[Bug 25942] New: host Debian squeeze 2.6.36.2 crash while working with two guests one debian lenny 2.6.26.2 and windows xp sp3

public inbox for kvm@vger.kernel.org
 help / color / mirror / Atom feed

* [Bug 25942] New: host Debian squeeze 2.6.36.2  crash while working with two guests one debian lenny 2.6.26.2 and windows xp sp3
@ 2010-12-30 15:04 bugzilla-daemon
  2011-01-02 11:24 ` [Bug 25942] " bugzilla-daemon
  0 siblings, 1 reply; 2+ messages in thread
From: bugzilla-daemon @ 2010-12-30 15:04 UTC (permalink / raw)
  To: kvm

https://bugzilla.kernel.org/show_bug.cgi?id=25942

           Summary: host Debian squeeze 2.6.36.2  crash while working with
                    two guests one debian lenny 2.6.26.2 and windows xp
                    sp3
           Product: Virtualization
           Version: unspecified
    Kernel Version: 2.6.36.2
          Platform: All
        OS/Version: Linux
              Tree: Mainline
            Status: NEW
          Severity: high
          Priority: P1
         Component: kvm
        AssignedTo: virtualization_kvm@kernel-bugs.osdl.org
        ReportedBy: dernikov@gmail.com
        Regression: No


Processor Core 2 duo P8600 T500 Lenovo

Host Debian squeeze custom kernel 2.6.36.2 i386

Guests Debian Lenny 2.6.26.2-i686 
       Windows XP SP3

Host crash while working in Windows XP guest and  guest (Debian Lenny) working
in background. Host is on new kernel (2.6.36.2) .

While working on new kernel 2.6.36.2 and only Debian Lenny guest started
working normal.

On Debian distribution kernel 2.6.32-5-686 everything works ok. (Windows and
Linux guest working together)


Message after crash: 

BUG: unable to handle kernel NULL pointer dereference at (null)
IP: [<f97b9f0a>] gfn_to_rmap+0x1a/0x57  [kvm]
*pde = 00000000
Oops: 0000 [#1] SMP
last sysfs file: /sys/devices/system/cpu/cpu1/topology/thread_siblings
Modules linked in: tun ipt_MASQUERADE iptable_nat nf_nat nf_conntrack_ipv4
nf_defraf_ipv4 xt_state nf_conntrack ipt_REJECT xt_tcpudp iptable_filter 
ip _tables x_tables acpi_cpufreq mperf cpufreq_stats cpufreq_powersave
cpufreq_userspace cpufreq_conservative kvm_intel kvm uinput fuse bridge stp 
llc nls_utf8 nls_cp437 vfat fat loop snd_hda_codec_conexant radeon
snd_hda_intel snd_hda_codec ttm snd_hwdep snd_pcm snd_timer pcmcia pcspkr 
snd snd_page_alloc processor rtc_cmos psmouse battery ac usbhid hid uhci_hdc
ehci_hcd thermal usbcore e1000e nsl_base [last_unloaded: scsi_wait_scan]

Pid:030, comm: kvm Not tainted 2.6.32.2 #3 2056W55/2056W55
EIP: 0060:[<f97b9f0a>] EFLAGS: 00010246 CPU: 1
EIP is at gfn_to_rmap+0x1a/0x57 [kvm]
EAX: fffff001 EBX:fffff001 ECX:000fee00 EDX: 00000000 ESI: ffffffff
EDI:00000000 EBP:00000001 ESP:f5e8bcf8
DS: 007b ES: 007b FS: 00d8 GS: 0000 SS: 0068
Proces kvm (pid: 2030, ti=f5e8a000 task=f5f60000 task.ti=f5e8a000)
Stack:
e74de300 e4ebbff8 f675e000 00000000 f97b9fb7 00000001 00000000 00000000
<0> 00000000 00000000 f97bd86e 00000000 00000000 00000000 40d9b267 00000000
<0> 00000000 01000000 e74de300 f5dfd020 00000012 19c1f7fc 00000000 00000ff8
Call Trace:
[<f97b9fb7>] ? drop_spte+0x70/0x147 [kvm]
[<f97bd86e>] ? paging32_sync_page+0x168/0x214 [kvm]
[<f97ba55c>] ? __kvm_sync_page+0x45/0x6d [kvm]
[<f97bf3ce>] ? mmu_sync_children+0x1d4/0x264 [kvm]
[<f97bf4fe>] ? mmu_sync_roots+0xa0/0xae [kvm]
[<f97bf6e2>] ? kvm_mmu_load+0x1d6/0x1fc [kvm]
[<f97b6b8b>] ? kvm_arch_vcpu_ioctl_run+0x4a8/0xab4[kvm]
[<c10aa274>] ? do_sync_readv_writev+0x9d/0xdb
[<f97fa1db>] ? __vmc_load_host_state+0xb7/0xbb [kvm_intel]
[<f97ab33f>] ? kvm_vcpu_ioctl+0xef/0x498 [kvm]
[<c1009549>] ? __switch_to_xtra+0x160/0x186
[<c1001e2c>] ? __switch_to+0xe6/0x142 
[<f97bd86e>] ? kvm_vcpu_ioctl+0x0/0x498 [kvm]
[<c10b4df1>] ? do_vfs_ioctl+0x4ac/0x4ee 
[<c102a90d>] ? finish_task_switch+0x2e/0x9e
[<c1052bff>] ? sys_futex+0xfc/0x111
[<c10b4e5f>] ? sys_ioctl+0x2c/0x42
[<c1002f18>] ? sysenter_do_call+0x12/0x28
[<c12f0000>] ? migration_call+0x190/0x2da

Code: 5b 5e 5f 5d e9 cb e3 fe ff 83 c4 14 5b 5e 5f 5d c3 55 57 56 89 ce 53 89
d3 8b 6c 24 14 e8 da e1 fe ff 83 fd 01 89 c7 75 0c 89 d8 
      <2b> c1 e0 02 03 47 10 eb 2e 8b 57 04 8d 4d ff 8b 00 8d 0c c9

EIP: [<f97b9f0a>] gfn_to_rmap+0x1a/0x57 [kvm] SS:ESP 0068:f5e8bcf8
CR2: 0000000000000000
----[end trace a77a8ea77ae8d28 ]---------

-- 
Configure bugmail: https://bugzilla.kernel.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.

^ permalink raw reply	[flat|nested] 2+ messages in thread

* [Bug 25942] host Debian squeeze 2.6.36.2  crash while working with two guests one debian lenny 2.6.26.2 and windows xp sp3
  2010-12-30 15:04 [Bug 25942] New: host Debian squeeze 2.6.36.2 crash while working with two guests one debian lenny 2.6.26.2 and windows xp sp3 bugzilla-daemon
@ 2011-01-02 11:24 ` bugzilla-daemon
  0 siblings, 0 replies; 2+ messages in thread
From: bugzilla-daemon @ 2011-01-02 11:24 UTC (permalink / raw)
  To: kvm

https://bugzilla.kernel.org/show_bug.cgi?id=25942


Avi Kivity <avi@redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |avi@redhat.com,
                   |                            |mtosatti@redhat.com
         AssignedTo|virtualization_kvm@kernel-b |avi@redhat.com
                   |ugs.osdl.org                |




--- Comment #1 from Avi Kivity <avi@redhat.com>  2011-01-02 11:24:49 ---
  11:    55                       push   %ebp
  12:    57                       push   %edi
  13:    56                       push   %esi
  14:    89 ce                    mov    %ecx,%esi
  16:    53                       push   %ebx
  17:    89 d3                    mov    %edx,%ebx
  19:    8b 6c 24 14              mov    0x14(%esp),%ebp
  1d:    e8 da e1 fe ff           call   0xfffee1fc
  22:    83 fd 01                 cmp    $0x1,%ebp
  25:    89 c7                    mov    %eax,%edi
  27:    75 0c                    jne    0x35
  29:    89 d8                    mov    %ebx,%eax
  2b:    2b c1                    sub    %ecx,%eax

^^^ fail here?

  2d:    e0 02                    loopne 0x31
  2f:    03 47 10                 add    0x10(%edi),%eax
  32:    eb 2e                    jmp    0x62
  34:    8b 57 04                 mov    0x4(%edi),%edx
  37:    8d 4d ff                 lea    -0x1(%ebp),%ecx
  3a:    8b 00                    mov    (%eax),%eax
  3c:    8d 0c c9                 lea    (%ecx,%ecx,8),%ecx

Doesn't make sense.  There isn't a pointer reference here.  The following code
is nonsensical.

Looks like memory corruption, please post a disassembly of gfn_to_rmap() from
your kvm.ko.

-- 
Configure bugmail: https://bugzilla.kernel.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2011-01-02 11:24 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2010-12-30 15:04 [Bug 25942] New: host Debian squeeze 2.6.36.2 crash while working with two guests one debian lenny 2.6.26.2 and windows xp sp3 bugzilla-daemon
2011-01-02 11:24 ` [Bug 25942] " bugzilla-daemon

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox