Maarten: Filled in test case stuff (what did you mean about eth2?) I wonder if this should be marked security; we know it's scribbling over bits of the X server, that's running as root, although I don't know how to control what is scribbled where
(I'll get precise tested soon; just as soon as I convince LVM to allocate the disk space...) ** Description changed: - [Impact] - * Fixes a null pointer dereference when shadowfb is out of bounds, in a similar way to other ddx drivers. + [Impact] + * Fixes a null pointer dereference when shadowfb is out of bounds, in a similar way to other ddx drivers. [Test Case] - * Start virt-manager, create quantal-amd64 vm, make sure cirrus is used as video driver - * XXX? What to do here? I don't have a eth2 + * Start virt-manager, create quantal-amd64 vm, make sure cirrus is used as video driver + * Perform a fresh install of Quantal 64bit (I used an iso image) + - I used default options within the install + * log in + * start a terminal via unity (I did that by searching for terminal in unity) + * ctrl-alt-down (to switch virtual desktop in the VM) + <X crashes and returns you to lightdm login> - [Regression Potential] - * Low, changes are limited to the shadowfb code paths. Since it limits the width/height of the memcpy's performed and nothing else I either expect the bug not to be fixed, or not make it worse at least. Still I'll keep watching cirrus bug reports to see if any new ones have been introduced by the fix. + + [Regression Potential] + * Low, changes are limited to the shadowfb code paths. Since it limits the width/height of the memcpy's performed and nothing else I either expect the bug not to be fixed, or not make it worse at least. Still I'll keep watching cirrus bug reports to see if any new ones have been introduced by the fix. [Other Info] - * I upstreamed the bug fix and did a new release for cirrus. Raring already has the bug fixed, no new bug reports have popped up yet about it. + * I upstreamed the bug fix and did a new release for cirrus. Raring already has the bug fixed, no new bug reports have popped up yet about it. [Original bug report] No login possible on KVM-based virtual machine (with virt-manager) and network settings Source device: Host device eth2 : macvtap Device model: virtio Source mode: VEPA With source mode set to "Default" it works. ProblemType: Crash DistroRelease: Ubuntu 12.10 Package: xserver-xorg-core 2:1.12.99.905-0ubuntu3 ProcVersionSignature: Ubuntu 3.5.0-13.13-generic 3.5.3 Uname: Linux 3.5.0-13-generic x86_64 ApportVersion: 2.5.1-0ubuntu3 Architecture: amd64 CrashCounter: 1 CurrentDmesg: [ 3.809292] init: plymouth-stop pre-start process (1197) terminated with status 1 [ 5.314446] hda-intel: Invalid position buffer, using LPIB read method instead. [ 9.269441] hda-intel: IRQ timing workaround is activated for card #0. Suggest a bigger bdl_pos_adj. Date: Wed Aug 29 22:04:57 2012 DistUpgraded: Fresh install DistroCodename: quantal DistroVariant: ubuntu ExecutablePath: /usr/bin/Xorg GraphicsCard: Cirrus Logic GD 5446 [1013:00b8] (prog-if 00 [VGA controller]) Subsystem: Red Hat, Inc Device [1af4:1100] InstallationMedia: Ubuntu 11.10 "Oneiric Ocelot" - Release amd64 (20111012) Lsusb: Bus 001 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub MachineType: Bochs Bochs ProcCmdline: /usr/bin/X :0 -core -auth /var/run/lightdm/root/:0 -nolisten tcp vt7 -novtswitch ProcEnviron: ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.5.0-13-generic root=UUID=2258d315-c1f3-4f2c-b925-01ab5cdf448d ro quiet splash vt.handoff=7 Signal: 6 SourcePackage: xorg-server StacktraceTop: ?? () from /lib/x86_64-linux-gnu/libc.so.6 cirRefreshArea () from /usr/lib/xorg/modules/drivers/cirrus_drv.so ?? () from /usr/lib/xorg/modules/libshadowfb.so ?? () ?? () Title: Xorg crashed with SIGABRT in cirRefreshArea() UpgradeStatus: No upgrade log present (probably fresh install) UserGroups: dmi.bios.date: 01/01/2007 dmi.bios.vendor: Bochs dmi.bios.version: Bochs dmi.chassis.type: 1 dmi.chassis.vendor: Bochs dmi.modalias: dmi:bvnBochs:bvrBochs:bd01/01/2007:svnBochs:pnBochs:pvr:cvnBochs:ct1:cvr: dmi.product.name: Bochs dmi.sys.vendor: Bochs version.compiz: compiz 1:0.9.8+bzr3319-0ubuntu3 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.38-0ubuntu2 version.libgl1-mesa-dri: libgl1-mesa-dri 9.0~git20120821.c1114c61-0ubuntu2 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 9.0~git20120821.c1114c61-0ubuntu2 version.xserver-xorg-core: xserver-xorg-core 2:1.12.99.905-0ubuntu3 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.7.3-0ubuntu1 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:6.99.99~git20120713.6ef1ad6a-0ubuntu1 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.20.3-0ubuntu1 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.1-4~ubuntu1 -- You received this bug notification because you are a member of Ubuntu-X, which is subscribed to xserver-xorg-video-cirrus in Ubuntu. https://bugs.launchpad.net/bugs/1043513 Title: Xorg crashed with SIGABRT in memcpy() via cirRefreshArea() under KVM virtual machine To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xserver-xorg-video-cirrus/+bug/1043513/+subscriptions _______________________________________________ Mailing list: https://launchpad.net/~ubuntu-x-swat Post to : ubuntu-x-swat@lists.launchpad.net Unsubscribe : https://launchpad.net/~ubuntu-x-swat More help : https://help.launchpad.net/ListHelp