qemu-devel
[Top][All Lists]
Advanced

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Qemu-devel] [Bug 1349972] [NEW] qcow2-refcount: qemu-io crashes on 'dis


From: Maria Kustova
Subject: [Qemu-devel] [Bug 1349972] [NEW] qcow2-refcount: qemu-io crashes on 'discard' command
Date: Tue, 29 Jul 2014 18:07:11 -0000

Public bug reported:

qemu-io is killed by SIGIOT at the 'discard' command on the image having
no refcount information.

Sequence:
1. Unpack test.img and backing_img.qed in the same directory (see the attached 
archives for images)
2. Make a copy of test.img to copy.img (qemu-io modifies the image before being 
kill, therefore the image backup is necessary)
3. Run the command

qemu-io copy.img -c 'discard 2210816 2856448'

Result: qemu-io is killed by SIGIOT with the reason:

qemu-io: block/qcow2-refcount.c:468: update_refcount_discard: Assertion
`d->bytes + length == new_end - new_start' failed.


The image was generated by the image fuzzer.

qemu.git HEAD: 1d80eb7a680d

** Affects: qemu
     Importance: Undecided
         Status: New

** Attachment added: "images.n.traces.tar.gz"
   
https://bugs.launchpad.net/bugs/1349972/+attachment/4165308/+files/images.n.traces.tar.gz

-- 
You received this bug notification because you are a member of qemu-
devel-ml, which is subscribed to QEMU.
https://bugs.launchpad.net/bugs/1349972

Title:
   qcow2-refcount: qemu-io crashes on 'discard' command

Status in QEMU:
  New

Bug description:
  qemu-io is killed by SIGIOT at the 'discard' command on the image
  having no refcount information.

  Sequence:
  1. Unpack test.img and backing_img.qed in the same directory (see the 
attached archives for images)
  2. Make a copy of test.img to copy.img (qemu-io modifies the image before 
being kill, therefore the image backup is necessary)
  3. Run the command

  qemu-io copy.img -c 'discard 2210816 2856448'

  Result: qemu-io is killed by SIGIOT with the reason:

  qemu-io: block/qcow2-refcount.c:468: update_refcount_discard:
  Assertion `d->bytes + length == new_end - new_start' failed.

  
  The image was generated by the image fuzzer.

  qemu.git HEAD: 1d80eb7a680d

To manage notifications about this bug go to:
https://bugs.launchpad.net/qemu/+bug/1349972/+subscriptions



reply via email to

[Prev in Thread] Current Thread [Next in Thread]