* Changlimin (changli...@h3c.com) wrote: > Hi, > I have the same issue as https://www.qubes-os.org/doc/windows-vm/ , it's not > easy to reproduce. > cpu_physical_memory_snapshot_get_dirty: Assertion `start + length <= > snap->end' failed > > Qemu version is 2.12.0. > (gdb) bt > #0 0x00007f504ed6fc37 in raise () from /lib/x86_64-linux-gnu/libc.so.6 > #1 0x00007f504ed73028 in abort () from /lib/x86_64-linux-gnu/libc.so.6 > #2 0x00007f504ed68bf6 in ?? () from /lib/x86_64-linux-gnu/libc.so.6 > #3 0x00007f504ed68ca2 in __assert_fail () from > /lib/x86_64-linux-gnu/libc.so.6 > #4 0x00005585bbdc9641 in cpu_physical_memory_snapshot_get_dirty > (snap=snap@entry=0x5585bfdc2ff0, start=<optimized out>, length=<optimized > out>) > at /qemu-2.12/exec.c:1264 > #5 0x00005585bbe2b4de in memory_region_snapshot_get_dirty > (mr=mr@entry=0x5585c06e3d10, snap=snap@entry=0x5585bfdc2ff0, addr=<optimized > out>, > size=<optimized out>) at /qemu-2.12/memory.c:1997 > #6 0x00005585bbe552a4 in vga_draw_graphic (full_update=0, s=0x5585c06e3d00) > at /qemu-2.12/hw/display/vga.c:1671 > #7 vga_update_display (opaque=0x5585c06e3d00) at > /qemu-2.12/hw/display/vga.c:1767 > #8 0x00005585bc0d9a8f in qemu_spice_display_refresh (ssd=0x5585c06e3930) at > /qemu-2.12/ui/spice-display.c:478 > #9 0x00005585bc0ced72 in dpy_refresh (s=0x5585c081b2a0) at > /qemu-2.12/ui/console.c:1629 > #10 gui_update (opaque=0x5585c081b2a0) at /qemu-2.12/ui/console.c:203 > #11 0x00005585bc1d333c in timerlist_run_timers (timer_list=0x5585bee1f950) at > /qemu-2.12/util/qemu-timer.c:536 > #12 0x00005585bc1d35a3 in qemu_clock_run_timers (type=QEMU_CLOCK_REALTIME) at > /qemu-2.12/util/qemu-timer.c:547 > #13 qemu_clock_run_all_timers () at /qemu-2.12/util/qemu-timer.c:674 > #14 0x00005585bc1d3aa4 in main_loop_wait (nonblocking=<optimized out>) at > /qemu-2.12/util/main-loop.c:528 > #15 0x00005585bbdc2f8a in main_loop () at /qemu-2.12/vl.c:1973 > #16 main (argc=<optimized out>, argv=<optimized out>, envp=<optimized out>) > at /qemu-2.12/vl.c:4804 > > (gdb) frame 5 > (gdb) p/x *snap > $1 = {start = 0x1000c0000, end = 0x1000c0000, dirty = 0x5585bfdc3000} > > Here the snap->start is identical to snap->end , I think something is wrong. > In function vga_draw_graphic, the snap is allocated from > region_start/region_end. > snap = memory_region_snapshot_and_clear_dirty(&s->vram, region_start, > region_end - > region_start, > DIRTY_MEMORY_VGA); > > Is that possible for region_start== region_end ?
Could this be the same bug as https://bugs.launchpad.net/qemu/+bug/1784900/ ? I'm not sure if the bug existed in 2.12.0 though. Dave > BR, > Chang Limin > -- Dr. David Alan Gilbert / dgilb...@redhat.com / Manchester, UK
