__gfn_to_memslot() next_segment() assertion failed /home/dave/src/kvm-userspace/kernel/lapic.c: 281: !target ------------[ cut here ]------------ kernel BUG at /home/dave/src/kvm-userspace/kernel/lapic.c:281! invalid opcode: 0000 [#1] SMP Modules linked in: kvm_intel kvm Pid: 5485, comm: qemu-system-x86 Not tainted (2.6.26defconfig #3) EIP: 0060:[] EFLAGS: 00010292 CPU: 0 EIP is at apic_match_dest+0x2f/0xa8 [kvm] EAX: 0000004e EBX: ed9d2d80 ECX: 00000046 EDX: ffffffff ESI: 00000000 EDI: ed9d2d80 EBP: ed4bf740 ESP: ed4bf728 DS: 007b ES: 007b FS: 00d8 GS: 0000 SS: 0068 Process qemu-system-x86 (pid: 5485, ti=ed4be000 task=edd9ddd0 task.ti=ed4be000) Stack: f8c36781 f8c36755 00000119 f8c367bb ed518000 00000500 ed4bf77c f8c31865 00000000 00000000 00000000 00000000 00000000 00004000 00000000 000c0000 00000000 00000000 00000300 000c4500 ed9d2d80 ed4bf798 f8c31ded fee00300 Call Trace: [] ? apic_send_ipi+0x96/0x10c [kvm] [] ? apic_mmio_write+0x22a/0x2ae [kvm] [] ? emulator_write_emulated_onepage+0xa7/0x110 [kvm] [] ? emulator_write_emulated+0x4c/0x54 [kvm] [] ? x86_emulate_insn+0x2f76/0x3b36 [kvm] [] ? do_insn_fetch+0x2f/0x40 [kvm] [] ? x86_decode_insn+0x438/0x51f [kvm] [] ? vmcs_read32+0x8/0xa [kvm_intel] [] ? emulate_instruction+0x11f/0x1e8 [kvm] [] ? handle_apic_access+0x25/0x50 [kvm_intel] [] ? kvm_handle_exit+0x117/0x134 [kvm_intel] [] ? __vcpu_run+0x297/0x30d [kvm] [] ? kvm_arch_vcpu_ioctl_run+0x103/0x12b [kvm] [] ? kvm_vcpu_ioctl+0x171/0x5f3 [kvm] [] ? printk+0xf/0x11 [] ? kvm_vcpu_kick+0x29/0x79 [kvm] [] ? pic_irq_request+0x1d/0x1f [kvm] [] ? pic_update_irq+0x56/0x59 [kvm] [] ? kvm_arch_vm_ioctl+0x238/0x379 [kvm] [] ? usb_submit_urb+0x2c0/0x2c8 [] ? pool_find_page+0x60/0x6a [] ? dma_pool_free+0xa8/0xb0 [] ? qh_completions+0x1de/0x23a [] ? lock_timer_base+0x1d/0x3c [] ? __mod_timer+0x93/0x9d [] ? mod_timer+0x33/0x37 [] ? buffered_rmqueue+0x1b5/0x1cf [] ? read_hpet+0xd/0x11 [] ? getnstimeofday+0x37/0x100 [] ? ktime_get+0xe/0x2c [] ? calc_delta_asym+0x45/0x58 [] ? wakeup_gran+0x12/0x14 [] ? wakeup_preempt_entity+0x21/0x3a [] ? check_preempt_wakeup+0xde/0xe4 [] ? try_to_wake_up+0x226/0x231 [] ? default_wake_function+0xb/0xd [] ? autoremove_wake_function+0xf/0x33 [] ? __wake_up_common+0x39/0x60 [] ? __wake_up+0x2f/0x37 [] ? insert_work+0x5b/0x62 [] ? __queue_work+0x28/0x2d [] ? delayed_work_timer_fn+0x21/0x24 [] ? run_timer_softirq+0x141/0x15b [] ? delayed_work_timer_fn+0x0/0x24 [] ? __do_softirq+0xc3/0xca [] ? irq_exit+0x56/0x6e [] ? smp_apic_timer_interrupt+0x2f/0x39 [] ? apic_timer_interrupt+0x28/0x30 [] ? avc_has_perm_noaudit+0x39/0xd4 [] ? avc_has_perm+0x3d/0x47 [] ? inode_has_perm+0x59/0x65 [] ? file_has_perm+0x7b/0x83 [] ? kvm_vcpu_ioctl+0x0/0x5f3 [kvm] [] ? vfs_ioctl+0x27/0x67 [] ? do_vfs_ioctl+0xfe/0x109 [] ? sys_ioctl+0x3e/0x59 [] ? sysenter_past_esp+0x6a/0x91 ======================= Code: 31 f6 53 8b 80 80 01 00 00 89 d3 8b 55 08 85 c0 74 20 68 bb 67 c3 f8 68 19 01 00 00 68 55 67 c3 f8 68 81 67 c3 f8 e8 10 1f 5f c7 <0f> 0b 83 c4 10 eb fe 81 f9 00 00 04 00 74 43 7f 06 85 c9 74 14 EIP: [] apic_match_dest+0x2f/0xa8 [kvm] SS:ESP 0068:ed4bf728 ---[ end trace 5e508e80d1ce359b ]--- kvm_sched_out(ed518004, 00000000) preempt_notifier_to_vcpu(ed518004) preempt_notifier_to_vcpu() done kvm_sched_out() vcpu: ed518000 kvm_arch_vcpu_put(ed518000)