qemu-devel.nongnu.org archive mirror
 help / color / mirror / Atom feed
* [Bug 1901532] [NEW] Assertion failure `mr != NULL' failed through usb-ehci
@ 2020-10-26 11:32 Cheol-Woo,Myung
  2020-12-17 10:56 ` [Bug 1901532] " Cheol-Woo,Myung
                   ` (3 more replies)
  0 siblings, 4 replies; 5+ messages in thread
From: Cheol-Woo,Myung @ 2020-10-26 11:32 UTC (permalink / raw)
  To: qemu-devel

Public bug reported:

Hello,

Using hypervisor fuzzer, hyfuzz, I found an assertion failure through
usb-ehci.

This was found in version 5.0.1 (stable-5.0).

--------

qemu-system-i386: src/qemu-repro/exec.c:3581: address_space_unmap: Assertion `mr != NULL' failed.
[1]    14721 abort      src/qemu-repro/build/i386-softmmu/qemu-system-i386


To reproduce the assertion failure, please run the QEMU with following command line.

```
$ qemu-system-i386 -drive file=./hyfuzz.img,index=0,media=disk,format=raw -m 512 -drive if=none,id=stick,file=./usbdisk.img -device usb-ehci,id=ehci -device usb-storage,bus=ehci.0,drive=stick
```

** Affects: qemu
     Importance: Undecided
         Status: New

** Attachment added: "attachment.zip"
   https://bugs.launchpad.net/bugs/1901532/+attachment/5427245/+files/attachment.zip

-- 
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1901532

Title:
  Assertion failure `mr != NULL' failed through usb-ehci

Status in QEMU:
  New

Bug description:
  Hello,

  Using hypervisor fuzzer, hyfuzz, I found an assertion failure through
  usb-ehci.

  This was found in version 5.0.1 (stable-5.0).

  --------

  qemu-system-i386: src/qemu-repro/exec.c:3581: address_space_unmap: Assertion `mr != NULL' failed.
  [1]    14721 abort      src/qemu-repro/build/i386-softmmu/qemu-system-i386

  
  To reproduce the assertion failure, please run the QEMU with following command line.

  ```
  $ qemu-system-i386 -drive file=./hyfuzz.img,index=0,media=disk,format=raw -m 512 -drive if=none,id=stick,file=./usbdisk.img -device usb-ehci,id=ehci -device usb-storage,bus=ehci.0,drive=stick
  ```

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1901532/+subscriptions


^ permalink raw reply	[flat|nested] 5+ messages in thread
* [Bug 1901532] Re: Assertion failure `mr != NULL' failed through usb-ehci
  2020-10-26 11:32 [Bug 1901532] [NEW] Assertion failure `mr != NULL' failed through usb-ehci Cheol-Woo,Myung
@ 2020-12-17 10:56 ` Cheol-Woo,Myung
  2021-01-15 16:17 ` Peter Maydell
                   ` (2 subsequent siblings)
  3 siblings, 0 replies; 5+ messages in thread
From: Cheol-Woo,Myung @ 2020-12-17 10:56 UTC (permalink / raw)
  To: qemu-devel

** Changed in: qemu
       Status: New => Confirmed

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2020-25723

-- 
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1901532

Title:
  Assertion failure `mr != NULL' failed through usb-ehci

Status in QEMU:
  Confirmed

Bug description:
  Hello,

  Using hypervisor fuzzer, hyfuzz, I found an assertion failure through
  usb-ehci.

  This was found in version 5.0.1 (stable-5.0).

  --------

  qemu-system-i386: src/qemu-repro/exec.c:3581: address_space_unmap: Assertion `mr != NULL' failed.
  [1]    14721 abort      src/qemu-repro/build/i386-softmmu/qemu-system-i386

  
  To reproduce the assertion failure, please run the QEMU with following command line.

  ```
  $ qemu-system-i386 -drive file=./hyfuzz.img,index=0,media=disk,format=raw -m 512 -drive if=none,id=stick,file=./usbdisk.img -device usb-ehci,id=ehci -device usb-storage,bus=ehci.0,drive=stick
  ```

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1901532/+subscriptions


^ permalink raw reply	[flat|nested] 5+ messages in thread
* [Bug 1901532] Re: Assertion failure `mr != NULL' failed through usb-ehci
  2020-10-26 11:32 [Bug 1901532] [NEW] Assertion failure `mr != NULL' failed through usb-ehci Cheol-Woo,Myung
  2020-12-17 10:56 ` [Bug 1901532] " Cheol-Woo,Myung
@ 2021-01-15 16:17 ` Peter Maydell
  2021-05-11 12:39 ` Thomas Huth
  2021-06-16 14:18 ` Thomas Huth
  3 siblings, 0 replies; 5+ messages in thread
From: Peter Maydell @ 2021-01-15 16:17 UTC (permalink / raw)
  To: qemu-devel

** Tags added: fuzzer

-- 
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1901532

Title:
  Assertion failure `mr != NULL' failed through usb-ehci

Status in QEMU:
  Confirmed

Bug description:
  Hello,

  Using hypervisor fuzzer, hyfuzz, I found an assertion failure through
  usb-ehci.

  This was found in version 5.0.1 (stable-5.0).

  --------

  qemu-system-i386: src/qemu-repro/exec.c:3581: address_space_unmap: Assertion `mr != NULL' failed.
  [1]    14721 abort      src/qemu-repro/build/i386-softmmu/qemu-system-i386

  
  To reproduce the assertion failure, please run the QEMU with following command line.

  ```
  $ qemu-system-i386 -drive file=./hyfuzz.img,index=0,media=disk,format=raw -m 512 -drive if=none,id=stick,file=./usbdisk.img -device usb-ehci,id=ehci -device usb-storage,bus=ehci.0,drive=stick
  ```

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1901532/+subscriptions


^ permalink raw reply	[flat|nested] 5+ messages in thread
* [Bug 1901532] Re: Assertion failure `mr != NULL' failed through usb-ehci
  2020-10-26 11:32 [Bug 1901532] [NEW] Assertion failure `mr != NULL' failed through usb-ehci Cheol-Woo,Myung
  2020-12-17 10:56 ` [Bug 1901532] " Cheol-Woo,Myung
  2021-01-15 16:17 ` Peter Maydell
@ 2021-05-11 12:39 ` Thomas Huth
  2021-06-16 14:18 ` Thomas Huth
  3 siblings, 0 replies; 5+ messages in thread
From: Thomas Huth @ 2021-05-11 12:39 UTC (permalink / raw)
  To: qemu-devel

Can you still reproduce this with QEMU v6.0 ? For me, qemu now does not
crash anymore, so I assume this might have been fixed within the past
months?

** Changed in: qemu
       Status: Confirmed => Incomplete

-- 
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1901532

Title:
  Assertion failure `mr != NULL' failed through usb-ehci

Status in QEMU:
  Incomplete

Bug description:
  Hello,

  Using hypervisor fuzzer, hyfuzz, I found an assertion failure through
  usb-ehci.

  This was found in version 5.0.1 (stable-5.0).

  --------

  qemu-system-i386: src/qemu-repro/exec.c:3581: address_space_unmap: Assertion `mr != NULL' failed.
  [1]    14721 abort      src/qemu-repro/build/i386-softmmu/qemu-system-i386

  
  To reproduce the assertion failure, please run the QEMU with following command line.

  ```
  $ qemu-system-i386 -drive file=./hyfuzz.img,index=0,media=disk,format=raw -m 512 -drive if=none,id=stick,file=./usbdisk.img -device usb-ehci,id=ehci -device usb-storage,bus=ehci.0,drive=stick
  ```

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1901532/+subscriptions


^ permalink raw reply	[flat|nested] 5+ messages in thread
* [Bug 1901532] Re: Assertion failure `mr != NULL' failed through usb-ehci
  2020-10-26 11:32 [Bug 1901532] [NEW] Assertion failure `mr != NULL' failed through usb-ehci Cheol-Woo,Myung
                   ` (2 preceding siblings ...)
  2021-05-11 12:39 ` Thomas Huth
@ 2021-06-16 14:18 ` Thomas Huth
  3 siblings, 0 replies; 5+ messages in thread
From: Thomas Huth @ 2021-06-16 14:18 UTC (permalink / raw)
  To: qemu-devel

This problem got fixed by this commit:

  2fdb42d840400d58f2e706ecca82c142b97bcbd6
  hw: ehci: check return value of 'usb_packet_map'

Thus let's close this ticket now.

** Changed in: qemu
       Status: Incomplete => Fix Released

-- 
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1901532

Title:
  Assertion failure `mr != NULL' failed through usb-ehci

Status in QEMU:
  Fix Released

Bug description:
  Hello,

  Using hypervisor fuzzer, hyfuzz, I found an assertion failure through
  usb-ehci.

  This was found in version 5.0.1 (stable-5.0).

  --------

  qemu-system-i386: src/qemu-repro/exec.c:3581: address_space_unmap: Assertion `mr != NULL' failed.
  [1]    14721 abort      src/qemu-repro/build/i386-softmmu/qemu-system-i386

  
  To reproduce the assertion failure, please run the QEMU with following command line.

  ```
  $ qemu-system-i386 -drive file=./hyfuzz.img,index=0,media=disk,format=raw -m 512 -drive if=none,id=stick,file=./usbdisk.img -device usb-ehci,id=ehci -device usb-storage,bus=ehci.0,drive=stick
  ```

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1901532/+subscriptions


^ permalink raw reply	[flat|nested] 5+ messages in thread
end of thread, other threads:[~2021-06-16 14:26 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-10-26 11:32 [Bug 1901532] [NEW] Assertion failure `mr != NULL' failed through usb-ehci Cheol-Woo,Myung
2020-12-17 10:56 ` [Bug 1901532] " Cheol-Woo,Myung
2021-01-15 16:17 ` Peter Maydell
2021-05-11 12:39 ` Thomas Huth
2021-06-16 14:18 ` Thomas Huth

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).