Bug 676558

Summary: segment fault when migration with spice
Product: Red Hat Enterprise Linux 6 Reporter: Shirley Zhou <szhou>
Component: qemu-kvmAssignee: Gerd Hoffmann <kraxel>
Status: CLOSED DUPLICATE QA Contact: Virtualization Bugs <virt-bugs>
Severity: high Docs Contact:
Priority: high    
Version: 6.1CC: mkenneth, mshao, tburke, virt-maint
Target Milestone: rcKeywords: Regression
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2011-02-15 09:27:24 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On:    
Bug Blocks: 580951    

Description Shirley Zhou 2011-02-10 08:56:36 UTC 
Description of problem:
segment fault when migration with spice

Version-Release number of selected component (if applicable):
qemu-kvm-0.12.1.2-2.144.el6.x86_64

How reproducible:
2/2

Steps to Reproduce:
1.run guest with cli
# /usr/libexec/qemu-kvm -M rhel6.1.0 -enable-kvm  -m 4G -smp 2,sockets=2,cores=1,threads=1 -name qcow2 -uuid bb340905-50b0-de70-921b-5c360a945678 -rtc base=localtime -boot c -drive file=/dev/vgtest/lvtest,if=none,id=drive-ide0-0-0,format=qcow2,cache=none -device virtio-blk-pci,drive=drive-ide0-0-0,id=ide0-0-0 -netdev tap,id=hostnet0 -device virtio-net-pci,netdev=hostnet0,id=net0,mac=52:54:00:04:ad:a1,bus=pci.0,addr=0x7 -chardev pty,id=serial0 -device isa-serial,chardev=serial0 -usb -device usb-tablet,id=input0  -device virtio-balloon-pci,id=balloon0,bus=pci.0,addr=0x8 -vga qxl -spice port=5910,disable-ticketing -monitor stdio

2.start guest with listening mode in dst host
cli: -incoming tcp:0:5888

3.migrate guest
(qemu) migrate -d tcp:10.66.91.124:5888

  
Actual results:
segment fault happens after step 3

(qemu) handle_dev_input: stop
reds_mig_switch: 
Segmentation fault (core dumped)

(gdb) bt
#0  reds_mig_switch (s=<value optimized out>) at reds.c:3379
#1  spice_server_migrate_switch (s=<value optimized out>) at reds.c:4184
#2  0x00000000004e0ae9 in notifier_list_notify (list=<value optimized out>) at notify.c:37
#3  0x000000000040baa0 in qemu_run_timers (timeout=1000) at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:1217
#4  main_loop_wait (timeout=1000) at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:4458
#5  0x000000000042b29a in kvm_main_loop () at /usr/src/debug/qemu-kvm-0.12.1.2/qemu-kvm.c:2165
#6  0x000000000040ef0f in main_loop (argc=<value optimized out>, argv=<value optimized out>, envp=<value optimized out>) at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:4634
#7  main (argc=<value optimized out>, argv=<value optimized out>, envp=<value optimized out>) at /usr/src/debug/qemu-kvm-0.12.1.2/vl.c:6848


Expected results:
migration finish, and guest in dst running ok

Additional info:
Comment 1 Shirley Zhou 2011-02-10 09:04:36 UTC 
This bug does not exist when migration with vnc.
Comment 3 Shirley Zhou 2011-02-10 09:17:04 UTC 
This bug does not exist on qemu-kvm-0.12.1.2-2.129.el6.x86_64, so set
regression key word.
Comment 5 Shirley Zhou 2011-02-10 10:07:05 UTC 
(In reply to comment #3)
> This bug does not exist on qemu-kvm-0.12.1.2-2.129.el6.x86_64, so set
> regression key word.

This bug does not exist on qemu-kvm-0.12.1.2-2.132.el6.x86_64, and does exist on qemu-kvm-0.12.1.2-2.133.el6.x86_64.
Comment 6 Gerd Hoffmann 2011-02-15 09:27:24 UTC 

*** This bug has been marked as a duplicate of bug 674451 ***