From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([140.186.70.92]:57498)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <afaerber@suse.de>) id 1RP3K9-0001GY-0B
	for qemu-devel@nongnu.org; Fri, 11 Nov 2011 21:28:05 -0500
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <afaerber@suse.de>) id 1RP3K7-0001b5-Ms
	for qemu-devel@nongnu.org; Fri, 11 Nov 2011 21:28:04 -0500
Received: from cantor2.suse.de ([195.135.220.15]:42683 helo=mx2.suse.de)
	by eggs.gnu.org with esmtp (Exim 4.71)
	(envelope-from <afaerber@suse.de>) id 1RP3K7-0001b0-Gz
	for qemu-devel@nongnu.org; Fri, 11 Nov 2011 21:28:03 -0500
Message-ID: <4EBDD9AB.2070207@suse.de>
Date: Sat, 12 Nov 2011 03:27:55 +0100
From: =?ISO-8859-15?Q?Andreas_F=E4rber?= <afaerber@suse.de>
MIME-Version: 1.0
References: <4EBDD460.10103@suse.de>
In-Reply-To: <4EBDD460.10103@suse.de>
Content-Type: text/plain; charset=ISO-8859-15
Content-Transfer-Encoding: quoted-printable
Subject: Re: [Qemu-devel] [TestDays] info mtree abort
List-Id: <qemu-devel.nongnu.org>
List-Unsubscribe: <https://lists.nongnu.org/mailman/options/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.nongnu.org/archive/html/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <https://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: qemu-devel Developers <qemu-devel@nongnu.org>
Cc: Avi Kivity <avi@redhat.com>

Am 12.11.2011 03:05, schrieb Andreas F=E4rber:
> On current qemu.git master for qemu-system-x86_64 I observe crashes
> similar to this one when running info mtree on the SDL monitor console:
>=20
> *** glibc detected ***
> /home/andreas/QEMU/qemu-rl78/rl78-softmmu/qemu-system-rl78: free():
> invalid pointer: 0x4545454545454545 ***
>=20
> #0  0x00007ffff6308d95 in raise () from /lib64/libc.so.6
> #1  0x00007ffff630a2ab in abort () from /lib64/libc.so.6
> #2  0x00007ffff6342ece in __libc_message () from /lib64/libc.so.6
> #3  0x00007ffff6348c06 in malloc_printerr () from /lib64/libc.so.6
> #4  0x00000000004e9024 in mtree_print_mr (mon_printf=3D0x4ef720
> <monitor_printf>, f=3D0xf89b10, mr=3D<optimized out>, level=3D0, base=3D=
0,
> alias_print_queue=3D0x7fffffffd610)
>     at /home/andreas/QEMU/qemu-rl78/memory.c:1405
> #5  0x00000000004ec8b6 in mtree_info (mon_printf=3D0x4ef720
> <monitor_printf>, f=3D0xf89b10) at /home/andreas/QEMU/qemu-rl78/memory.=
c:1417

Commenting out both g_free()s in QTAILQ_FOREACH_SAFE() in
mtree_print_mr() and mtree_info() respectively avoids this.

Andreas

--=20
SUSE LINUX Products GmbH, Maxfeldstr. 5, 90409 N=FCrnberg, Germany
GF: Jeff Hawn, Jennifer Guild, Felix Imend=F6rffer; HRB 16746 AG N=FCrnbe=
rg