From: "Dr. David Alan Gilbert" <dgilbert@redhat.com>
To: Peter Maydell <peter.maydell@linaro.org>, quintela@redhat.com
Cc: Paolo Bonzini <pbonzini@redhat.com>,
QEMU Developers <qemu-devel@nongnu.org>
Subject: Re: [PULL 00/62] Misc patches for 2019-12-16
Date: Tue, 17 Dec 2019 11:22:36 +0000 [thread overview]
Message-ID: <20191217112236.GA2826@work-vm> (raw)
In-Reply-To: <CAFEAcA_kFsxDKY-ktQ5E4gHxpkQq0Go38DPevKxgf3pTimRxeg@mail.gmail.com>
* Peter Maydell (peter.maydell@linaro.org) wrote:
> On Mon, 16 Dec 2019 at 16:34, Paolo Bonzini <pbonzini@redhat.com> wrote:
> >
> > The following changes since commit 084a398bf8aa7634738e6c6c0103236ee1b3b72f:
> >
> > Merge remote-tracking branch 'remotes/stefanha/tags/block-pull-request' into staging (2019-12-13 18:14:07 +0000)
> >
> > are available in the git repository at:
> >
> >
> > git://github.com/bonzini/qemu.git tags/for-upstream
> >
> > for you to fetch changes up to cfba0eb1146e7ccf839df29fd99cb90dd3c7640a:
> >
> > colo: fix return without releasing RCU (2019-12-16 17:25:46 +0100)
> >
> > ----------------------------------------------------------------
> > * More uses of RCU_READ_LOCK_GUARD (Dave, myself)
> > * QOM doc improvments (Greg)
> > * Cleanups from the Meson conversion (Marc-André)
> > * Support for multiple -accel options (myself)
> > * Many x86 machine cleanup (Philippe, myself)
> > * tests/migration-test cleanup (Juan)
> >
> > ----------------------------------------------------------------
>
> This generates a set of extra warnings from the clang runtime
> sanitizers:
>
> (1) in the bios-tables-test:
> MALLOC_PERTURB_=${MALLOC_PERTURB_:-$(( ${RANDOM:-0} % 255 + 1))}
> QTEST_QEMU_BINARY=i386-softmmu/qemu-system-i386
> QTEST_QEMU_IMG=qemu-img tests/bios-tabl
> es-test -m=quick -k --tap < /dev/null | ./scripts/tap-driver.pl
> --test-name="bios-tables-test"
> /home/petmay01/linaro/qemu-for-merges/qom/object.c:390:16: runtime
> error: load of value 22, which is not a valid value for type 'bool'
>
> Looking for expected file 'tests/data/acpi/pc/FACP'
> Using expected file 'tests/data/acpi/pc/FACP'
> Looking for expected file 'tests/data/acpi/pc/APIC'
> Using expected file 'tests/data/acpi/pc/APIC'
> Looking for expected file 'tests/data/acpi/pc/HPET'
> Using expected file 'tests/data/acpi/pc/HPET'
> Looking for expected file 'tests/data/acpi/pc/FACS'
> Using expected file 'tests/data/acpi/pc/FACS'
> Looking for expected file 'tests/data/acpi/pc/DSDT'
> Using expected file 'tests/data/acpi/pc/DSDT'
> PASS 1 bios-tables-test /i386/acpi/piix4
> /home/petmay01/linaro/qemu-for-merges/qom/object.c:390:16: runtime
> error: load of value 151, which is not a valid value for type 'bool'
>
> (and others similar)
>
> and in the migration-test:
> MALLOC_PERTURB_=${MALLOC_PERTURB_:-$(( ${RANDOM:-0} % 255 + 1))}
> QTEST_QEMU_BINARY=i386-softmmu/qemu-system-i386
> QTEST_QEMU_IMG=qemu-img tests/migration-test -m=quick -k --tap <
> /dev/null | ./scripts/tap-driver.pl --test-name="migration-test"
> PASS 1 migration-test /i386/migration/deprecated
> /home/petmay01/linaro/qemu-for-merges/tests/migration-test.c:689:15:
> runtime error: load of value 255, which is not a valid value for type
> 'bool'
> /home/petmay01/linaro/qemu-for-merges/tests/migration-test.c:690:16:
> runtime error: null pointer passed as argument 1, which is declared to
> never be null
> /usr/include/unistd.h:828:48: note: nonnull attribute specified here
That's a use-after-free from Juan's 'migration-test: Use a struct for
test_migrate_start parameters'; it's calling migrate_start_destroy and
then checks args->use_shmem.
Dave
> PASS 2 migration-test /i386/migration/bad_dest
> PASS 3 migration-test /i386/migration/fd_proto
> PASS 4 migration-test /i386/migration/validate_uuid
> PASS 5 migration-test /i386/migration/validate_uuid_error
>
> I also saw a hang in migration-test (x86 host, aarch64 guest),
> but that didn't reoccur on my rerun, so it's intermittent and
> might be present already in master.
>
> thanks
> -- PMM
>
--
Dr. David Alan Gilbert / dgilbert@redhat.com / Manchester, UK
next prev parent reply other threads:[~2019-12-17 11:23 UTC|newest]
Thread overview: 68+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-12-16 16:27 [PULL 00/62] Misc patches for 2019-12-16 Paolo Bonzini
2019-12-16 16:27 ` [PULL 01/62] kvm: Reallocate dirty_bmap when we change a slot Paolo Bonzini
2019-12-16 16:27 ` [PULL 02/62] migration-test: Create cmd_soure and cmd_target Paolo Bonzini
2019-12-16 16:27 ` [PULL 03/62] migration-test: Move hide_stderr to common commandline Paolo Bonzini
2019-12-16 16:27 ` [PULL 04/62] migration-test: Move -machine " Paolo Bonzini
2019-12-16 16:27 ` [PULL 05/62] migration-test: Move memory size " Paolo Bonzini
2019-12-16 16:27 ` [PULL 06/62] migration-test: Move shmem handling " Paolo Bonzini
2019-12-16 16:27 ` [PULL 07/62] migration-test: Move -name " Paolo Bonzini
2019-12-16 16:27 ` [PULL 08/62] migration-test: Move -serial " Paolo Bonzini
2019-12-16 16:27 ` [PULL 09/62] migration-test: Move -incomming " Paolo Bonzini
2019-12-16 16:27 ` [PULL 10/62] migration-test: Rename cmd_src/dst to arch_source/arch_target Paolo Bonzini
2019-12-16 16:27 ` [PULL 11/62] migration-test: Use a struct for test_migrate_start parameters Paolo Bonzini
2019-12-16 16:27 ` [PULL 12/62] memory: do not look at current_machine->accel Paolo Bonzini
2019-12-16 16:27 ` [PULL 13/62] vl: move icount configuration earlier Paolo Bonzini
2019-12-16 16:27 ` [PULL 14/62] tcg: move qemu_tcg_configure to accel/tcg/tcg-all.c Paolo Bonzini
2019-12-16 16:27 ` [PULL 15/62] vl: extract accelerator option processing to a separate function Paolo Bonzini
2019-12-16 16:28 ` [PULL 16/62] vl: merge -accel processing into configure_accelerators Paolo Bonzini
2019-12-16 16:28 ` [PULL 17/62] accel: compile accel/accel.c just once Paolo Bonzini
2019-12-16 16:28 ` [PULL 18/62] vl: introduce object_parse_property_opt Paolo Bonzini
2019-12-16 16:28 ` [PULL 19/62] vl: configure accelerators from -accel options Paolo Bonzini
2019-12-16 16:28 ` [PULL 20/62] vl: warn for unavailable accelerators, clarify messages Paolo Bonzini
2019-12-16 16:28 ` [PULL 21/62] qom: introduce object_register_sugar_prop Paolo Bonzini
2019-12-16 16:28 ` [PULL 22/62] qom: add object_new_with_class Paolo Bonzini
2019-12-16 16:28 ` [PULL 23/62] accel: pass object to accel_init_machine Paolo Bonzini
2019-12-16 16:28 ` [PULL 24/62] tcg: convert "-accel threads" to a QOM property Paolo Bonzini
2019-12-16 16:28 ` [PULL 25/62] tcg: add "-accel tcg,tb-size" and deprecate "-tb-size" Paolo Bonzini
2019-12-16 16:28 ` [PULL 26/62] xen: convert "-machine igd-passthru" to an accelerator property Paolo Bonzini
2019-12-16 16:28 ` [PULL 27/62] kvm: convert "-machine kvm_shadow_mem" " Paolo Bonzini
2019-12-16 16:28 ` [PULL 28/62] kvm: introduce kvm_kernel_irqchip_* functions Paolo Bonzini
2019-12-16 16:28 ` [PULL 29/62] kvm: convert "-machine kernel_irqchip" to an accelerator property Paolo Bonzini
2019-12-16 16:28 ` [PULL 30/62] Makefile: remove unused variables Paolo Bonzini
2019-12-16 16:28 ` [PULL 31/62] object: Improve documentation of interfaces Paolo Bonzini
2019-12-16 16:28 ` [PULL 32/62] build-sys: build vhost-user-gpu only if CONFIG_TOOLS Paolo Bonzini
2019-12-16 16:28 ` [PULL 33/62] build-sys: do not include Windows SLIRP dependencies in $LIBS Paolo Bonzini
2019-12-16 16:28 ` [PULL 34/62] migration: fix maybe-uninitialized warning Paolo Bonzini
2019-12-16 16:28 ` [PULL 35/62] monitor: fix maybe-uninitialized Paolo Bonzini
2019-12-16 16:28 ` [PULL 36/62] vhost-user-scsi: fix printf format warning Paolo Bonzini
2019-12-16 16:28 ` [PULL 37/62] os-posix: simplify os_find_datadir Paolo Bonzini
2019-12-16 16:28 ` [PULL 38/62] tests: skip block layer tests if !CONFIG_TOOLS Paolo Bonzini
2019-12-16 16:28 ` [PULL 39/62] libvixl: remove per-target compiler flags Paolo Bonzini
2019-12-16 16:28 ` [PULL 40/62] crypto: move common bits for all emulators to libqemuutil Paolo Bonzini
2019-12-16 16:28 ` [PULL 41/62] stubs: replace stubs with lnot if applicable Paolo Bonzini
2019-12-16 16:28 ` [PULL 42/62] configure: set $PYTHON to a full path Paolo Bonzini
2019-12-16 16:28 ` [PULL 43/62] configure: simplify vhost condition with Kconfig Paolo Bonzini
2019-12-16 16:28 ` [PULL 44/62] i386: conditionally compile more files Paolo Bonzini
2019-12-16 16:28 ` [PULL 45/62] fw_cfg: allow building without other devices Paolo Bonzini
2019-12-16 16:28 ` [PULL 46/62] hw: replace hw/i386/pc.h with a header just for the i8259 Paolo Bonzini
2019-12-16 16:28 ` [PULL 47/62] pci-stub: add more MSI functions Paolo Bonzini
2019-12-16 16:28 ` [PULL 48/62] x86: move SMM property to X86MachineState Paolo Bonzini
2019-12-16 16:28 ` [PULL 49/62] hw/i386/pc: Convert DPRINTF() to trace events Paolo Bonzini
2019-12-16 16:28 ` [PULL 50/62] x86: move more x86-generic functions out of PC files Paolo Bonzini
2019-12-16 16:28 ` [PULL 51/62] acpi: move PC stubs out of stubs/ Paolo Bonzini
2019-12-16 16:28 ` [PULL 52/62] pc: stubify x86 iommu Paolo Bonzini
2019-12-16 16:28 ` [PULL 53/62] hw/i386: De-duplicate gsi_handler() to remove kvm_pc_gsi_handler() Paolo Bonzini
2019-12-16 16:28 ` [PULL 54/62] hw/i386: Simplify ioapic_init_gsi() Paolo Bonzini
2019-12-16 16:28 ` [PULL 55/62] hw/isa/isa-bus: cleanup irq functions Paolo Bonzini
2019-12-16 16:28 ` [PULL 56/62] hw/i386/pc: Use TYPE_PORT92 instead of hardcoded string Paolo Bonzini
2019-12-16 16:28 ` [PULL 57/62] hw/i386/pc: Inline port92_init() Paolo Bonzini
2019-12-16 16:28 ` [PULL 58/62] hw/i386/pc: Extract the port92 device Paolo Bonzini
2019-12-16 16:28 ` [PULL 59/62] hyperv: Use auto rcu_read macros Paolo Bonzini
2019-12-16 16:28 ` [PULL 60/62] qsp: Use WITH_RCU_READ_LOCK_GUARD Paolo Bonzini
2019-12-16 16:28 ` [PULL 61/62] memory: use RCU_READ_LOCK_GUARD Paolo Bonzini
2019-12-16 16:28 ` [PULL 62/62] colo: fix return without releasing RCU Paolo Bonzini
2019-12-17 10:56 ` [PULL 00/62] Misc patches for 2019-12-16 Peter Maydell
2019-12-17 11:22 ` Dr. David Alan Gilbert [this message]
2019-12-18 8:54 ` Juan Quintela
2019-12-18 11:53 ` Paolo Bonzini
2019-12-19 9:52 ` Juan Quintela
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20191217112236.GA2826@work-vm \
--to=dgilbert@redhat.com \
--cc=pbonzini@redhat.com \
--cc=peter.maydell@linaro.org \
--cc=qemu-devel@nongnu.org \
--cc=quintela@redhat.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).