VirtualBox

Opened 10 years ago

Last modified 7 years ago

#13577 closed defect

virtualbox with 4.3.18 crashes by NULL pointer issue with the EHCI enabled in the guest system — at Initial Version

Reported by: swarron Owned by:
Component: USB Version: VirtualBox 4.3.18
Keywords: crash null-pointer Cc:
Guest type: all Host type: Linux

Description

When the guest system is configured with EHCI enabled, the virtualbox will crash due to NULL pointer access. The issue occurs in 4.3.18 while 4.3.14 works very well with the same configuration. So this issue seems an new bug introduced in 4.3.18. Following is the backtrace.

(gdb) c Continuing. [Switching to Thread 0x7f0272ffb700 (LWP 6133)]

Catchpoint 1 (signal SIGSEGV), 0x00007f024af5fc41 in ?? () from /usr/lib/virtualbox/VBoxDD.so (gdb) bt #0 0x00007f024af5fc41 in ?? () from /usr/lib/virtualbox/VBoxDD.so #1 0x00007f024a94cc42 in VUSBIRhReapAsyncUrbs (cMillies=<optimized out>, pInterface=0x7f025d374420) at /mnt/tinderbox/extpacks-4.3/include/VBox/vusb.h:600 #2 ehciR3FrameBoundaryTimer (pDevIns=<optimized out>, pTimer=<optimized out>, pvUser=0x7f02722f3980) at /mnt/tinderbox/extpacks-4.3/src/VBox/Devices/USB/DevEHCI.cpp:3376 #3 0x00007f028ca081c3 in ?? () from /usr/lib/virtualbox/VBoxVMM.so #4 0x00007f028ca0b7b6 in TMR3TimerQueuesDo () from /usr/lib/virtualbox/VBoxVMM.so #5 0x00007f028c9a9537 in ?? () from /usr/lib/virtualbox/VBoxVMM.so #6 0x00007f028c9ad4f9 in ?? () from /usr/lib/virtualbox/VBoxVMM.so #7 0x00007f028c9aa43f in ?? () from /usr/lib/virtualbox/VBoxVMM.so #8 0x00007f028ca149a3 in ?? () from /usr/lib/virtualbox/VBoxVMM.so #9 0x00007f029e0363ac in ?? () from /usr/lib/virtualbox/VBoxRT.so #10 0x00007f029e0ad01c in ?? () from /usr/lib/virtualbox/VBoxRT.so #11 0x00007f029e92f0a4 in start_thread (arg=0x7f0272ffb700) at pthread_create.c:309 #12 0x00007f029e45fcbd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:111 (gdb) info reg rax 0x7f025d374420 139648130565152 rbx 0x7f02722f3980 139648482359680 rcx 0x7f02722d7770 139648482244464 rdx 0x7f02722f3980 139648482359680 rsi 0x0 0 rdi 0x7f025d374420 139648130565152 rbp 0x7f0272ffacc0 0x7f0272ffacc0 rsp 0x7f0272ffaca0 0x7f0272ffaca0 r8 0xb7d740 12048192 r9 0x7f02722f4f20 139648482365216 r10 0x7f029e379a00 139649221106176 r11 0x0 0 r12 0x7f028cb49800 139648927307776 r13 0x7f02722f4e30 139648482364976 r14 0x7f02722f4f00 139648482365184 r15 0x7f02840a4000 139648781926400 rip 0x7f024af5fc41 0x7f024af5fc41 eflags 0x10202 [ IF RF ] cs 0x33 51 ss 0x2b 43 ds 0x0 0 es 0x0 0 fs 0x0 0 gs 0x0 0 (gdb) x/i $rip => 0x7f024af5fc41: cmpq $0x0,0x618(%rsi) (gdb) p $rsi $1 = 0

Change History (1)

by swarron, 10 years ago

VBox-with-FreeBSD-Windows-guests.log

Note: See TracTickets for help on using tickets.

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette