, proxy=0x555558e04690) at ../hw/virtio/virtio-pci.c:817
+817	    if (irqfd->users == 0) {
+(gdb) t a a bt
+
+Thread 33 (Thread 0x7fffe6a006c0 (LWP 323987) "qemu-system-x86"):
+#0  0x00007ffff4ae1169 in __futex_abstimed_wait_common64 (private=0, cancel=true, abstime=0x7fffe69fb010, op=393, expected=0, futex_word=0x555557ad4370) at futex-internal.c:57
+#1  __futex_abstimed_wait_common (futex_word=futex_word@entry=0x555557ad4370, expected=expected@entry=0, clockid=clockid@entry=0, abstime=abstime@entry=0x7fffe69fb010, private=private@entry=0, cancel=cancel@entry=true) at futex-internal.c:87
+#2  0x00007ffff4ae11ef in __GI___futex_abstimed_wait_cancelable64 (futex_word=futex_word@entry=0x555557ad4370, expected=expected@entry=0, clockid=clockid@entry=0, abstime=abstime@entry=0x7fffe69fb010, private=private@entry=0) at futex-internal.c:139
+#3  0x00007ffff4ae3e72 in __pthread_cond_wait_common (abstime=0x7fffe69fb010, clockid=0, mutex=0x7fffe69faf90, cond=0x555557ad4348) at pthread_cond_wait.c:503
+#4  ___pthread_cond_timedwait64 (cond=cond@entry=0x555557ad4348, mutex=mutex@entry=0x555557ad42e0, abstime=abstime@entry=0x7fffe69fb010) at pthread_cond_wait.c:643
+#5  0x0000555555efc651 in qemu_cond_timedwait_ts (cond=cond@entry=0x555557ad4348, mutex=mutex@entry=0x555557ad42e0, ts=ts@entry=0x7fffe69fb010, file=file@entry=0x55555616c035 "../util/thread-pool.c", line=line@entry=91) at ../util/qemu-thread-posix.c:239
+#6  0x0000555555efd2f8 in qemu_cond_timedwait_impl (cond=0x555557ad4348, mutex=0x555557ad42e0, ms=<optimized out>, file=0x55555616c035 "../util/thread-pool.c", line=91) at ../util/qemu-thread-posix.c:253
+#7  0x0000555555f129bc in worker_thread (opaque=opaque@entry=0x555557ad42d0) at ../util/thread-pool.c:91
+#8  0x0000555555efc4c8 in qemu_thread_start (args=0x555557aef190) at ../util/qemu-thread-posix.c:541
+#9  0x00007ffff4ae4897 in start_thread (arg=<optimized out>) at pthread_create.c:444
+#10 0x00007ffff4b6ba5c in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:78
+
+Thread 32 (Thread 0x7fffece006c0 (LWP 323986) "qemu-system-x86"):
+#0  0x00007ffff4ae1169 in __futex_abstimed_wait_common64 (private=0, cancel=true, abstime=0x7fffecdfb010, op=393, expected=0, futex_word=0x555557ad4374) at futex-internal.c:57
+#1  __futex_abstimed_wait_common (futex_word=futex_word@entry=0x555557ad4374, expected=expected@entry=0, clockid=clockid@entry=0, abstime=abstime@entry=0x7fffecdfb010, private=private@entry=0, cancel=cancel@entry=true) at futex-internal.c:87
+#2  0x00007ffff4ae11ef in __GI___futex_abstimed_wait_cancelable64 (futex_word=futex_word@entry=0x555557ad4374, expected=expected@entry=0, clockid=clockid@entry=0, abstime=abstime@entry=0x7fffecdfb010, private=private@entry=0) at futex-internal.c:139
+#3  0x00007ffff4ae3e72 in __pthread_cond_wait_common (abstime=0x7fffecdfb010, clockid=0, mutex=0x7fffecdfaf90, cond=0x555557ad4348) at pthread_cond_wait.c:503
+#4  ___pthread_cond_timedwait64 (cond=cond@entry=0x555557ad4348, mutex=mutex@entry=0x555557ad42e0, abstime=abstime@entry=0x7fffecdfb010) at pthread_cond_wait.c:643
+#5  0x0000555555efc651 in qemu_cond_timedwait_ts (cond=cond@entry=0x555557ad4348, mutex=mutex@entry=0x555557ad42e0, ts=ts@entry=0x7fffecdfb010, file=file@entry=0x55555616c035 "../util/thread-pool.c", line=line@entry=91) at ../util/qemu-thread-posix.c:239
+#6  0x0000555555efd2f8 in qemu_cond_timedwait_impl (cond=0x555557ad4348, mutex=0x555557ad42e0, ms=<optimized out>, file=0x55555616c035 "../util/thread-pool.c", line=91) at ../util/qemu-thread-posix.c:253
+#7  0x0000555555f129bc in worker_thread (opaque=opaque@entry=0x555557ad42d0) at ../util/thread-pool.c:91
+#8  0x0000555555efc4c8 in qemu_thread_start (args=0x555557aee7b0) at ../util/qemu-thread-posix.c:541
+#9  0x00007ffff4ae4897 in start_thread (arg=<optimized out>) at pthread_create.c:444
+#10 0x00007ffff4b6ba5c in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:78
+
+Thread 10 (Thread 0x7fffe56006c0 (LWP 323938) "qemu-system-x86"):
+#0  kvm_virtio_pci_vq_vector_use (vector=0, proxy=0x555558e04690) at ../hw/virtio/virtio-pci.c:817
+#1  kvm_virtio_pci_vector_use_one (proxy=0x555558e04690, queue_no=5) at ../hw/virtio/virtio-pci.c:893
+#2  0x0000555555cde680 in memory_region_write_accessor (mr=0x555558e05230, addr=26, value=<optimized out>, size=2, shift=<optimized out>, mask=<optimized out>, attrs=...) at ../system/memory.c:497
+#3  0x0000555555cddf26 in access_with_adjusted_size (addr=addr@entry=26, value=value@entry=0x7fffe55fae78, size=size@entry=2, access_size_min=<optimized out>, access_size_max=<optimized out>, access_fn=0x555555cde600 <memory_region_write_accessor>, mr=<optimized out>, attrs=...) at ../system/memory.c:573
+#4  0x0000555555cde271 in memory_region_dispatch_write (mr=mr@entry=0x555558e05230, addr=addr@entry=26, data=<optimized out>, op=<optimized out>, attrs=attrs@entry=...) at ../system/memory.c:1528
+#5  0x0000555555ce623f in flatview_write_continue_step (attrs=attrs@entry=..., buf=buf@entry=0x7fffeef80028 "", mr_addr=26, l=l@entry=0x7fffe55faf90, mr=0x555558e05230, len=2) at ../system/physmem.c:2757
+#6  0x0000555555ce6918 in flatview_write_continue (mr=<optimized out>, l=<optimized out>, mr_addr=<optimized out>, len=2, ptr=0x8100401a, attrs=..., addr=2164277274, fv=0x7fff343ec810) at ../system/physmem.c:2787
+#7  flatview_write (fv=0x7fff343ec810, addr=addr@entry=2164277274, attrs=attrs@entry=..., buf=buf@entry=0x7fffeef80028, len=len@entry=2) at ../system/physmem.c:2818
+#8  0x0000555555ce9e61 in address_space_write (len=2, buf=0x7fffeef80028, attrs=..., addr=2164277274, as=0x555556e03d40 <address_space_memory>) at ../system/physmem.c:2938
+#9  address_space_rw (as=0x555556e03d40 <address_space_memory>, addr=2164277274, attrs=attrs@entry=..., buf=buf@entry=0x7fffeef80028, len=2, is_write=<optimized out>) at ../system/physmem.c:2948
+#10 0x0000555555d45118 in kvm_cpu_exec (cpu=cpu@entry=0x555557cde8b0) at ../accel/kvm/kvm-all.c:3031
+#11 0x0000555555d46845 in kvm_vcpu_thread_fn (arg=arg@entry=0x555557cde8b0) at ../accel/kvm/kvm-accel-ops.c:50
+#12 0x0000555555efc4c8 in qemu_thread_start (args=0x555557c5a370) at ../util/qemu-thread-posix.c:541
+#13 0x00007ffff4ae4897 in start_thread (arg=<optimized out>) at pthread_create.c:444
+#14 0x00007ffff4b6ba5c in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:78
+
+Thread 9 (Thread 0x7fffe60006c0 (LWP 323937) "qemu-system-x86"):
+#0  futex_wait (private=0, expected=2, futex_word=0x555556deffe0 <bql>) at ../sysdeps/nptl/futex-internal.h:146
+#1  __GI___lll_lock_wait (futex=futex@entry=0x555556deffe0 <bql>, private=0) at lowlevellock.c:49
+#2  0x00007ffff4ae7e41 in lll_mutex_lock_optimized (mutex=0x555556deffe0 <bql>) at pthread_mutex_lock.c:48
+#3  ___pthread_mutex_lock (mutex=mutex@entry=0x555556deffe0 <bql>) at pthread_mutex_lock.c:93
+#4  0x0000555555efc8c3 in qemu_mutex_lock_impl (mutex=0x555556deffe0 <bql>, file=0x5555560e97ca "../system/physmem.c", line=2689) at ../util/qemu-thread-posix.c:94
+#5  0x0000555555ad6082 in bql_lock_impl (file=file@entry=0x5555560e97ca "../system/physmem.c", line=line@entry=2689) at ../system/cpus.c:536
+#6  0x0000555555ce632f in prepare_mmio_access (mr=0x55555874c4b0) at ../system/physmem.c:2689
+#7  flatview_write_continue_step (attrs=..., attrs@entry=..., buf=buf@entry=0x7fffeef83028 "", mr_addr=536, l=l@entry=0x7fffe5ffaf90, mr=0x55555874c4b0, len=4) at ../system/physmem.c:2738
+#8  0x0000555555ce6918 in flatview_write_continue (mr=<optimized out>, l=<optimized out>, mr_addr=<optimized out>, len=4, ptr=0x81084218, attrs=..., addr=2164802072, fv=0x7fff343ec810) at ../system/physmem.c:2787
+#9  flatview_write (fv=0x7fff343ec810, addr=addr@entry=2164802072, attrs=attrs@entry=..., buf=buf@entry=0x7fffeef83028, len=len@entry=4) at ../system/physmem.c:2818
+#10 0x0000555555ce9e61 in address_space_write (len=4, buf=0x7fffeef83028, attrs=..., addr=2164802072, as=0x555556e03d40 <address_space_memory>) at ../system/physmem.c:2938
+#11 address_space_rw (as=0x555556e03d40 <address_space_memory>, addr=2164802072, attrs=attrs@entry=..., buf=buf@entry=0x7fffeef83028, len=4, is_write=<optimized out>) at ../system/physmem.c:2948
+#12 0x0000555555d45118 in kvm_cpu_exec (cpu=cpu@entry=0x555557dbdcd0) at ../accel/kvm/kvm-all.c:3031
+#13 0x0000555555d46845 in kvm_vcpu_thread_fn (arg=arg@entry=0x555557dbdcd0) at ../accel/kvm/kvm-accel-ops.c:50
+#14 0x0000555555efc4c8 in qemu_thread_start (args=0x555557c0b4a0) at ../util/qemu-thread-posix.c:541
+#15 0x00007ffff4ae4897 in start_thread (arg=<optimized out>) at pthread_create.c:444
+#16 0x00007ffff4b6ba5c in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:78
+
+Thread 7 (Thread 0x7fffe74006c0 (LWP 323934) "dconf worker"):
+#0  0x00007ffff4b5de3d in __GI___poll (fds=0x7fffc8000b90, nfds=1, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29
+#1  0x00007ffff6e38f04 in g_main_context_poll_unlocked (priority=2147483647, n_fds=1, fds=0x7fffc8000b90, timeout=<optimized out>, context=0x555557adfef0) at ../glib/gmain.c:4653
+#2  g_main_context_iterate_unlocked.isra.0 (context=context@entry=0x555557adfef0, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at ../glib/gmain.c:4344
+#3  0x00007ffff6ddbad3 in g_main_context_iteration (context=context@entry=0x555557adfef0, may_block=may_block@entry=1) at ../glib/gmain.c:4414
+#4  0x00007ffff7fb16b5 in dconf_gdbus_worker_thread (user_data=0x555557adfef0) at ../gdbus/dconf-gdbus-thread.c:82
+#5  0x00007ffff6e0e573 in g_thread_proxy (data=0x555557ae00d0) at ../glib/gthread.c:831
+#6  0x00007ffff4ae4897 in start_thread (arg=<optimized out>) at pthread_create.c:444
+#7  0x00007ffff4b6ba5c in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:78
+
+Thread 6 (Thread 0x7fffe7e006c0 (LWP 323933) "gdbus"):
+#0  0x00007ffff4b5de3d in __GI___poll (fds=0x7fffd0000b90, nfds=3, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29
+#1  0x00007ffff6e38f04 in g_main_context_poll_unlocked (priority=2147483647, n_fds=3, fds=0x7fffd0000b90, timeout=<optimized out>, context=0x7fffd4005a90) at ../glib/gmain.c:4653
+#2  g_main_context_iterate_unlocked.isra.0 (context=0x7fffd4005a90, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at ../glib/gmain.c:4344
+#3  0x00007ffff6ddf447 in g_main_loop_run (loop=0x7fffd4005b80) at ../glib/gmain.c:4551
+#4  0x00007ffff7048bc2 in gdbus_shared_thread_func (user_data=0x7fffd4005a60) at ../gio/gdbusprivate.c:284
+#5  0x00007ffff6e0e573 in g_thread_proxy (data=0x7fffd4005bc0) at ../glib/gthread.c:831
+#6  0x00007ffff4ae4897 in start_thread (arg=<optimized out>) at pthread_create.c:444
+#7  0x00007ffff4b6ba5c in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:78
+
+Thread 4 (Thread 0x7fffed8006c0 (LWP 323931) "gmain"):
+#0  0x00007ffff4b5de3d in __GI___poll (fds=0x555557acd200, nfds=1, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29
+#1  0x00007ffff6e38f04 in g_main_context_poll_unlocked (priority=2147483647, n_fds=1, fds=0x555557acd200, timeout=<optimized out>, context=0x555557accfd0) at ../glib/gmain.c:4653
+#2  g_main_context_iterate_unlocked.isra.0 (context=context@entry=0x555557accfd0, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at ../glib/gmain.c:4344
+#3  0x00007ffff6ddbad3 in g_main_context_iteration (context=0x555557accfd0, may_block=may_block@entry=1) at ../glib/gmain.c:4414
+#4  0x00007ffff6ddbb29 in glib_worker_main (data=<optimized out>) at ../glib/gmain.c:6574
+#5  0x00007ffff6e0e573 in g_thread_proxy (data=0x555557ac1140) at ../glib/gthread.c:831
+#6  0x00007ffff4ae4897 in start_thread (arg=<optimized out>) at pthread_create.c:444
+#7  0x00007ffff4b6ba5c in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:78
+
+Thread 3 (Thread 0x7fffee2006c0 (LWP 323930) "pool-spawner"):
+#0  syscall () at ../sysdeps/unix/sysv/linux/x86_64/syscall.S:38
+#1  0x00007ffff6e35b7d in g_cond_wait (cond=0x555557ac5f28, mutex=0x555557ac5f20) at ../glib/gthread-posix.c:1552
+#2  0x00007ffff6da922b in g_async_queue_pop_intern_unlocked (queue=0x555557ac5f20, wait=1, end_time=-1) at ../glib/gasyncqueue.c:425
+#3  0x00007ffff6e123e3 in g_thread_pool_spawn_thread (data=<optimized out>) at ../glib/gthreadpool.c:311
+#4  0x00007ffff6e0e573 in g_thread_proxy (data=0x555557ac7800) at ../glib/gthread.c:831
+#5  0x00007ffff4ae4897 in start_thread (arg=<optimized out>) at pthread_create.c:444
+#6  0x00007ffff4b6ba5c in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:78
+
+Thread 2 (Thread 0x7fffeec006c0 (LWP 323929) "qemu-system-x86"):
+#0  syscall () at ../sysdeps/unix/sysv/linux/x86_64/syscall.S:38
+#1  0x0000555555efd7ca in qemu_futex_wait (val=<optimized out>, f=<optimized out>) at /home/abologna/src/upstream/qemu/include/qemu/futex.h:29
+#2  qemu_event_wait (ev=ev@entry=0x555556e182e8 <rcu_call_ready_event>) at ../util/qemu-thread-posix.c:464
+#3  0x0000555555f07216 in call_rcu_thread (opaque=opaque@entry=0x0) at ../util/rcu.c:278
+#4  0x0000555555efc4c8 in qemu_thread_start (args=0x555556ea0ed0) at ../util/qemu-thread-posix.c:541
+#5  0x00007ffff4ae4897 in start_thread (arg=<optimized out>) at pthread_create.c:444
+#6  0x00007ffff4b6ba5c in clone3 () at ../sysdeps/unix/sysv/linux/x86_64/clone3.S:78
+
+Thread 1 (Thread 0x7fffef0864c0 (LWP 323692) "qemu-system-x86"):
+#0  futex_wait (private=0, expected=2, futex_word=0x555556deffe0 <bql>) at ../sysdeps/nptl/futex-internal.h:146
+#1  __GI___lll_lock_wait (futex=futex@entry=0x555556deffe0 <bql>, private=0) at lowlevellock.c:49
+#2  0x00007ffff4ae7e41 in lll_mutex_lock_optimized (mutex=0x555556deffe0 <bql>) at pthread_mutex_lock.c:48
+#3  ___pthread_mutex_lock (mutex=mutex@entry=0x555556deffe0 <bql>) at pthread_mutex_lock.c:93
+#4  0x0000555555efc8c3 in qemu_mutex_lock_impl (mutex=0x555556deffe0 <bql>, file=0x55555616b7ef "../util/main-loop.c", line=308) at ../util/qemu-thread-posix.c:94
+#5  0x0000555555ad6082 in bql_lock_impl (file=file@entry=0x55555616b7ef "../util/main-loop.c", line=line@entry=308) at ../system/cpus.c:536
+#6  0x0000555555f109a6 in os_host_main_loop_wait (timeout=6299288) at ../util/main-loop.c:308
+#7  main_loop_wait (nonblocking=nonblocking@entry=0) at ../util/main-loop.c:589
+#8  0x0000555555ae0ce9 in qemu_main_loop () at ../system/runstate.c:795
+#9  0x0000555555d50f66 in qemu_default_main () at ../system/main.c:37
+#10 0x00007ffff4a7e14a in __libc_start_call_main (main=main@entry=0x555555897b80 <main>, argc=argc@entry=29, argv=argv@entry=0x7fffffffe0e8) at ../sysdeps/nptl/libc_start_call_main.h:58
+#11 0x00007ffff4a7e20b in __libc_start_main_impl (main=0x555555897b80 <main>, argc=29, argv=0x7fffffffe0e8, init=<optimized out>, fini=<optimized out>, rtld_fini=<optimized out>, stack_end=0x7fffffffe0d8) at ../csu/libc-start.c:360
+#12 0x00005555558998a5 in _start ()
+```