[Bug 238333] bhyve random crash in rfb.c on FreeBSD current (after r346011)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Thu Jun 6 09:34:04 UTC 2019
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=238333
--- Comment #9 from olevole at olevole.ru ---
(In reply to Conrad Meyer from comment #3)
memcpy () at /usr/src/lib/libc/amd64/string/memmove.S:306
306 MEMMOVE erms=0 overlap=1 begin=MEMMOVE_BEGIN end=MEMMOVE_END
(gdb) info registers
rax 0x944e00180 39810236800
rbx 0x941a7e030 39756226608
rcx 0x124f82 1200002
rdx 0x927c10 9600016
rsi 0xa5a5a5a5a5a5a5a5 -6510615555426900571
rdi 0x944e00180 39810236800
rbp 0x7fffdc7e1db0 0x7fffdc7e1db0
rsp 0x7fffdc7e1d68 0x7fffdc7e1d68
r8 0x5a5a5a639f3a5bdb 6510615595237137371
r9 0x0 0
r10 0x0 0
r11 0x246 582
r12 0x927c10 9600016
r13 0x927c10 9600016
r14 0x941b5f800 39757150208
r15 0x2 2
rip 0x80083da1a 0x80083da1a <memcpy+266>
eflags 0x10206 [ PF IF RF ]
cs 0x43 67
ss 0x3b 59
ds <unavailable>
es <unavailable>
fs <unavailable>
gs <unavailable>
fs_base 0x941a0c8d0 39755761872
gs_base 0x0
(gdb) x/10i $rip
=> 0x80083da1a <memcpy+266>: rep movsq %ds:(%rsi),%es:(%rdi)
0x80083da1d <memcpy+269>: mov %rdx,%rcx
0x80083da20 <memcpy+272>: and $0x7,%ecx
0x80083da23 <memcpy+275>: jne 0x80083d9c0 <memcpy+176>
0x80083da25 <memcpy+277>: retq
0x80083da26 <memcpy+278>: mov (%rsi),%r8
0x80083da29 <memcpy+281>: mov 0x8(%rsi),%r9
0x80083da2d <memcpy+285>: mov %rdi,%r10
0x80083da30 <memcpy+288>: mov %rdi,%rcx
0x80083da33 <memcpy+291>: and $0xf,%rcx
Unfortunately I can not see the information for struct due to bhyve compiled
without -O0:
(gdb) up
#1 0x00000008002c85dc in flush_pending (strm=<optimized out>) at
/usr/src/sys/contrib/zlib/deflate.c:741
741 zmemcpy(strm->next_out, s->pending_out, len);
(gdb) print *strm
value has been optimized out
(gdb) print *s
value has been optimized out
But with -O0 i can't get crash
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-virtualization
mailing list