From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from eggs.gnu.org ([2001:4830:134:3::10]:44603) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1cJZuK-0007Gm-Ms for qemu-devel@nongnu.org; Wed, 21 Dec 2016 00:57:46 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1cJZuH-00044r-Mg for qemu-devel@nongnu.org; Wed, 21 Dec 2016 00:57:44 -0500 Received: from mail.ispras.ru ([83.149.199.45]:49838) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1cJZuH-00044c-Ex for qemu-devel@nongnu.org; Wed, 21 Dec 2016 00:57:41 -0500 From: "Pavel Dovgalyuk" References: <000301d259dc$f9d097c0$ed71c740$@ru> <000601d25a95$12b1b9f0$38152dd0$@ru> <20161220102126.GE5602@stefanha-x1.localdomain> <002501d25ab1$af024b00$0d06e100$@ru> In-Reply-To: Date: Wed, 21 Dec 2016 08:57:34 +0300 Message-ID: <000301d25b4f$20018440$60048cc0$@ru> MIME-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit Content-Language: ru Subject: Re: [Qemu-devel] qemu-2.8-rc4 is broken List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , To: 'Stefan Hajnoczi' Cc: 'qemu-devel' , 'Paolo Bonzini' , 'Pavel Dovgalyuk' , 'Peter Maydell' > -----Original Message----- > From: Stefan Hajnoczi [mailto:stefanha@gmail.com] > On Tue, Dec 20, 2016 at 11:10 AM, Pavel Dovgalyuk wrote: > >> From: Stefan Hajnoczi [mailto:stefanha@gmail.com] > >> On Tue, Dec 20, 2016 at 10:45:44AM +0300, Pavel Dovgalyuk wrote: > >> > It also fails much earlier when I enable logs with "-d int -D log". > >> > > >> Looks like a heap corruption bug since free() is failing. > > > > Seems to be a race condition. > > When I add logs into invalidate_page_bitmap, the bug disappears. > > It seems that someone tries to free the same page bitmap twice and simultaneously. > > Does the following workaround prevent the crashes? > > -global apic-common.vapic=off Yes, this option helps. Thank you. Pavel Dovgalyuk