[vbox-dev] OSE r32797 causes null-pointer dereference on linux host

walt w41ter at gmail.com
Wed Oct 6 18:00:06 GMT 2010 

On 10/05/2010 11:41 AM, Knut Osmundsen wrote:
> Hi Walt,
>
> do you see any panic message or anything which gives a slight hint to where things are going wrong? Could you provide me with the kernel version number + bit count, please?
>
> Kind Regards,
>   bird
>
> On Oct 5, 2010, at 6:13 PM, walt wrote:
>
>> Hi team,
>>
>> This commit crashes my linux host just after starting XP guest:
>>
>> --- src/VBox/VMM/VMMR0/GVMMR0.cpp       (revision 32796)
>> +++ src/VBox/VMM/VMMR0/GVMMR0.cpp       (revision 32797)

Hi Knut,

My amd64 machine doesn't print anything at all, but syslog on my
x86 is included below.  It makes sense that the offending code has
to do with timers because GVMM_SCHED_WITH_PPT is the only thing
changed by r32797.

Might be something in my kernel config that causes this crash,
e.g.NO_HZ (tickless system)?

Oct  6 10:26:09 k2 kernel: last sysfs file: /sys/devices/pci0000:00/0000:00:10.3/usb1/1-4/1-4:1.0/host5/target5:0:0/5:0:0:0/block/sdc/sdc1/stat
Oct  6 10:26:09 k2 kernel: Modules linked in: vboxdrv snd_via82xx snd_ac97_codec ac97_bus snd_pcm sr_mod cdrom snd_timer usb_storage snd_page_alloc sg snd_mpu401_uart i2c_viapro snd_rawmidi via_rhine via_agp snd i2c_core mii agpgart
Oct  6 10:26:09 k2 kernel:
Oct  6 10:26:09 k2 kernel: Pid: 5238, comm: VirtualBox Not tainted 2.6.36-rc6-00137-g7c6d45e #270 VT8367-8235/VT8367-8235
Oct  6 10:26:09 k2 kernel: EIP: 0060:[enqueue_hrtimer+50/102] EFLAGS: 00210046 CPU: 0
Oct  6 10:26:09 k2 kernel: EIP: 0060:[<c1031c20>] EFLAGS: 00210046 CPU: 0
Oct  6 10:26:09 k2 kernel: EAX: f6dc8d18 EBX: f6dc8d18 ECX: 00000bd8 EDX: 00000bd0
Oct  6 10:26:09 k2 kernel: ESI: 00000001 EDI: 00000000 EBP: eb705d44 ESP: eb705d38
Oct  6 10:26:09 k2 kernel:  DS: 007b ES: 007b FS: 0000 GS: 0033 SS: 0068
Oct  6 10:26:09 k2 kernel: Process VirtualBox (pid: 5238, ti=eb704000 task=d9be8e00 task.ti=eb704000)
Oct  6 10:26:09 k2 kernel: Stack:
Oct  6 10:26:09 k2 kernel:  00000000 00000bd0 f6dc8d18 eb705d6c c10321f7 d191217c 229d2991 00000000
Oct  6 10:26:09 k2 kernel: <0> 00200292 00000bd0 229d2991 3b9aca00 f6dc8d18 eb705d80 c103231b 00000000
Oct  6 10:26:09 k2 kernel: <0> 00000002 00000001 eb705da4 f88ac788 00000002 00000002 01205800 00000bd0
Oct  6 10:26:09 k2 kernel: Call Trace:
Oct  6 10:26:09 k2 kernel:  [__hrtimer_start_range_ns+162/439] ? 0xc10321f7
Oct  6 10:26:09 k2 kernel:  [<c10321f7>] ? 0xc10321f7
Oct  6 10:26:09 k2 kernel:  [hrtimer_start+15/17] ? 0xc103231b
Oct  6 10:26:09 k2 kernel:  [<c103231b>] ? 0xc103231b
Oct  6 10:26:09 k2 kernel:  [<f88ac788>] ? 0xf88ac788
Oct  6 10:26:09 k2 kernel:  [<f88ac95c>] ? 0xf88ac95c
Oct  6 10:26:09 k2 kernel:  [<f88aaf01>] ? 0xf88aaf01
Oct  6 10:26:09 k2 kernel:  [<f88aafa2>] ? 0xf88aafa2
Oct  6 10:26:09 k2 kernel:  [<f88ac939>] ? 0xf88ac939
Oct  6 10:26:09 k2 kernel:  [<f88ac8fa>] ? 0xf88ac8fa
Oct  6 10:26:09 k2 kernel:  [<f88ac939>] ? 0xf88ac939
Oct  6 10:26:09 k2 kernel:  [hrtimer_forward+271/291] ? 0xc1031867
Oct  6 10:26:09 k2 kernel:  [<c1031867>] ? 0xc1031867
Oct  6 10:26:09 k2 kernel:  [<f88a312a>] ? 0xf88a312a
Oct  6 10:26:09 k2 kernel:  [<f88a3626>] ? 0xf88a3626
Oct  6 10:26:09 k2 kernel:  [<f88a3158>] ? 0xf88a3158
Oct  6 10:26:09 k2 kernel:  [<f88a312a>] ? 0xf88a312a
Oct  6 10:26:09 k2 kernel:  [do_vfs_ioctl+1112/1185] ? 0xc1077923
Oct  6 10:26:09 k2 kernel:  [<c1077923>] ? 0xc1077923
Oct  6 10:26:09 k2 kernel:  [run_timer_softirq+20/431] ? 0xc1024e2e
Oct  6 10:26:09 k2 kernel:  [<c1024e2e>] ? 0xc1024e2e
Oct  6 10:26:09 k2 kernel:  [__do_softirq+195/210] ? 0xc102185e
Oct  6 10:26:09 k2 kernel:  [<c102185e>] ? 0xc102185e
Oct  6 10:26:09 k2 kernel:  [sys_ioctl+46/72] ? 0xc107799a
Oct  6 10:26:09 k2 kernel:  [<c107799a>] ? 0xc107799a
Oct  6 10:26:09 k2 kernel:  [sysenter_do_call+18/38] ? 0xc1002550
Oct  6 10:26:09 k2 kernel:  [<c1002550>] ? 0xc1002550
Oct  6 10:26:09 k2 kernel: Code: 31 ff 56 be 01 00 00 00 53 89 c3 eb 1e 8b 7b 10 3b 78 10 8b 4b 0c 7f 0c 7c 05 3b 48 0c 73 05 8d 48 08 eb 05 8d 48 04 31 f6 89 c7 <8b> 01 85 c0 75 dc 85 f6 74 03 89 5a 0c 89 3b c7 43 04 00 00 00
Oct  6 10:26:09 k2 kernel: EIP: [enqueue_hrtimer+50/102]  SS:ESP 0068:eb705d38
Oct  6 10:26:09 k2 kernel: EIP: [<c1031c20>]  SS:ESP 0068:eb705d38
Oct  6 10:26:09 k2 kernel: CR2: 0000000000000bd8
Oct  6 10:26:09 k2 kernel: ---[ end trace d6cc807863365223 ]---
Oct  6 10:26:09 k2 kernel: note: VirtualBox[5238] exited with preempt_count 3

More information about the vbox-dev mailing list