This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
Home Products Support Community News


Re: [Xen-devel] xen unstable crashes

To: Keir Fraser <Keir.Fraser@xxxxxxxxxxxx>
Subject: Re: [Xen-devel] xen unstable crashes
From: Gerd Hoffmann <kraxel@xxxxxxx>
Date: Tue, 18 Jul 2006 12:37:05 +0200
Cc: Xen devel list <xen-devel@xxxxxxxxxxxxxxxxxxx>
Delivery-date: Tue, 18 Jul 2006 03:37:32 -0700
Envelope-to: www-data@xxxxxxxxxxxxxxxxxx
In-reply-to: <d8692c031e8e26daf3dc9b77e367677e@xxxxxxxxxxxx>
List-help: <mailto:xen-devel-request@lists.xensource.com?subject=help>
List-id: Xen developer discussion <xen-devel.lists.xensource.com>
List-post: <mailto:xen-devel@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/cgi-bin/mailman/listinfo/xen-devel>, <mailto:xen-devel-request@lists.xensource.com?subject=unsubscribe>
References: <44BCB060.4020409@xxxxxxx> <d8692c031e8e26daf3dc9b77e367677e@xxxxxxxxxxxx>
Sender: xen-devel-bounces@xxxxxxxxxxxxxxxxxxx
User-agent: Thunderbird (X11/20060527)
Keir Fraser wrote:
> A null pointer dereference in evtchn_set_pending can't be that hard to
> track down, if it's crashing every time in this way with suse 10.1.

It's vcpu being NULL, %esi register here:

ff1055f0 <evtchn_set_pending>:
ff1055f0:       83 ec 1c                sub    $0x1c,%esp
ff1055f3:       89 74 24 14             mov    %esi,0x14(%esp)
ff1055f7:       8b 74 24 20             mov    0x20(%esp),%esi
ff1055fb:       89 5c 24 10             mov    %ebx,0x10(%esp)
ff1055ff:       8b 4c 24 24             mov    0x24(%esp),%ecx
ff105603:       89 7c 24 18             mov    %edi,0x18(%esp)
ff105607:       8b 5e 0c                mov    0xc(%esi),%ebx  <==
ff10560a:       8b 53 04                mov    0x4(%ebx),%edx

The stack trace looks suspious to me though, none of the functions in
the trace calls evtchn_set_pending() ...



Gerd Hoffmann <kraxel@xxxxxxx>

Xen-devel mailing list

<Prev in Thread] Current Thread [Next in Thread>