Bug#884613: qemu-system-x86: frequent random crashes with spice errors

Sun, 17 Dec 2017 08:39:49 -0800 

Package: qemu-system-x86
Version: 1:2.10.0+dfsg-2
Severity: normal

Hi!
I get frequent crashes with output like:

.----
(process:5017): Spice-WARNING **: 
display-channel.c:2431:display_channel_validate_surface: canvas address is 
0x7f590548ab18 for 0 (and is NULL)


(process:5017): Spice-WARNING **: 
display-channel.c:2432:display_channel_validate_surface: failed on 0

(process:5017): Spice-CRITICAL **: 
display-channel.c:2035:display_channel_update: condition 
`display_channel_validate_surface(display, surface_id)' failed
Aborted (core dumped)
`----

Command line:
.----
NET="-net bridge -net nic"
DISK=/mnt/btr1/qemu/win10.img

exec qemu-system-x86_64 -enable-kvm -m 2048 \
 -vga qxl -usbdevice tablet \
 -smp 4 -cpu host \
 -net bridge -net nic,macaddr=08:00:27:49:80:82,model=virtio \
 -parallel none \
 -device ich9-ahci,id=ahci \
 -device ide-drive,drive=maindisk,bus=ahci.0 \
 -drive 
file="$DISK",cache=writeback,media=disk,format=raw,discard=on,if=none,id=maindisk
`----

Core dump's backtrace:
.----
#0  0x00007f59124ada70 in __GI_raise (sig=sig@entry=6) at 
../sysdeps/unix/sysv/linux/raise.c:51
        set = 
            {__val = {18446744067266837079, 8, 8, 8, 3, 140020549413260, 
140020549721023, 140020550070578, 18446744073709551615, 140020549720817, 
140017544472944, 0, 94456564550096, 3158286297540034816, 8, 0}}
        pid = <optimized out>
        tid = <optimized out>
#1  0x00007f59124af19a in __GI_abort () at abort.c:89
        save_stage = 2
        act = 
          {__sigaction_handler = {sa_handler = 0x80, sa_sigaction = 0x80}, 
sa_mask = {__val = {140017544472480, 140017544472176, 0, 4, 128, 
140015933849601, 39, 140017544467104, 140020549506508, 140017544467104, 
140017544467104, 0, 140017544467104, 0, 140020092475436, 140020092475440}}, 
sa_flags = 320706514, sa_restorer = 0x8}
        sigs = {__val = {32, 0 <repeats 15 times>}}
#2  0x00007f5913d20d89 in spice_logv (log_domain=0x7f5913d8b275 "Spice", 
args=0x7f58f7df96c0, format=0x7f5913d8c0f5 "condition `%s' failed", 
function=0x7f5913d8efd0 <__func__.47558> "display_channel_update", 
strloc=0x7f5913d8ecef "display-channel.c:2035", log_level=G_LOG_LEVEL_CRITICAL) 
at log.c:183
        log_msg = 0x7f58600012a0
        args = 
            {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 
0x7f58f7df97b0, reg_save_area = 0x7f58f7df96e0}}
#3  0x00007f5913d20d89 in spice_log 
(log_level=log_level@entry=G_LOG_LEVEL_CRITICAL, 
strloc=strloc@entry=0x7f5913d8ecef "display-channel.c:2035", 
function=function@entry=0x7f5913d8efd0 <__func__.47558> 
"display_channel_update", format=format@entry=0x7f5913d8c0f5 "condition `%s' 
failed") at log.c:196
        args = 
            {{gp_offset = 40, fp_offset = 48, overflow_arg_area = 
0x7f58f7df97b0, reg_save_area = 0x7f58f7df96e0}}
#4  0x00007f5913cd65b6 in display_channel_update (display=0x55e861fa7a40, 
surface_id=0, area=area@entry=0x55e861faaa0c, clear_dirty=1, 
qxl_dirty_rects=qxl_dirty_rects@entry=0x7f58f7df9830, 
num_dirty_rects=num_dirty_rects@entry=0x7f58f7df982c) at display-channel.c:2035
        rect = {left = -136341440, top = 32600, right = 1597655386, bottom = 
21992}
        __func__ = "display_channel_update"
#5  0x00007f5913d0286e in handle_dev_update_async (opaque=0x55e861fa9ec0, 
payload=0x55e861faaa00)
    at red-worker.c:428
        worker = 0x55e861fa9ec0
        msg = 0x55e861faaa00
        qxl_dirty_rects = 0x0
        num_dirty_rects = 0
        __func__ = "handle_dev_update_async"
---Type <return> to continue, or q <return> to quit---
#6  0x00007f5913cd0591 in dispatcher_handle_single_read 
(dispatcher=0x55e861fab080) at dispatcher.c:284
        type = 26
        msg = 0x55e861fa9c20
        ack = 4294967295
        payload = 0x55e861faaa00 "pM\242a\350U"
#7  0x00007f5913cd0591 in dispatcher_handle_recv_read 
(dispatcher=0x55e861fab080) at dispatcher.c:304
#8  0x00007f5913cd6e1b in watch_func (source=<optimized out>, 
condition=<optimized out>, data=0x55e861fa0d00)
    at event-loop.c:128
        watch = 0x55e861fa0d00
        fd = <optimized out>
#9  0x00007f59131b7e15 in g_main_context_dispatch () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#10 0x00007f59131b81e0 in  () at /lib/x86_64-linux-gnu/libglib-2.0.so.0
#11 0x00007f59131b84f2 in g_main_loop_run () at 
/lib/x86_64-linux-gnu/libglib-2.0.so.0
#12 0x00007f5913d02bfa in red_worker_main (arg=0x55e861fa9ec0) at 
red-worker.c:1372
        worker = 0x55e861fa9ec0
        __FUNCTION__ = "red_worker_main"
        loop = 0x7f58600010c0
#13 0x00007f5912824519 in start_thread (arg=0x7f58f7dfa700) at 
pthread_create.c:456
        __res = <optimized out>
        pd = 0x7f58f7dfa700
        now = <optimized out>
        unwind_buf = 
              {cancel_jmp_buf = {{jmp_buf = {140020092479232, 
-7676355946563824863, 140725613646526, 140725613646527, 94456562735648, 
140020092479232, 7767008753087091489, 7767090826745680673}, mask_was_saved = 
0}}, priv = {pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, 
canceltype = 0}}}
        not_first_call = <optimized out>
#14 0x00007f5912566a4f in clone () at 
../sysdeps/unix/sysv/linux/x86_64/clone.S:97
`----


Meow!
-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, 'testing'), 
(150, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.15.0-rc3-debug-00068-gdb163d35e36f (SMP w/6 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE=C.UTF-8 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages qemu-system-x86 depends on:
ii  ipxe-qemu           1.0.0+git-20161027.b991c67-1
ii  libaio1             0.3.110-5
ii  libasound2          1.1.3-5
ii  libbluetooth3       5.47-1+b1
ii  libbrlapi0.6        5.5-4
ii  libc6               2.25-5
ii  libcacard0          1:2.5.0-3
ii  libfdt1             1.4.5-3
ii  libgcc1             1:7.2.0-18
ii  libglib2.0-0        2.54.2-2
ii  libgnutls30         3.5.16-1
ii  libjpeg62-turbo     1:1.5.2-2+b1
ii  libncursesw5        6.0+20171125-1
ii  libnettle6          3.4-1
ii  libnuma1            2.0.11-2.1
ii  libpixman-1-0       0.34.0-2
ii  libpng16-16         1.6.34-1
ii  libpulse0           11.1-4.0nosystemd1
ii  libsasl2-2          2.1.27~101-g0780600+dfsg-3
ii  libsdl2-2.0-0       2.0.7+dfsg1-3
ii  libseccomp2         2.3.1-2.1
ii  libspice-server1    0.14.0-1
ii  libtinfo5           6.0+20171125-1
ii  libusb-1.0-0        2:1.0.21-2
ii  libusbredirparser1  0.7.1-1
ii  libvdeplug2         2.3.2+r586-2.1
ii  libxen-4.8          4.8.2+xsa245-0+deb9u1
ii  libxenstore3.0      4.8.2+xsa245-0+deb9u1
ii  qemu-system-common  1:2.10.0+dfsg-2
ii  seabios             1.10.2-1
ii  zlib1g              1:1.2.8.dfsg-5

Versions of packages qemu-system-x86 recommends:
ii  qemu-utils  1:2.10.0+dfsg-2

Versions of packages qemu-system-x86 suggests:
ii  kmod              24-1
ii  ovmf              0~20171205.a9212288-1
pn  qemu-block-extra  <none>
pn  samba             <none>
pn  sgabios           <none>
pn  vde2              <none>

-- no debconf information

Reply via email to