From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43)
	id 1KDmBh-0007zi-SL
	for qemu-devel@nongnu.org; Tue, 01 Jul 2008 16:10:53 -0400
Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43)
	id 1KDmBg-0007ym-4f
	for qemu-devel@nongnu.org; Tue, 01 Jul 2008 16:10:53 -0400
Received: from [199.232.76.173] (port=55546 helo=monty-python.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.43) id 1KDmBg-0007yf-0u
	for qemu-devel@nongnu.org; Tue, 01 Jul 2008 16:10:52 -0400
Received: from wf-out-1314.google.com ([209.85.200.171]:48141)
	by monty-python.gnu.org with esmtp (Exim 4.60)
	(envelope-from <blauwirbel@gmail.com>) id 1KDmBg-0005Gy-Cq
	for qemu-devel@nongnu.org; Tue, 01 Jul 2008 16:10:52 -0400
Received: by wf-out-1314.google.com with SMTP id 27so44243wfd.4
	for <qemu-devel@nongnu.org>; Tue, 01 Jul 2008 13:10:51 -0700 (PDT)
Message-ID: <f43fc5580807011310g22c4e47dwccd9a890b23317e6@mail.gmail.com>
Date: Tue, 1 Jul 2008 23:10:50 +0300
From: "Blue Swirl" <blauwirbel@gmail.com>
Subject: Re: [Qemu-devel] core dump on networking and old pkgsrc patches
In-Reply-To: <Pine.NEB.4.64.0807011119030.17719@tx.reedmedia.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
References: <Pine.NEB.4.64.0807011119030.17719@tx.reedmedia.net>
Reply-To: qemu-devel@nongnu.org
List-Id: qemu-devel.nongnu.org
List-Unsubscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/pipermail/qemu-devel>
List-Post: <mailto:qemu-devel@nongnu.org>
List-Help: <mailto:qemu-devel-request@nongnu.org?subject=help>
List-Subscribe: <http://lists.nongnu.org/mailman/listinfo/qemu-devel>,
	<mailto:qemu-devel-request@nongnu.org?subject=subscribe>
To: qemu-devel@nongnu.org

On 7/1/08, Jeremy C. Reed <reed@reedmedia.net> wrote:
> This is a problem that may already be fixed.

Not yet, even though several people have tried and failed.

>  #0  0x000000000046bfef in tcp_reass (tp=0x7f7ffb238180, ti=0xfb238180,
>  m=0x0)
>     at /usr/pkgsrc/emulators/qemu/work/qemu-0.9.0/slirp/tcp_input.c:207
>  207             if (ti == (struct tcpiphdr *)tp || ti->ti_seq !=
>  tp->rcv_nxt)

SLIRP re-uses some of the 32 bit TCP/IP header fields as storage for
pointers. This works on a 32 bit host and in some lucky cases on a
x86-64.

Please visit
http://lists.gnu.org/archive/html/qemu-devel/2008-01/msg00725.html