From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1NcILS-0005Y6-5k
	for qemu-devel@nongnu.org; Tue, 02 Feb 2010 07:59:06 -0500
Received: from [199.232.76.173] (port=44055 helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1NcILR-0005Xp-Qz
	for qemu-devel@nongnu.org; Tue, 02 Feb 2010 07:59:05 -0500
Received: from Debian-exim by monty-python.gnu.org with spam-scanned (Exim
	4.60) (envelope-from <lcapitulino@redhat.com>) id 1NcILQ-0003OB-6e
	for qemu-devel@nongnu.org; Tue, 02 Feb 2010 07:59:05 -0500
Received: from mx1.redhat.com ([209.132.183.28]:37554)
	by monty-python.gnu.org with esmtp (Exim 4.60)
	(envelope-from <lcapitulino@redhat.com>) id 1NcILP-0003N9-Mo
	for qemu-devel@nongnu.org; Tue, 02 Feb 2010 07:59:03 -0500
Date: Tue, 2 Feb 2010 10:58:46 -0200
From: Luiz Capitulino <lcapitulino@redhat.com>
Subject: Re: [Qemu-devel] system_reset command cause assert failed
Message-ID: <20100202105846.11524da1@doriath>
In-Reply-To: <473191351002011735j29950b07hfa4fd06821849a8b@mail.gmail.com>
References: <473191351001310028q75bff0fah52f7a1f3ce5fdbee@mail.gmail.com>
	<20100201101733.46459bde@doriath>
	<473191351002010436w65fe6357h8fbf1f2ef787df4d@mail.gmail.com>
	<20100201112208.04e70689@doriath>
	<473191351002010542h5b0c268ehbbc411be59150260@mail.gmail.com>
	<20100201140206.1f414f3f@doriath>
	<473191351002010826v7575cf55pa5146f6c7d8d6782@mail.gmail.com>
	<20100201165822.78a7c5bb@doriath>
	<473191351002011735j29950b07hfa4fd06821849a8b@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
List-Id: qemu-devel.nongnu.org
List-Unsubscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: Roy Tam <roytam@gmail.com>
Cc: qemu-devel <qemu-devel@nongnu.org>

On Tue, 2 Feb 2010 09:35:16 +0800
Roy Tam <roytam@gmail.com> wrote:

> 2010/2/2 Luiz Capitulino <lcapitulino@redhat.com>:
> > On Tue, 2 Feb 2010 00:26:53 +0800
> > Roy Tam <roytam@gmail.com> wrote:
> >
> >> 2010/2/2 Luiz Capitulino <lcapitulino@redhat.com>:
> >>
> >> >  Hm, I'm puzzled. Is this failing on malloc()? At least qemu_malloc()
> >> > is the last qemu's function I see in the logs.
> >> >
> >> >  From now on I only see msvcrt functions...
> >> >
> >> >  Maybe, you can type run on gdb, run system_reset on the
> >> > Monitor and then switch back to gdb and type bt?
> >> >
> >> source-less debugging seems better...
> >
> >  As far as I can understand something bad happens while the parser
> > is processing the first "'" character of the qobject_from_jsonf()
> > call in monitor.c:4524.
> >
> >  Strange. Can you try 'info pci', 'info block' and 'info version'?
> > Do they work?
> >
> >  Maybe this is a refcount problem?
> >
> >  Anthony, could you take a look too please?
> >
> 
> rebuild with -gstabs -O1, you can see double free here:

 Ok, so we have a double free and

> #0  qobject_to_qdict (obj=0x0) at qobject.h:108
> #1  0x004127ae in pci_device_print (mon=0x494c460, device=0x49696c0)
> at /home/roy/qemu/hw/pci.c:1165

 a segfault.

 I don't know what's happening, I'll have to run QEMU on windows and
try to reproduce it.