summary refs log tree commit diff stats
path: root/results/classifier/108/other/1336
diff options
context:
space:
mode:
Diffstat (limited to '')
-rw-r--r--results/classifier/108/other/133616
-rw-r--r--results/classifier/108/other/133612333
-rw-r--r--results/classifier/108/other/133619225
-rw-r--r--results/classifier/108/other/133619445
4 files changed, 119 insertions, 0 deletions
diff --git a/results/classifier/108/other/1336 b/results/classifier/108/other/1336
new file mode 100644
index 000000000..74954f2fa
--- /dev/null
+++ b/results/classifier/108/other/1336
@@ -0,0 +1,16 @@
+device: 0.769
+network: 0.711
+performance: 0.613
+graphic: 0.245
+socket: 0.203
+files: 0.173
+vnc: 0.172
+boot: 0.164
+permissions: 0.137
+semantic: 0.136
+other: 0.116
+debug: 0.087
+PID: 0.046
+KVM: 0.002
+
+QEMU qxl_phys2virt Unsafe Address Translation Lead to OOB Read
diff --git a/results/classifier/108/other/1336123 b/results/classifier/108/other/1336123
new file mode 100644
index 000000000..438cacb27
--- /dev/null
+++ b/results/classifier/108/other/1336123
@@ -0,0 +1,33 @@
+device: 0.746
+boot: 0.708
+graphic: 0.644
+network: 0.607
+semantic: 0.524
+socket: 0.449
+PID: 0.311
+vnc: 0.298
+performance: 0.296
+files: 0.289
+debug: 0.263
+permissions: 0.258
+other: 0.180
+KVM: 0.089
+
+bad switch, segfault in hw/pci-host/bonito.c bonito_readl
+
+http://git.qemu.org/?p=qemu.git;a=blob;f=hw/pci-host/bonito.c;h=56292adb03cd1a9873c2c9e5a0b2978fd0572214;hb=master#l301
+
+The switch statement is error-prone, since two branches return the same result.
+
+Segfault reproducing steps:
+1. make a Linux kernel(for example 3.16.0-rc2) with fuloong2e_defconfig
+2. use 'qemu-system-mips64el -machine fulong2e' to boot the vmlinux
+
+qemu versions tried: 2.0.0, 1.6.2
+
+I think this might have been fixed with this commit here:
+https://git.qemu.org/?p=qemu.git;a=commitdiff;h=0ca4f94195cce77b624ed
+Or can you still reproduce it with the current version of QEMU?
+
+[Expired for QEMU because there has been no activity for 60 days.]
+
diff --git a/results/classifier/108/other/1336192 b/results/classifier/108/other/1336192
new file mode 100644
index 000000000..0b38d6c7f
--- /dev/null
+++ b/results/classifier/108/other/1336192
@@ -0,0 +1,25 @@
+device: 0.790
+other: 0.733
+files: 0.651
+performance: 0.534
+PID: 0.418
+socket: 0.415
+boot: 0.397
+vnc: 0.382
+semantic: 0.374
+permissions: 0.354
+network: 0.328
+KVM: 0.308
+debug: 0.302
+graphic: 0.276
+
+delvm does not delete snapshots on every disks
+
+Using more than one block device, using delvm does remove snapshot from the first block device, but does not remove snapshots from other blockdevs (complains about not finding snapshot on 1st blockdev).
+
+Attached patch fixes that.
+
+
+
+fixed by af957387547b05ed6dc4d84c10cca42700a7aeda
+
diff --git a/results/classifier/108/other/1336194 b/results/classifier/108/other/1336194
new file mode 100644
index 000000000..47e68b1bd
--- /dev/null
+++ b/results/classifier/108/other/1336194
@@ -0,0 +1,45 @@
+other: 0.609
+graphic: 0.597
+performance: 0.534
+PID: 0.526
+device: 0.488
+permissions: 0.485
+semantic: 0.472
+debug: 0.459
+vnc: 0.432
+network: 0.428
+files: 0.417
+socket: 0.400
+boot: 0.348
+KVM: 0.343
+
+Errors reporting in do_delvm caused a crash
+
+In case of multiple errors, it leads to a crash.
+
+Typical back trace:
+#0  <in libc> in __GI_raise (sig=sig@entry=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:56
+#1  <in libc> in __GI_abort () at abort.c:90
+#2  <in libc> in __libc_message (do_abort=do_abort@entry=2, fmt=fmt@entry=<in libc> "*** Error in `%s': %s: 0x%s ***\n") at ../sysdeps/unix/sysv/linux/libc_fatal.c:196
+#3  <in libc> in malloc_printerr (action=3, str=<in libc> "double free or corruption (out)", ptr=<optimized out>) at malloc.c:4902
+#4  <in libc> in _int_free (av=<optimized out>, p=<in heap chunk>, have_lock=0) at malloc.c:3758
+#5  <in qemu binary> in error_free (err=<in heap chunk>) at util/error.c:166
+#6  <in qemu binary> in do_delvm (mon=<in heap chunk>, qdict=<optimized out>) at /home/qemudbg/src/qemu/savevm.c:1132
+#7  <in qemu binary> in handle_user_command (mon=mon@entry=<in heap chunk>, cmdline=<optimized out>) at /home/qemudbg/src/qemu/monitor.c:4167
+#8  <in qemu binary> in monitor_command_cb (opaque=<in heap chunk>, cmdline=<optimized out>, readline_opaque=<optimized out>) at /home/qemudbg/src/qemu/monitor.c:4878
+#9  <in qemu binary> in readline_handle_byte (rs=<in heap>, ch=<optimized out>) at util/readline.c:371
+#10 <in qemu binary> in monitor_read (opaque=<optimized out>, buf=<optimized out>, size=<optimized out>) at /home/qemudbg/src/qemu/monitor.c:4861
+#11 <in qemu binary> in qemu_chr_be_write (len=<optimized out>, buf=<in stack> "\n\003", s=<in heap chunk>) at qemu-char.c:165
+#12 tcp_chr_read (chan=<optimized out>, cond=<optimized out>, opaque=<in heap chunk>) at qemu-char.c:2487
+#13 <in libglib> in g_main_context_dispatch () from /usr/lib64/libglib-2.0.so.0
+#14 <in qemu binary> in glib_pollfds_poll () at main-loop.c:190
+#15 os_host_main_loop_wait (timeout=<optimized out>) at main-loop.c:235
+#16 main_loop_wait (nonblocking=<optimized out>) at main-loop.c:484
+#17 <in qemu binary> in main_loop () at vl.c:2051
+#18 main (argc=<optimized out>, argv=<optimized out>, envp=<optimized out>) at vl.c:4507
+
+
+
+Looks like this had been fixed here:
+http://git.qemu.org/?p=qemu.git;a=commitdiff;h=ba2b22888c43f
+