[Bug 1878651] Re: Assertion failure in e1000e_write_to_rx_buffers
Thanks for moving it over! ... let's close this one here on Launchpad now. ** Changed in: qemu Status: Confirmed => Invalid -- You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/1878651 Title: Assertion failure in e1000e_write_to_rx_buffers Status in QEMU: Invalid Bug description: Hello, While fuzzing, I found an input which triggers an assertion failure in e1000e_write_to_rx_buffers: /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1424: void e1000e_write_to_rx_buffers(E1000ECore *, hwaddr (*)[4], e1000e_ba_state *, const char *, dma_addr_t): Assertion `bastate->cur_idx < MAX_PS_BUFFERS' failed. #0 0x7686d761 in __GI_raise (sig=sig@entry=0x6) at ../sysdeps/unix/sysv/linux/raise.c:50 #1 0x7685755b in __GI_abort () at abort.c:79 #2 0x7685742f in __assert_fail_base (fmt=0x769bdb48 "%s%s%s:%u: %s%sAssertion `%s' failed.\n%n", assertion=0x57f691e0 "bastate->cur_idx < MAX_PS_BUFFERS", file=0x57f5a080 "/home/alxndr/Development/qemu/hw/net/e1000e_core.c", line=0x590, function=) at assert.c:92 #3 0x76866092 in __GI___assert_fail (assertion=0x57f691e0 "bastate->cur_idx < MAX_PS_BUFFERS", file=0x57f5a080 "/home/alxndr/Development/qemu/hw/net/e1000e_core.c", line=0x590, function=0x57f69240 <__PRETTY_FUNCTION__.e1000e_write_to_rx_buffers> "void e1000e_write_to_rx_buffers(E1000ECore *, hwaddr (*)[4], e1000e_ba_state *, const char *, dma_addr_t)") at assert.c:101 #4 0x56f8fbcd in e1000e_write_to_rx_buffers (core=0x7fffee07c4e0, ba=0x7fff8860, bastate=0x7fff88a0, data=0x7fffe61b8021 "", data_len=0x2000) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1424 #5 0x56f82f14 in e1000e_write_packet_to_guest (core=0x7fffee07c4e0, pkt=0x6114b900, rxr=0x7fff8d10, rss_info=0x7fff8d30) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1582 #6 0x56f80960 in e1000e_receive_iov (core=0x7fffee07c4e0, iov=0x6194e780, iovcnt=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1709 #7 0x56f7d457 in e1000e_nc_receive_iov (nc=0x61407460, iov=0x6194e780, iovcnt=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e.c:213 #8 0x56f64738 in net_tx_pkt_sendv (pkt=0x63128800, nc=0x61407460, iov=0x6194e780, iov_cnt=0x4) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:544 #9 0x56f63f0e in net_tx_pkt_send (pkt=0x63128800, nc=0x61407460) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:620 #10 0x56f650e5 in net_tx_pkt_send_loopback (pkt=0x63128800, nc=0x61407460) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:633 #11 0x56fb026a in e1000e_tx_pkt_send (core=0x7fffee07c4e0, tx=0x7fffee09c748, queue_index=0x0) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:664 #12 0x56faebf6 in e1000e_process_tx_desc (core=0x7fffee07c4e0, tx=0x7fffee09c748, dp=0x7fff9520, queue_index=0x0) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:743 #13 0x56fadfa8 in e1000e_start_xmit (core=0x7fffee07c4e0, txr=0x7fff9720) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:934 #14 0x56fa308b in e1000e_set_tdt (core=0x7fffee07c4e0, index=0xe06, val=0x563) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:2451 #15 0x56f84d7e in e1000e_core_write (core=0x7fffee07c4e0, addr=0x438, val=0x563, size=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:3261 #16 0x56f79497 in e1000e_mmio_write (opaque=0x7fffee079800, addr=0x438, val=0x563, size=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e.c:109 #17 0x564938b5 in memory_region_write_accessor (mr=0x7fffee07c110, addr=0x438, value=0x7fff9d90, size=0x4, shift=0x0, mask=0x, attrs=...) at /home/alxndr/Development/qemu/memory.c:483 #18 0x5649328a in access_with_adjusted_size (addr=0x438, value=0x7fff9d90, size=0x2, access_size_min=0x4, access_size_max=0x4, access_fn=0x56493360 , mr=0x7fffee07c110, attrs=...) at /home/alxndr/Development/qemu/memory.c:544 #19 0x56491df6 in memory_region_dispatch_write (mr=0x7fffee07c110, addr=0x438, data=0x563, op=MO_16, attrs=...) at /home/alxndr/Development/qemu/memory.c:1476 #20 0x562cbbf4 in flatview_write_continue (fv=0x60637820, addr=0xe1020438, attrs=..., ptr=0x6199ba80, len=0x2, addr1=0x438, l=0x2, mr=0x7fffee07c110) at /home/alxndr/Development/qemu/exec.c:3137 #21 0x562bbad9 in flatview_write (fv=0x60637820, addr=0xe1020023, attrs=..., buf=0x6199ba80, len=0x417) at /home/alxndr/Development/qemu/exec.c:3177 #22 0x562bb609 in address_space_write (as=0x608027a0, addr=0xe1020023, attrs=..., buf=0x6199ba80, len=0x417) at /home/alxndr/Development/qemu/exec.c:3268 #23 0x56488c07 in qtest_process_command
[Bug 1878651] Re: Assertion failure in e1000e_write_to_rx_buffers
I moved this report over to QEMU's new bug tracker on gitlab.com. Please continue with the discussion here: https://gitlab.com/qemu-project/qemu/-/issues/537 ** Bug watch added: gitlab.com/qemu-project/qemu/-/issues #537 https://gitlab.com/qemu-project/qemu/-/issues/537 -- You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/1878651 Title: Assertion failure in e1000e_write_to_rx_buffers Status in QEMU: Confirmed Bug description: Hello, While fuzzing, I found an input which triggers an assertion failure in e1000e_write_to_rx_buffers: /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1424: void e1000e_write_to_rx_buffers(E1000ECore *, hwaddr (*)[4], e1000e_ba_state *, const char *, dma_addr_t): Assertion `bastate->cur_idx < MAX_PS_BUFFERS' failed. #0 0x7686d761 in __GI_raise (sig=sig@entry=0x6) at ../sysdeps/unix/sysv/linux/raise.c:50 #1 0x7685755b in __GI_abort () at abort.c:79 #2 0x7685742f in __assert_fail_base (fmt=0x769bdb48 "%s%s%s:%u: %s%sAssertion `%s' failed.\n%n", assertion=0x57f691e0 "bastate->cur_idx < MAX_PS_BUFFERS", file=0x57f5a080 "/home/alxndr/Development/qemu/hw/net/e1000e_core.c", line=0x590, function=) at assert.c:92 #3 0x76866092 in __GI___assert_fail (assertion=0x57f691e0 "bastate->cur_idx < MAX_PS_BUFFERS", file=0x57f5a080 "/home/alxndr/Development/qemu/hw/net/e1000e_core.c", line=0x590, function=0x57f69240 <__PRETTY_FUNCTION__.e1000e_write_to_rx_buffers> "void e1000e_write_to_rx_buffers(E1000ECore *, hwaddr (*)[4], e1000e_ba_state *, const char *, dma_addr_t)") at assert.c:101 #4 0x56f8fbcd in e1000e_write_to_rx_buffers (core=0x7fffee07c4e0, ba=0x7fff8860, bastate=0x7fff88a0, data=0x7fffe61b8021 "", data_len=0x2000) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1424 #5 0x56f82f14 in e1000e_write_packet_to_guest (core=0x7fffee07c4e0, pkt=0x6114b900, rxr=0x7fff8d10, rss_info=0x7fff8d30) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1582 #6 0x56f80960 in e1000e_receive_iov (core=0x7fffee07c4e0, iov=0x6194e780, iovcnt=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1709 #7 0x56f7d457 in e1000e_nc_receive_iov (nc=0x61407460, iov=0x6194e780, iovcnt=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e.c:213 #8 0x56f64738 in net_tx_pkt_sendv (pkt=0x63128800, nc=0x61407460, iov=0x6194e780, iov_cnt=0x4) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:544 #9 0x56f63f0e in net_tx_pkt_send (pkt=0x63128800, nc=0x61407460) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:620 #10 0x56f650e5 in net_tx_pkt_send_loopback (pkt=0x63128800, nc=0x61407460) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:633 #11 0x56fb026a in e1000e_tx_pkt_send (core=0x7fffee07c4e0, tx=0x7fffee09c748, queue_index=0x0) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:664 #12 0x56faebf6 in e1000e_process_tx_desc (core=0x7fffee07c4e0, tx=0x7fffee09c748, dp=0x7fff9520, queue_index=0x0) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:743 #13 0x56fadfa8 in e1000e_start_xmit (core=0x7fffee07c4e0, txr=0x7fff9720) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:934 #14 0x56fa308b in e1000e_set_tdt (core=0x7fffee07c4e0, index=0xe06, val=0x563) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:2451 #15 0x56f84d7e in e1000e_core_write (core=0x7fffee07c4e0, addr=0x438, val=0x563, size=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:3261 #16 0x56f79497 in e1000e_mmio_write (opaque=0x7fffee079800, addr=0x438, val=0x563, size=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e.c:109 #17 0x564938b5 in memory_region_write_accessor (mr=0x7fffee07c110, addr=0x438, value=0x7fff9d90, size=0x4, shift=0x0, mask=0x, attrs=...) at /home/alxndr/Development/qemu/memory.c:483 #18 0x5649328a in access_with_adjusted_size (addr=0x438, value=0x7fff9d90, size=0x2, access_size_min=0x4, access_size_max=0x4, access_fn=0x56493360 , mr=0x7fffee07c110, attrs=...) at /home/alxndr/Development/qemu/memory.c:544 #19 0x56491df6 in memory_region_dispatch_write (mr=0x7fffee07c110, addr=0x438, data=0x563, op=MO_16, attrs=...) at /home/alxndr/Development/qemu/memory.c:1476 #20 0x562cbbf4 in flatview_write_continue (fv=0x60637820, addr=0xe1020438, attrs=..., ptr=0x6199ba80, len=0x2, addr1=0x438, l=0x2, mr=0x7fffee07c110) at /home/alxndr/Development/qemu/exec.c:3137 #21 0x562bbad9 in flatview_write (fv=0x60637820, addr=0xe1020023, attrs=..., buf=0x6199ba80, len=0x417) at /home/alxndr/Development/qemu/exec.c:3177 #22 0x562bb609 in address_space_write (as=0x608027a0, addr=0xe1020023,
[Bug 1878651] Re: Assertion failure in e1000e_write_to_rx_buffers
While the crash with the original reproducer seems to be gone, the minimized reproducer from comment #2 still triggers this issue. Setting to "Confirmed". ** Changed in: qemu Status: New => Confirmed -- You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/1878651 Title: Assertion failure in e1000e_write_to_rx_buffers Status in QEMU: Confirmed Bug description: Hello, While fuzzing, I found an input which triggers an assertion failure in e1000e_write_to_rx_buffers: /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1424: void e1000e_write_to_rx_buffers(E1000ECore *, hwaddr (*)[4], e1000e_ba_state *, const char *, dma_addr_t): Assertion `bastate->cur_idx < MAX_PS_BUFFERS' failed. #0 0x7686d761 in __GI_raise (sig=sig@entry=0x6) at ../sysdeps/unix/sysv/linux/raise.c:50 #1 0x7685755b in __GI_abort () at abort.c:79 #2 0x7685742f in __assert_fail_base (fmt=0x769bdb48 "%s%s%s:%u: %s%sAssertion `%s' failed.\n%n", assertion=0x57f691e0 "bastate->cur_idx < MAX_PS_BUFFERS", file=0x57f5a080 "/home/alxndr/Development/qemu/hw/net/e1000e_core.c", line=0x590, function=) at assert.c:92 #3 0x76866092 in __GI___assert_fail (assertion=0x57f691e0 "bastate->cur_idx < MAX_PS_BUFFERS", file=0x57f5a080 "/home/alxndr/Development/qemu/hw/net/e1000e_core.c", line=0x590, function=0x57f69240 <__PRETTY_FUNCTION__.e1000e_write_to_rx_buffers> "void e1000e_write_to_rx_buffers(E1000ECore *, hwaddr (*)[4], e1000e_ba_state *, const char *, dma_addr_t)") at assert.c:101 #4 0x56f8fbcd in e1000e_write_to_rx_buffers (core=0x7fffee07c4e0, ba=0x7fff8860, bastate=0x7fff88a0, data=0x7fffe61b8021 "", data_len=0x2000) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1424 #5 0x56f82f14 in e1000e_write_packet_to_guest (core=0x7fffee07c4e0, pkt=0x6114b900, rxr=0x7fff8d10, rss_info=0x7fff8d30) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1582 #6 0x56f80960 in e1000e_receive_iov (core=0x7fffee07c4e0, iov=0x6194e780, iovcnt=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1709 #7 0x56f7d457 in e1000e_nc_receive_iov (nc=0x61407460, iov=0x6194e780, iovcnt=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e.c:213 #8 0x56f64738 in net_tx_pkt_sendv (pkt=0x63128800, nc=0x61407460, iov=0x6194e780, iov_cnt=0x4) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:544 #9 0x56f63f0e in net_tx_pkt_send (pkt=0x63128800, nc=0x61407460) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:620 #10 0x56f650e5 in net_tx_pkt_send_loopback (pkt=0x63128800, nc=0x61407460) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:633 #11 0x56fb026a in e1000e_tx_pkt_send (core=0x7fffee07c4e0, tx=0x7fffee09c748, queue_index=0x0) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:664 #12 0x56faebf6 in e1000e_process_tx_desc (core=0x7fffee07c4e0, tx=0x7fffee09c748, dp=0x7fff9520, queue_index=0x0) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:743 #13 0x56fadfa8 in e1000e_start_xmit (core=0x7fffee07c4e0, txr=0x7fff9720) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:934 #14 0x56fa308b in e1000e_set_tdt (core=0x7fffee07c4e0, index=0xe06, val=0x563) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:2451 #15 0x56f84d7e in e1000e_core_write (core=0x7fffee07c4e0, addr=0x438, val=0x563, size=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:3261 #16 0x56f79497 in e1000e_mmio_write (opaque=0x7fffee079800, addr=0x438, val=0x563, size=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e.c:109 #17 0x564938b5 in memory_region_write_accessor (mr=0x7fffee07c110, addr=0x438, value=0x7fff9d90, size=0x4, shift=0x0, mask=0x, attrs=...) at /home/alxndr/Development/qemu/memory.c:483 #18 0x5649328a in access_with_adjusted_size (addr=0x438, value=0x7fff9d90, size=0x2, access_size_min=0x4, access_size_max=0x4, access_fn=0x56493360 , mr=0x7fffee07c110, attrs=...) at /home/alxndr/Development/qemu/memory.c:544 #19 0x56491df6 in memory_region_dispatch_write (mr=0x7fffee07c110, addr=0x438, data=0x563, op=MO_16, attrs=...) at /home/alxndr/Development/qemu/memory.c:1476 #20 0x562cbbf4 in flatview_write_continue (fv=0x60637820, addr=0xe1020438, attrs=..., ptr=0x6199ba80, len=0x2, addr1=0x438, l=0x2, mr=0x7fffee07c110) at /home/alxndr/Development/qemu/exec.c:3137 #21 0x562bbad9 in flatview_write (fv=0x60637820, addr=0xe1020023, attrs=..., buf=0x6199ba80, len=0x417) at /home/alxndr/Development/qemu/exec.c:3177 #22 0x562bb609 in address_space_write (as=0x608027a0, addr=0xe1020023, attrs=..., buf=0x6199ba80, len=0x417) at
[Bug 1878651] Re: Assertion failure in e1000e_write_to_rx_buffers
This was reported by OSS-Fuzz as Issue 27389 Here is a minimized reproducer: === Reproducer === cat << EOF | ./qemu-system-i386 -display none\ -machine accel=qtest -m 512M -machine q35 -nodefaults \ -device e1000e,netdev=net0 -netdev user,id=net0 -qtest stdio outl 0xcf8 0x8811 outl 0xcfc 0xc600 outl 0xcf8 0x8813 outl 0xcfc 0x9d outl 0xcf8 0x8801 outl 0xcfc 0x1600 write 0x9dc6500a 0x2 0x2080 write 0x9dc6011a 0x2 0x1040 write 0x9dc60120 0x1 0xa0 write 0x9dc60102 0x2 0x4e04 outl 0xcf8 0x8811 outl 0xcfc 0x5ac600 write 0x5ac6042a 0x2 0x00ff write 0x5ac60402 0x2 0x020 write 0x10 0x1 0xff write 0x11 0x1 0x01 write 0x19 0x1 0xe7 write 0x1b 0x1 0x11 write 0x20b 0x1 0x08 write 0x20d 0x1 0x15 write 0xac7 0x1 0x10 write 0x5ac6043a 0x1 0x10 EOF -- You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/1878651 Title: Assertion failure in e1000e_write_to_rx_buffers Status in QEMU: New Bug description: Hello, While fuzzing, I found an input which triggers an assertion failure in e1000e_write_to_rx_buffers: /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1424: void e1000e_write_to_rx_buffers(E1000ECore *, hwaddr (*)[4], e1000e_ba_state *, const char *, dma_addr_t): Assertion `bastate->cur_idx < MAX_PS_BUFFERS' failed. #0 0x7686d761 in __GI_raise (sig=sig@entry=0x6) at ../sysdeps/unix/sysv/linux/raise.c:50 #1 0x7685755b in __GI_abort () at abort.c:79 #2 0x7685742f in __assert_fail_base (fmt=0x769bdb48 "%s%s%s:%u: %s%sAssertion `%s' failed.\n%n", assertion=0x57f691e0 "bastate->cur_idx < MAX_PS_BUFFERS", file=0x57f5a080 "/home/alxndr/Development/qemu/hw/net/e1000e_core.c", line=0x590, function=) at assert.c:92 #3 0x76866092 in __GI___assert_fail (assertion=0x57f691e0 "bastate->cur_idx < MAX_PS_BUFFERS", file=0x57f5a080 "/home/alxndr/Development/qemu/hw/net/e1000e_core.c", line=0x590, function=0x57f69240 <__PRETTY_FUNCTION__.e1000e_write_to_rx_buffers> "void e1000e_write_to_rx_buffers(E1000ECore *, hwaddr (*)[4], e1000e_ba_state *, const char *, dma_addr_t)") at assert.c:101 #4 0x56f8fbcd in e1000e_write_to_rx_buffers (core=0x7fffee07c4e0, ba=0x7fff8860, bastate=0x7fff88a0, data=0x7fffe61b8021 "", data_len=0x2000) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1424 #5 0x56f82f14 in e1000e_write_packet_to_guest (core=0x7fffee07c4e0, pkt=0x6114b900, rxr=0x7fff8d10, rss_info=0x7fff8d30) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1582 #6 0x56f80960 in e1000e_receive_iov (core=0x7fffee07c4e0, iov=0x6194e780, iovcnt=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:1709 #7 0x56f7d457 in e1000e_nc_receive_iov (nc=0x61407460, iov=0x6194e780, iovcnt=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e.c:213 #8 0x56f64738 in net_tx_pkt_sendv (pkt=0x63128800, nc=0x61407460, iov=0x6194e780, iov_cnt=0x4) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:544 #9 0x56f63f0e in net_tx_pkt_send (pkt=0x63128800, nc=0x61407460) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:620 #10 0x56f650e5 in net_tx_pkt_send_loopback (pkt=0x63128800, nc=0x61407460) at /home/alxndr/Development/qemu/hw/net/net_tx_pkt.c:633 #11 0x56fb026a in e1000e_tx_pkt_send (core=0x7fffee07c4e0, tx=0x7fffee09c748, queue_index=0x0) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:664 #12 0x56faebf6 in e1000e_process_tx_desc (core=0x7fffee07c4e0, tx=0x7fffee09c748, dp=0x7fff9520, queue_index=0x0) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:743 #13 0x56fadfa8 in e1000e_start_xmit (core=0x7fffee07c4e0, txr=0x7fff9720) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:934 #14 0x56fa308b in e1000e_set_tdt (core=0x7fffee07c4e0, index=0xe06, val=0x563) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:2451 #15 0x56f84d7e in e1000e_core_write (core=0x7fffee07c4e0, addr=0x438, val=0x563, size=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e_core.c:3261 #16 0x56f79497 in e1000e_mmio_write (opaque=0x7fffee079800, addr=0x438, val=0x563, size=0x4) at /home/alxndr/Development/qemu/hw/net/e1000e.c:109 #17 0x564938b5 in memory_region_write_accessor (mr=0x7fffee07c110, addr=0x438, value=0x7fff9d90, size=0x4, shift=0x0, mask=0x, attrs=...) at /home/alxndr/Development/qemu/memory.c:483 #18 0x5649328a in access_with_adjusted_size (addr=0x438, value=0x7fff9d90, size=0x2, access_size_min=0x4, access_size_max=0x4, access_fn=0x56493360 , mr=0x7fffee07c110, attrs=...) at /home/alxndr/Development/qemu/memory.c:544 #19 0x56491df6 in memory_region_dispatch_write (mr=0x7fffee07c110, addr=0x438, data=0x563, op=MO_16, attrs=...) at
