GNU gdb (Ubuntu/Linaro 7.4-2012.04-0ubuntu2) 7.4-2012.04 Copyright (C) 2012 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-linux-gnu". For bug reporting instructions, please see: ... Reading symbols from /usr/bin/kvm-spice...Reading symbols from /usr/lib/debug/usr/bin/qemu-system-x86_64-spice...done. done. (gdb) run -cpu host -enable-kvm -name win-7 -m 3000 -drive file=/var/vmmachines/win-7.img -net nic,model=rtl8139 -net user -localtime -usb -vga qxl -global qxl-vga.vram_size=67108864 -spice port=5901,disable-ticketing -boot d Starting program: /usr/bin/kvm-spice -cpu host -enable-kvm -name win-7 -m 3000 -drive file=/var/vmmachines/win-7.img -net nic,model=rtl8139 -net user -localtime -usb -vga qxl -global qxl-vga.vram_size=67108864 -spice port=5901,disable-ticketing -boot d [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1". do_spice_init: starting 0.10.1 [New Thread 0x7fffecfe9700 (LWP 8164)] spice_server_add_interface: SPICE_INTERFACE_MIGRATION spice_server_add_interface: SPICE_INTERFACE_KEYBOARD spice_server_add_interface: SPICE_INTERFACE_MOUSE spice_server_add_interface: SPICE_INTERFACE_QXL red_worker_main: begin display_channel_create: create display channel cursor_channel_create: create cursor channel kvm-spice: /build/buildd/qemu-linaro-1.0.50-2012.03/exec.c:2641: register_subpage: Assertion `existing.mr->subpage || existing.mr == &io_mem_unassigned' failed. [New Thread 0x7fffeb643700 (LWP 8165)] [New Thread 0x7fffe9bef700 (LWP 8166)] Program received signal SIGABRT, Aborted. [Switching to Thread 0x7fffeb643700 (LWP 8165)] 0x00007ffff4d8d445 in raise () from /lib/x86_64-linux-gnu/libc.so.6 (gdb) backtrace full #0 0x00007ffff4d8d445 in raise () from /lib/x86_64-linux-gnu/libc.so.6 No symbol table info available. #1 0x00007ffff4d90bab in abort () from /lib/x86_64-linux-gnu/libc.so.6 No symbol table info available. #2 0x00007ffff4d8610e in ?? () from /lib/x86_64-linux-gnu/libc.so.6 No symbol table info available. #3 0x00007ffff4d861b2 in __assert_fail () from /lib/x86_64-linux-gnu/libc.so.6 No symbol table info available. #4 0x00005555556db4e5 in register_subpage (section=0x7fffeb6427c0) at /build/buildd/qemu-linaro-1.0.50-2012.03/exec.c:2641 subpage = base = 843776 existing = {mr = 0x5555563a8680, address_space = , offset_within_region = , size = , offset_within_address_space = , readonly = } subsection = {mr = 0x0, address_space = 0x0, offset_within_region = 0, size = 4096, offset_within_address_space = 843776, readonly = false} start = end = __PRETTY_FUNCTION__ = "register_subpage" #5 0x00005555556dcfbb in cpu_register_physical_memory_log (section=, readonly=) at /build/buildd/qemu-linaro-1.0.50-2012.03/exec.c:2681 now = {mr = 0x5555563a8680, address_space = 0x555556346080, offset_within_region = 845824, size = 2048, offset_within_address_space = 845824, readonly = false} remain = {mr = 0x5555563a8680, address_space = 0x555556346080, offset_within_region = 845824, size = 3144882176, offset_within_address_space = , readonly = } #6 0x0000555555701886 in address_space_update_topology_pass (adding=true, as=, old_view=..., new_view=...) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:693 _listener = 0x555555b287c0 iold = 3 inew = 4 frold = frnew = 0x7fffe40029c0 #7 0x0000555555701d1e in address_space_update_topology (as=0x5555562ddc20) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:708 new_view = {ranges = , nr = , nr_allocated = 40} #8 0x0000555555702574 in memory_region_update_topology (mr=) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:729 No locals. #9 memory_region_update_topology (mr=) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:715 No locals. #10 0x00005555556fd879 in vapic_map_rom_writable (s=0x55555639ae00) at /build/buildd/qemu-linaro-1.0.50-2012.03/hw/kvmvapic.c:587 section = {mr = 0x5555563a8680, address_space = , offset_within_region = , size = , offset_within_address_space = , readonly = } as = rom_size = rom_paddr = 833536 ram = #11 vapic_prepare (s=0x55555639ae00) at /build/buildd/qemu-linaro-1.0.50-2012.03/hw/kvmvapic.c:593 No locals. #12 0x00005555556fdc48 in vapic_write (opaque=0x55555639ae00, addr=, data=, size=) at /build/buildd/qemu-linaro-1.0.50-2012.03/hw/kvmvapic.c:632 env = 0x55555638a040 rom_paddr = s = 0x55555639ae00 #13 0x00005555556ffe31 in access_with_adjusted_size (addr=0, value=0x7fffeb642c38, size=2, access_size_min=, access_size_max=, access=0x5555556ffd90 , opaque=0x55555639d138) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:359 access_mask = 65535 access_size = 2 i = #14 0x0000555555701396 in memory_region_iorange_write (iorange=0x55555639d178, offset=0, width=2, data=32) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:428 mr = 0x55555639d138 __PRETTY_FUNCTION__ = "memory_region_iorange_write" #15 0x00005555556f7636 in kvm_handle_io (count=1, size=2, direction=1, data=, port=126) at /build/buildd/qemu-linaro-1.0.50-2012.03/kvm-all.c:1119 i = ptr = #16 kvm_cpu_exec (env=0x55555638a040) at /build/buildd/qemu-linaro-1.0.50-2012.03/kvm-all.c:1264 run = 0x7ffff7ecb000 ret = run_ret = #17 0x00005555556d87c1 in qemu_kvm_cpu_thread_fn (arg=0x55555638a040) at /build/buildd/qemu-linaro-1.0.50-2012.03/cpus.c:733 env = 0x55555638a040 r = #18 0x00007ffff511de9a in start_thread () from /lib/x86_64-linux-gnu/libpthread.so.0 No symbol table info available. #19 0x00007ffff4e4adbd in clone () from /lib/x86_64-linux-gnu/libc.so.6 No symbol table info available. #20 0x0000000000000000 in ?? () No symbol table info available. (gdb) info registers rax 0x0 0 rbx 0x7ffff7e25000 140737352192000 rcx 0xffffffffffffffff -1 rdx 0x6 6 rsi 0x1fe5 8165 rdi 0x1fe1 8161 rbp 0x5555557d0490 0x5555557d0490 rsp 0x7fffeb642548 0x7fffeb642548 r8 0xfefefefefefefeff -72340172838076673 r9 0x0 0 r10 0x8 8 r11 0x206 518 r12 0x5555557d0550 93824994837840 r13 0x5555557d0d50 93824994839888 r14 0xce000 843776 r15 0xce800 845824 rip 0x7ffff4d8d445 0x7ffff4d8d445 eflags 0x206 [ PF IF ] cs 0x33 51 ss 0x2b 43 ds 0x2b 43 es 0x2b 43 fs 0x0 0 gs 0x0 0 (gdb) x/16i $pc => 0x7ffff4d8d445 : cmp $0xfffffffffffff000,%rax 0x7ffff4d8d44b : ja 0x7ffff4d8d45f 0x7ffff4d8d44d : repz retq 0x7ffff4d8d44f : nop 0x7ffff4d8d450 : test %eax,%eax 0x7ffff4d8d452 : jg 0x7ffff4d8d435 0x7ffff4d8d454 : test $0x7fffffff,%eax 0x7ffff4d8d459 : je 0x7ffff4d8d470 0x7ffff4d8d45b : neg %eax 0x7ffff4d8d45d : jmp 0x7ffff4d8d435 0x7ffff4d8d45f : mov 0x3819ba(%rip),%rdx # 0x7ffff510ee20 0x7ffff4d8d466 : neg %eax 0x7ffff4d8d468 : mov %eax,%fs:(%rdx) 0x7ffff4d8d46b : or $0xffffffffffffffff,%rax 0x7ffff4d8d46f : retq 0x7ffff4d8d470 : mov %esi,%eax (gdb) thread apply all backtrace Thread 4 (Thread 0x7fffe9bef700 (LWP 8166)): #0 0x00007ffff4e4b453 in epoll_wait () from /lib/x86_64-linux-gnu/libc.so.6 #1 0x00007ffff587aeb5 in ?? () from /usr/lib/libspice-server.so.1 #2 0x00007ffff511de9a in start_thread () from /lib/x86_64-linux-gnu/libpthread.so.0 #3 0x00007ffff4e4adbd in clone () from /lib/x86_64-linux-gnu/libc.so.6 #4 0x0000000000000000 in ?? () Thread 3 (Thread 0x7fffeb643700 (LWP 8165)): #0 0x00007ffff4d8d445 in raise () from /lib/x86_64-linux-gnu/libc.so.6 #1 0x00007ffff4d90bab in abort () from /lib/x86_64-linux-gnu/libc.so.6 #2 0x00007ffff4d8610e in ?? () from /lib/x86_64-linux-gnu/libc.so.6 #3 0x00007ffff4d861b2 in __assert_fail () from /lib/x86_64-linux-gnu/libc.so.6 #4 0x00005555556db4e5 in register_subpage (section=0x7fffeb6427c0) at /build/buildd/qemu-linaro-1.0.50-2012.03/exec.c:2641 #5 0x00005555556dcfbb in cpu_register_physical_memory_log (section=, readonly=) at /build/buildd/qemu-linaro-1.0.50-2012.03/exec.c:2681 #6 0x0000555555701886 in address_space_update_topology_pass (adding=true, as=, old_view=..., new_view=...) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:693 #7 0x0000555555701d1e in address_space_update_topology (as=0x5555562ddc20) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:708 #8 0x0000555555702574 in memory_region_update_topology (mr=) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:729 #9 memory_region_update_topology (mr=) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:715 #10 0x00005555556fd879 in vapic_map_rom_writable (s=0x55555639ae00) at /build/buildd/qemu-linaro-1.0.50-2012.03/hw/kvmvapic.c:587 #11 vapic_prepare (s=0x55555639ae00) at /build/buildd/qemu-linaro-1.0.50-2012.03/hw/kvmvapic.c:593 #12 0x00005555556fdc48 in vapic_write (opaque=0x55555639ae00, addr=, data=, size=) at /build/buildd/qemu-linaro-1.0.50-2012.03/hw/kvmvapic.c:632 #13 0x00005555556ffe31 in access_with_adjusted_size (addr=0, value=0x7fffeb642c38, size=2, access_size_min=, access_size_max=, access=0x5555556ffd90 , opaque=0x55555639d138) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:359 #14 0x0000555555701396 in memory_region_iorange_write (iorange=0x55555639d178, offset=0, width=2, data=32) at /build/buildd/qemu-linaro-1.0.50-2012.03/memory.c:428 #15 0x00005555556f7636 in kvm_handle_io (count=1, size=2, direction=1, data=, port=126) at /build/buildd/qemu-linaro-1.0.50-2012.03/kvm-all.c:1119 #16 kvm_cpu_exec (env=0x55555638a040) at /build/buildd/qemu-linaro-1.0.50-2012.03/kvm-all.c:1264 #17 0x00005555556d87c1 in qemu_kvm_cpu_thread_fn (arg=0x55555638a040) at /build/buildd/qemu-linaro-1.0.50-2012.03/cpus.c:733 #18 0x00007ffff511de9a in start_thread () from /lib/x86_64-linux-gnu/libpthread.so.0 #19 0x00007ffff4e4adbd in clone () from /lib/x86_64-linux-gnu/libc.so.6 #20 0x0000000000000000 in ?? () Thread 2 (Thread 0x7fffecfe9700 (LWP 8164)): #0 0x00007ffff51220fe in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/x86_64-linux-gnu/libpthread.so.0 #1 0x000055555567bcc6 in cond_timedwait (ts=0x7fffecfe8cb0, mutex=0x555555f3a2c0, cond=0x555555f3a320) at /build/buildd/qemu-linaro-1.0.50-2012.03/posix-aio-compat.c:106 #2 aio_thread (unused=) at /build/buildd/qemu-linaro-1.0.50-2012.03/posix-aio-compat.c:336 #3 0x00007ffff511de9a in start_thread () from /lib/x86_64-linux-gnu/libpthread.so.0 #4 0x00007ffff4e4adbd in clone () from /lib/x86_64-linux-gnu/libc.so.6 #5 0x0000000000000000 in ?? () Thread 1 (Thread 0x7ffff7fcf900 (LWP 8161)): #0 0x00007ffff4e44123 in select () from /lib/x86_64-linux-gnu/libc.so.6 #1 0x000055555566f8b0 in main_loop_wait (nonblocking=) at /build/buildd/qemu-linaro-1.0.50-2012.03/main-loop.c:457 #2 0x00005555555bffdf in main_loop () at /build/buildd/qemu-linaro-1.0.50-2012.03/vl.c:1552 #3 main (argc=, argv=, envp=) at /build/buildd/qemu-linaro-1.0.50-2012.03/vl.c:3622 (gdb) quit A debugging session is active. Inferior 1 [process 8161] will be killed. Quit anyway? (y or n)