qemu-system-x86_64 crashed with SIGSEGV in virtio_pci_mask_vq()
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| | qemu-kvm (Debian) |
Fix Released
|
Unknown
|
||
| | qemu-kvm (Ubuntu) |
Critical
|
Serge Hallyn | ||
Bug Description
tried to start some VMs today for the Alpha3 testing -- they died with a "kernel: [34396.173557] kvm[16129]: segfault at 10 ip 00007f7e78cdb89e sp 00007f7e6be31ad0 error 4 in qemu-system-
Tried to start a GDB on a KVM, failed.
Uninstalled PURGE libvirt*, and reinstalled. Run another KVM, and finally I got this bug.
ProblemType: Crash
DistroRelease: Ubuntu 12.10
Package: qemu-kvm 1.1~rc+
ProcVersionSign
Uname: Linux 3.5.0-6-generic x86_64
NonfreeKernelMo
ApportVersion: 2.4-0ubuntu5
Architecture: amd64
Date: Wed Jul 25 19:35:27 2012
ExecutablePath: /usr/bin/
InstallationMedia: Ubuntu 12.10 "Quantal Quetzal" - Alpha amd64 (20120701)
KvmCmdLine: Error: command ['ps', '-C', 'kvm', '-F'] failed with exit code 1: UID PID PPID C SZ RSS PSR STIME TTY TIME CMD
MachineType: Dell Inc. Latitude E6410
ProcEnviron: PATH=(custom, no user)
ProcKernelCmdLine: BOOT_IMAGE=
SegvAnalysis:
Segfault happened at: 0x7f7e78cdb89e <virtio_
PC (0x7f7e78cdb89e) ok
source "(%r8)" (0x00000010) not located in a known VMA region (needed readable region)!
destination "%edi" ok
Stack memory exhausted (SP below stack segment)
SegvReason: reading NULL VMA
Signal: 11
SourcePackage: qemu-kvm
StacktraceTop:
virtio_pci_mask_vq (vector=
virtio_
msix_set_
msix_set_
virtio_
Title: qemu-system-x86_64 crashed with SIGSEGV in virtio_
UpgradeStatus: No upgrade log present (probably fresh install)
UserGroups:
dmi.bios.date: 05/26/2011
dmi.bios.vendor: Dell Inc.
dmi.bios.version: A09
dmi.board.name: 0K42JR
dmi.board.vendor: Dell Inc.
dmi.board.version: A01
dmi.chassis.type: 9
dmi.chassis.vendor: Dell Inc.
dmi.modalias: dmi:bvnDellInc.
dmi.product.name: Latitude E6410
dmi.product.
dmi.sys.vendor: Dell Inc.
CVE References
| C de-Avillez (hggdh2) wrote : | #1 |
| Apport retracing service (apport) wrote : | #2 |
| Changed in qemu-kvm (Ubuntu): | |
| importance: | Undecided → Medium |
| tags: | removed: need-amd64-retrace |
| Serge Hallyn (serge-hallyn) wrote : | #6 |
I'm not getting this on my quantal laptop. Can you tell me what guest you were running, and post the guest xml?
| Changed in qemu-kvm (Ubuntu): | |
| status: | New → Incomplete |
| C de-Avillez (hggdh2) wrote : | #7 |
Running a quantal server image, already built, with snapshot. The default XML is:
<domain type='kvm'>
<name>
<uuid>
<memory unit='KiB'
<currentMemory unit='KiB'
<vcpu placement=
<os>
<type arch='x86_64' machine=
<boot dev='cdrom'/>
<boot dev='hd'/>
<bootmenu enable='yes'/>
</os>
<features>
<acpi/>
<apic/>
<pae/>
</features>
<clock offset='utc'/>
<on_poweroff>
<on_reboot>
<on_crash>
<devices>
<emulator>
<disk type='file' device='disk'>
<driver name='qemu' type='qcow2' cache='writeback'/>
<source file='/
<target dev='vda' bus='virtio'/>
<address type='pci' domain='0x0000' bus='0x00' slot='0x04' function='0x0'/>
</disk>
<disk type='file' device='cdrom'>
<driver name='qemu' type='raw'/>
<target dev='hdc' bus='ide'/>
<readonly/>
<address type='drive' controller='0' bus='1' target='0' unit='0'/>
</disk>
<controller type='ide' index='0'>
<address type='pci' domain='0x0000' bus='0x00' slot='0x01' function='0x1'/>
</controller>
<controller type='usb' index='0'>
<address type='pci' domain='0x0000' bus='0x00' slot='0x01' function='0x2'/>
</controller>
<interface type='network'>
<mac address=
<source network='default'/>
<model type='virtio'/>
<address type='pci' domain='0x0000' bus='0x00' slot='0x03' function='0x0'/>
</interface>
<serial type='pty'>
<target port='0'/>
</serial>
<console type='pty'>
<target type='serial' port='0'/>
</console>
<input type='mouse' bus='ps2'/>
<graphics type='vnc' port='-1' autoport='yes'/>
<video>
<model type='cirrus' vram='9216' heads='1'/>
<address type='pci' domain='0x0000' bus='0x00' slot='0x02' function='0x0'/>
</video>
<memballoon model='virtio'>
<address type='pci' domain='0x0000' bus='0x00' slot='0x05' function='0x0'/>
</memballoon>
</devices>
</domain>
| Changed in qemu-kvm (Ubuntu): | |
| status: | Incomplete → New |
| Serge Hallyn (serge-hallyn) wrote : | #8 |
Hm, verified. I'm not sure whether the problem is qcow, or something else in your xml. When I use virt-manager to create a VM it runs fine with quantal server, but using your xml tweaked for my paths, it crashes. Investigating.
| Changed in qemu-kvm (Ubuntu): | |
| status: | New → Triaged |
| importance: | Medium → Critical |
| Serge Hallyn (serge-hallyn) wrote : | #9 |
The problem is introduced by using the pc-1.0 machine type. pc-1.1 seems to work for me.
| Serge Hallyn (serge-hallyn) wrote : | #10 |
Testing the patches (from upstream) which solved this in Debian.
After a3 closes I will merge the new debian qemu-kvm.
| Changed in qemu-kvm (Ubuntu): | |
| assignee: | nobody → Serge Hallyn (serge-hallyn) |
| status: | Triaged → In Progress |
| Serge Hallyn (serge-hallyn) wrote : | #11 |
This debdiff fixes the issue for me.
| tags: | added: patch |
| Changed in qemu-kvm (Debian): | |
| status: | Unknown → Fix Released |
| Launchpad Janitor (janitor) wrote : | #12 |
This bug was fixed in the package qemu-kvm - 1.1~rc+
---------------
qemu-kvm (1.1~rc+
[ Michael Tokarev ]
* added two patches from upstream qemu-kvm/stable-1.1 branch:
qemu-
qemu-
(Closes: #679788) (LP: #1029201)
[ Serge Hallyn ]
* remove ubuntu/
patch, which was actually fixed in qemu 0.15 by
"virtio: fix indirect descriptor buffer overflow" (Thanks to
Michael Tokarev for pointing that out)
-- Serge Hallyn <email address hidden> Thu, 26 Jul 2012 10:31:53 -0500
| Changed in qemu-kvm (Ubuntu): | |
| status: | In Progress → Fix Released |
StacktraceTop:
virtio_pci_mask_vq (vector=
virtio_
msix_set_
msix_set_
virtio_