From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org X-Spam-Level: X-Spam-Status: No, score=-3.8 required=3.0 tests=BAYES_00, HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SPF_HELO_NONE,SPF_PASS, URIBL_BLOCKED autolearn=no autolearn_force=no version=3.4.0 Received: from mail.kernel.org (mail.kernel.org [198.145.29.99]) by smtp.lore.kernel.org (Postfix) with ESMTP id D77ADC63777 for ; Wed, 25 Nov 2020 07:32:39 +0000 (UTC) Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.kernel.org (Postfix) with ESMTPS id 9BFF8206D9 for ; Wed, 25 Nov 2020 07:32:38 +0000 (UTC) DMARC-Filter: OpenDMARC Filter v1.3.2 mail.kernel.org 9BFF8206D9 Authentication-Results: mail.kernel.org; dmarc=none (p=none dis=none) header.from=bugs.launchpad.net Authentication-Results: mail.kernel.org; spf=pass smtp.mailfrom=qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org Received: from localhost ([::1]:40344 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1khpI4-0004as-Gq for qemu-devel@archiver.kernel.org; Wed, 25 Nov 2020 02:32:36 -0500 Received: from eggs.gnu.org ([2001:470:142:3::10]:48928) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1khpGN-00042q-D9 for qemu-devel@nongnu.org; Wed, 25 Nov 2020 02:30:52 -0500 Received: from indium.canonical.com ([91.189.90.7]:40432) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1khpGI-0002xC-9Z for qemu-devel@nongnu.org; Wed, 25 Nov 2020 02:30:50 -0500 Received: from loganberry.canonical.com ([91.189.90.37]) by indium.canonical.com with esmtp (Exim 4.86_2 #2 (Debian)) id 1khpGE-00037o-A8 for ; Wed, 25 Nov 2020 07:30:42 +0000 Received: from loganberry.canonical.com (localhost [127.0.0.1]) by loganberry.canonical.com (Postfix) with ESMTP id E88482E8147 for ; Wed, 25 Nov 2020 07:30:41 +0000 (UTC) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Date: Wed, 25 Nov 2020 07:22:12 -0000 From: Gaoning Pan <1905521@bugs.launchpad.net> To: qemu-devel@nongnu.org X-Launchpad-Notification-Type: bug X-Launchpad-Bug: product=qemu; status=New; importance=Undecided; assignee=pgn@zju.edu.cn; X-Launchpad-Bug-Information-Type: Public X-Launchpad-Bug-Private: no X-Launchpad-Bug-Security-Vulnerability: no X-Launchpad-Bug-Commenters: hades0506 X-Launchpad-Bug-Reporter: Gaoning Pan (hades0506) X-Launchpad-Bug-Modifier: Gaoning Pan (hades0506) Message-Id: <160628893217.26625.10789422824158727924.malonedeb@chaenomeles.canonical.com> Subject: [Bug 1905521] [NEW] assert issue locates in hw/scsi/lsi53c895a.c:624: lsi_do_dma: Assertion `s->current' failed X-Launchpad-Message-Rationale: Subscriber (QEMU) @qemu-devel-ml X-Launchpad-Message-For: qemu-devel-ml Precedence: bulk X-Generated-By: Launchpad (canonical.com); Revision="3bd564e52ed9790394c5663a77af1e834fc2d372"; Instance="production" X-Launchpad-Hash: d2833fd66058e7296bfb75f4d728b722d2dee5df Received-SPF: none client-ip=91.189.90.7; envelope-from=bounces@canonical.com; helo=indium.canonical.com X-Spam_score_int: -65 X-Spam_score: -6.6 X-Spam_bar: ------ X-Spam_report: (-6.6 / 5.0 requ) BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.249, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: qemu-devel@nongnu.org X-Mailman-Version: 2.1.23 List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: Bug 1905521 <1905521@bugs.launchpad.net> Errors-To: qemu-devel-bounces+qemu-devel=archiver.kernel.org@nongnu.org Sender: "Qemu-devel" Public bug reported: Hello, I found an assertion failure in hw/scsi/lsi53c895a.c:624 This was found in latest version 5.2.0. my reproduced environment is as follows: Host: ubuntu 18.04 Guest: ubuntu 18.04 QEMU boot command line: qemu-system-x86_64 -enable-kvm -boot c -m 4G -drive format=3Dqcow2,file=3D.= /ubuntu.img -nic user,hostfwd=3Dtcp:0.0.0.0:5555-:22 -display none -device = lsi53c895a -trace lsi\* Backtrace is as follows: #0 0x00007f845c6eff47 in __GI_raise (sig=3Dsig@entry=3D6) at ../sysdeps/un= ix/sysv/linux/raise.c:51 #1 0x00007f845c6f18b1 in __GI_abort () at abort.c:79 #2 0x00007f845c6e142a in __assert_fail_base (fmt=3D0x7f845c868a38 "%s%s%s:= %u: %s%sAssertion `%s' failed.\n%n", assertion=3Dassertion@entry=3D0x55a103= 4486a0 "s->current", file=3Dfile@entry=3D0x55a103448360 "../hw/scsi/lsi53c8= 95a.c", line=3Dline@entry=3D624, function=3Dfunction@entry=3D0x55a10344ae60= <__PRETTY_FUNCTION__.31674> "lsi_do_dma") at assert.c:92 #3 0x00007f845c6e14a2 in __GI___assert_fail (assertion=3D0x55a1034486a0 "s= ->current", file=3D0x55a103448360 "../hw/scsi/lsi53c895a.c", line=3D624, fu= nction=3D0x55a10344ae60 <__PRETTY_FUNCTION__.31674> "lsi_do_dma") at assert= .c:101 #4 0x000055a102049c65 in lsi_do_dma (s=3D0x62600000c100, out=3D1) at ../hw= /scsi/lsi53c895a.c:624 #5 0x000055a102051573 in lsi_execute_script (s=3D0x62600000c100) at ../hw/= scsi/lsi53c895a.c:1250 #6 0x000055a10205b05d in lsi_reg_writeb (s=3D0x62600000c100, offset=3D47, = val=3D178 '\262') at ../hw/scsi/lsi53c895a.c:1984 #7 0x000055a10205fef8 in lsi_io_write (opaque=3D0x62600000c100, addr=3D47,= val=3D178, size=3D1) at ../hw/scsi/lsi53c895a.c:2146 #8 0x000055a102d1b791 in memory_region_write_accessor (mr=3D0x62600000cbe0= , addr=3D47, value=3D0x7f8349dfe2f8, size=3D1, shift=3D0, mask=3D255, attrs= =3D...) at ../softmmu/memory.c:484 #9 0x000055a102d1bba8 in access_with_adjusted_size (addr=3D47, value=3D0x7= f8349dfe2f8, size=3D1, access_size_min=3D1, access_size_max=3D1, access_fn= =3D0x55a102d1b4de , mr=3D0x62600000cbe0, attr= s=3D...) at ../softmmu/memory.c:545 #10 0x000055a102d261ef in memory_region_dispatch_write (mr=3D0x62600000cbe0= , addr=3D47, data=3D178, op=3DMO_8, attrs=3D...) at ../softmmu/memory.c:1494 #11 0x000055a102b57c3c in flatview_write_continue (fv=3D0x6060000ea920, add= r=3D49199, attrs=3D..., ptr=3D0x7f8449efb000, len=3D1, addr1=3D47, l=3D1, m= r=3D0x62600000cbe0) at ../softmmu/physmem.c:2767 #12 0x000055a102b57f07 in flatview_write (fv=3D0x6060000ea920, addr=3D49199= , attrs=3D..., buf=3D0x7f8449efb000, len=3D1) at ../softmmu/physmem.c:2807 #13 0x000055a102b587cb in address_space_write (as=3D0x55a105ebca80 , addr=3D49199, attrs=3D..., buf=3D0x7f8449efb000, len=3D1) at ..= /softmmu/physmem.c:2899 #14 0x000055a102b58878 in address_space_rw (as=3D0x55a105ebca80 , addr=3D49199, attrs=3D..., buf=3D0x7f8449efb000, len=3D1, is_write= =3Dtrue) at ../softmmu/physmem.c:2909 #15 0x000055a102ad4d50 in kvm_handle_io (port=3D49199, attrs=3D..., data=3D= 0x7f8449efb000, direction=3D1, size=3D1, count=3D1) at ../accel/kvm/kvm-all= .c:2283 #16 0x000055a102ad6a0f in kvm_cpu_exec (cpu=3D0x62e000000400) at ../accel/k= vm/kvm-all.c:2529 #17 0x000055a102c26fbb in kvm_vcpu_thread_fn (arg=3D0x62e000000400) at ../a= ccel/kvm/kvm-cpus.c:49 #18 0x000055a1032c08f8 in qemu_thread_start (args=3D0x603000082780) at ../u= til/qemu-thread-posix.c:521 #19 0x00007f845caa96db in start_thread (arg=3D0x7f8349dff700) at pthread_cr= eate.c:463 #20 0x00007f845c7d2a3f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clo= ne.S:95 The poc is attached. ** Affects: qemu Importance: Undecided Assignee: Gaoning Pan (hades0506) Status: New ** Attachment added: "lsi-assert.c" https://bugs.launchpad.net/bugs/1905521/+attachment/5437756/+files/lsi-a= ssert.c ** Changed in: qemu Assignee: (unassigned) =3D> Gaoning Pan (hades0506) -- = You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/1905521 Title: assert issue locates in hw/scsi/lsi53c895a.c:624: lsi_do_dma: Assertion `s->current' failed Status in QEMU: New Bug description: Hello, I found an assertion failure in hw/scsi/lsi53c895a.c:624 This was found in latest version 5.2.0. = my reproduced environment is as follows: Host: ubuntu 18.04 Guest: ubuntu 18.04 QEMU boot command line: qemu-system-x86_64 -enable-kvm -boot c -m 4G -drive format=3Dqcow2,file= =3D./ubuntu.img -nic user,hostfwd=3Dtcp:0.0.0.0:5555-:22 -display none -dev= ice lsi53c895a -trace lsi\* Backtrace is as follows: #0 0x00007f845c6eff47 in __GI_raise (sig=3Dsig@entry=3D6) at ../sysdeps/= unix/sysv/linux/raise.c:51 #1 0x00007f845c6f18b1 in __GI_abort () at abort.c:79 #2 0x00007f845c6e142a in __assert_fail_base (fmt=3D0x7f845c868a38 "%s%s%= s:%u: %s%sAssertion `%s' failed.\n%n", assertion=3Dassertion@entry=3D0x55a1= 034486a0 "s->current", file=3Dfile@entry=3D0x55a103448360 "../hw/scsi/lsi53= c895a.c", line=3Dline@entry=3D624, function=3Dfunction@entry=3D0x55a10344ae= 60 <__PRETTY_FUNCTION__.31674> "lsi_do_dma") at assert.c:92 #3 0x00007f845c6e14a2 in __GI___assert_fail (assertion=3D0x55a1034486a0 = "s->current", file=3D0x55a103448360 "../hw/scsi/lsi53c895a.c", line=3D624, = function=3D0x55a10344ae60 <__PRETTY_FUNCTION__.31674> "lsi_do_dma") at asse= rt.c:101 #4 0x000055a102049c65 in lsi_do_dma (s=3D0x62600000c100, out=3D1) at ../= hw/scsi/lsi53c895a.c:624 #5 0x000055a102051573 in lsi_execute_script (s=3D0x62600000c100) at ../h= w/scsi/lsi53c895a.c:1250 #6 0x000055a10205b05d in lsi_reg_writeb (s=3D0x62600000c100, offset=3D47= , val=3D178 '\262') at ../hw/scsi/lsi53c895a.c:1984 #7 0x000055a10205fef8 in lsi_io_write (opaque=3D0x62600000c100, addr=3D4= 7, val=3D178, size=3D1) at ../hw/scsi/lsi53c895a.c:2146 #8 0x000055a102d1b791 in memory_region_write_accessor (mr=3D0x62600000cb= e0, addr=3D47, value=3D0x7f8349dfe2f8, size=3D1, shift=3D0, mask=3D255, att= rs=3D...) at ../softmmu/memory.c:484 #9 0x000055a102d1bba8 in access_with_adjusted_size (addr=3D47, value=3D0= x7f8349dfe2f8, size=3D1, access_size_min=3D1, access_size_max=3D1, access_f= n=3D0x55a102d1b4de , mr=3D0x62600000cbe0, att= rs=3D...) at ../softmmu/memory.c:545 #10 0x000055a102d261ef in memory_region_dispatch_write (mr=3D0x62600000cb= e0, addr=3D47, data=3D178, op=3DMO_8, attrs=3D...) at ../softmmu/memory.c:1= 494 #11 0x000055a102b57c3c in flatview_write_continue (fv=3D0x6060000ea920, a= ddr=3D49199, attrs=3D..., ptr=3D0x7f8449efb000, len=3D1, addr1=3D47, l=3D1,= mr=3D0x62600000cbe0) at ../softmmu/physmem.c:2767 #12 0x000055a102b57f07 in flatview_write (fv=3D0x6060000ea920, addr=3D491= 99, attrs=3D..., buf=3D0x7f8449efb000, len=3D1) at ../softmmu/physmem.c:2807 #13 0x000055a102b587cb in address_space_write (as=3D0x55a105ebca80 , addr=3D49199, attrs=3D..., buf=3D0x7f8449efb000, len=3D1) at = ../softmmu/physmem.c:2899 #14 0x000055a102b58878 in address_space_rw (as=3D0x55a105ebca80 , addr=3D49199, attrs=3D..., buf=3D0x7f8449efb000, len=3D1, is_wri= te=3Dtrue) at ../softmmu/physmem.c:2909 #15 0x000055a102ad4d50 in kvm_handle_io (port=3D49199, attrs=3D..., data= =3D0x7f8449efb000, direction=3D1, size=3D1, count=3D1) at ../accel/kvm/kvm-= all.c:2283 #16 0x000055a102ad6a0f in kvm_cpu_exec (cpu=3D0x62e000000400) at ../accel= /kvm/kvm-all.c:2529 #17 0x000055a102c26fbb in kvm_vcpu_thread_fn (arg=3D0x62e000000400) at ..= /accel/kvm/kvm-cpus.c:49 #18 0x000055a1032c08f8 in qemu_thread_start (args=3D0x603000082780) at ..= /util/qemu-thread-posix.c:521 #19 0x00007f845caa96db in start_thread (arg=3D0x7f8349dff700) at pthread_= create.c:463 #20 0x00007f845c7d2a3f in clone () at ../sysdeps/unix/sysv/linux/x86_64/c= lone.S:95 = The poc is attached. To manage notifications about this bug go to: https://bugs.launchpad.net/qemu/+bug/1905521/+subscriptions