* NULL pointer dereference at at libxlu_cfg.c:356
@ 2015-04-29 10:26 Razvan Cojocaru
2015-04-29 10:32 ` Andrew Cooper
2015-04-30 0:57 ` Wei Liu
0 siblings, 2 replies; 4+ messages in thread
From: Razvan Cojocaru @ 2015-04-29 10:26 UTC (permalink / raw)
To: xen-devel, Ian Jackson, Stefano Stabellini, Ian Campbell, Wei Liu
Hello,
This happens:
(gdb) r create /etc/xen/4xenwin7.conf
Starting program: /usr/sbin/xl create /etc/xen/4xenwin7.conf
warning: no loadable sections found in added symbol-file system-supplied
DSO at 0x7ffff7ffa000
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
Parsing config from /etc/xen/4xenwin7.conf
Program received signal SIGSEGV, Segmentation fault.
0x00007ffff7bce695 in xlu_cfg_get_listitem (list=0x633298, entry=0) at
libxlu_cfg.c:356
356 if (list->values[entry]->type != XLU_STRING) return 0;
(gdb) bt
#0 0x00007ffff7bce695 in xlu_cfg_get_listitem (list=0x633298, entry=0)
at libxlu_cfg.c:356
#1 0x000000000040dc41 in parse_config_data
(config_source=0x7fffffffe8af "/etc/xen/4xenwin7.conf",
config_data=0x632d60 "builder = 'hvm'\ndevice_model_version =
'qemu-xen-traditional'\npae = 1\nmemory = 1024\nmaxmem =
1024\nshadow_memory = 16\nname = '4xenwin7'\nvif = []\n#vif = [
'bridge=xenbr0' ]\n#vif = [ 'bridge=eth0' ]\nacpi"..., config_len=447,
d_config=0x7fffffffdc60) at xl_cmdimpl.c:1814
#2 0x0000000000410bc6 in create_domain (dom_info=0x7fffffffe080) at
xl_cmdimpl.c:2646
#3 0x0000000000417226 in main_create (argc=1, argv=0x7fffffffe678) at
xl_cmdimpl.c:4866
#4 0x00000000004083c3 in main (argc=2, argv=0x7fffffffe670) at xl.c:361
(gdb) p list
$1 = (const XLU_ConfigList *) 0x633298
(gdb) p list->values[entry]
$2 = (XLU_ConfigValue *) 0x0
when using this configuration file:
# cat /etc/xen/4xenwin7.conf
builder = 'hvm'
device_model_version = 'qemu-xen-traditional'
pae = 1
memory = 1024
maxmem = 1024
shadow_memory = 16
name = '4xenwin7'
vif = []
#vif = [ 'bridge=xenbr0' ]
acpi = 1
apic = 1
vcpus = 1
disk = [ 'file:/root/4xenwin7.img,hda,w',
'file:/root/windows7.iso,hdc:cdrom,r' ]
boot = 'c'
sdl = 0
nomigrate = 1
vnc = 1
vncconsole = 1
vncpasswd = ''
serial = 'pipe:/root/debug.pipe'
usbdevice = 'tablet'
It always happens when I switch from vif = [ 'bridge=xenbr0' ] to vif =
[]. If I don't mention vif at all there's no crash.
This happens with Xen 4.6 (master, pulled today). I can submit a patch
to check that list->values[entry] != NULL, but maybe the maintaners
would prefer to go in a different direction with the fix.
HTH,
Razvan
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: NULL pointer dereference at at libxlu_cfg.c:356
2015-04-29 10:26 NULL pointer dereference at at libxlu_cfg.c:356 Razvan Cojocaru
@ 2015-04-29 10:32 ` Andrew Cooper
2015-04-29 10:35 ` Razvan Cojocaru
2015-04-30 0:57 ` Wei Liu
1 sibling, 1 reply; 4+ messages in thread
From: Andrew Cooper @ 2015-04-29 10:32 UTC (permalink / raw)
To: Razvan Cojocaru, xen-devel, Ian Jackson, Stefano Stabellini,
Ian Campbell, Wei Liu
On 29/04/15 11:26, Razvan Cojocaru wrote:
> Hello,
>
> This happens:
>
> (gdb) r create /etc/xen/4xenwin7.conf
> Starting program: /usr/sbin/xl create /etc/xen/4xenwin7.conf
> warning: no loadable sections found in added symbol-file system-supplied
> DSO at 0x7ffff7ffa000
> [Thread debugging using libthread_db enabled]
> Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
> Parsing config from /etc/xen/4xenwin7.conf
>
> Program received signal SIGSEGV, Segmentation fault.
> 0x00007ffff7bce695 in xlu_cfg_get_listitem (list=0x633298, entry=0) at
> libxlu_cfg.c:356
> 356 if (list->values[entry]->type != XLU_STRING) return 0;
> (gdb) bt
> #0 0x00007ffff7bce695 in xlu_cfg_get_listitem (list=0x633298, entry=0)
> at libxlu_cfg.c:356
> #1 0x000000000040dc41 in parse_config_data
> (config_source=0x7fffffffe8af "/etc/xen/4xenwin7.conf",
> config_data=0x632d60 "builder = 'hvm'\ndevice_model_version =
> 'qemu-xen-traditional'\npae = 1\nmemory = 1024\nmaxmem =
> 1024\nshadow_memory = 16\nname = '4xenwin7'\nvif = []\n#vif = [
> 'bridge=xenbr0' ]\n#vif = [ 'bridge=eth0' ]\nacpi"..., config_len=447,
> d_config=0x7fffffffdc60) at xl_cmdimpl.c:1814
> #2 0x0000000000410bc6 in create_domain (dom_info=0x7fffffffe080) at
> xl_cmdimpl.c:2646
> #3 0x0000000000417226 in main_create (argc=1, argv=0x7fffffffe678) at
> xl_cmdimpl.c:4866
> #4 0x00000000004083c3 in main (argc=2, argv=0x7fffffffe670) at xl.c:361
> (gdb) p list
> $1 = (const XLU_ConfigList *) 0x633298
> (gdb) p list->values[entry]
> $2 = (XLU_ConfigValue *) 0x0
>
> when using this configuration file:
>
> # cat /etc/xen/4xenwin7.conf
> builder = 'hvm'
> device_model_version = 'qemu-xen-traditional'
> pae = 1
> memory = 1024
> maxmem = 1024
> shadow_memory = 16
> name = '4xenwin7'
> vif = []
> #vif = [ 'bridge=xenbr0' ]
> acpi = 1
> apic = 1
> vcpus = 1
> disk = [ 'file:/root/4xenwin7.img,hda,w',
> 'file:/root/windows7.iso,hdc:cdrom,r' ]
> boot = 'c'
> sdl = 0
> nomigrate = 1
> vnc = 1
> vncconsole = 1
> vncpasswd = ''
> serial = 'pipe:/root/debug.pipe'
> usbdevice = 'tablet'
>
> It always happens when I switch from vif = [ 'bridge=xenbr0' ] to vif =
> []. If I don't mention vif at all there's no crash.
>
> This happens with Xen 4.6 (master, pulled today). I can submit a patch
> to check that list->values[entry] != NULL, but maybe the maintaners
> would prefer to go in a different direction with the fix.
As it turns out, the very top commit in staging is a fix for this bug.
~Andrew
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: NULL pointer dereference at at libxlu_cfg.c:356
2015-04-29 10:32 ` Andrew Cooper
@ 2015-04-29 10:35 ` Razvan Cojocaru
0 siblings, 0 replies; 4+ messages in thread
From: Razvan Cojocaru @ 2015-04-29 10:35 UTC (permalink / raw)
To: Andrew Cooper, xen-devel, Ian Jackson, Stefano Stabellini,
Ian Campbell, Wei Liu
On 04/29/2015 01:32 PM, Andrew Cooper wrote:
> On 29/04/15 11:26, Razvan Cojocaru wrote:
>> (gdb) p list->values[entry]
>> $2 = (XLU_ConfigValue *) 0x0
>
> As it turns out, the very top commit in staging is a fix for this bug.
I see, sorry for the noise.
Thanks,
Razvan
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: NULL pointer dereference at at libxlu_cfg.c:356
2015-04-29 10:26 NULL pointer dereference at at libxlu_cfg.c:356 Razvan Cojocaru
2015-04-29 10:32 ` Andrew Cooper
@ 2015-04-30 0:57 ` Wei Liu
1 sibling, 0 replies; 4+ messages in thread
From: Wei Liu @ 2015-04-30 0:57 UTC (permalink / raw)
To: Razvan Cojocaru
Cc: Wei Liu, Stefano Stabellini, Ian Jackson, Ian Campbell, xen-devel
On Wed, Apr 29, 2015 at 01:26:10PM +0300, Razvan Cojocaru wrote:
> Hello,
>
> This happens:
>
> (gdb) r create /etc/xen/4xenwin7.conf
> Starting program: /usr/sbin/xl create /etc/xen/4xenwin7.conf
> warning: no loadable sections found in added symbol-file system-supplied
> DSO at 0x7ffff7ffa000
> [Thread debugging using libthread_db enabled]
> Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
> Parsing config from /etc/xen/4xenwin7.conf
>
> Program received signal SIGSEGV, Segmentation fault.
> 0x00007ffff7bce695 in xlu_cfg_get_listitem (list=0x633298, entry=0) at
> libxlu_cfg.c:356
> 356 if (list->values[entry]->type != XLU_STRING) return 0;
> (gdb) bt
> #0 0x00007ffff7bce695 in xlu_cfg_get_listitem (list=0x633298, entry=0)
> at libxlu_cfg.c:356
> #1 0x000000000040dc41 in parse_config_data
> (config_source=0x7fffffffe8af "/etc/xen/4xenwin7.conf",
> config_data=0x632d60 "builder = 'hvm'\ndevice_model_version =
> 'qemu-xen-traditional'\npae = 1\nmemory = 1024\nmaxmem =
> 1024\nshadow_memory = 16\nname = '4xenwin7'\nvif = []\n#vif = [
> 'bridge=xenbr0' ]\n#vif = [ 'bridge=eth0' ]\nacpi"..., config_len=447,
> d_config=0x7fffffffdc60) at xl_cmdimpl.c:1814
> #2 0x0000000000410bc6 in create_domain (dom_info=0x7fffffffe080) at
> xl_cmdimpl.c:2646
> #3 0x0000000000417226 in main_create (argc=1, argv=0x7fffffffe678) at
> xl_cmdimpl.c:4866
> #4 0x00000000004083c3 in main (argc=2, argv=0x7fffffffe670) at xl.c:361
> (gdb) p list
> $1 = (const XLU_ConfigList *) 0x633298
> (gdb) p list->values[entry]
> $2 = (XLU_ConfigValue *) 0x0
>
> when using this configuration file:
>
> # cat /etc/xen/4xenwin7.conf
> builder = 'hvm'
> device_model_version = 'qemu-xen-traditional'
> pae = 1
> memory = 1024
> maxmem = 1024
> shadow_memory = 16
> name = '4xenwin7'
> vif = []
> #vif = [ 'bridge=xenbr0' ]
> acpi = 1
> apic = 1
> vcpus = 1
> disk = [ 'file:/root/4xenwin7.img,hda,w',
> 'file:/root/windows7.iso,hdc:cdrom,r' ]
> boot = 'c'
> sdl = 0
> nomigrate = 1
> vnc = 1
> vncconsole = 1
> vncpasswd = ''
> serial = 'pipe:/root/debug.pipe'
> usbdevice = 'tablet'
>
> It always happens when I switch from vif = [ 'bridge=xenbr0' ] to vif =
> []. If I don't mention vif at all there's no crash.
>
> This happens with Xen 4.6 (master, pulled today). I can submit a patch
> to check that list->values[entry] != NULL, but maybe the maintaners
> would prefer to go in a different direction with the fix.
>
This is already fixed in staging by Jan. Check out his libxlu patch.
Wei.
>
> HTH,
> Razvan
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2015-04-30 0:57 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2015-04-29 10:26 NULL pointer dereference at at libxlu_cfg.c:356 Razvan Cojocaru
2015-04-29 10:32 ` Andrew Cooper
2015-04-29 10:35 ` Razvan Cojocaru
2015-04-30 0:57 ` Wei Liu
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.