[Spice-devel] Fwd: [Xen-devel] [DEBUGGING Xen/Qxl/Debian Sid] qemu crash on xenbus pv driver install

Goonie Windy monsieur.goonie at gmail.com
Mon Jan 5 06:54:35 PST 2015


Hello there, forwarding messages regarding remote-viewer/spice-QXL bugs.

I'm using Deb8 unstable (sid)  -software list attached- with Xen 4.5RC4
with Qemu upstream, seabios from Deb8 unstable, QXL patch from Fantu and
remote-viewer.
Trying to run a Win7 x64 vm which runs fine using vnc but having issues
with spice:

on reboot I loose ability to access the machine
if I resize/move window, randomly -or sort of- it can close remote-viewer
window saying that it can't connect.

Here are two gdb / trace full of Xen.

Does someone have an idea cause I'm short here.

can provide any log needed.

regards

greg B

---------- Forwarded message ----------
From: Goonie Windy <monsieur.goonie at gmail.com>
Date: 2015-01-05 15:41 GMT+01:00
Subject: Re: [Xen-devel] [DEBUGGING Xen/Qxl/Debian Sid] qemu crash on
xenbus pv driver install
To: Fabio Fantoni <fabio.fantoni at m2r.biz>
Cc: "Paul.Durrant at citrix.com >> Paul Durrant" <paul.durrant at citrix.com>,
xen-devel <xen-devel at lists.xen.org>, "win-pv-devel at lists.xenproject.org" <
win-pv-devel at lists.xenproject.org>


another bt full,
same problem with remote-viewer, this time trying to move the window and it
sticked somewhere -you know those sticky functions that develop a window-
so that it fits one half or smtg...



gdb /usr/lib/xen/bin/qemu-system-i386
GNU gdb (Debian 7.7.1+dfsg-5) 7.7.1
Copyright (C) 2014 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html
>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>.
Find the GDB manual and other documentation resources online at:
<http://www.gnu.org/software/gdb/documentation/>.
For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from /usr/lib/xen/bin/qemu-system-i386...done.
(gdb) target remote localhost:1234
c
Remote debugging using localhost:1234
Reading symbols from /lib64/ld-linux-x86-64.so.2...Reading symbols from
/usr/lib/debug//lib/x86_64-linux-gnu/ld-2.19.so...done.
done.
Loaded symbols for /lib64/ld-linux-x86-64.so.2
0x00007ffff7ddd190 in _start () from /lib64/ld-linux-x86-64.so.2
(gdb) c
Continuing.

Program received signal SIGSEGV, Segmentation fault.
_int_malloc (av=av at entry=0x7ffff41df620 <main_arena>,
    bytes=bytes at entry=5152000) at malloc.c:3775
3775    malloc.c: Aucun fichier ou dossier de ce type.
(gdb) bt full
#0  _int_malloc (av=av at entry=0x7ffff41df620 <main_arena>,
    bytes=bytes at entry=5152000) at malloc.c:3775
        p = 0x555556c87660
        iters = <optimized out>
        nb = 5152016
        idx = <optimized out>
        bin = <optimized out>
        victim = 0x555556c87650
        size = <optimized out>
        victim_index = <optimized out>
        remainder = 0x555557171360
        remainder_size = <optimized out>
        block = 4
        bit = <optimized out>
        map = 2067779454
        fwd = <optimized out>
        bck = <optimized out>
        errstr = 0x0
        __func__ = "_int_malloc"
#1  0x00007ffff3eb886c in __libc_calloc (n=<optimized out>,
    elem_size=<optimized out>) at malloc.c:3219
        av = 0x7ffff41df620 <main_arena>
        oldtop = 0x555556c87650
---Type <return> to continue, or q <return> to quit---
        p = <optimized out>
        bytes = 5152000
        sz = 5152000
        csz = <optimized out>
        oldtopsize = 8392736
        mem = <optimized out>
        clearsize = <optimized out>
        nclears = <optimized out>
        d = <optimized out>
        hook = <optimized out>
        __func__ = "__libc_calloc"
#2  0x00007ffff4c3dc5a in ?? () from
/usr/lib/x86_64-linux-gnu/libpixman-1.so.0
No symbol table info available.
#3  0x00007ffff4c3dd0b in ?? () from
/usr/lib/x86_64-linux-gnu/libpixman-1.so.0
No symbol table info available.
#4  0x000055555580c266 in vnc_dpy_switch (dcl=0x7fffe847d048,
    surface=0x5555565c29e0) at ui/vnc.c:590
        vd = 0x7fffe847d010
        vs = 0xff0000ff00
#5  0x00005555557e905b in dpy_gfx_replace_surface (con=0x5555563380f0,
    surface=0x5555565c29e0) at ui/console.c:1404
        s = 0x55555633fe60
        old_surface = 0x5555563395d0
---Type <return> to continue, or q <return> to quit---
        dcl = 0x7fffe847d048
#6  0x00005555556bfa0c in qxl_render_update_area_unlocked
(qxl=0x555556378550)
    at hw/display/qxl-render.c:131
        vga = 0x555556379040
        surface = 0x5555565c29e0
        i = 21845
#7  0x00005555556bfc84 in qxl_render_update_area_bh (opaque=0x555556378550)
    at hw/display/qxl-render.c:183
        qxl = 0x555556378550
#8  0x00005555555e3d68 in aio_bh_poll (ctx=0x555556277840) at async.c:81
        bh = 0x555556364510
        bhp = 0x7fffe86e4010
        next = 0x555556314170
        ret = 1
#9  0x00005555555e3a1a in aio_poll (ctx=0x555556277840, blocking=false)
    at aio-posix.c:188
        node = 0x7ffff41f3a89 <write+57>
        ret = 0
        progress = false
#10 0x00005555555e4088 in aio_ctx_dispatch (source=0x555556277840,
    callback=0x0, user_data=0x0) at async.c:211
        ctx = 0x555556277840
        __PRETTY_FUNCTION__ = "aio_ctx_dispatch"
---Type <return> to continue, or q <return> to quit---
#11 0x00007ffff707dc5d in g_main_dispatch (context=0x555556278b50)
    at /tmp/buildd/glib2.0-2.42.1/./glib/gmain.c:3111
        dispatch = 0x5555555e4035 <aio_ctx_dispatch>
        prev_source = 0x0
        was_in_call = 0
        user_data = 0x0
        callback = 0x0
        cb_funcs = <optimized out>
        cb_data = <optimized out>
        need_destroy = <optimized out>
        source = 0x555556277840
        current = 0x55555626ec40
        i = 0
#12 g_main_context_dispatch (context=0x555556278b50)
    at /tmp/buildd/glib2.0-2.42.1/./glib/gmain.c:3710
No locals.
#13 0x000055555577cf98 in glib_pollfds_poll () at main-loop.c:190
        context = 0x555556278b50
        pfds = 0x5555563ded28
#14 0x000055555577d075 in os_host_main_loop_wait (timeout=0) at
main-loop.c:235
        ret = 2
        spin_counter = 1
#15 0x000055555577d134 in main_loop_wait (nonblocking=0) at main-loop.c:484
---Type <return> to continue, or q <return> to quit---
        ret = 21845
        timeout = 4294967295
        timeout_ns = 13912579
#16 0x0000555555815fbd in main_loop () at vl.c:2056
        nonblocking = false
        last_io = 1
#17 0x000055555581d66b in main (argc=66, argv=0x7fffffffdbe8,
    envp=0x7fffffffde00) at vl.c:4535
        i = 64
        snapshot = 0
        linux_boot = 0
        icount_option = 0x0
        initrd_filename = 0x0
        kernel_filename = 0x0
        kernel_cmdline = 0x55555598c664 ""
        boot_order = 0x555556275340 "dc"
        ds = 0x55555633fe60
        cyls = 0
        heads = 0
        secs = 0
        translation = 0
        hda_opts = 0x0
        opts = 0x555556275290
---Type <return> to continue, or q <return> to quit---
        machine_opts = 0x555556276ef0
        olist = 0x555555d72700 <qemu_machine_opts>
        optind = 66
        optarg = 0x7fffffffe5e0
"file=/home/goon/Documents/Win7Ult-SP1-x64-en-US-Sep2013.iso,if=ide,index=2,media=cdrom,format=raw,cache=writeback,id=ide-5632"
        loadvm = 0x0
        machine_class = 0x55555626e030
        machine = 0x555555d78540 <xenfv_machine>
        cpu_model = 0x0
        vga_model = 0x0
        qtest_chrdev = 0x0
        qtest_log = 0x0
        pid_file = 0x0
        incoming = 0x0
        show_vnc_port = 0
        defconfig = true
        userconfig = true
        log_mask = 0x0
        log_file = 0x0
        mem_trace = {malloc = 0x55555581950b <malloc_and_trace>,
          realloc = 0x555555819540 <realloc_and_trace>,
          free = 0x555555819584 <free_and_trace>, calloc = 0x0,
          try_malloc = 0x0, try_realloc = 0x0}
---Type <return> to continue, or q <return> to quit---
        trace_events = 0x0
        trace_file = 0x0
        __func__ = "main"
        args = {machine = 0x555555d78540 <xenfv_machine>,
          ram_size = 2013265920, boot_order = 0x555556275340 "dc",
          kernel_filename = 0x0, kernel_cmdline = 0x55555598c664 "",
          initrd_filename = 0x0, cpu_model = 0x0}
(gdb)


2015-01-05 14:39 GMT+01:00 Goonie Windy <monsieur.goonie at gmail.com>:

> Hi again and sorry for monopolizing, so I tested a bit QXL/spice in my win
> 7 x64 domU on Xenserver 4.5 RC4 with Fantu patch.
>
> I get errors when trying to move remote-viewer window: I get a connection
> refused.
>
> System is using deb8 unstables (sid) with only Xen compiled from sources.
>
> Xen BT full is below, machine details, you should have them now.
>
> Should I try to compile spice on my machine or something?
>
>
> regards,
>
> GregB:
>
> (gdb) target remote localhost:1234
> Remote debugging using localhost:1234
> Reading symbols from /lib64/ld-linux-x86-64.so.2...Reading symbols from
> /usr/lib/debug//lib/x86_64-linux-gnu/ld-2.19.so...done.
> done.
> Loaded symbols for /lib64/ld-linux-x86-64.so.2
> 0x00007ffff7ddd190 in _start () from /lib64/ld-linux-x86-64.so.2
> (gdb) c
> Continuing.
>
> Program received signal SIGABRT, Aborted.
> 0x00007ffff3e71107 in __GI_raise (sig=sig at entry=6)
>     at ../nptl/sysdeps/unix/sysv/linux/raise.c:56
> 56    ../nptl/sysdeps/unix/sysv/linux/raise.c: Aucun fichier ou dossier de
> ce type.
> (gdb) bt full
> #0  0x00007ffff3e71107 in __GI_raise (sig=sig at entry=6)
>     at ../nptl/sysdeps/unix/sysv/linux/raise.c:56
>         resultvar = 0
>         pid = 10818
>         selftid = 10818
> #1  0x00007ffff3e724e8 in __GI_abort () at abort.c:89
>         save_stage = 2
>         act = {__sigaction_handler = {sa_handler = 0xb8000000,
>             sa_sigaction = 0xb8000000}, sa_mask = {__val =
> {13258597306065747968,
>               13258597306065747968, 3087007744, 3087007744, 0, 0,
>               13258597302978740224, 13258597302978740224,
> 13258597302978740224, 0, 0,
>               0, 0, 0, 0, 0}}, sa_flags = 0, sa_restorer =
> 0xb800000000000000}
>         sigs = {__val = {32, 0 <repeats 15 times>}}
> #2  0x00007ffff3eaf044 in __libc_message (do_abort=do_abort at entry=1,
>     fmt=fmt at entry=0x7ffff3fa1c60 "*** Error in `%s': %s: 0x%s ***\n")
>     at ../sysdeps/posix/libc_fatal.c:175
>         ap = {{gp_offset = 40, fp_offset = 0, overflow_arg_area =
> 0x7fffffffd300,
>             reg_save_area = 0x7fffffffd290}}
>         fd = 2
>         on_2 = <optimized out>
>         list = <optimized out>
>         nlist = <optimized out>
>         cp = <optimized out>
>         written = <optimized out>
> #3  0x00007ffff3eb481e in malloc_printerr (action=1,
>     str=0x7ffff3fa1db0 "double free or corruption (out)", ptr=<optimized
> out>)
>     at malloc.c:4996
>         buf = "0000555556bb85e0"
>         cp = <optimized out>
> #4  0x00007ffff3eb5526 in _int_free (av=<optimized out>, p=<optimized
> out>,
>     have_lock=0) at malloc.c:3840
>         size = <optimized out>
>         fb = <optimized out>
>         nextchunk = <optimized out>
>         nextsize = <optimized out>
>         nextinuse = <optimized out>
>         prevsize = <optimized out>
>         bck = <optimized out>
>         fwd = <optimized out>
>         errstr = <optimized out>
>         locked = <optimized out>
>         __func__ = "_int_free"
> #5  0x00007ffff4c7c7e5 in ?? () from
> /usr/lib/x86_64-linux-gnu/libpixman-1.so.0
> ---Type <return> to continue, or q <return> to quit---
> No symbol table info available.
> #6  0x00007ffff4c7c759 in pixman_image_unref ()
>    from /usr/lib/x86_64-linux-gnu/libpixman-1.so.0
> No symbol table info available.
> #7  0x00005555557ee88e in qemu_pixman_image_unref (image=0x555556335f00)
>     at ui/qemu-pixman.c:80
> No locals.
> #8  0x000055555580c21f in vnc_dpy_switch (dcl=0x7fffe849e048,
> surface=0x555556627c90)
>     at ui/vnc.c:588
>         vd = 0x7fffe849e010
>         vs = 0xff0000ff00
> #9  0x00005555557e905b in dpy_gfx_replace_surface (con=0x555556312e90,
>     surface=0x555556627c90) at ui/console.c:1404
>         s = 0x55555633d710
>         old_surface = 0x555556336160
>         dcl = 0x7fffe849e048
> #10 0x00005555556bfa0c in qxl_render_update_area_unlocked
> (qxl=0x555556387f50)
>     at hw/display/qxl-render.c:131
>         vga = 0x555556388a40
>         surface = 0x555556627c90
>         i = 21845
> #11 0x00005555556bfc84 in qxl_render_update_area_bh (opaque=0x555556387f50)
>     at hw/display/qxl-render.c:183
>         qxl = 0x555556387f50
> #12 0x00005555555e3d68 in aio_bh_poll (ctx=0x555556277840) at async.c:81
>         bh = 0x555556313d40
>         bhp = 0x7fffffffd570
>         next = 0x555556313d10
>         ret = 1
> #13 0x00005555555e3a1a in aio_poll (ctx=0x555556277840, blocking=false)
>     at aio-posix.c:188
>         node = 0x7ffff41f3a89 <write+57>
>         ret = 0
>         progress = false
> #14 0x00005555555e4088 in aio_ctx_dispatch (source=0x555556277840,
> callback=0x0,
>     user_data=0x0) at async.c:211
>         ctx = 0x555556277840
>         __PRETTY_FUNCTION__ = "aio_ctx_dispatch"
> #15 0x00007ffff707dc5d in g_main_dispatch (context=0x555556278b50)
>     at /tmp/buildd/glib2.0-2.42.1/./glib/gmain.c:3111
>         dispatch = 0x5555555e4035 <aio_ctx_dispatch>
>         prev_source = 0x0
>         was_in_call = 0
> ---Type <return> to continue, or q <return> to quit---
>         user_data = 0x0
>         callback = 0x0
>         cb_funcs = <optimized out>
>         cb_data = <optimized out>
>         need_destroy = <optimized out>
>         source = 0x555556277840
>         current = 0x55555626ec40
>         i = 0
> #16 g_main_context_dispatch (context=0x555556278b50)
>     at /tmp/buildd/glib2.0-2.42.1/./glib/gmain.c:3710
> No locals.
> #17 0x000055555577cf98 in glib_pollfds_poll () at main-loop.c:190
>         context = 0x555556278b50
>         pfds = 0x555556628928
> #18 0x000055555577d075 in os_host_main_loop_wait (timeout=0) at
> main-loop.c:235
>         ret = 2
>         spin_counter = 2
> #19 0x000055555577d134 in main_loop_wait (nonblocking=0) at main-loop.c:484
>         ret = 21845
>         timeout = 4294967295
>         timeout_ns = 2937562
> #20 0x0000555555815fbd in main_loop () at vl.c:2056
>         nonblocking = false
>         last_io = 0
> #21 0x000055555581d66b in main (argc=66, argv=0x7fffffffdb48,
> envp=0x7fffffffdd60)
>     at vl.c:4535
>         i = 64
>         snapshot = 0
>         linux_boot = 0
>         icount_option = 0x0
>         initrd_filename = 0x0
>         kernel_filename = 0x0
>         kernel_cmdline = 0x55555598c664 ""
>         boot_order = 0x555556275340 "dc"
>         ds = 0x55555633d710
>         cyls = 0
>         heads = 0
>         secs = 0
>         translation = 0
>         hda_opts = 0x0
>         opts = 0x555556275290
>         machine_opts = 0x555556276ef0
>         olist = 0x555555d72700 <qemu_machine_opts>
> ---Type <return> to continue, or q <return> to quit---
>         optind = 66
>         optarg = 0x7fffffffe55e
> "file=/home/goon/Documents/Win7Ult-SP1-x64-en-US-Sep2013.iso,if=ide,index=2,media=cdrom,format=raw,cache=writeback,id=ide-5632"
>         loadvm = 0x0
>         machine_class = 0x55555626e030
>         machine = 0x555555d78540 <xenfv_machine>
>         cpu_model = 0x0
>         vga_model = 0x0
>         qtest_chrdev = 0x0
>         qtest_log = 0x0
>         pid_file = 0x0
>         incoming = 0x0
>         show_vnc_port = 0
>         defconfig = true
>         userconfig = true
>         log_mask = 0x0
>         log_file = 0x0
>         mem_trace = {malloc = 0x55555581950b <malloc_and_trace>,
>           realloc = 0x555555819540 <realloc_and_trace>,
>           free = 0x555555819584 <free_and_trace>, calloc = 0x0, try_malloc
> = 0x0,
>           try_realloc = 0x0}
>         trace_events = 0x0
>         trace_file = 0x0
>         __func__ = "main"
>         args = {machine = 0x555555d78540 <xenfv_machine>, ram_size =
> 2013265920,
>           boot_order = 0x555556275340 "dc", kernel_filename = 0x0,
>           kernel_cmdline = 0x55555598c664 "", initrd_filename = 0x0,
> cpu_model = 0x0}
>
>
> 2015-01-05 12:12 GMT+01:00 Goonie Windy <monsieur.goonie at gmail.com>:
>
>> Well réinstalled from scratch, added winpv and spice drivers the border
>> you gave me and Thérèse is NO more bugs related to winpv .  will test
>> reboot and spice/qxl functionnalities when possible. Regards.  Greg b
>> Le 5 janv. 2015 10:08, "Fabio Fantoni" <fabio.fantoni at m2r.biz> a écrit :
>>
>>>  Il 05/01/2015 00:24, Goonie Windy ha scritto:
>>>
>>> AND DMESG
>>> [ 3095.738985] qemu-system-i38[8089]: segfault at 7f92ae37cbf8 ip
>>> 00007f92a654e4ff sp 00007fffc2d6ec80 error 6 in libc-2.19.so
>>> [7f92a64d4000+19f000]
>>> [ 3096.117859] xenbr0: port 3(vif5.0-emu) entered disabled state
>>> [ 3096.118716] device vif5.0-emu left promiscuous mode
>>> [ 3096.118738] xenbr0: port 3(vif5.0-emu) entered disabled state
>>> [ 3584.894397] xenbr0: port 2(vif5.0) entered disabled state
>>> [ 3584.894741] device vif5.0 left promiscuous mode
>>> [ 3584.894753] xenbr0: port 2(vif5.0) entered disabled state
>>> [ 3681.764862] IPv6: ADDRCONF(NETDEV_UP): vif6.0: link is not ready
>>> [ 3681.878054] device vif6.0 entered promiscuous mode
>>> [ 3681.886956] IPv6: ADDRCONF(NETDEV_UP): vif6.0: link is not ready
>>> [ 3682.193528] device vif6.0-emu entered promiscuous mode
>>> [ 3682.199185] xenbr0: port 3(vif6.0-emu) entered forwarding state
>>> [ 3682.199229] xenbr0: port 3(vif6.0-emu) entered forwarding state
>>> [ 3780.533596] xenbr0: port 3(vif6.0-emu) entered disabled state
>>> [ 3780.535444] device vif6.0-emu left promiscuous mode
>>> [ 3780.535465] xenbr0: port 3(vif6.0-emu) entered disabled state
>>> [ 3899.555157] xenbr0: port 2(vif6.0) entered disabled state
>>> [ 3899.555577] device vif6.0 left promiscuous mode
>>> [ 3899.555607] xenbr0: port 2(vif6.0) entered disabled state
>>>
>>>
>>> 2015-01-05 0:21 GMT+01:00 Goonie Windy <monsieur.goonie at gmail.com>:
>>>
>>>>   GNU nano 2.2.6                                          Fichier :
>>>> qemu-dm-win7.log
>>>>
>>>>
>>>> (/usr/local/sbin/xl:9535): Spice-Warning **:
>>>> reds.c:1863:reds_handle_ticket: Invalid password
>>>> main_channel_link: add main channel client
>>>> main_channel_handle_parsed: net test: latency 0.318000 ms, bitrate
>>>> 26597402597 bps (25365.259740 Mbps)
>>>> inputs_connect: inputs channel client create
>>>> red_dispatcher_set_cursor_peer:
>>>> main_channel_handle_parsed: agent start
>>>> main_channel_handle_parsed: agent start
>>>> *** Error in `/usr/lib/xen/bin/qemu-system-i386': double free or
>>>> corruption (out): 0x00007f0e38dd26f0 ***
>>>>
>>>>
>>>> 2015-01-05 0:00 GMT+01:00 Goonie Windy <monsieur.goonie at gmail.com>:
>>>>
>>>>> Should add this too:
>>>>> host                   : E766
>>>>> release                : 3.16.0-4-amd64
>>>>> version                : #1 SMP Debian 3.16.7-ckt2-1 (2014-12-08)
>>>>> machine                : x86_64
>>>>> nr_cpus                : 4
>>>>> max_cpu_id             : 7
>>>>> nr_nodes               : 1
>>>>> cores_per_socket       : 2
>>>>> threads_per_core       : 2
>>>>> cpu_mhz                : 2594
>>>>> hw_caps                :
>>>>> bfebfbff:28100800:00000000:00007f00:77bae3ff:00000000:00000001:00000281
>>>>> virt_caps              : hvm hvm_directio
>>>>> total_memory           : 8055
>>>>> free_memory            : 2309
>>>>> sharing_freed_memory   : 0
>>>>> sharing_used_memory    : 0
>>>>> outstanding_claims     : 0
>>>>> free_cpus              : 0
>>>>> xen_major              : 4
>>>>> xen_minor              : 5
>>>>> xen_extra              : .0-rc
>>>>> xen_version            : 4.5.0-rc
>>>>> xen_caps               : xen-3.0-x86_64 xen-3.0-x86_32p hvm-3.0-x86_32
>>>>> hvm-3.0-x86_32p hvm-3.0-x86_64
>>>>> xen_scheduler          : credit
>>>>> xen_pagesize           : 4096
>>>>> platform_params        : virt_start=0xffff800000000000
>>>>> xen_changeset          : Thu Dec 18 10:02:16 2014 +0000
>>>>> git:36174af-dirty
>>>>> xen_commandline        : placeholder
>>>>> cc_compiler            : gcc (Debian 4.9.2-10) 4.9.2
>>>>> cc_compile_by          : root
>>>>> cc_compile_domain      :
>>>>> cc_compile_date        : Wed Dec 31 01:20:47 CET 2014
>>>>> xend_config_format     : 4
>>>>>
>>>>>
>>>>>
>>>>> 2015-01-04 23:39 GMT+01:00 Goonie Windy <monsieur.goonie at gmail.com>:
>>>>>
>>>>>> My qemu log after spice failure:
>>>>>> (/usr/local/sbin/xl:4254): Spice-Warning **:
>>>>>> reds.c:1863:reds_handle_ticket: Invalid password
>>>>>> main_channel_link: add main channel client
>>>>>> main_channel_handle_parsed: net test: latency 0.257000 ms, bitrate
>>>>>> 81920000000 bps (78125.000000 Mbps)
>>>>>> red_dispatcher_set_cursor_peer:
>>>>>> inputs_connect: inputs channel client create
>>>>>> main_channel_handle_parsed: agent start
>>>>>> main_channel_handle_parsed: agent start
>>>>>> qemu-system-i386: malloc.c:2372: sysmalloc: Assertion `(old_top ==
>>>>>> (((mbinptr) (((char *) &((av)->bins[((1) - 1) * 2])) - __builtin_offsetof
>>>>>> (struct malloc_chunk, fd)))) && old_size == 0) || ((unsigned long)
>>>>>> (old_size) >= (unsigned long)((((__builtin_offsetof (struct malloc_chunk,
>>>>>> fd_nextsize))+((2 *(sizeof(size_t))) - 1)) & ~((2 *(sizeof(size_t))) - 1)))
>>>>>> && ((old_top)->size & 0x1) && ((unsigned long) old_end & pagemask) == 0)'
>>>>>> failed.
>>>>>>
>>>>>>
>>>>>> 2015-01-04 23:10 GMT+01:00 Goonie Windy <monsieur.goonie at gmail.com>:
>>>>>>
>>>>>>>  This one is bug from trying to install winpv  bus driver
>>>>>>>
>>>>>>
>>> If you followed all my advices your configurations should be ok and you
>>> found a new bug or inexpected case.
>>> I do not have the knowledge to solve it.
>>> Added to cc also win-pv-devel
>>> Can someone take a look to this problem please?
>>>
>>>
>>>>>>>
>>>>>>> Program received signal SIGSEGV, Segmentation fault.
>>>>>>> _int_malloc (av=av at entry=0x7ffff41df620 <main_arena>,
>>>>>>> bytes=bytes at entry=73729)
>>>>>>>     at malloc.c:3775
>>>>>>> 3775    malloc.c: Aucun fichier ou dossier de ce type.
>>>>>>> (gdb) bt full
>>>>>>> #0  _int_malloc (av=av at entry=0x7ffff41df620 <main_arena>,
>>>>>>>     bytes=bytes at entry=73729) at malloc.c:3775
>>>>>>>         p = 0x555557303880
>>>>>>>         iters = <optimized out>
>>>>>>>         nb = 73744
>>>>>>>         idx = <optimized out>
>>>>>>>         bin = <optimized out>
>>>>>>>         victim = 0x555557303870
>>>>>>>         size = <optimized out>
>>>>>>>         victim_index = <optimized out>
>>>>>>>         remainder = 0x555557315880
>>>>>>>         remainder_size = <optimized out>
>>>>>>>         block = 4
>>>>>>>         bit = <optimized out>
>>>>>>>         map = 66981887
>>>>>>>         fwd = <optimized out>
>>>>>>>         bck = <optimized out>
>>>>>>>         errstr = 0x0
>>>>>>>         __func__ = "_int_malloc"
>>>>>>> #1  0x00007ffff3eb74a1 in _int_realloc (
>>>>>>>     av=av at entry=0x7ffff41df620 <main_arena>, oldp=oldp at entry=0x55555689d270,
>>>>>>>
>>>>>>>     oldsize=oldsize at entry=36880, nb=nb at entry=73744) at malloc.c:4286
>>>>>>>         newp = <optimized out>
>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>         newsize = <optimized out>
>>>>>>>         newmem = <optimized out>
>>>>>>>         next = 0x5555568a6280
>>>>>>>         remainder = <optimized out>
>>>>>>>         remainder_size = <optimized out>
>>>>>>>         bck = <optimized out>
>>>>>>>         fwd = <optimized out>
>>>>>>>         copysize = <optimized out>
>>>>>>>         ncopies = <optimized out>
>>>>>>>         s = <optimized out>
>>>>>>>         d = <optimized out>
>>>>>>>         errstr = 0x0
>>>>>>>         __func__ = "_int_realloc"
>>>>>>>         nextsize = <optimized out>
>>>>>>> #2  0x00007ffff3eb85f9 in __GI___libc_realloc
>>>>>>> (oldmem=0x55555689d280,
>>>>>>>     bytes=73728) at malloc.c:3029
>>>>>>>         ar_ptr = 0x7ffff41df620 <main_arena>
>>>>>>>         nb = 73744
>>>>>>>         newp = <optimized out>
>>>>>>>         hook = <optimized out>
>>>>>>>         oldp = 0x55555689d270
>>>>>>>         oldsize = 36880
>>>>>>>         __func__ = "__libc_realloc"
>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>> #3  0x0000555555819563 in realloc_and_trace (mem=0x55555689d280,
>>>>>>> n_bytes=73728)
>>>>>>>     at vl.c:2857
>>>>>>>         ptr = 0x7fffffffcf30
>>>>>>> #4  0x00007ffff708388e in g_realloc (mem=<optimized out>,
>>>>>>> n_bytes=73728)
>>>>>>>     at /tmp/buildd/glib2.0-2.42.1/./glib/gmem.c:162
>>>>>>>         newmem = <optimized out>
>>>>>>> #5  0x000055555582d3e2 in phys_map_node_reserve (map=0x5555563ccf98,
>>>>>>> nodes=18)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/exec.c:152
>>>>>>> No locals.
>>>>>>> #6  0x000055555582d701 in phys_page_set (d=0x5555563ccf90,
>>>>>>> index=160, nb=16,
>>>>>>>     leaf=5) at /home/goon/xen/tools/qemu-xen-dir/exec.c:211
>>>>>>> No locals.
>>>>>>> #7  0x000055555582f1ae in register_multipage (d=0x5555563ccf90,
>>>>>>>     section=0x7fffffffcfe0) at
>>>>>>> /home/goon/xen/tools/qemu-xen-dir/exec.c:937
>>>>>>>         start_addr = 655360
>>>>>>>         section_index = 5
>>>>>>>         num_pages = 16
>>>>>>>         __PRETTY_FUNCTION__ = "register_multipage"
>>>>>>> #8  0x000055555582f4b4 in mem_add (listener=0x55555633b898,
>>>>>>>     section=0x7fffffffd1a0) at
>>>>>>> /home/goon/xen/tools/qemu-xen-dir/exec.c:968
>>>>>>>         as = 0x55555633b860
>>>>>>>         d = 0x5555563ccf90
>>>>>>>         now = {mr = 0x55555636dd30, address_space = 0x55555633b860,
>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>           offset_within_region = 0, size = {lo = 65536, hi = 0},
>>>>>>>           offset_within_address_space = 655360, readonly = false}
>>>>>>>         remain = {mr = 0x55555636dd30, address_space =
>>>>>>> 0x55555633b860,
>>>>>>>           offset_within_region = 0, size = {lo = 65536, hi = 0},
>>>>>>>           offset_within_address_space = 655360, readonly = false}
>>>>>>>         page_size = {lo = 4096, hi = 0}
>>>>>>> #9  0x0000555555892a01 in address_space_update_topology_pass (
>>>>>>>     as=0x55555633b860, old_view=0x555556495910,
>>>>>>> new_view=0x55555687f2c0,
>>>>>>>     adding=true) at /home/goon/xen/tools/qemu-xen-dir/memory.c:736
>>>>>>>         _listener = 0x55555633b898
>>>>>>>         iold = 1
>>>>>>>         inew = 1
>>>>>>>         frold = 0x5555565fd828
>>>>>>>         frnew = 0x5555568b23e8
>>>>>>> #10 0x0000555555892fd7 in address_space_update_topology
>>>>>>> (as=0x55555633b860)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/memory.c:765
>>>>>>>         old_view = 0x555556495910
>>>>>>>         new_view = 0x55555687f2c0
>>>>>>> #11 0x00005555558930fc in memory_region_transaction_commit ()
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/memory.c:800
>>>>>>>         as = 0x55555633b860
>>>>>>>         __PRETTY_FUNCTION__ = "memory_region_transaction_commit"
>>>>>>> #12 0x00005555558951ed in memory_region_del_subregion
>>>>>>> (mr=0x5555562855d0,
>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>     subregion=0x555556349250)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/memory.c:1487
>>>>>>>         __PRETTY_FUNCTION__ = "memory_region_del_subregion"
>>>>>>> #13 0x000055555570fdf3 in pci_update_mappings (d=0x5555563489f0)
>>>>>>>     at hw/pci/pci.c:1113
>>>>>>>         r = 0x555556348af8
>>>>>>>         i = 0
>>>>>>>         new_addr = 18446744073709551615
>>>>>>> #14 0x0000555555710110 in pci_default_write_config
>>>>>>> (d=0x5555563489f0, addr=4,
>>>>>>>     val=0, l=2) at hw/pci/pci.c:1168
>>>>>>>         i = 2
>>>>>>>         was_irq_disabled = 0
>>>>>>>         __PRETTY_FUNCTION__ = "pci_default_write_config"
>>>>>>> #15 0x0000555555714125 in pci_host_config_write_common (
>>>>>>>     pci_dev=0x5555563489f0, addr=4, limit=256, val=1024, len=2)
>>>>>>>     at hw/pci/pci_host.c:57
>>>>>>>         __PRETTY_FUNCTION__ = "pci_host_config_write_common"
>>>>>>> #16 0x0000555555714229 in pci_data_write (s=0x5555562a8cf0, addr=
>>>>>>> 2147487748,
>>>>>>>     val=1024, len=2) at hw/pci/pci_host.c:84
>>>>>>>         pci_dev = 0x5555563489f0
>>>>>>>         config_addr = 4
>>>>>>> #17 0x0000555555714351 in pci_host_data_write
>>>>>>> (opaque=0x555556311470, addr=0,
>>>>>>>     val=1024, len=2) at hw/pci/pci_host.c:137
>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>         s = 0x555556311470
>>>>>>> #18 0x0000555555891531 in memory_region_write_accessor
>>>>>>> (mr=0x555556313860,
>>>>>>>     addr=0, value=0x7fffffffd5e8, size=2, shift=0, mask=65535)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/memory.c:441
>>>>>>>         tmp = 1024
>>>>>>> #19 0x0000555555891636 in access_with_adjusted_size (addr=0,
>>>>>>>     value=0x7fffffffd5e8, size=2, access_size_min=1,
>>>>>>> access_size_max=4,
>>>>>>>     access=0x5555558914b0 <memory_region_write_accessor>,
>>>>>>> mr=0x555556313860)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/memory.c:478
>>>>>>>         access_mask = 65535
>>>>>>>         access_size = 2
>>>>>>>         i = 0
>>>>>>> #20 0x0000555555893772 in memory_region_dispatch_write
>>>>>>> (mr=0x555556313860,
>>>>>>>     addr=0, data=1024, size=2)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/memory.c:985
>>>>>>> No locals.
>>>>>>> #21 0x0000555555896068 in io_mem_write (mr=0x555556313860, addr=0,
>>>>>>> val=1024,
>>>>>>>     size=2) at /home/goon/xen/tools/qemu-xen-dir/memory.c:1744
>>>>>>> No locals.
>>>>>>> #22 0x000055555583183c in address_space_rw (
>>>>>>>     as=0x5555561c2140 <address_space_io>, addr=3324,
>>>>>>> buf=0x7fffffffd6f0 "",
>>>>>>>     len=2, is_write=true) at
>>>>>>> /home/goon/xen/tools/qemu-xen-dir/exec.c:2029
>>>>>>>         l = 2
>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>         ptr = 0x7fffffffd6f4 "\377\377\377\377"
>>>>>>>         val = 1024
>>>>>>>         addr1 = 0
>>>>>>>         mr = 0x555556313860
>>>>>>>         error = false
>>>>>>> #23 0x0000555555831b12 in address_space_write (
>>>>>>>     as=0x5555561c2140 <address_space_io>, addr=3324,
>>>>>>> buf=0x7fffffffd6f0 "",
>>>>>>>     len=2) at /home/goon/xen/tools/qemu-xen-dir/exec.c:2091
>>>>>>> No locals.
>>>>>>> #24 0x000055555588f486 in cpu_outw (addr=3324, val=1024)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/ioport.c:77
>>>>>>>         buf = "\000\004"
>>>>>>> #25 0x000055555590f460 in do_outp (addr=3324, size=2, val=1024)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/xen-hvm.c:668
>>>>>>> No locals.
>>>>>>> #26 0x000055555590f66f in cpu_ioreq_pio (req=0x7ffff7ff3000)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/xen-hvm.c:729
>>>>>>>         i = 0
>>>>>>> #27 0x000055555590f910 in handle_ioreq (req=0x7ffff7ff3000)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/xen-hvm.c:781
>>>>>>> No locals.
>>>>>>> #28 0x000055555590fc0f in cpu_handle_ioreq (opaque=0x5555562abf10)
>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/xen-hvm.c:856
>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>         state = 0x5555562abf10
>>>>>>>         req = 0x7ffff7ff3000
>>>>>>> #29 0x000055555577c385 in qemu_iohandler_poll
>>>>>>> (pollfds=0x555556277600, ret=1)
>>>>>>>     at iohandler.c:143
>>>>>>>         revents = 1
>>>>>>>         pioh = 0x55555627ca90
>>>>>>>         ioh = 0x555556366320
>>>>>>> #30 0x000055555577d14b in main_loop_wait (nonblocking=0) at
>>>>>>> main-loop.c:485
>>>>>>>         ret = 1
>>>>>>>         timeout = 4294967295
>>>>>>>         timeout_ns = 16717983
>>>>>>> #31 0x0000555555815fbd in main_loop () at vl.c:2056
>>>>>>>         nonblocking = false
>>>>>>>         last_io = 1
>>>>>>> #32 0x000055555581d66b in main (argc=64, argv=0x7fffffffdc78,
>>>>>>>     envp=0x7fffffffde80) at vl.c:4535
>>>>>>>         i = 64
>>>>>>>         snapshot = 0
>>>>>>>         linux_boot = 0
>>>>>>>         icount_option = 0x0
>>>>>>>         initrd_filename = 0x0
>>>>>>>         kernel_filename = 0x0
>>>>>>>         kernel_cmdline = 0x55555598c664 ""
>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>         boot_order = 0x555556275340 "dc"
>>>>>>>         ds = 0x5555563564e0
>>>>>>>         cyls = 0
>>>>>>>         heads = 0
>>>>>>>         secs = 0
>>>>>>>         translation = 0
>>>>>>>         hda_opts = 0x0
>>>>>>>         opts = 0x555556275290
>>>>>>>         machine_opts = 0x555556276ef0
>>>>>>>         olist = 0x555555d72700 <qemu_machine_opts>
>>>>>>>         optind = 64
>>>>>>>         optarg = 0x7fffffffe61a
>>>>>>> "file=/dev/sda3,if=ide,index=0,media=disk,format=raw,cache=writeback"
>>>>>>>         loadvm = 0x0
>>>>>>>         machine_class = 0x55555626e030
>>>>>>>         machine = 0x555555d78540 <xenfv_machine>
>>>>>>>         cpu_model = 0x0
>>>>>>>         vga_model = 0x0
>>>>>>>         qtest_chrdev = 0x0
>>>>>>>         qtest_log = 0x0
>>>>>>>         pid_file = 0x0
>>>>>>>         incoming = 0x0
>>>>>>>         show_vnc_port = 0
>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>         defconfig = true
>>>>>>>         userconfig = true
>>>>>>>         log_mask = 0x0
>>>>>>>         log_file = 0x0
>>>>>>>         mem_trace = {malloc = 0x55555581950b <malloc_and_trace>,
>>>>>>>           realloc = 0x555555819540 <realloc_and_trace>,
>>>>>>>           free = 0x555555819584 <free_and_trace>, calloc = 0x0,
>>>>>>>           try_malloc = 0x0, try_realloc = 0x0}
>>>>>>>         trace_events = 0x0
>>>>>>>         trace_file = 0x0
>>>>>>>         __func__ = "main"
>>>>>>>         args = {machine = 0x555555d78540 <xenfv_machine>,
>>>>>>>           ram_size = 2013265920, boot_order = 0x555556275340 "dc",
>>>>>>>           kernel_filename = 0x0, kernel_cmdline = 0x55555598c664 "",
>>>>>>>           initrd_filename = 0x0, cpu_model = 0x0}
>>>>>>>
>>>>>>>
>>>>>>> 2015-01-04 22:29 GMT+01:00 Goonie Windy <monsieur.goonie at gmail.com>:
>>>>>>>
>>>>>>>>   Copyright (C) 2014 Free Software Foundation, Inc.
>>>>>>>> License GPLv3+: GNU GPL version 3 or later <
>>>>>>>> http://gnu.org/licenses/gpl.html>
>>>>>>>> This is free software: you are free to change and redistribute it.
>>>>>>>> There is NO WARRANTY, to the extent permitted by law.  Type "show
>>>>>>>> copying"
>>>>>>>> and "show warranty" for details.
>>>>>>>> This GDB was configured as "x86_64-linux-gnu".
>>>>>>>> Type "show configuration" for configuration details.
>>>>>>>> For bug reporting instructions, please see:
>>>>>>>> <http://www.gnu.org/software/gdb/bugs/>.
>>>>>>>> Find the GDB manual and other documentation resources online at:
>>>>>>>> <http://www.gnu.org/software/gdb/documentation/>.
>>>>>>>> For help, type "help".
>>>>>>>> Type "apropos word" to search for commands related to "word"...
>>>>>>>> Reading symbols from /usr/lib/xen/bin/qemu-system-i386...done.
>>>>>>>> (gdb) target remote localhost:1234
>>>>>>>> Remote debugging using localhost:1234
>>>>>>>> Reading symbols from /lib64/ld-linux-x86-64.so.2...Reading symbols
>>>>>>>> from /usr/lib/debug//lib/x86_64-linux-gnu/ld-2.19.so...done.
>>>>>>>> done.
>>>>>>>> Loaded symbols for /lib64/ld-linux-x86-64.so.2
>>>>>>>> 0x00007ffff7ddd190 in _start () from /lib64/ld-linux-x86-64.so.2
>>>>>>>> (gdb) c
>>>>>>>> Continuing.
>>>>>>>>
>>>>>>>> Program received signal SIGSEGV, Segmentation fault.
>>>>>>>> 0x00007ffff50e5801 in spice_char_device_write_to_device (
>>>>>>>>     dev=dev at entry=0x55555647c750) at char_device.c:443
>>>>>>>> 443    char_device.c: Aucun fichier ou dossier de ce type.
>>>>>>>> (gdb) bt full
>>>>>>>> #0  0x00007ffff50e5801 in spice_char_device_write_to_device (
>>>>>>>>     dev=dev at entry=0x55555647c750) at char_device.c:443
>>>>>>>>         sif = <optimized out>
>>>>>>>>         total = <optimized out>
>>>>>>>>         n = <optimized out>
>>>>>>>> #1  0x00007ffff50e6497 in spice_char_device_write_to_device (
>>>>>>>>     dev=0x55555647c750) at char_device.c:436
>>>>>>>> No locals.
>>>>>>>> #2  spice_char_device_start (dev=0x55555647c750) at
>>>>>>>> char_device.c:798
>>>>>>>>         __FUNCTION__ = "spice_char_device_start"
>>>>>>>> #3  0x00007ffff51299c6 in spice_server_vm_start (s=<optimized out>)
>>>>>>>>     at reds.c:3795
>>>>>>>>         st_item = 0x5555562d8350
>>>>>>>>         item = 0x5555562d8350
>>>>>>>>         __FUNCTION__ = "spice_server_vm_start"
>>>>>>>> #4  0x00005555557f40c9 in qemu_spice_display_start () at
>>>>>>>> ui/spice-core.c:909
>>>>>>>> No locals.
>>>>>>>> #5  0x00005555556c4365 in qxl_hard_reset (d=0x55555637d7e0,
>>>>>>>> loadvm=0)
>>>>>>>>     at hw/display/qxl.c:1172
>>>>>>>>         startstop = true
>>>>>>>> #6  0x00005555556c43a3 in qxl_reset_handler (dev=0x55555637d7e0)
>>>>>>>>     at hw/display/qxl.c:1180
>>>>>>>>         d = 0x55555637d7e0
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>> #7  0x0000555555699658 in device_reset (dev=0x55555637d7e0)
>>>>>>>>     at hw/core/qdev.c:934
>>>>>>>>         klass = 0x555556270410
>>>>>>>>         __func__ = "device_reset"
>>>>>>>> #8  0x0000555555697a56 in qdev_reset_one (dev=0x55555637d7e0,
>>>>>>>> opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:240
>>>>>>>> No locals.
>>>>>>>> #9  0x0000555555697f64 in qdev_walk_children (dev=0x55555637d7e0,
>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>> <qdev_reset_one>,
>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:411
>>>>>>>>         bus = 0x0
>>>>>>>>         err = 0
>>>>>>>> #10 0x0000555555697e57 in qbus_walk_children (bus=0x5555562a8ee0,
>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>> <qdev_reset_one>,
>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:369
>>>>>>>>         kid = 0x55555633d4f0
>>>>>>>>         err = 0
>>>>>>>> #11 0x0000555555697f28 in qdev_walk_children (dev=0x5555563131b0,
>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>> <qdev_reset_one>,
>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:403
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>         bus = 0x5555562a8ee0
>>>>>>>>         err = 0
>>>>>>>> #12 0x0000555555697e57 in qbus_walk_children (bus=0x5555562a60b0,
>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>> <qdev_reset_one>,
>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:369
>>>>>>>>         kid = 0x5555562a6a80
>>>>>>>>         err = 0
>>>>>>>> #13 0x0000555555697b32 in qbus_reset_all (bus=0x5555562a60b0)
>>>>>>>>     at hw/core/qdev.c:261
>>>>>>>> No locals.
>>>>>>>> #14 0x0000555555697b54 in qbus_reset_all_fn (opaque=0x5555562a60b0)
>>>>>>>>     at hw/core/qdev.c:267
>>>>>>>>         bus = 0x5555562a60b0
>>>>>>>> #15 0x0000555555815b1f in qemu_devices_reset () at vl.c:1872
>>>>>>>>         re = 0x555556375890
>>>>>>>>         nre = 0x0
>>>>>>>> #16 0x0000555555815bbf in qemu_system_reset (report=true) at
>>>>>>>> vl.c:1885
>>>>>>>>         mc = 0x55555626e030
>>>>>>>>         __func__ = "qemu_system_reset"
>>>>>>>> #17 0x000055555590fcb9 in cpu_handle_ioreq (opaque=0x5555562b0950)
>>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/xen-hvm.c:881
>>>>>>>>         state = 0x5555562b0950
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>         req = 0x7ffff7ff3000
>>>>>>>> #18 0x000055555577c385 in qemu_iohandler_poll
>>>>>>>> (pollfds=0x555556277600, ret=1)
>>>>>>>>     at iohandler.c:143
>>>>>>>>         revents = 1
>>>>>>>>         pioh = 0x5555563218c0
>>>>>>>>         ioh = 0x555556362a80
>>>>>>>> #19 0x000055555577d14b in main_loop_wait (nonblocking=0) at
>>>>>>>> main-loop.c:485
>>>>>>>>         ret = 1
>>>>>>>>         timeout = 4294967295
>>>>>>>>         timeout_ns = 17355567
>>>>>>>> #20 0x0000555555815fbd in main_loop () at vl.c:2056
>>>>>>>>         nonblocking = false
>>>>>>>>         last_io = 1
>>>>>>>> #21 0x000055555581d66b in main (argc=66, argv=0x7fffffffdc58,
>>>>>>>>     envp=0x7fffffffde70) at vl.c:4535
>>>>>>>>         i = 64
>>>>>>>>         snapshot = 0
>>>>>>>>         linux_boot = 0
>>>>>>>>         icount_option = 0x0
>>>>>>>>         initrd_filename = 0x0
>>>>>>>>         kernel_filename = 0x0
>>>>>>>>         kernel_cmdline = 0x55555598c664 ""
>>>>>>>>         boot_order = 0x555556275380 "dc"
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>         ds = 0x5555563324a0
>>>>>>>>         cyls = 0
>>>>>>>>         heads = 0
>>>>>>>>         secs = 0
>>>>>>>>         translation = 0
>>>>>>>>         hda_opts = 0x0
>>>>>>>>         opts = 0x5555562752d0
>>>>>>>>         machine_opts = 0x555556276f30
>>>>>>>>         olist = 0x555555d72700 <qemu_machine_opts>
>>>>>>>>         optind = 66
>>>>>>>>         optarg = 0x7fffffffe61a
>>>>>>>> "file=/dev/sda3,if=ide,index=0,media=disk,format=raw,cache=writeback"
>>>>>>>>         loadvm = 0x0
>>>>>>>>         machine_class = 0x55555626e030
>>>>>>>>         machine = 0x555555d78540 <xenfv_machine>
>>>>>>>>         cpu_model = 0x0
>>>>>>>>         vga_model = 0x0
>>>>>>>>         qtest_chrdev = 0x0
>>>>>>>>         qtest_log = 0x0
>>>>>>>>         pid_file = 0x0
>>>>>>>>         incoming = 0x0
>>>>>>>>         show_vnc_port = 0
>>>>>>>>         defconfig = true
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>         userconfig = true
>>>>>>>>         log_mask = 0x0
>>>>>>>>         log_file = 0x0
>>>>>>>>         mem_trace = {malloc = 0x55555581950b <malloc_and_trace>,
>>>>>>>>           realloc = 0x555555819540 <realloc_and_trace>,
>>>>>>>>           free = 0x555555819584 <free_and_trace>, calloc = 0x0,
>>>>>>>>           try_malloc = 0x0, try_realloc = 0x0}
>>>>>>>>         trace_events = 0x0
>>>>>>>>         trace_file = 0x0
>>>>>>>>         __func__ = "main"
>>>>>>>>         args = {machine = 0x555555d78540 <xenfv_machine>,
>>>>>>>>           ram_size = 2013265920, boot_order = 0x555556275380 "dc",
>>>>>>>>           kernel_filename = 0x0, kernel_cmdline = 0x55555598c664
>>>>>>>> "",
>>>>>>>>           initrd_filename = 0x0, cpu_model = 0x0}
>>>>>>>>  (gdb) bt full ecc
>>>>>>>> No symbol "ecc" in current context.
>>>>>>>>
>>>>>>>> (gdb) bt full
>>>>>>>> #0  0x00007ffff50e5801 in spice_char_device_write_to_device (
>>>>>>>>     dev=dev at entry=0x55555647c750) at char_device.c:443
>>>>>>>>         sif = <optimized out>
>>>>>>>>         total = <optimized out>
>>>>>>>>         n = <optimized out>
>>>>>>>> #1  0x00007ffff50e6497 in spice_char_device_write_to_device (
>>>>>>>>     dev=0x55555647c750) at char_device.c:436
>>>>>>>> No locals.
>>>>>>>> #2  spice_char_device_start (dev=0x55555647c750) at
>>>>>>>> char_device.c:798
>>>>>>>>         __FUNCTION__ = "spice_char_device_start"
>>>>>>>> #3  0x00007ffff51299c6 in spice_server_vm_start (s=<optimized out>)
>>>>>>>>     at reds.c:3795
>>>>>>>>         st_item = 0x5555562d8350
>>>>>>>>         item = 0x5555562d8350
>>>>>>>>         __FUNCTION__ = "spice_server_vm_start"
>>>>>>>> #4  0x00005555557f40c9 in qemu_spice_display_start () at
>>>>>>>> ui/spice-core.c:909
>>>>>>>> No locals.
>>>>>>>> #5  0x00005555556c4365 in qxl_hard_reset (d=0x55555637d7e0,
>>>>>>>> loadvm=0)
>>>>>>>>     at hw/display/qxl.c:1172
>>>>>>>>         startstop = true
>>>>>>>> #6  0x00005555556c43a3 in qxl_reset_handler (dev=0x55555637d7e0)
>>>>>>>>     at hw/display/qxl.c:1180
>>>>>>>>         d = 0x55555637d7e0
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>> #7  0x0000555555699658 in device_reset (dev=0x55555637d7e0)
>>>>>>>>     at hw/core/qdev.c:934
>>>>>>>>         klass = 0x555556270410
>>>>>>>>         __func__ = "device_reset"
>>>>>>>> #8  0x0000555555697a56 in qdev_reset_one (dev=0x55555637d7e0,
>>>>>>>> opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:240
>>>>>>>> No locals.
>>>>>>>> #9  0x0000555555697f64 in qdev_walk_children (dev=0x55555637d7e0,
>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>> <qdev_reset_one>,
>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:411
>>>>>>>>         bus = 0x0
>>>>>>>>         err = 0
>>>>>>>> #10 0x0000555555697e57 in qbus_walk_children (bus=0x5555562a8ee0,
>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>> <qdev_reset_one>,
>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:369
>>>>>>>>         kid = 0x55555633d4f0
>>>>>>>>         err = 0
>>>>>>>> #11 0x0000555555697f28 in qdev_walk_children (dev=0x5555563131b0,
>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>> <qdev_reset_one>,
>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:403
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>         bus = 0x5555562a8ee0
>>>>>>>>         err = 0
>>>>>>>> #12 0x0000555555697e57 in qbus_walk_children (bus=0x5555562a60b0,
>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>> <qdev_reset_one>,
>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>     at hw/core/qdev.c:369
>>>>>>>>         kid = 0x5555562a6a80
>>>>>>>>         err = 0
>>>>>>>> #13 0x0000555555697b32 in qbus_reset_all (bus=0x5555562a60b0)
>>>>>>>>     at hw/core/qdev.c:261
>>>>>>>> No locals.
>>>>>>>> #14 0x0000555555697b54 in qbus_reset_all_fn (opaque=0x5555562a60b0)
>>>>>>>>     at hw/core/qdev.c:267
>>>>>>>>         bus = 0x5555562a60b0
>>>>>>>> #15 0x0000555555815b1f in qemu_devices_reset () at vl.c:1872
>>>>>>>>         re = 0x555556375890
>>>>>>>>         nre = 0x0
>>>>>>>> #16 0x0000555555815bbf in qemu_system_reset (report=true) at
>>>>>>>> vl.c:1885
>>>>>>>>         mc = 0x55555626e030
>>>>>>>>         __func__ = "qemu_system_reset"
>>>>>>>> #17 0x000055555590fcb9 in cpu_handle_ioreq (opaque=0x5555562b0950)
>>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/xen-hvm.c:881
>>>>>>>>         state = 0x5555562b0950
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>         req = 0x7ffff7ff3000
>>>>>>>> #18 0x000055555577c385 in qemu_iohandler_poll
>>>>>>>> (pollfds=0x555556277600, ret=1)
>>>>>>>>     at iohandler.c:143
>>>>>>>>         revents = 1
>>>>>>>>         pioh = 0x5555563218c0
>>>>>>>>         ioh = 0x555556362a80
>>>>>>>> #19 0x000055555577d14b in main_loop_wait (nonblocking=0) at
>>>>>>>> main-loop.c:485
>>>>>>>>         ret = 1
>>>>>>>>         timeout = 4294967295
>>>>>>>>         timeout_ns = 17355567
>>>>>>>> #20 0x0000555555815fbd in main_loop () at vl.c:2056
>>>>>>>>         nonblocking = false
>>>>>>>>         last_io = 1
>>>>>>>> #21 0x000055555581d66b in main (argc=66, argv=0x7fffffffdc58,
>>>>>>>>     envp=0x7fffffffde70) at vl.c:4535
>>>>>>>>         i = 64
>>>>>>>>         snapshot = 0
>>>>>>>>         linux_boot = 0
>>>>>>>>         icount_option = 0x0
>>>>>>>>         initrd_filename = 0x0
>>>>>>>>         kernel_filename = 0x0
>>>>>>>>         kernel_cmdline = 0x55555598c664 ""
>>>>>>>>         boot_order = 0x555556275380 "dc"
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>         ds = 0x5555563324a0
>>>>>>>>         cyls = 0
>>>>>>>>         heads = 0
>>>>>>>>         secs = 0
>>>>>>>>         translation = 0
>>>>>>>>         hda_opts = 0x0
>>>>>>>>         opts = 0x5555562752d0
>>>>>>>>         machine_opts = 0x555556276f30
>>>>>>>>         olist = 0x555555d72700 <qemu_machine_opts>
>>>>>>>>         optind = 66
>>>>>>>>         optarg = 0x7fffffffe61a
>>>>>>>> "file=/dev/sda3,if=ide,index=0,media=disk,format=raw,cache=writeback"
>>>>>>>>         loadvm = 0x0
>>>>>>>>         machine_class = 0x55555626e030
>>>>>>>>         machine = 0x555555d78540 <xenfv_machine>
>>>>>>>>         cpu_model = 0x0
>>>>>>>>         vga_model = 0x0
>>>>>>>>         qtest_chrdev = 0x0
>>>>>>>>         qtest_log = 0x0
>>>>>>>>         pid_file = 0x0
>>>>>>>>         incoming = 0x0
>>>>>>>>         show_vnc_port = 0
>>>>>>>>         defconfig = true
>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>         userconfig = true
>>>>>>>>         log_mask = 0x0
>>>>>>>>         log_file = 0x0
>>>>>>>>         mem_trace = {malloc = 0x55555581950b <malloc_and_trace>,
>>>>>>>>           realloc = 0x555555819540 <realloc_and_trace>,
>>>>>>>>           free = 0x555555819584 <free_and_trace>, calloc = 0x0,
>>>>>>>>           try_malloc = 0x0, try_realloc = 0x0}
>>>>>>>>         trace_events = 0x0
>>>>>>>>         trace_file = 0x0
>>>>>>>>         __func__ = "main"
>>>>>>>>         args = {machine = 0x555555d78540 <xenfv_machine>,
>>>>>>>>           ram_size = 2013265920, boot_order = 0x555556275380 "dc",
>>>>>>>>           kernel_filename = 0x0, kernel_cmdline = 0x55555598c664
>>>>>>>> "",
>>>>>>>>           initrd_filename = 0x0, cpu_model = 0x0}
>>>>>>>>
>>>>>>>>
>>>>>>>>   AND
>>>>>>>>
>>>>>>>>  attached files
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> 2015-01-04 22:24 GMT+01:00 Goonie Windy <monsieur.goonie at gmail.com>
>>>>>>>> :
>>>>>>>>
>>>>>>>>> GNU gdb (Debian 7.7.1+dfsg-5) 7.7.1
>>>>>>>>> Copyright (C) 2014 Free Software Foundation, Inc.
>>>>>>>>> License GPLv3+: GNU GPL version 3 or later <
>>>>>>>>> http://gnu.org/licenses/gpl.html>
>>>>>>>>> This is free software: you are free to change and redistribute it.
>>>>>>>>> There is NO WARRANTY, to the extent permitted by law.  Type "show
>>>>>>>>> copying"
>>>>>>>>> and "show warranty" for details.
>>>>>>>>> This GDB was configured as "x86_64-linux-gnu".
>>>>>>>>> Type "show configuration" for configuration details.
>>>>>>>>> For bug reporting instructions, please see:
>>>>>>>>> <http://www.gnu.org/software/gdb/bugs/>.
>>>>>>>>> Find the GDB manual and other documentation resources online at:
>>>>>>>>> <http://www.gnu.org/software/gdb/documentation/>.
>>>>>>>>> For help, type "help".
>>>>>>>>> Type "apropos word" to search for commands related to "word"...
>>>>>>>>> Reading symbols from /usr/lib/xen/bin/qemu-system-i386...done.
>>>>>>>>> (gdb) target remote localhost:1234
>>>>>>>>> Remote debugging using localhost:1234
>>>>>>>>> Reading symbols from /lib64/ld-linux-x86-64.so.2...Reading symbols
>>>>>>>>> from /usr/lib/debug//lib/x86_64-linux-gnu/ld-2.19.so...done.
>>>>>>>>> done.
>>>>>>>>> Loaded symbols for /lib64/ld-linux-x86-64.so.2
>>>>>>>>> 0x00007ffff7ddd190 in _start () from /lib64/ld-linux-x86-64.so.2
>>>>>>>>> (gdb) c
>>>>>>>>> Continuing.
>>>>>>>>>
>>>>>>>>> Program received signal SIGSEGV, Segmentation fault.
>>>>>>>>> 0x00007ffff50e5801 in spice_char_device_write_to_device (
>>>>>>>>>     dev=dev at entry=0x55555647c750) at char_device.c:443
>>>>>>>>> 443    char_device.c: Aucun fichier ou dossier de ce type.
>>>>>>>>> (gdb) bt full
>>>>>>>>> #0  0x00007ffff50e5801 in spice_char_device_write_to_device (
>>>>>>>>>     dev=dev at entry=0x55555647c750) at char_device.c:443
>>>>>>>>>         sif = <optimized out>
>>>>>>>>>         total = <optimized out>
>>>>>>>>>         n = <optimized out>
>>>>>>>>> #1  0x00007ffff50e6497 in spice_char_device_write_to_device (
>>>>>>>>>     dev=0x55555647c750) at char_device.c:436
>>>>>>>>> No locals.
>>>>>>>>> #2  spice_char_device_start (dev=0x55555647c750) at
>>>>>>>>> char_device.c:798
>>>>>>>>>         __FUNCTION__ = "spice_char_device_start"
>>>>>>>>> #3  0x00007ffff51299c6 in spice_server_vm_start (s=<optimized out>)
>>>>>>>>>     at reds.c:3795
>>>>>>>>>         st_item = 0x5555562d8350
>>>>>>>>>         item = 0x5555562d8350
>>>>>>>>>         __FUNCTION__ = "spice_server_vm_start"
>>>>>>>>> #4  0x00005555557f40c9 in qemu_spice_display_start () at
>>>>>>>>> ui/spice-core.c:909
>>>>>>>>> No locals.
>>>>>>>>> #5  0x00005555556c4365 in qxl_hard_reset (d=0x55555637d7e0,
>>>>>>>>> loadvm=0)
>>>>>>>>>     at hw/display/qxl.c:1172
>>>>>>>>>         startstop = true
>>>>>>>>> #6  0x00005555556c43a3 in qxl_reset_handler (dev=0x55555637d7e0)
>>>>>>>>>     at hw/display/qxl.c:1180
>>>>>>>>>         d = 0x55555637d7e0
>>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>> #7  0x0000555555699658 in device_reset (dev=0x55555637d7e0)
>>>>>>>>>     at hw/core/qdev.c:934
>>>>>>>>>         klass = 0x555556270410
>>>>>>>>>         __func__ = "device_reset"
>>>>>>>>> #8  0x0000555555697a56 in qdev_reset_one (dev=0x55555637d7e0,
>>>>>>>>> opaque=0x0)
>>>>>>>>>     at hw/core/qdev.c:240
>>>>>>>>> No locals.
>>>>>>>>> #9  0x0000555555697f64 in qdev_walk_children (dev=0x55555637d7e0,
>>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>>> <qdev_reset_one>,
>>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>>     at hw/core/qdev.c:411
>>>>>>>>>         bus = 0x0
>>>>>>>>>         err = 0
>>>>>>>>> #10 0x0000555555697e57 in qbus_walk_children (bus=0x5555562a8ee0,
>>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>>> <qdev_reset_one>,
>>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>>     at hw/core/qdev.c:369
>>>>>>>>>         kid = 0x55555633d4f0
>>>>>>>>>         err = 0
>>>>>>>>> #11 0x0000555555697f28 in qdev_walk_children (dev=0x5555563131b0,
>>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>>> <qdev_reset_one>,
>>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>>     at hw/core/qdev.c:403
>>>>>>>>> ---Type <return> to continue, or q <return> to quit---
>>>>>>>>>         bus = 0x5555562a8ee0
>>>>>>>>>         err = 0
>>>>>>>>> #12 0x0000555555697e57 in qbus_walk_children (bus=0x5555562a60b0,
>>>>>>>>>     pre_devfn=0x0, pre_busfn=0x0, post_devfn=0x555555697a3a
>>>>>>>>> <qdev_reset_one>,
>>>>>>>>>     post_busfn=0x555555697a5d <qbus_reset_one>, opaque=0x0)
>>>>>>>>>     at hw/core/qdev.c:369
>>>>>>>>>         kid = 0x5555562a6a80
>>>>>>>>>         err = 0
>>>>>>>>> #13 0x0000555555697b32 in qbus_reset_all (bus=0x5555562a60b0)
>>>>>>>>>     at hw/core/qdev.c:261
>>>>>>>>> No locals.
>>>>>>>>> #14 0x0000555555697b54 in qbus_reset_all_fn (opaque=0x5555562a60b0)
>>>>>>>>>     at hw/core/qdev.c:267
>>>>>>>>>         bus = 0x5555562a60b0
>>>>>>>>> #15 0x0000555555815b1f in qemu_devices_reset () at vl.c:1872
>>>>>>>>>         re = 0x555556375890
>>>>>>>>>         nre = 0x0
>>>>>>>>> #16 0x0000555555815bbf in qemu_system_reset (report=true) at
>>>>>>>>> vl.c:1885
>>>>>>>>>         mc = 0x55555626e030
>>>>>>>>>         __func__ = "qemu_system_reset"
>>>>>>>>> #17 0x000055555590fcb9 in cpu_handle_ioreq (opaque=0x5555562b0950)
>>>>>>>>>     at /home/goon/xen/tools/qemu-xen-dir/xen-hvm.c:881
>>>>>>>>>         state = 0x5555562b0950
>>>>>>>>> ---Type <return> to continue, or q
>>>>>>>>>
>>>>>>>> ...
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/spice-devel/attachments/20150105/41bc824b/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: installedsoftware.log
Type: text/x-log
Size: 424369 bytes
Desc: not available
URL: <http://lists.freedesktop.org/archives/spice-devel/attachments/20150105/41bc824b/attachment-0001.bin>


More information about the Spice-devel mailing list