On Wed, 2020-01-15 at 22:49 +0100, Roberto Lumbreras wrote: > Hi, > > Could you please send me how to reproduce the bug? > It just works for me... but for sure my setup is different.
I'm trying to use UML with slirp and it crashes before i even manage to setup a network connection :/ I can have a look at giving you a more specific reproduction method if you can't trigger it but that will probably take a few days at least; from the code it seems it somewhat wack-a-mole still though.. > On Wed, Jan 15, 2020 at 10:03 PM Sjoerd Simons <sjo...@debian.org> > wrote: > > > Package: slirp > > Version: 1:1.0.17-9 > > Severity: important > > > > The last upload fixes slirp crashes directly on startup on amd64; > > It now > > just crashes > > when starting to use it.... > > > > backtrace: > > Program terminated with signal SIGSEGV, Segmentation fault. > > #0 0x00005567818fa30b in tcp_reass (tp=tp@entry=0x556782590610, > > ti=0x82590610, ti@entry=0x0, m=<optimized out>, m@entry=0x0) > > at ./tcp_input.c:210 > > 210 ./tcp_input.c: No such file or directory. > > (gdb) bt > > #0 0x00005567818fa30b in tcp_reass (tp=tp@entry=0x556782590610, > > ti=0x82590610, ti@entry=0x0, m=<optimized out>, m@entry=0x0) > > at ./tcp_input.c:210 > > #1 0x00005567818fb8c1 in tcp_input (m=0x55678258ed00, > > iphlen=<optimized > > out>, inso=inso@entry=0x0) at ./tcp_input.c:1074 > > #2 0x00005567818f073c in ip_input (m=<optimized out>) at > > ip_input.c:214 > > #3 0x00005567818f86ef in sl_dispatch (ttyp=ttyp@entry=0x55678258b2 > > d0) at > > ./sl.c:127 > > #4 0x00005567818f889e in sl_input (ttyp=0x55678258b2d0, > > if_bptr=0x7ffdd869e9e9 "\300\004\005\264\004\002\b\n\366KBX", > > if_n=<optimized out>) at ./sl.c:35 > > #5 0x00005567818ef6b2 in if_input (ttyp=0x55678258b2d0) at > > ./if.c:191 > > #6 0x00005567818f24a4 in main_loop () at ./main.c:1158 > > #7 0x00005567818e37d7 in main (argc=1, argv=0x7ffdd869f848) at > > ./main.c:95 > > > > > > Problem now is usage of dereferences of seg_next which again is a > > pointer > > cast to a 32 bit value to cause disaster. > > > > Most likely all the usages of `#if SIZEOF_CHAR_P == 4` should be > > reviewed > > and > > fixed up to properly make slirp work on 64 bit systrms... > > > > -- System Information: > > Debian Release: bullseye/sid > > APT prefers unstable-debug > > APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, > > 'testing'), (500, 'stable'), (1, 'experimental') > > Architecture: amd64 (x86_64) > > > > Kernel: Linux 5.4.0-2-amd64 (SMP w/4 CPU cores) > > Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), > > LANGUAGE=en_GB.UTF-8 (charmap=UTF-8) > > Shell: /bin/sh linked to /usr/bin/dash > > Init: systemd (via /run/systemd/system) > > LSM: AppArmor: enabled > > > > Versions of packages slirp depends on: > > ii libc6 2.29-9 > > ii libcrypt1 1:4.4.10-10 > > > > slirp recommends no packages. > > > > slirp suggests no packages. > > > > -- no debconf information > > > >
