Date: Thu, 06 Jun 2019 09:34:01 +0000 From: bugzilla-noreply@freebsd.org To: virtualization@FreeBSD.org Subject: [Bug 238333] bhyve random crash in rfb.c on FreeBSD current (after r346011) Message-ID: <bug-238333-27103-AAHR36YY2g@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-238333-27103@https.bugs.freebsd.org/bugzilla/> References: <bug-238333-27103@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D238333 --- Comment #9 from olevole@olevole.ru --- (In reply to Conrad Meyer from comment #3) memcpy () at /usr/src/lib/libc/amd64/string/memmove.S:306=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 306 MEMMOVE erms=3D0 overlap=3D1 begin=3DMEMMOVE_BEGIN end=3DME= MMOVE_END=20=20=20=20 (gdb) info registers=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 rax 0x944e00180 39810236800=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 rbx 0x941a7e030 39756226608=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 rcx 0x124f82 1200002=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20 rdx 0x927c10 9600016=20=20=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20= =20=20 rsi 0xa5a5a5a5a5a5a5a5 -6510615555426900571=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 rdi 0x944e00180 39810236800=20=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 rbp 0x7fffdc7e1db0 0x7fffdc7e1db0=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 rsp 0x7fffdc7e1d68 0x7fffdc7e1d68=20=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 r8 0x5a5a5a639f3a5bdb 6510615595237137371=20=20=20=20=20=20=20= =20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20=20 r9 0x0 0 r10 0x0 0 r11 0x246 582 r12 0x927c10 9600016 r13 0x927c10 9600016 r14 0x941b5f800 39757150208 r15 0x2 2 rip 0x80083da1a 0x80083da1a <memcpy+266> eflags 0x10206 [ PF IF RF ] cs 0x43 67 ss 0x3b 59 ds <unavailable> es <unavailable> fs <unavailable> gs <unavailable> fs_base 0x941a0c8d0 39755761872 gs_base 0x0 (gdb) x/10i $rip =3D> 0x80083da1a <memcpy+266>: rep movsq %ds:(%rsi),%es:(%rdi) 0x80083da1d <memcpy+269>: mov %rdx,%rcx 0x80083da20 <memcpy+272>: and $0x7,%ecx 0x80083da23 <memcpy+275>: jne 0x80083d9c0 <memcpy+176> 0x80083da25 <memcpy+277>: retq=20=20=20 0x80083da26 <memcpy+278>: mov (%rsi),%r8 0x80083da29 <memcpy+281>: mov 0x8(%rsi),%r9 0x80083da2d <memcpy+285>: mov %rdi,%r10 0x80083da30 <memcpy+288>: mov %rdi,%rcx 0x80083da33 <memcpy+291>: and $0xf,%rcx Unfortunately I can not see the information for struct due to bhyve compiled without -O0: (gdb) up #1 0x00000008002c85dc in flush_pending (strm=3D<optimized out>) at /usr/src/sys/contrib/zlib/deflate.c:741 741 zmemcpy(strm->next_out, s->pending_out, len); (gdb) print *strm value has been optimized out (gdb) print *s value has been optimized out But with -O0 i can't get crash --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-238333-27103-AAHR36YY2g>