XFree 4.4.0 server crash on amd64 while running xsuite
Hi,
I just got a XFree 4.4.0 server crash, on my amd64 workstation while
running XFree xsuite.
This machine is a dual Opteron, with 1GB of RAM, nVidia GeForce FX
5200, running NetBSD -current (20040616).
XFree86 Version 4.4.0
Release Date: 29 February 2004
X Protocol Version 11, Revision 0, Release 6.6
Build Operating System:NetBSD/amd64 2.0F - The NetBSD Foundation, Inc.
Current Operating System: NetBSD lanfeust.sis.pasteur.fr 2.0F NetBSD 2.0F (LANFEUST)
#2: Wed Jun 16 22:15:01 CEST 2004 [EMAIL
PROTECTED]:/local/src/NetBSD/obj/amd64/sys/arch/amd64/compile/LANFEUST amd64
Build Date: 18 June 2004
[...]
(--) NV(0): Chipset: "GeForce FX 5200"
(**) NV(0): Depth 24, (--) framebuffer bpp 32
(==) NV(0): RGB weight 888
(==) NV(0): Default visual is TrueColor
(==) NV(0): Using HW cursor
(--) NV(0): DDC detected a CRT:
(II) NV(0): Manufacturer: IVM Model: 1918 Serial#: 50006647
(II) NV(0): Year: 2000 Week: 39
(II) NV(0): EDID Version: 1.1
(II) NV(0): Using CRT on CRTC 0
(--) NV(0): VideoRAM: 131072 kBytes
(==) NV(0): Using gamma correction (1.0, 1.0, 1.0)
(WW) NV(0): config file hsync range 30-115kHz not within DDC hsync ranges.
(WW) NV(0): config file vrefresh range 50-160Hz not within DDC vrefresh ranges.
(II) NV(0): Monitor0: Using hsync range of 30.00-115.00 kHz
(II) NV(0): Monitor0: Using vrefresh range of 50.00-160.00 Hz
(II) NV(0): Clock range: 12.00 to 350.00 MHz
[...]
*** If unresolved symbols were reported above, they might not
*** be the reason for the server aborting.
Fatal server error:
Caught signal 11. Server aborting
Here follow the last part of the xsuite journal:
[...]
520|235 1 4259 1 92|TRACE:--- Running test with pixmap depth 16
520|235 1 4259 1 93|TRACE:XYPixmap
520|235 1 4259 1 94|CHECK:XPutImage-1 40, line 388
520|235 1 4259 1 95|TRACE:ZPixmap
520|235 1 4259 1 96|CHECK:XPutImage-1 41, line 415
520|235 1 4259 1 97|TRACE:XYBitmap
520|235 1 4259 1 98|CHECK:XPutImage-1 42, line 441
520|235 1 4259 1 99|TRACE:--- Running test with pixmap depth 32
520|235 1 4259 1 100|TRACE:XYPixmap
520|235 1 4259 1 101|REPORT:A fatal I/O error occurred
520|235 1 4259 1 102|REPORT:Any following results can not be relied upon
80|235 2 14:32:57|TC End
10|236 /tset/CH06/qrybstcrsr/qrybstcrsr 14:32:57|TC Start, scenario ref 287-1, ICs
{all}
15|236 1.9 1|TCM Start
520|236 0 18294 1 1|TRACE:NAME: XQueryBestCursor
520|236 0 18294 1 2|REPORT:Could not open display. Can not continue.
[...]
Thanks in advance,
Regards.
--
Nicolas Joly
Biological Software and Databanks.
Institut Pasteur, Paris.
___
Devel mailing list
[EMAIL PROTECTED]
http://XFree86.Org/mailman/listinfo/devel
Re: XFree 4.4.0 server crash on amd64 while running xsuite
On Fri, Jun 18, 2004 at 02:55:17PM +0200, Nicolas Joly wrote: >Hi, > >I just got a XFree 4.4.0 server crash, on my amd64 workstation while >running XFree xsuite. Try running the XFree86 server from within gdb and see what the stack trace reports when it crashes. David ___ Devel mailing list [EMAIL PROTECTED] http://XFree86.Org/mailman/listinfo/devel
Re: XFree 4.4.0 server crash on amd64 while running xsuite
On Thu, Jun 24, 2004 at 07:56:53AM -0400, David Dawes wrote: > On Fri, Jun 18, 2004 at 02:55:17PM +0200, Nicolas Joly wrote: > >Hi, > > > >I just got a XFree 4.4.0 server crash, on my amd64 workstation while > >running XFree xsuite. > > Try running the XFree86 server from within gdb and see what the stack trace > reports when it crashes. Program received signal SIGSEGV, Segmentation fault. 0x006e939b in fbBltOne () (gdb) bt #0 0x006e939b in fbBltOne () #1 0x006f1d65 in fbPutXYImage () #2 0x006f1985 in fbPutImage () #3 0x0059790c in XAAPutImagePixmap () #4 0x006ad91c in ProcPutImage () #5 0x006aa40a in Dispatch () #6 0x006bbc2a in main () #7 0x00405568 in ___start () -- Nicolas Joly Biological Software and Databanks. Institut Pasteur, Paris. ___ Devel mailing list [EMAIL PROTECTED] http://XFree86.Org/mailman/listinfo/devel
Re: XFree 4.4.0 server crash on amd64 while running xsuite
It might be that there is some mismatch in types on amd64. Eg. FB_SHIFT vs FbBits. It's hard to follow what's going on in fb.h. Mark. On Thu, 24 Jun 2004, Nicolas Joly wrote: > On Thu, Jun 24, 2004 at 07:56:53AM -0400, David Dawes wrote: > > On Fri, Jun 18, 2004 at 02:55:17PM +0200, Nicolas Joly wrote: > > >Hi, > > > > > >I just got a XFree 4.4.0 server crash, on my amd64 workstation while > > >running XFree xsuite. > > > > Try running the XFree86 server from within gdb and see what the stack trace > > reports when it crashes. > > Program received signal SIGSEGV, Segmentation fault. > 0x006e939b in fbBltOne () > (gdb) bt > #0 0x006e939b in fbBltOne () > #1 0x006f1d65 in fbPutXYImage () > #2 0x006f1985 in fbPutImage () > #3 0x0059790c in XAAPutImagePixmap () > #4 0x006ad91c in ProcPutImage () > #5 0x006aa40a in Dispatch () > #6 0x006bbc2a in main () > #7 0x00405568 in ___start () > > -- > Nicolas Joly > > Biological Software and Databanks. > Institut Pasteur, Paris. > ___ > Devel mailing list > [EMAIL PROTECTED] > http://XFree86.Org/mailman/listinfo/devel > ___ Devel mailing list [EMAIL PROTECTED] http://XFree86.Org/mailman/listinfo/devel
Re: XFree 4.4.0 server crash on amd64 while running xsuite
On Thu, Jun 24, 2004 at 10:13:54AM -0700, Mark Vojkovich wrote:
>It might be that there is some mismatch in types on amd64.
> Eg. FB_SHIFT vs FbBits. It's hard to follow what's going on
> in fb.h.
Thanks, i'll try to have a look.
In the mean time, i just recompiled the XFree86 server with `-g -O0',
to get more information.
Program received signal SIGSEGV, Segmentation fault.
0x008aab5a in fbBltOne (src=0x1651000, srcStride=0, srcX=0,
dst=0x163d120, dstStride=0, dstX=0, dstBpp=32, width=3200, height=79,
fgand=3221225472, fgxor=1073741823, bgand=3221225472, bgxor=0)
at fbbltone.c:375
375 LoadBits;
(gdb) bt
#0 0x008aab5a in fbBltOne (src=0x1651000, srcStride=0, srcX=0,
dst=0x163d120, dstStride=0, dstX=0, dstBpp=32, width=3200, height=79,
fgand=3221225472, fgxor=1073741823, bgand=3221225472, bgxor=0)
at fbbltone.c:375
#1 0x008b7c5e in fbPutXYImage (pDrawable=0x163c000, pClip=0x141d660,
fg=4294967295, bg=0, pm=1073741823, alu=3, opaque=1, x=0, y=0, width=100,
height=90, src=0x1650f58, srcStride=4, srcX=0) at fbimage.c:265
#2 0x008b72cd in fbPutImage (pDrawable=0x163c000, pGC=0x1410c00,
depth=32, x=0, y=0, w=100, h=90, leftPad=0, format=1, pImage=0x1645018 "")
at fbimage.c:75
#3 0x00683e07 in XAAPutImagePixmap (pDraw=0x163c000, pGC=0x1410c00,
depth=32, x=0, y=0, w=100, h=90, leftPad=0, format=1, pImage=0x1645018 "")
at xaaGC.c:355
#4 0x0084ab73 in ProcPutImage (client=0x11b9600) at dispatch.c:2085
#5 0x00845de7 in Dispatch () at dispatch.c:446
#6 0x0085ecc7 in main (argc=6, argv=0x7f7fead8,
envp=0x7f7feb10) at main.c:432
According to the trace, it seems to break in `LoadBits' macro.
#define LoadBits {\
if (leftShift) { \
bitsRight = *src++; \
bits = (FbStipLeft (bitsLeft, leftShift) | \
FbStipRight(bitsRight, rightShift)); \
bitsLeft = bitsRight; \
} else \
bits = *src++; \
}
(gdb) p src
$1 = (FbStip *) 0x1651000
(gdb) p *src
Error accessing memory address 0x1651000: Invalid argument.
--
Nicolas Joly
Biological Software and Databanks.
Institut Pasteur, Paris.
___
Devel mailing list
[EMAIL PROTECTED]
http://XFree86.Org/mailman/listinfo/devel
Re: XFree 4.4.0 server crash on amd64 while running xsuite
On Thu, Jun 24, 2004 at 10:13:54AM -0700, Mark Vojkovich wrote: >It might be that there is some mismatch in types on amd64. > Eg. FB_SHIFT vs FbBits. It's hard to follow what's going on > in fb.h. Agreed, i'm not comfortable with that piece of code. But, in my case, FB_SHIFT is defined to 5 and sizeof(FbBits) to 4. > On Thu, 24 Jun 2004, Nicolas Joly wrote: > > > On Thu, Jun 24, 2004 at 07:56:53AM -0400, David Dawes wrote: > > > On Fri, Jun 18, 2004 at 02:55:17PM +0200, Nicolas Joly wrote: > > > >Hi, > > > > > > > >I just got a XFree 4.4.0 server crash, on my amd64 workstation while > > > >running XFree xsuite. > > > > > > Try running the XFree86 server from within gdb and see what the stack trace > > > reports when it crashes. > > > > Program received signal SIGSEGV, Segmentation fault. > > 0x006e939b in fbBltOne () > > (gdb) bt > > #0 0x006e939b in fbBltOne () > > #1 0x006f1d65 in fbPutXYImage () > > #2 0x006f1985 in fbPutImage () > > #3 0x0059790c in XAAPutImagePixmap () > > #4 0x006ad91c in ProcPutImage () > > #5 0x006aa40a in Dispatch () > > #6 0x006bbc2a in main () > > #7 0x00405568 in ___start () > > > > -- > > Nicolas Joly > > > > Biological Software and Databanks. > > Institut Pasteur, Paris. > > ___ > > Devel mailing list > > [EMAIL PROTECTED] > > http://XFree86.Org/mailman/listinfo/devel > > > ___ > Devel mailing list > [EMAIL PROTECTED] > http://XFree86.Org/mailman/listinfo/devel -- Nicolas Joly Biological Software and Databanks. Institut Pasteur, Paris. ___ Devel mailing list [EMAIL PROTECTED] http://XFree86.Org/mailman/listinfo/devel
Re: XFree 4.4.0 server crash on amd64 while running xsuite
On Fri, 25 Jun 2004, Nicolas Joly wrote: > On Thu, Jun 24, 2004 at 10:13:54AM -0700, Mark Vojkovich wrote: > >It might be that there is some mismatch in types on amd64. > > Eg. FB_SHIFT vs FbBits. It's hard to follow what's going on > > in fb.h. > > Agreed, i'm not comfortable with that piece of code. > > But, in my case, FB_SHIFT is defined to 5 and sizeof(FbBits) to 4. There is some code in fb.h that suggests that it might have been expecting FB_SHIFT == 6 for amd64. Seems like it should have worked either way though. Looks like it walked off the edge of the "FbStip *src" array. I suspect: src += srcStride; or src += srcX >> FB_STIP_SHIFT; is overincrementing. Mark. > > > On Thu, 24 Jun 2004, Nicolas Joly wrote: > > > > > On Thu, Jun 24, 2004 at 07:56:53AM -0400, David Dawes wrote: > > > > On Fri, Jun 18, 2004 at 02:55:17PM +0200, Nicolas Joly wrote: > > > > >Hi, > > > > > > > > > >I just got a XFree 4.4.0 server crash, on my amd64 workstation while > > > > >running XFree xsuite. > > > > > > > > Try running the XFree86 server from within gdb and see what the stack trace > > > > reports when it crashes. > > > > > > Program received signal SIGSEGV, Segmentation fault. > > > 0x006e939b in fbBltOne () > > > (gdb) bt > > > #0 0x006e939b in fbBltOne () > > > #1 0x006f1d65 in fbPutXYImage () > > > #2 0x006f1985 in fbPutImage () > > > #3 0x0059790c in XAAPutImagePixmap () > > > #4 0x006ad91c in ProcPutImage () > > > #5 0x006aa40a in Dispatch () > > > #6 0x006bbc2a in main () > > > #7 0x00405568 in ___start () > > > > > > -- > > > Nicolas Joly > > > > > > Biological Software and Databanks. > > > Institut Pasteur, Paris. > > > ___ > > > Devel mailing list > > > [EMAIL PROTECTED] > > > http://XFree86.Org/mailman/listinfo/devel > > > > > ___ > > Devel mailing list > > [EMAIL PROTECTED] > > http://XFree86.Org/mailman/listinfo/devel > > -- > Nicolas Joly > > Biological Software and Databanks. > Institut Pasteur, Paris. > ___ > Devel mailing list > [EMAIL PROTECTED] > http://XFree86.Org/mailman/listinfo/devel > ___ Devel mailing list [EMAIL PROTECTED] http://XFree86.Org/mailman/listinfo/devel
Re: XFree 4.4.0 server crash on amd64 while running xsuite
On Fri, Jun 25, 2004 at 10:53:07AM -0700, Mark Vojkovich wrote: > On Fri, 25 Jun 2004, Nicolas Joly wrote: > > > On Thu, Jun 24, 2004 at 10:13:54AM -0700, Mark Vojkovich wrote: > > >It might be that there is some mismatch in types on amd64. > > > Eg. FB_SHIFT vs FbBits. It's hard to follow what's going on > > > in fb.h. > > > > Agreed, i'm not comfortable with that piece of code. > > > > But, in my case, FB_SHIFT is defined to 5 and sizeof(FbBits) to 4. > >There is some code in fb.h that suggests that it might have been > expecting FB_SHIFT == 6 for amd64. Seems like it should have worked > either way though. I thought about it, but the only define for FB_SHIFT (in fb.h): #ifndef FB_SHIFT #define FB_SHIFTLOG2_BITMAP_PAD #endif and LOG2_BITMAP_PAD is only defined in servermd.h : #ifndef BITMAP_SCANLINE_PAD #define BITMAP_SCANLINE_PAD 32 #define LOG2_BITMAP_PAD 5 #define LOG2_BYTES_PER_SCANLINE_PAD 2 #endif I suspect it cannot be changed easily ... >Looks like it walked off the edge of the "FbStip *src" array. > I suspect: > > src += srcStride; >or > src += srcX >> FB_STIP_SHIFT; > > is overincrementing. I'll check this. -- Nicolas Joly Biological Software and Databanks. Institut Pasteur, Paris. ___ Devel mailing list [EMAIL PROTECTED] http://XFree86.Org/mailman/listinfo/devel
