[Bug 1883728] Re: address_space_unmap: Assertion `mr != NULL' failed.
Ok, thanks for checking! So seems like this has been fixed, thus I'm closing the bug. If it happens again, please open a new ticket in our new gitlab issue tracker. ** Changed in: qemu Status: Incomplete => Fix Released -- You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/1883728 Title: address_space_unmap: Assertion `mr != NULL' failed. Status in QEMU: Fix Released Bug description: To reproduce run the QEMU with the following command line: ``` qemu-system-x86_64 -cdrom hypertrash_os_bios_crash.iso -nographic -m 100 -enable-kvm -device virtio-gpu-pci -device nec-usb-xhci -device usb-audio ``` QEMU Version: ``` # qemu-5.0.0 $ ./configure --target-list=x86_64-softmmu --enable-sanitizers; make $ x86_64-softmmu/qemu-system-x86_64 --version QEMU emulator version 5.0.0 Copyright (c) 2003-2020 Fabrice Bellard and the QEMU Project developers ``` To manage notifications about this bug go to: https://bugs.launchpad.net/qemu/+bug/1883728/+subscriptions
[Bug 1883728] Re: address_space_unmap: Assertion `mr != NULL' failed.
OSS-Fuzz never picked up on this one, so I'm guessing it was fixed sometime between 5.1 and 5.2. Not a fun section to bisect, but looks like it was fixed by 21bc31524e ("hw: xhci: check return value of 'usb_packet_map'") -- You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/1883728 Title: address_space_unmap: Assertion `mr != NULL' failed. Status in QEMU: Incomplete Bug description: To reproduce run the QEMU with the following command line: ``` qemu-system-x86_64 -cdrom hypertrash_os_bios_crash.iso -nographic -m 100 -enable-kvm -device virtio-gpu-pci -device nec-usb-xhci -device usb-audio ``` QEMU Version: ``` # qemu-5.0.0 $ ./configure --target-list=x86_64-softmmu --enable-sanitizers; make $ x86_64-softmmu/qemu-system-x86_64 --version QEMU emulator version 5.0.0 Copyright (c) 2003-2020 Fabrice Bellard and the QEMU Project developers ``` To manage notifications about this bug go to: https://bugs.launchpad.net/qemu/+bug/1883728/+subscriptions
[Bug 1883728] Re: address_space_unmap: Assertion `mr != NULL' failed.
Can you still reproduce this assert with QEMU v6.0 ? For me, it does not seem to run into the assert() anymore, so I assume this has been fixed within the last months? ** Changed in: qemu Status: New => Incomplete ** Tags added: fuzzer usb -- You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/1883728 Title: address_space_unmap: Assertion `mr != NULL' failed. Status in QEMU: Incomplete Bug description: To reproduce run the QEMU with the following command line: ``` qemu-system-x86_64 -cdrom hypertrash_os_bios_crash.iso -nographic -m 100 -enable-kvm -device virtio-gpu-pci -device nec-usb-xhci -device usb-audio ``` QEMU Version: ``` # qemu-5.0.0 $ ./configure --target-list=x86_64-softmmu --enable-sanitizers; make $ x86_64-softmmu/qemu-system-x86_64 --version QEMU emulator version 5.0.0 Copyright (c) 2003-2020 Fabrice Bellard and the QEMU Project developers ``` To manage notifications about this bug go to: https://bugs.launchpad.net/qemu/+bug/1883728/+subscriptions
[Bug 1883728] Re: address_space_unmap: Assertion `mr != NULL' failed.
Here's a qtest reproducer: cat << EOF | ./i386-softmmu/qemu-system-i386 \ -device nec-usb-xhci -trace usb\* \ -device usb-audio -device usb-storage,drive=mydrive \ -drive id=mydrive,file=null-co://,size=2M,format=raw,if=none \ -nodefaults -nographic -qtest stdio outl 0xcf8 0x80001016 outl 0xcfc 0x3c319f0d outl 0xcf8 0x80001004 outl 0xcfc 0xc77695e writel 0x9f0d0040 0xd855 write 0x1d 0x1 0x27 write 0x2d 0x1 0x2e write 0x17232 0x1 0x03 write 0x17254 0x1 0x05 write 0x17276 0x1 0x72 write 0x17278 0x1 0x02 write 0x3d 0x1 0x27 write 0x40 0x1 0x2e write 0x41 0x1 0x72 write 0x42 0x1 0x01 write 0x4d 0x1 0x2e write 0x4f 0x1 0x01 writeq 0x9f0d2000 0x5c051401 writeq 0x9f0d2000 0x5c051401 write 0x2008d 0x1 0x13 writeq 0x9f0d2000 0x100ef010009 write 0x200ad 0x1 0x27 write 0x200bd 0x1 0x5c write 0x200cd 0x1 0x2e write 0x200dd 0x1 0x2f write 0x200e8 0x1 0x08 write 0x200ec 0x1 0xfe write 0x200ed 0x1 0x08 write 0x200fd 0x1 0x05 write 0x2010d 0x1 0x2e write 0x2011d 0x1 0x2f write 0x2012d 0x1 0x08 write 0x20137 0x1 0x5e write 0x2013a 0x1 0x2f write 0x2013d 0x1 0x05 write 0x2014d 0x1 0x13 writeq 0x9f0d2000 0x100ef010009 EOF ... [S +0.017146] OK [R +0.017149] writeq 0x9f0d2000 0x5c051401 30899@1597183147.299108:usb_xhci_doorbell_write off 0x, val 0x 30899@1597183147.299112:usb_xhci_fetch_trb addr 0x, TRB_RESERVED, p 0x, s 0x, c 0x 30899@1597183147.299115:usb_xhci_doorbell_write off 0x0004, val 0x5c051401 OK [S +0.017162] OK [R +0.017166] writeq 0x9f0d2000 0x5c051401 30899@1597183147.299124:usb_xhci_doorbell_write off 0x, val 0x 30899@1597183147.299126:usb_xhci_fetch_trb addr 0x0010, CR_ENABLE_SLOT, p 0x, s 0x, c 0x2700 30899@1597183147.299129:usb_xhci_slot_enable slotid 1 30899@1597183147.299132:usb_xhci_fetch_trb addr 0x0020, CR_ADDRESS_DEVICE, p 0x, s 0x, c 0x2e00 30899@1597183147.299134:usb_xhci_fetch_trb addr 0x0030, CR_ENABLE_SLOT, p 0x, s 0x, c 0x2700 30899@1597183147.299137:usb_xhci_slot_enable slotid 2 30899@1597183147.299139:usb_xhci_fetch_trb addr 0x0040, CR_ADDRESS_DEVICE, p 0x0001722e, s 0x, c 0x01002e00 30899@1597183147.299144:usb_xhci_slot_address slotid 1, port 1 30899@1597183147.299148:usb_xhci_ep_enable slotid 1, epid 1 30899@1597183147.299151:usb_xhci_fetch_trb addr 0x0050, TRB_RESERVED, p 0x, s 0x, c 0x 30899@1597183147.299154:usb_xhci_doorbell_write off 0x0004, val 0x5c051401 30899@1597183147.299157:usb_xhci_ep_kick slotid 1, epid 1, streamid 23557 30899@1597183147.299161:usb_xhci_fetch_trb addr 0x00020070, TRB_RESERVED, p 0x, s 0x, c 0x OK [S +0.017210] OK [R +0.017214] write 0x2008d 0x1 0x13 OK [S +0.017219] OK [R +0.017223] writeq 0x9f0d2000 0x100ef010009 30899@1597183147.299181:usb_xhci_doorbell_write off 0x, val 0x0009 30899@1597183147.299183:usb_xhci_doorbell_write off 0x0004, val 0x0100ef01 30899@1597183147.299185:usb_xhci_ep_kick slotid 1, epid 1, streamid 256 30899@1597183147.299189:usb_xhci_fetch_trb addr 0x00020080, TR_STATUS, p 0x, s 0x, c 0x1300 30899@1597183147.299191:usb_xhci_xfer_start 0x5622548f9760: slotid 1, epid 1, streamid 0 TRB_SETUP 1300 1300 1300 0 30899@1597183147.299196:usb_xhci_fetch_trb addr 0x00020090, TRB_RESERVED, p 0x, s 0x, c 0x OK [S +0.017244] OK [R +0.017248] write 0x200ad 0x1 0x27 OK [S +0.017338] OK [R +0.017342] writeq 0x9f0d2000 0x100ef010009 30899@1597183147.299300:usb_xhci_doorbell_write off 0x, val 0x0009 30899@1597183147.299302:usb_xhci_doorbell_write off 0x0004, val 0x0100ef01 30899@1597183147.299304:usb_xhci_ep_kick slotid 1, epid 1, streamid 256 30899@1597183147.299308:usb_xhci_fetch_trb addr 0x000200a0, CR_ENABLE_SLOT, p 0x, s 0x, c 0x2700 30899@1597183147.299310:usb_xhci_xfer_start 0x5622548f9890: slotid 1, epid 1, streamid 0 TRB_SETUP 2700 2700 2700 0 30899@1597183147.299315:usb_xhci_fetch_trb addr 0x000200b0, CR_NOOP, p 0x, s 0x, c 0x5c00 30899@1597183147.299318:usb_xhci_xfer_start 0x5622548f99a0: slotid 1, epid 1, streamid 0 TRB_SETUP 5c00 5c00 5c00 0 30899@1597183147.299322:usb_xhci_fetch_trb addr 0x000200c0, CR_ADDRESS_DEVICE, p 0x, s 0x, c 0x2e00 30899@1597183147.299325:usb_xhci_xfer_start 0x5622548f9ab0: slotid 1, epid 1, streamid 0 TRB_SETUP 2e00 2e00 2e00 0 30899@1597183147.299329:usb_xhci_fetch_trb addr 0x000200d0, CR_ADDRESS_DEVICE, p 0x, s 0x, c 0x2f00 30899@1597183147.299331:usb_xhci_xfer_start 0x5622548f9c10: slotid 1, epid 1, streamid 0 TRB_SETUP 2f00 2f00 2f00 0
[Bug 1883728] Re: address_space_unmap: Assertion `mr != NULL' failed.
** Tags added: testcase -- You received this bug notification because you are a member of qemu- devel-ml, which is subscribed to QEMU. https://bugs.launchpad.net/bugs/1883728 Title: address_space_unmap: Assertion `mr != NULL' failed. Status in QEMU: New Bug description: To reproduce run the QEMU with the following command line: ``` qemu-system-x86_64 -cdrom hypertrash_os_bios_crash.iso -nographic -m 100 -enable-kvm -device virtio-gpu-pci -device nec-usb-xhci -device usb-audio ``` QEMU Version: ``` # qemu-5.0.0 $ ./configure --target-list=x86_64-softmmu --enable-sanitizers; make $ x86_64-softmmu/qemu-system-x86_64 --version QEMU emulator version 5.0.0 Copyright (c) 2003-2020 Fabrice Bellard and the QEMU Project developers ``` To manage notifications about this bug go to: https://bugs.launchpad.net/qemu/+bug/1883728/+subscriptions