chromium-browser, gvfsd-http and others using eglibc crash with SIGSEGV in __nscd_get_mapping() or gethostbyname2_r()
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GLibC |
Fix Released
|
Medium
|
|||
eglibc |
Fix Released
|
Medium
|
|||
chromium-browser (Ubuntu) |
Fix Released
|
High
|
Lucas Santos Silas | ||
Precise |
Fix Released
|
High
|
Lucas Santos Silas | ||
Quantal |
Fix Released
|
High
|
Lucas Santos Silas | ||
eglibc (Ubuntu) |
Fix Released
|
High
|
Adam Conrad | ||
Precise |
Fix Released
|
High
|
Lucas Santos Silas | ||
Quantal |
Fix Released
|
High
|
Adam Conrad | ||
gwibber (Ubuntu) |
Invalid
|
Undecided
|
Lucas Santos Silas | ||
Precise |
Invalid
|
Undecided
|
Lucas Santos Silas | ||
Quantal |
Invalid
|
Undecided
|
Lucas Santos Silas |
Bug Description
updated latest - rebooted and tried to open chromium, no such luck
ProblemType: Crash
DistroRelease: Ubuntu 12.04
Package: chromium-browser 16.0.912.
ProcVersionSign
Uname: Linux 3.2.0-14-generic i686
ApportVersion: 1.91-0ubuntu1
Architecture: i386
CheckboxSubmission: 8617bffd1981775
CheckboxSystem: bb422ca46d02494
CrashCounter: 1
CrashDB: ubuntu
Date: Thu Feb 9 00:48:53 2012
Desktop-Session:
DESKTOP_SESSION = ubuntu
XDG_CONFIG_DIRS = /etc/xdg/
XDG_DATA_DIRS = /usr/share/
Env:
MOZ_PLUGIN_PATH = None
LD_LIBRARY_PATH = None
ExecutablePath: /usr/lib/
InstallationMedia: Ubuntu 11.10 "Oneiric Ocelot" - Release i386 (20111012)
ProcCmdline: /usr/lib/
ProcEnviron:
SegvAnalysis:
Segfault happened at: 0xb7db005: lock xadd %ecx,0xc(%eax)
PC (0x0b7db005) ok
source "%ecx" ok
destination "0xc(%eax)" (0x0000000b) not located in a known VMA region (needed writable region)!
Stack memory exhausted (SP below stack segment)
SegvReason: writing NULL VMA
Signal: 11
SourcePackage: chromium-browser
StacktraceTop:
?? () from /lib/i386-
?? () from /lib/i386-
?? () from /lib/i386-
?? () from /lib/i386-
gethostbyname2_r () from /lib/i386-
ThirdParty: True
Title: chromium-browser crashed with SIGSEGV in gethostbyname2_r()
UpgradeStatus: Upgraded to precise on 2012-02-05 (3 days ago)
UserGroups: adm admin cdrom dialout lpadmin plugdev sambashare
chromium-default: CHROMIUM_FLAGS=""
Related branches
visibility: | private → public |
tags: | added: bugpattern-needed |
tags: | added: qa-manual-testing rls-mgr-p-tracking |
Changed in chromium-browser (Ubuntu): | |
assignee: | nobody → Canonical Desktop Team (canonical-desktop-team) |
Changed in chromium-browser (Ubuntu): | |
assignee: | Canonical Desktop Team (canonical-desktop-team) → nobody |
Changed in eglibc: | |
importance: | Unknown → Medium |
status: | Unknown → Confirmed |
Changed in glibc: | |
importance: | Unknown → Medium |
status: | Unknown → Confirmed |
tags: | added: rls-p-tracking |
tags: | removed: rls-p-tracking |
Changed in eglibc (Ubuntu): | |
assignee: | nobody → Matthias Klose (doko) |
Changed in chromium-browser (Ubuntu): | |
status: | Triaged → Invalid |
tags: | removed: bugpattern-needed |
tags: | added: bugpattern-written |
Changed in eglibc (Ubuntu Precise): | |
assignee: | Matthias Klose (doko) → Adam Conrad (adconrad) |
no longer affects: | chromium-browser |
Changed in chromium-browser (Ubuntu Precise): | |
status: | Invalid → Confirmed |
Changed in chromium-browser (Ubuntu Precise): | |
status: | Invalid → Incomplete |
tags: | added: rls-p-tracking |
summary: |
- chromium-browser crashed with SIGSEGV in __nscd_get_mapping() + chromium-browser, gvfsd-http and others using eglibc crash with SIGSEGV + in __nscd_get_mapping() or gethostbyname2_r() |
tags: | added: patch |
Changed in chromium-browser (Ubuntu Precise): | |
assignee: | nobody → Piet Zeeman (peteliz) |
status: | Invalid → Incomplete |
Changed in chromium-browser (Ubuntu Precise): | |
assignee: | Piet Zeeman (peteliz) → nobody |
status: | Incomplete → Invalid |
Changed in eglibc: | |
status: | Confirmed → Fix Released |
Changed in glibc: | |
status: | Confirmed → Fix Released |
Changed in chromium-browser (Ubuntu): | |
status: | Invalid → Confirmed |
Changed in chromium-browser (Ubuntu): | |
status: | Confirmed → Incomplete |
status: | Incomplete → Confirmed |
Changed in chromium-browser (Ubuntu Precise): | |
status: | Invalid → Confirmed |
Changed in chromium-browser (Ubuntu): | |
status: | Confirmed → Invalid |
Changed in chromium-browser (Ubuntu Precise): | |
status: | Confirmed → Invalid |
Changed in chromium-browser (Ubuntu): | |
status: | Invalid → New |
status: | New → Fix Released |
Changed in chromium-browser (Ubuntu Precise): | |
status: | Invalid → Fix Released |
Changed in chromium-browser (Ubuntu): | |
assignee: | nobody → Lucas Santos Silas (lucas-19161) |
Changed in chromium-browser (Ubuntu Precise): | |
assignee: | nobody → Lucas Santos Silas (lucas-19161) |
Changed in gwibber (Ubuntu): | |
assignee: | nobody → Lucas Santos Silas (lucas-19161) |
Changed in gwibber (Ubuntu Precise): | |
assignee: | nobody → Lucas Santos Silas (lucas-19161) |
Changed in eglibc (Ubuntu Precise): | |
assignee: | Adam Conrad (adconrad) → Lucas Santos Silas (lucas-19161) |
I have seen some reports where glibc crashes if nscd is not running, especially with chromium but also with ktorrent. This is not always reproduceable, so there's some kind of race or random memory corruption.
valgrind reports: libc-2. 15.so) libc-2. 15.so) libc-2. 15.so) gethostbyname2_ r (in /lib64/ libc-2. 15.so) r@@GLIBC_ 2.2.5 (in /lib64/ libc-2. 15.so) libc-2. 15.so) libc-2. 15.so) ResolverProc( std::string const&, net::AddressFamily, int, net::AddressList*, int*) (in /usr/lib64/ chromium/ chromium) erImpl: :Job::DoLookup( base::TimeTicks const&, unsigned int) (in /usr/lib64/ chromium/ chromium) ::WorkerThread: :ThreadMain( ) (in /usr/lib64/ chromium/ chromium) ::ThreadFunc( void*) (in /usr/lib64/ chromium/ chromium) libpthread- 2.15.so)
==16750== Process terminating with default action of signal 11 (SIGSEGV)
==16750== Access not within mapped region at address 0x17
==16750== at 0xC63DC1E: __nscd_get_mapping (in /lib64/
==16750== by 0xC63DDE3: __nscd_get_map_ref (in /lib64/
==16750== by 0xC63B2E1: nscd_gethst_r (in /lib64/
==16750== by 0xC63BB96: __nscd_
==16750== by 0xC6213F0: gethostbyname2_
==16750== by 0xC5F5D8F: gaih_inet (in /lib64/
==16750== by 0xC5F6ED2: getaddrinfo (in /lib64/
==16750== by 0x140E7BD: net::SystemHost
==16750== by 0x1407C57: net::HostResolv
==16750== by 0x2B5B2FA: base::(anonymous namespace)
==16750== by 0x11753C1: base::(anonymous namespace)
==16750== by 0x919FF65: start_thread (in /lib64/
gdb gives a similar backtrace.
After reverting commit 3a2c02424d9824f 5cdea4ebd32ff92 9b2b1f49c6, the problem does not appear anymore.
I can't reproduce it yet on my system - so no further information.
Reports: /bugzilla. novell. com/show_ bug.cgi? id=741021 /bbs.archlinux. org/viewtopic. php?id= 133021
https:/
https:/