[Bug 1890160] Re: Abort in vmxnet3_validate

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug 1890160] Re: Abort in vmxnet3_validate_queues

From:	Thomas Huth
Subject:	[Bug 1890160] Re: Abort in vmxnet3_validate_queues
Date:	Wed, 26 May 2021 15:06:04 -0000

Still reproduces with the current version of QEMU. Marking as
"Confirmed"

** Changed in: qemu
       Status: New => Confirmed

-- 
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1890160

Title:
  Abort in vmxnet3_validate_queues

Status in QEMU:
  Confirmed

Bug description:
  Hello,
  Reproducer:

  cat << EOF | ./i386-softmmu/qemu-system-i386 \
  -device vmxnet3 -m 64 -nodefaults -qtest stdio -nographic
  outl 0xcf8 0x80001014
  outl 0xcfc 0xe0001000
  outl 0xcf8 0x80001018
  outl 0xcf8 0x80001004
  outw 0xcfc 0x7
  write 0x0 0x1 0xe1
  write 0x1 0x1 0xfe
  write 0x2 0x1 0xbe
  write 0x3 0x1 0xba
  write 0x3e 0x1 0xe1
  writeq 0xe0001020 0xef0bff5ecafe0000
  EOF

  ==============================================================
  qemu: hardware error: Bad TX queues number: 225

      #6 0x7f04b89d455a in abort 
/build/glibc-GwnBeO/glibc-2.30/stdlib/abort.c:79:7
      #7 0x558f5be89b67 in hw_error 
/home/alxndr/Development/qemu/general-fuzz/softmmu/cpus.c:927:5
      #8 0x558f5d3c3968 in vmxnet3_validate_queues 
/home/alxndr/Development/qemu/general-fuzz/hw/net/vmxnet3.c:1388:9
      #9 0x558f5d3bb716 in vmxnet3_activate_device 
/home/alxndr/Development/qemu/general-fuzz/hw/net/vmxnet3.c:1449:5
      #10 0x558f5d3b6fba in vmxnet3_handle_command 
/home/alxndr/Development/qemu/general-fuzz/hw/net/vmxnet3.c:1576:9
      #11 0x558f5d3b410f in vmxnet3_io_bar1_write 
/home/alxndr/Development/qemu/general-fuzz/hw/net/vmxnet3.c:1772:9
      #12 0x558f5bec4193 in memory_region_write_accessor 
/home/alxndr/Development/qemu/general-fuzz/softmmu/memory.c:483:5
      #13 0x558f5bec3637 in access_with_adjusted_size 
/home/alxndr/Development/qemu/general-fuzz/softmmu/memory.c:544:18
      #14 0x558f5bec1256 in memory_region_dispatch_write 
/home/alxndr/Development/qemu/general-fuzz/softmmu/memory.c:1466:16

  -Alex

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1890160/+subscriptions

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug 1890160] Re: Abort in vmxnet3_validate_queues, Thomas Huth <=

Prev by Date: Re: [PATCH v4 1/2] ui/cocoa: capture all keys and combos when mouse is grabbed
Next by Date: Re: [PATCH v5 23/23] target/ppc: Move cmp/cmpi/cmpl/cmpli to decodetree
Previous by thread: [Bug 1890159] Re: Assertion failure in net_tx_pkt_add_raw_fragment through vmxnet3
Next by thread: [Bug 1891354] Re: Heap-use-after-free in usb_packet_unmap
Index(es):
- Date
- Thread