[Spice-devel] qemu 2.2 crash on linux hvm domU (full backtrace included)
Fabio Fantoni
fabio.fantoni at m2r.biz
Wed Nov 19 06:04:58 PST 2014
Il 14/11/2014 12:25, Fabio Fantoni ha scritto:
> dom0 xen-unstable from staging git with "x86/hvm: Extend HVM cpuid
> leaf with vcpu id" and "x86/hvm: Add per-vcpu evtchn upcalls" patches,
> and qemu 2.2 from spice git (spice/next commit
> e779fa0a715530311e6f59fc8adb0f6eca914a89):
> https://github.com/Fantu/Xen/commits/rebase/m2r-staging
I tried with qemu tag v2.2.0-rc2 and crash still happen, here the full
backtrace of latest test:
> Program received signal SIGSEGV, Segmentation fault.
> 0x0000555555689b07 in vmport_ioport_read (opaque=0x5555564443a0, addr=0,
> size=4) at /mnt/vm/xen/Xen/tools/qemu-xen-dir/hw/misc/vmport.c:73
> 73 eax = env->regs[R_EAX];
> (gdb) bt full
> #0 0x0000555555689b07 in vmport_ioport_read (opaque=0x5555564443a0,
> addr=0,
> size=4) at /mnt/vm/xen/Xen/tools/qemu-xen-dir/hw/misc/vmport.c:73
> s = 0x5555564443a0
> cs = 0x0
> cpu = 0x0
> __func__ = "vmport_ioport_read"
> env = 0x8250
> command = 0 '\000'
> eax = 0
> #1 0x0000555555655fc4 in memory_region_read_accessor (mr=0x555556444428,
> addr=0, value=0x7fffffffd8d0, size=4, shift=0, mask=4294967295)
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:410
> tmp = 0
> #2 0x00005555556562b7 in access_with_adjusted_size (addr=0,
> value=0x7fffffffd8d0, size=4, access_size_min=4, access_size_max=4,
> access=0x555555655f62 <memory_region_read_accessor>,
> mr=0x555556444428)
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:480
> access_mask = 4294967295
> access_size = 4
> i = 0
> #3 0x00005555556590e9 in memory_region_dispatch_read1
> (mr=0x555556444428,
> addr=0, size=4) at /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:1077
> data = 0
> #4 0x00005555556591b1 in memory_region_dispatch_read (mr=0x555556444428,
> addr=0, pval=0x7fffffffd9a8, size=4)
> ---Type <return> to continue, or q <return> to quit---
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:1099
> No locals.
> #5 0x000055555565cbbc in io_mem_read (mr=0x555556444428, addr=0,
> pval=0x7fffffffd9a8, size=4)
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:1962
> No locals.
> #6 0x000055555560a1ca in address_space_rw (as=0x555555eaf920,
> addr=22104,
> buf=0x7fffffffda50 "\377\377\377\377", len=4, is_write=false)
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/exec.c:2167
> l = 4
> ptr = 0x555555a92d87 "%s/%d:\n"
> val = 7852232130387826944
> addr1 = 0
> mr = 0x555556444428
> error = false
> #7 0x000055555560a38f in address_space_read (as=0x555555eaf920,
> addr=22104,
> buf=0x7fffffffda50 "\377\377\377\377", len=4)
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/exec.c:2205
> No locals.
> #8 0x000055555564fd4b in cpu_inl (addr=22104)
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/ioport.c:117
> buf = "\377\377\377\377"
> val = 21845
> #9 0x0000555555670c73 in do_inp (addr=22104, size=4)
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/xen-hvm.c:684
> ---Type <return> to continue, or q <return> to quit---
> No locals.
> #10 0x0000555555670ee0 in cpu_ioreq_pio (req=0x7ffff7ff3020)
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/xen-hvm.c:747
> i = 1
> #11 0x00005555556714b3 in handle_ioreq (state=0x5555563c2510,
> req=0x7ffff7ff3020) at
> /mnt/vm/xen/Xen/tools/qemu-xen-dir/xen-hvm.c:853
> No locals.
> #12 0x0000555555671826 in cpu_handle_ioreq (opaque=0x5555563c2510)
> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/xen-hvm.c:931
> state = 0x5555563c2510
> req = 0x7ffff7ff3020
> #13 0x000055555596e240 in qemu_iohandler_poll (pollfds=0x555556389a30,
> ret=1)
> at iohandler.c:143
> revents = 1
> pioh = 0x5555563f7610
> ioh = 0x555556450a40
> #14 0x000055555596de1c in main_loop_wait (nonblocking=0) at
> main-loop.c:495
> ret = 1
> timeout = 4294967295
> timeout_ns = 3965432
> #15 0x0000555555756d3f in main_loop () at vl.c:1882
> nonblocking = false
> last_io = 0
> #16 0x000055555575ea49 in main (argc=62, argv=0x7fffffffe048,
> envp=0x7fffffffe240) at vl.c:4400
> ---Type <return> to continue, or q <return> to quit---
> i = 128
> snapshot = 0
> linux_boot = 0
> initrd_filename = 0x0
> kernel_filename = 0x0
> kernel_cmdline = 0x555555a48f86 ""
> boot_order = 0x555556387460 "dc"
> ds = 0x5555564b2040
> cyls = 0
> heads = 0
> secs = 0
> translation = 0
> hda_opts = 0x0
> opts = 0x5555563873b0
> machine_opts = 0x555556389010
> icount_opts = 0x0
> olist = 0x555555e57e80
> optind = 62
> optarg = 0x7fffffffe914
> "file=/mnt/vm/disks/FEDORA19.disk1.xm,if=ide,index=0,media=disk,format=raw,cache=writeback"
> loadvm = 0x0
> machine_class = 0x55555637d5c0
> cpu_model = 0x0
> vga_model = 0x0
> qtest_chrdev = 0x0
> ---Type <return> to continue, or q <return> to quit---
> qtest_log = 0x0
> pid_file = 0x0
> incoming = 0x0
> show_vnc_port = 0
> defconfig = true
> userconfig = true
> log_mask = 0x0
> log_file = 0x0
> mem_trace = {malloc = 0x55555575a402 <malloc_and_trace>,
> realloc = 0x55555575a45a <realloc_and_trace>,
> free = 0x55555575a4c1 <free_and_trace>, calloc = 0,
> try_malloc = 0,
> try_realloc = 0}
> trace_events = 0x0
> trace_file = 0x0
> default_ram_size = 134217728
> maxram_size = 2130706432
> ram_slots = 0
> vmstate_dump_file = 0x0
> main_loop_err = 0x0
> __func__ = "main"
I take a fast look in source based on calltrace and I saw this commit:
http://git.qemu.org/?p=qemu.git;a=commit;h=37f9e258b64b3cf97c7c78df60660100c9eb5a21
xen-hvm.c: Add support for Xen access to vmport
Can be the cause of regression and I must try another test reverting
this commit or is not related?
Thanks for any reply anddo sorry for my bad english.
>
> Qemu crash on fedora 20 lxde (with software updates of some days ago)
> boot with this backtrace:
>> Program received signal SIGSEGV, Segmentation fault.
>> 0x0000555555689607 in vmport_ioport_read (opaque=0x555556440a20,
>> addr=0, size=4) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/hw/misc/vmport.c:73
>> 73 eax = env->regs[R_EAX];
>> (gdb) bt full
>> #0 0x0000555555689607 in vmport_ioport_read (opaque=0x555556440a20,
>> addr=0, size=4) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/hw/misc/vmport.c:73
>> s = 0x555556440a20
>> cs = 0x0
>> cpu = 0x0
>> __func__ = "vmport_ioport_read"
>> env = 0x8250
>> command = 0 '\000'
>> eax = 0
>> #1 0x0000555555655b9c in memory_region_read_accessor
>> (mr=0x555556440aa8, addr=0, value=0x7fffffffd8c0, size=4, shift=0,
>> mask=4294967295)
>> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:410
>> tmp = 0
>> #2 0x0000555555655e8f in access_with_adjusted_size (addr=0,
>> value=0x7fffffffd8c0, size=4, access_size_min=4, access_size_max=4,
>> access=0x555555655b3a <memory_region_read_accessor>,
>> mr=0x555556440aa8) at /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:480
>> access_mask = 4294967295
>> access_size = 4
>> i = 0
>> #3 0x0000555555658cc1 in memory_region_dispatch_read1
>> (mr=0x555556440aa8, addr=0, size=4) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:1077
>> data = 0
>> #4 0x0000555555658d89 in memory_region_dispatch_read
>> (mr=0x555556440aa8, addr=0, pval=0x7fffffffd998, size=4) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:1099
>> No locals.
>> #5 0x000055555565c794 in io_mem_read (mr=0x555556440aa8, addr=0,
>> pval=0x7fffffffd998, size=4) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/memory.c:1962
>> No locals.
>> #6 0x0000555555609fae in address_space_rw (as=0x555555eae840,
>> addr=22104, buf=0x7fffffffda40 "\377\377\377\377", len=4,
>> is_write=false)
>> at /mnt/vm/xen/Xen/tools/qemu-xen-dir/exec.c:2169
>> l = 4
>> ptr = 0x0
>> val = 7964229952888770560
>> addr1 = 0
>> mr = 0x555556440aa8
>> error = false
>> #7 0x000055555560a173 in address_space_read (as=0x555555eae840,
>> addr=22104, buf=0x7fffffffda40 "\377\377\377\377", len=4) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/exec.c:2207
>> No locals.
>> #8 0x000055555564fac7 in cpu_inl (addr=22104) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/ioport.c:117
>> buf = "\377\377\377\377"
>> val = 21845
>> #9 0x000055555567084b in do_inp (addr=22104, size=4) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/xen-hvm.c:684
>> No locals.
>> #10 0x0000555555670ab8 in cpu_ioreq_pio (req=0x7ffff7ff3000) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/xen-hvm.c:747
>> i = 0
>> #11 0x000055555567108b in handle_ioreq (state=0x5555563c1590,
>> req=0x7ffff7ff3000) at /mnt/vm/xen/Xen/tools/qemu-xen-dir/xen-hvm.c:853
>> ---Type <return> to continue, or q <return> to quit---
>> No locals.
>> #12 0x00005555556713fe in cpu_handle_ioreq (opaque=0x5555563c1590) at
>> /mnt/vm/xen/Xen/tools/qemu-xen-dir/xen-hvm.c:931
>> state = 0x5555563c1590
>> req = 0x7ffff7ff3000
>> #13 0x000055555596d874 in qemu_iohandler_poll
>> (pollfds=0x555556388a30, ret=1) at iohandler.c:143
>> revents = 1
>> pioh = 0x5555563f3c90
>> ioh = 0x555556515f80
>> #14 0x000055555596d450 in main_loop_wait (nonblocking=0) at
>> main-loop.c:495
>> ret = 1
>> timeout = 4294967295
>> timeout_ns = 3418165
>> #15 0x00005555557567b7 in main_loop () at vl.c:1882
>> nonblocking = false
>> last_io = 1
>> #16 0x000055555575e4c1 in main (argc=62, argv=0x7fffffffe038,
>> envp=0x7fffffffe230) at vl.c:4400
>> i = 128
>> snapshot = 0
>> linux_boot = 0
>> initrd_filename = 0x0
>> kernel_filename = 0x0
>> kernel_cmdline = 0x555555a485c6 ""
>> boot_order = 0x5555563864e0 "dc"
>> ds = 0x5555564c71b0
>> cyls = 0
>> heads = 0
>> secs = 0
>> translation = 0
>> hda_opts = 0x0
>> opts = 0x555556386430
>> machine_opts = 0x555556388090
>> icount_opts = 0x0
>> olist = 0x555555e56da0
>> optind = 62
>> optarg = 0x7fffffffe914
>> "file=/mnt/vm/disks/FEDORA19.disk1.xm,if=ide,index=0,media=disk,format=raw,cache=writeback"
>> loadvm = 0x0
>> machine_class = 0x55555637c5c0
>> cpu_model = 0x0
>> vga_model = 0x0
>> qtest_chrdev = 0x0
>> ---Type <return> to continue, or q <return> to quit---
>> qtest_log = 0x0
>> pid_file = 0x0
>> incoming = 0x0
>> show_vnc_port = 0
>> defconfig = true
>> userconfig = true
>> log_mask = 0x0
>> log_file = 0x0
>> mem_trace = {malloc = 0x555555759e7a <malloc_and_trace>,
>> realloc = 0x555555759ed2 <realloc_and_trace>, free = 0x555555759f39
>> <free_and_trace>, calloc = 0,
>> try_malloc = 0, try_realloc = 0}
>> trace_events = 0x0
>> trace_file = 0x0
>> default_ram_size = 134217728
>> maxram_size = 2013265920
>> ram_slots = 0
>> vmstate_dump_file = 0x0
>> main_loop_err = 0x0
>> __func__ = "main"
>
>
>> xl -vvv create /etc/xen/FEDORA19.cfg
>> Parsing config from /etc/xen/FEDORA19.cfg
>> libxl: debug: libxl_create.c:1529:do_domain_create: ao 0xac2660:
>> create: how=(nil) callback=(nil) poller=0xac2af0
>> libxl: debug: libxl_device.c:269:libxl__device_disk_set_backend: Disk
>> vdev=hda spec.backend=unknown
>> libxl: debug: libxl_device.c:215:disk_try_backend: Disk vdev=hda,
>> backend phy unsuitable as phys path not a block device
>> libxl: debug: libxl_device.c:298:libxl__device_disk_set_backend: Disk
>> vdev=hda, using backend qdisk
>> libxl: debug: libxl_create.c:935:initiate_domain_create: running
>> bootloader
>> libxl: debug: libxl_bootloader.c:323:libxl__bootloader_run: not a PV
>> domain, skipping bootloader
>> libxl: debug: libxl_event.c:618:libxl__ev_xswatch_deregister: watch
>> w=0xac32f8: deregister unregistered
>> xc: detail: elf_parse_binary: phdr: paddr=0x100000 memsz=0x26b324
>> xc: detail: elf_parse_binary: memory: 0x100000 -> 0x36b324
>> xc: detail: VIRTUAL MEMORY ARRANGEMENT:
>> xc: detail: Loader: 0000000000100000->000000000036b324
>> xc: detail: Modules: 0000000000000000->0000000000000000
>> xc: detail: TOTAL: 0000000000000000->0000000078000000
>> xc: detail: ENTRY: 0000000000100000
>> xc: detail: PHYSICAL MEMORY ALLOCATION:
>> xc: detail: 4KB PAGES: 0x0000000000000200
>> xc: detail: 2MB PAGES: 0x00000000000003bf
>> xc: detail: 1GB PAGES: 0x0000000000000000
>> xc: detail: elf_load_binary: phdr 0 at 0x7f1f9729f000 -> 0x7f1f975012b0
>> libxl: debug: libxl_device.c:269:libxl__device_disk_set_backend: Disk
>> vdev=hda spec.backend=qdisk
>> libxl: debug: libxl_event.c:618:libxl__ev_xswatch_deregister: watch
>> w=0xac4ad0: deregister unregistered
>> libxl: debug: libxl_dm.c:1415:libxl__spawn_local_dm: Spawning
>> device-model /usr/lib/xen/bin/qemu-gdb with arguments:
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> /usr/lib/xen/bin/qemu-gdb
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -xen-domid
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: 9
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -chardev
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> socket,id=libxl-cmd,path=/var/run/xen/qmp-libxl-9,server,nowait
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -mon
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> chardev=libxl-cmd,mode=control
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -nodefaults
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -name
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: FEDORA
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -k
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: it
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -spice
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> port=6005,tls-port=0,addr=0.0.0.0,disable-ticketing,agent-mouse=on,disable-copy-paste
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: virtio-serial
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -chardev
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> spicevmc,id=vdagent,name=vdagent
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> virtserialport,chardev=vdagent,name=com.redhat.spice.0
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> qxl-vga,vram_size_mb=64,ram_size_mb=64
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -boot
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: order=dc
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> ich9-usb-ehci1,id=usb,addr=0x1d.0x7,multifunction=on
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> ich9-usb-uhci1,masterbus=usb.0,firstport=0,addr=0x1d.0,multifunction=on
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> ich9-usb-uhci2,masterbus=usb.0,firstport=2,addr=0x1d.0x1,multifunction=on
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> ich9-usb-uhci3,masterbus=usb.0,firstport=4,addr=0x1d.0x2,multifunction=on
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -chardev
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> spicevmc,name=usbredir,id=usbrc1
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> usb-redir,chardev=usbrc1,id=usbrc1
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -chardev
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> spicevmc,name=usbredir,id=usbrc2
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> usb-redir,chardev=usbrc2,id=usbrc2
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -chardev
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> spicevmc,name=usbredir,id=usbrc3
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> usb-redir,chardev=usbrc3,id=usbrc3
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -chardev
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> spicevmc,name=usbredir,id=usbrc4
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> usb-redir,chardev=usbrc4,id=usbrc4
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -soundhw
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: hda
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -smp
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: 2,maxcpus=2
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -device
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> rtl8139,id=nic0,netdev=net0,mac=00:16:3e:18:e1:35
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -netdev
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> type=tap,id=net0,ifname=vif9.0-emu,script=no,downscript=no
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -machine
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: xenfv
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -m
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: 1920
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm: -drive
>> libxl: debug: libxl_dm.c:1417:libxl__spawn_local_dm:
>> file=/mnt/vm/disks/FEDORA19.disk1.xm,if=ide,index=0,media=disk,format=raw,cache=writeback
>> libxl: debug: libxl_event.c:570:libxl__ev_xswatch_register: watch
>> w=0xac3558 wpath=/local/domain/0/device-model/9/state token=3/0:
>> register slotnum=3
>> libxl: debug: libxl_create.c:1545:do_domain_create: ao 0xac2660:
>> inprogress: poller=0xac2af0, flags=i
>> libxl: debug: libxl_event.c:514:watchfd_callback: watch w=0xac3558
>> wpath=/local/domain/0/device-model/9/state token=3/0: event
>> epath=/local/domain/0/device-model/9/state
>> libxl: debug: libxl_event.c:514:watchfd_callback: watch w=0xac3558
>> wpath=/local/domain/0/device-model/9/state token=3/0: event
>> epath=/local/domain/0/device-model/9/state
>> libxl: debug: libxl_event.c:606:libxl__ev_xswatch_deregister: watch
>> w=0xac3558 wpath=/local/domain/0/device-model/9/state token=3/0:
>> deregister slotnum=3
>> libxl: debug: libxl_event.c:618:libxl__ev_xswatch_deregister: watch
>> w=0xac3558: deregister unregistered
>> libxl: debug: libxl_qmp.c:691:libxl__qmp_initialize: connected to
>> /var/run/xen/qmp-libxl-9
>> libxl: debug: libxl_qmp.c:296:qmp_handle_response: message type: qmp
>> libxl: debug: libxl_qmp.c:541:qmp_send_prepare: next qmp command: '{
>> "execute": "qmp_capabilities",
>> "id": 1
>> }
>> '
>> libxl: debug: libxl_qmp.c:296:qmp_handle_response: message type: return
>> libxl: debug: libxl_qmp.c:541:qmp_send_prepare: next qmp command: '{
>> "execute": "query-chardev",
>> "id": 2
>> }
>> '
>> libxl: debug: libxl_qmp.c:296:qmp_handle_response: message type: return
>> libxl: debug: libxl_qmp.c:541:qmp_send_prepare: next qmp command: '{
>> "execute": "query-vnc",
>> "id": 3
>> }
>> '
>> libxl: debug: libxl_qmp.c:296:qmp_handle_response: message type: return
>> libxl: debug: libxl_event.c:570:libxl__ev_xswatch_register: watch
>> w=0xac8368 wpath=/local/domain/0/backend/vif/9/0/state token=3/1:
>> register slotnum=3
>> libxl: debug: libxl_event.c:514:watchfd_callback: watch w=0xac8368
>> wpath=/local/domain/0/backend/vif/9/0/state token=3/1: event
>> epath=/local/domain/0/backend/vif/9/0/state
>> libxl: debug: libxl_event.c:810:devstate_watch_callback: backend
>> /local/domain/0/backend/vif/9/0/state wanted state 2 still waiting
>> state 1
>> libxl: debug: libxl_event.c:514:watchfd_callback: watch w=0xac8368
>> wpath=/local/domain/0/backend/vif/9/0/state token=3/1: event
>> epath=/local/domain/0/backend/vif/9/0/state
>> libxl: debug: libxl_event.c:806:devstate_watch_callback: backend
>> /local/domain/0/backend/vif/9/0/state wanted state 2 ok
>> libxl: debug: libxl_event.c:606:libxl__ev_xswatch_deregister: watch
>> w=0xac8368 wpath=/local/domain/0/backend/vif/9/0/state token=3/1:
>> deregister slotnum=3
>> libxl: debug: libxl_event.c:618:libxl__ev_xswatch_deregister: watch
>> w=0xac8368: deregister unregistered
>> libxl: debug: libxl_device.c:1028:device_hotplug: calling hotplug
>> script: /etc/xen/scripts/vif-bridge online
>> libxl: debug: libxl_aoutils.c:513:libxl__async_exec_start: forking to
>> execute: /etc/xen/scripts/vif-bridge online
>> libxl: debug: libxl_event.c:618:libxl__ev_xswatch_deregister: watch
>> w=0xac83f0: deregister unregistered
>> libxl: debug: libxl_device.c:1028:device_hotplug: calling hotplug
>> script: /etc/xen/scripts/vif-bridge add
>> libxl: debug: libxl_aoutils.c:513:libxl__async_exec_start: forking to
>> execute: /etc/xen/scripts/vif-bridge add
>> libxl: debug: libxl_event.c:618:libxl__ev_xswatch_deregister: watch
>> w=0xac83f0: deregister unregistered
>> libxl: debug: libxl_event.c:618:libxl__ev_xswatch_deregister: watch
>> w=0xac83f0: deregister unregistered
>> libxl: debug: libxl_event.c:1909:libxl__ao_progress_report: ao
>> 0xac2660: progress report: ignored
>> libxl: debug: libxl_event.c:1739:libxl__ao_complete: ao 0xac2660:
>> complete, rc=0
>> libxl: debug: libxl_event.c:1711:libxl__ao__destroy: ao 0xac2660:
>> destroy
>> xc: debug: hypercall buffer: total allocations:704 total releases:704
>> xc: debug: hypercall buffer: current allocations:0 maximum allocations:4
>> xc: debug: hypercall buffer: cache current size:4
>> xc: debug: hypercall buffer: cache hits:692 misses:4 toobig:8
>> xc: debug: hypercall buffer: total allocations:0 total releases:0
>> xc: debug: hypercall buffer: current allocations:0 maximum allocations:0
>> xc: debug: hypercall buffer: cache current size:0
>> xc: debug: hypercall buffer: cache hits:0 misses:0 toobig:0
>
> xl dmesg
>> (d9) HVM Loader
>> (d9) Detected Xen v4.5.0-rc
>> (d9) Xenbus rings @0xfeffc000, event channel 1
>> (d9) System requested SeaBIOS
>> (d9) CPU speed is 2660 MHz
>> (d9) Relocating guest memory for lowmem MMIO space disabled
>> (XEN) irq.c:279: Dom9 PCI link 0 changed 0 -> 5
>> (d9) PCI-ISA link 0 routed to IRQ5
>> (XEN) irq.c:279: Dom9 PCI link 1 changed 0 -> 10
>> (d9) PCI-ISA link 1 routed to IRQ10
>> (XEN) irq.c:279: Dom9 PCI link 2 changed 0 -> 11
>> (d9) PCI-ISA link 2 routed to IRQ11
>> (XEN) irq.c:279: Dom9 PCI link 3 changed 0 -> 5
>> (d9) PCI-ISA link 3 routed to IRQ5
>> (d9) pci dev 01:3 INTA->IRQ10
>> (d9) pci dev 02:0 INTA->IRQ11
>> (d9) pci dev 03:0 INTA->IRQ5
>> (d9) pci dev 04:0 INTA->IRQ5
>> (d9) pci dev 05:0 INTA->IRQ10
>> (d9) pci dev 06:0 INTA->IRQ11
>> (d9) pci dev 1d:0 INTA->IRQ10
>> (d9) pci dev 1d:1 INTB->IRQ11
>> (d9) pci dev 1d:2 INTC->IRQ5
>> (d9) pci dev 1d:7 INTD->IRQ5
>> (d9) No RAM in high memory; setting high_mem resource base to 100000000
>> (d9) pci dev 05:0 bar 10 size 004000000: 0f0000000
>> (d9) pci dev 05:0 bar 14 size 004000000: 0f4000000
>> (d9) pci dev 02:0 bar 14 size 001000000: 0f8000008
>> (d9) pci dev 06:0 bar 30 size 000040000: 0f9000000
>> (d9) pci dev 05:0 bar 30 size 000010000: 0f9040000
>> (d9) pci dev 03:0 bar 10 size 000004000: 0f9050000
>> (d9) pci dev 05:0 bar 18 size 000002000: 0f9054000
>> (d9) pci dev 04:0 bar 14 size 000001000: 0f9056000
>> (d9) pci dev 1d:7 bar 10 size 000001000: 0f9057000
>> (d9) pci dev 02:0 bar 10 size 000000100: 00000c001
>> (d9) pci dev 06:0 bar 10 size 000000100: 00000c101
>> (d9) pci dev 06:0 bar 14 size 000000100: 0f9058000
>> (d9) pci dev 04:0 bar 10 size 000000020: 00000c201
>> (d9) pci dev 05:0 bar 1c size 000000020: 00000c221
>> (d9) pci dev 1d:0 bar 20 size 000000020: 00000c241
>> (d9) pci dev 1d:1 bar 20 size 000000020: 00000c261
>> (d9) pci dev 1d:2 bar 20 size 000000020: 00000c281
>> (d9) pci dev 01:1 bar 20 size 000000010: 00000c2a1
>> (d9) Multiprocessor initialisation:
>> (d9) - CPU0 ... 36-bit phys ... fixed MTRRs ... var MTRRs [1/8] ...
>> done.
>> (d9) - CPU1 ... 36-bit phys ... fixed MTRRs ... var MTRRs [1/8] ...
>> done.
>> (d9) Testing HVM environment:
>> (d9) - REP INSB across page boundaries ... passed
>> (d9) - GS base MSRs and SWAPGS ... passed
>> (d9) Passed 2 of 2 tests
>> (d9) Writing SMBIOS tables ...
>> (d9) Loading SeaBIOS ...
>> (d9) Creating MP tables ...
>> (d9) Loading ACPI ...
>> (d9) S3 disabled
>> (d9) S4 disabled
>> (d9) vm86 TSS at fc00a100
>> (d9) BIOS map:
>> (d9) 10000-100d3: Scratch space
>> (d9) c0000-fffff: Main BIOS
>> (d9) E820 table:
>> (d9) [00]: 00000000:00000000 - 00000000:000a0000: RAM
>> (d9) HOLE: 00000000:000a0000 - 00000000:000c0000
>> (d9) [01]: 00000000:000c0000 - 00000000:00100000: RESERVED
>> (d9) [02]: 00000000:00100000 - 00000000:78000000: RAM
>> (d9) HOLE: 00000000:78000000 - 00000000:fc000000
>> (d9) [03]: 00000000:fc000000 - 00000001:00000000: RESERVED
>> (d9) Invoking SeaBIOS ...
>> (d9) SeaBIOS (version
>> debian/1.7.5-1-0-g506b58d-20140603_102943-testVS01OU)
>> (d9)
>> (d9) Found Xen hypervisor signature at 40000000
>> (d9) Running on QEMU (i440fx)
>> (d9) xen: copy e820...
>> (d9) Relocating init from 0x000df619 to 0x77fae600 (size 71995)
>> (d9) CPU Mhz=2660
>> (d9) Found 13 PCI devices (max PCI bus is 00)
>> (d9) Allocated Xen hypercall page at 77fff000
>> (d9) Detected Xen v4.5.0-rc
>> (d9) xen: copy BIOS tables...
>> (d9) Copying SMBIOS entry point from 0x00010010 to 0x000f0f40
>> (d9) Copying MPTABLE from 0xfc001160/fc001170 to 0x000f0e40
>> (d9) Copying PIR from 0x00010030 to 0x000f0dc0
>> (d9) Copying ACPI RSDP from 0x000100b0 to 0x000f0d90
>> (d9) Using pmtimer, ioport 0xb008
>> (d9) Scan for VGA option rom
>> (d9) Running option rom at c000:0003
>> (XEN) stdvga.c:147:d9v0 entering stdvga and caching modes
>> (d9) pmm call arg1=0
>> (d9) Turning on vga text mode console
>> (d9) SeaBIOS (version
>> debian/1.7.5-1-0-g506b58d-20140603_102943-testVS01OU)
>> (d9) Machine UUID 2eca57e6-bff7-404e-bbda-1926d614cd28
>> (d9) EHCI init on dev 00:1d.7 (regs=0xf9057020)
>> (d9) Found 0 lpt ports
>> (d9) Found 0 serial ports
>> (d9) ATA controller 1 at 1f0/3f4/0 (irq 14 dev 9)
>> (d9) ATA controller 2 at 170/374/0 (irq 15 dev 9)
>> (d9) ata0-0: QEMU HARDDISK ATA-7 Hard-Disk (10000 MiBytes)
>> (d9) Searching bootorder for: /pci at i0cf8/*@1,1/drive at 0/disk at 0
>> (d9) UHCI init on dev 00:1d.0 (io=c240)
>> (d9) UHCI init on dev 00:1d.1 (io=c260)
>> (d9) UHCI init on dev 00:1d.2 (io=c280)
>> (d9) PS2 keyboard initialized
>> (d9) All threads complete.
>> (d9) Scan for option roms
>> (d9) Running option rom at c980:0003
>> (d9) pmm call arg1=1
>> (d9) pmm call arg1=0
>> (d9) pmm call arg1=1
>> (d9) pmm call arg1=0
>> (d9) Searching bootorder for: /pci at i0cf8/*@6
>> (d9)
>> (d9) Press F12 for boot menu.
>> (d9)
>> (d9) Searching bootorder for: HALT
>> (d9) drive 0x000f0d40: PCHS=16383/16/63 translation=lba
>> LCHS=1024/255/63 s=20480000
>> (d9) Space available for UMB: ca800-ef000, f0000-f0d40
>> (d9) Returned 258048 bytes of ZoneHigh
>> (d9) e820 map has 6 items:
>> (d9) 0: 0000000000000000 - 000000000009fc00 = 1 RAM
>> (d9) 1: 000000000009fc00 - 00000000000a0000 = 2 RESERVED
>> (d9) 2: 00000000000f0000 - 0000000000100000 = 2 RESERVED
>> (d9) 3: 0000000000100000 - 0000000077fff000 = 1 RAM
>> (d9) 4: 0000000077fff000 - 0000000078000000 = 2 RESERVED
>> (d9) 5: 00000000fc000000 - 0000000100000000 = 2 RESERVED
>> (d9) enter handle_19:
>> (d9) NULL
>> (d9) Booting from Hard Disk...
>> (d9) Booting from 0000:7c00
>> (XEN) irq.c:389: Dom9 callback via changed to Direct Vector 0xf3
>> (XEN) irq.c:279: Dom9 PCI link 0 changed 5 -> 0
>> (XEN) irq.c:279: Dom9 PCI link 1 changed 10 -> 0
>> (XEN) irq.c:279: Dom9 PCI link 2 changed 11 -> 0
>> (XEN) irq.c:279: Dom9 PCI link 3 changed 5 -> 0
>
> domU's xl cfg:
>> name='FEDORA'
>> builder="hvm"
>> device_model_override="/usr/lib/xen/bin/qemu-gdb"
>> memory=2048
>> vcpus=2
>> acpi_s3=0
>> acpi_s4=0
>> vif=['bridge=xenbr0']
>> disk=['/mnt/vm/disks/FEDORA19.disk1.xm,raw,hda,rw']
>> boot='dc'
>> device_model_version='qemu-xen'
>> vnc=0
>> keymap="it"
>> vga="qxl"
>> spice=1
>> spicehost='0.0.0.0'
>> spiceport=6005
>> spicedisable_ticketing=1
>> spicevdagent=1
>> spice_clipboard_sharing=0
>> spiceusbredirection=4
>> soundhw="hda"
>
> I tested also with stdvga instead of qxl vga but qemu crash always on
> fedora boot with same error.
>
> If you need more informations/tests tell me and I'll post them.
>
> Thanks for any reply and sorry for my bad english.
>
More information about the Spice-devel
mailing list