Ubuntu
cups package

Bug #855445
Comment #6

Comment 6 for bug 855445

Revision history for this message

Till Kamppeter (till-kamppeter) wrote on 2011-09-22:

Obtained the stack trace locally due to problems with the current CUPS package. For this stack trace the current snapshot of the Debian BZR repository (with the fix of the problem) was built locally and then with a rapid firing of queue addition and removal operations (~60) the crash was triggered again and the offer of Apport to report it accepted. Then I have followed all instructions on the screen until it refused to submit the report to Launchpad as it is from a local package build.

Now I have unpacked /var/crash/_usr_sbin_cupsd.0.crash with apport-unpack (into ~/test/) and got following stack trace:

----------
till@till:~$ gdb -c ~/test/CoreDump /usr/sbin/cupsd
GNU gdb (Ubuntu/Linaro 7.3-0ubuntu2) 7.3-2011.08
Copyright (C) 2011 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law. Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
For bug reporting instructions, please see:
<http://bugs.launchpad.net/gdb-linaro/>...
Reading symbols from /usr/sbin/cupsd...Reading symbols from /usr/lib/debug/usr/sbin/cupsd...done.
done.
[New LWP 7444]

warning: Can't read pathname for load map: Input/output error.
[Thread debugging using libthread_db enabled]
Core was generated by `/usr/sbin/cupsd -F'.
Program terminated with signal 11, Segmentation fault.
#0 0x00007f38b12297f8 in _cups_strcasecmp (
    s=0x7f38b686b824 "Hewlett-Packard HP Color LaserJet CM3530 MFP @ till",
    t=0x1 <Address 0x1 out of bounds>) at string.c:613
613 while (*s != '\0' && *t != '\0')
(gdb) bt full
#0 0x00007f38b12297f8 in _cups_strcasecmp (
    s=0x7f38b686b824 "Hewlett-Packard HP Color LaserJet CM3530 MFP @ till",
    t=0x1 <Address 0x1 out of bounds>) at string.c:613
No locals.
#1 0x00007f38b120148d in cups_array_find (a=0x7f38b68683e0, e=0x7f38b690a530,
    prev=<optimized out>, rdiff=0x7fff2e59482c) at array.c:1265
        left = 0
        right = 38
        current = 19
        diff = <optimized out>
#2 0x00007f38b120218d in cupsArrayRemove (a=0x7f38b68683e0, e=<optimized out>)
    at array.c:900
        i = <optimized out>
        current = <optimized out>
        diff = <optimized out>
#3 0x00007f38b2c3272d in dnssdDeregisterPrinter (p=0x7f38b690a530)
    at dirsvc.c:2681
No locals.
#4 0x00007f38b2c514af in cupsdDeletePrinter (p=0x7f38b690a530,
    update=<optimized out>) at printers.c:901
        i = <optimized out>
---Type <return> to continue, or q <return> to quit---
        changed = 0
#5 0x00007f38b2c1b491 in delete_printer (con=0x7f38b6929dc0,
    uri=<optimized out>) at ipp.c:7068
        status = <optimized out>
        printer = 0x7f38b690a530
        filename = "/var/cache/cups/0017.data\000\377\377\377\377\377\377@IY.\377\177\000\000\000P׳8\177\000\000O\000\000\000\000\000\000\000 P\237\256\070\177\000\000\060\367\346\262\070\177\000\000\001\000\000\000\000\000\000\000\236ޛ\260\070\177\000\000\200OY.\377\177\000\000`IY.\377\177\000\000\360\326׳8\177\000\000PJY.\377\177\000\000\001\000\000\000\000\000\000\000\330JY.\377\177\000\000\377\003\000\000\000\000\000\000UBƲ8\177\000\000\360\326׳8\177\000\000\220\355\243\260\070\177\000\000\001\200\255\373\377\177\000\000\360\326׳8\177\000\000\360\326׳8\177\000\000\360\326׳8\177\000\000\360\326׳8\177\000\000A\327׳8\177\000\000\357\332׳8\177\000\000\360\326׳8\177\000\000\357\332׳8\177", '\000' <repeats 46 times>, "\004", '\000' <repeats 15 times>, "0", '\000' <repeats 11 times>"\200"...
#6 0x00007f38b2c3ce2f in cupsdProcessIPPRequest (con=0x7f38b6929dc0)
    at ipp.c:644
        group = <optimized out>
        attr = <optimized out>
        charset = <optimized out>
---Type <return> to continue, or q <return> to quit---
        language = <optimized out>
        uri = 0x7f38b6963920
        username = <optimized out>
        sub_id = 0
#7 0x00007f38b2c27c1e in cupsdReadClient (con=0x7f38b6929dc0) at client.c:2260
        line = '\000' <repeats 13216 times>"\360, \215Y.\377\177\000\000\340\215Y.\377\177\000\000h\217Y.\377\177\000\000\255\342}\262\070\177\000\000\004\000\000\000\000\000\000\000\320\017\231\260\070\177\000\000\000\000\000\000\000\000\000\000\002", '\000' <repeats 87 times>, " ", '\000' <repeats 99 times>, "\001\000\000\000\000\000\000\000\377\377\377\377\377\377\377\377\377\377\377\377", '\000' <repeats 16 times>"\260, \342}\262\070\177\000\000\261\342}\262\070\177\000\000\270\214Y.\377\177\000\000\000\000\000\000\000\000\000\000\315\067\231\260\070\177\000\000\257\342}\262\070\177", '\000' <repeats 1050 times>, "(\000\000\000\060\000\000\000@\220Y.\377\177\000\000\200\217Y.\377\177", '\000' <repeats 178 times>"\360, \215Y.\377\177\000\000\200\220Y.\377\177\000\000\340\216Y.\377\177\000\000\001\000\000\000\000\000\000\000h\217Y.\377\177\000\000\376\000\000\000\000\000\000\000\255\342}\262\070\177\000\000\200"...
        operation = "HTTP/1.1\000ψ\266\070\177\000\000\060\301س8\177\000\000\215\024 \261\070\177\000\000<jֳ8\177\000\000\\$Z.\377\177\000\000\001\000\000\000\000\000\000\000\060\301س8\177\000"
        version = "\000!\227\266\070\177\000\000\377\377\377\377\000\000\000\000---Type <return> to continue, or q <return> to quit---
Y?{N", '\000' <repeats 12 times>"\260, \366\346\262\070\177\000\000\251\034 \261\070\177\000\000\377\377\377\377\000\000\000\000\000o~&\000\000\000"
        locale = "\a\000\000\000\070\177\000\000T\360\346\262\070\177\000\000 \372\346\262\070\177\000\000w?{N\000\000\000\000Y?{N", '\000' <repeats 12 times>"\260, \366\346\262\070\177\000\000хò8\177\000"
        ptr = <optimized out>
        major = 0
        minor = 0
        status = <optimized out>
        ipp_state = <optimized out>
        bytes = <optimized out>
        filename = <optimized out>
        buf = "\323CƲ8\177\000\000\370\027Z.\377\177\000\000\300\211\250\226nC\335b\315\067\231\260\070\177\000\000\250CƲ8\177", '\000' <repeats 11 times>"\375, \000\000\000\000\000\000\205\026\000\000\000\000\000\000\001\000\000\000\000\000\000\000\244\201", '\000' <repeats 22 times>, ";\004\000\000\000\000\000\000\000\020\000\000\000\000\000\000\000oise, ID, USA\000\000ipp://192.168.178.39:631/printers/S600\000serJet-1020", '\000' <repeats 14 times>"\300, қ\260\070\177\000\000\240\235\227\266\070\177\000\000\377\377\377\377\377\377\377\377\005\000\000\000\000\000\000\000\240\235\227\266\070\177\000\000\226h׳8\177\000\000\300\060ΰ8\177\000\000\220h׳8\177\000\000\220l׳8\177"...
---Type <return> to continue, or q <return> to quit---
        filestats = {st_dev = 0, st_ino = 0, st_nlink = 0, st_mode = 0,
          st_uid = 0, st_gid = 0, __pad0 = 0, st_rdev = 0, st_size = 0,
          st_blksize = 0, st_blocks = 0, st_atim = {tv_sec = 0,
            tv_nsec = 4294967296}, st_mtim = {tv_sec = 1,
            tv_nsec = 7233114292433932112}, st_ctim = {
            tv_sec = 6076561100301560173, tv_nsec = 5197154181213925200},
          __unused = {13843062640890964, 6076560962891952431, 211228372816}}
        type = <optimized out>
        p = <optimized out>
        request_id = 0
#8 0x00007f38b2c1f5ce in main (argc=<optimized out>, argv=<optimized out>)
    at main.c:1020
        i = 2
        opt = <optimized out>
        fg = <optimized out>
        fds = 0
        con = 0x7f38b6929dc0
        job = <optimized out>
        lis = <optimized out>
        current_time = 1316700023
        activity = <optimized out>
---Type <return> to continue, or q <return> to quit---
        avahi_client_time = 1316700017
        browse_time = 1316700023
        senddoc_time = 1316700017
        expire_time = 1316700023
        report_time = 1316699971
        event_time = 1316700017
        timeout = <optimized out>
        limit = {rlim_cur = 4096, rlim_max = 4096}
        action = {__sigaction_handler = {
            sa_handler = 0x7f38b2c3adf0 <sigterm_handler>,
            sa_sigaction = 0x7f38b2c3adf0 <sigterm_handler>}, sa_mask = {
            __val = {81920, 0 <repeats 15 times>}}, sa_flags = 0,
          sa_restorer = 0}
        run_as_child = 1316700020
        netif_time = 1316699971
        tmo = <optimized out>
        tmo_delay = 0
(gdb)
(gdb)

Now I have unpacked /var/crash/_usr_sbin_cupsd.0.crash with apport-unpack (into ~/test/) and got following stack trace:

----------
till@till:~$ gdb -c ~/test/CoreDump /usr/sbin/cupsd
GNU gdb (Ubuntu/Linaro 7.3-0ubuntu2) 7.3-2011.08
Copyright (C) 2011 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
For bug reporting instructions, please see:
<http://bugs.launchpad.net/gdb-linaro/>...
Reading symbols from /usr/sbin/cupsd...Reading symbols from /usr/lib/debug/usr/sbin/cupsd...done.
done.
[New LWP 7444]

warning: Can't read pathname for load map: Input/output error.
[Thread debugging using libthread_db enabled]
Core was generated by `/usr/sbin/cupsd -F'.
Program terminated with signal 11, Segmentation fault.
#0  0x00007f38b12297f8 in _cups_strcasecmp (
    s=0x7f38b686b824 "Hewlett-Packard HP Color LaserJet CM3530 MFP @ till", 
    t=0x1 <Address 0x1 out of bounds>) at string.c:613
613	  while (*s != '\0' && *t != '\0')
(gdb) bt full
#0  0x00007f38b12297f8 in _cups_strcasecmp (
    s=0x7f38b686b824 "Hewlett-Packard HP Color LaserJet CM3530 MFP @ till", 
    t=0x1 <Address 0x1 out of bounds>) at string.c:613
No locals.
#1  0x00007f38b120148d in cups_array_find (a=0x7f38b68683e0, e=0x7f38b690a530, 
    prev=<optimized out>, rdiff=0x7fff2e59482c) at array.c:1265
        left = 0
        right = 38
        current = 19
        diff = <optimized out>
#2  0x00007f38b120218d in cupsArrayRemove (a=0x7f38b68683e0, e=<optimized out>)
    at array.c:900
        i = <optimized out>
        current = <optimized out>
        diff = <optimized out>
#3  0x00007f38b2c3272d in dnssdDeregisterPrinter (p=0x7f38b690a530)
    at dirsvc.c:2681
No locals.
#4  0x00007f38b2c514af in cupsdDeletePrinter (p=0x7f38b690a530, 
    update=<optimized out>) at printers.c:901
        i = <optimized out>
---Type <return> to continue, or q <return> to quit---
        changed = 0
#5  0x00007f38b2c1b491 in delete_printer (con=0x7f38b6929dc0, 
    uri=<optimized out>) at ipp.c:7068
        status = <optimized out>
        printer = 0x7f38b690a530
        filename = "/var/cache/cups/0017.data\000\377\377\377\377\377\377@IY.\377\177\000\000\000P׳8\177\000\000O\000\000\000\000\000\000\000 P\237\256\070\177\000\000\060\367\346\262\070\177\000\000\001\000\000\000\000\000\000\000\236ޛ\260\070\177\000\000\200OY.\377\177\000\000`IY.\377\177\000\000\360\326׳8\177\000\000PJY.\377\177\000\000\001\000\000\000\000\000\000\000\330JY.\377\177\000\000\377\003\000\000\000\000\000\000UBƲ8\177\000\000\360\326׳8\177\000\000\220\355\243\260\070\177\000\000\001\200\255\373\377\177\000\000\360\326׳8\177\000\000\360\326׳8\177\000\000\360\326׳8\177\000\000\360\326׳8\177\000\000A\327׳8\177\000\000\357\332׳8\177\000\000\360\326׳8\177\000\000\357\332׳8\177", '\000' <repeats 46 times>, "\004", '\000' <repeats 15 times>, "0", '\000' <repeats 11 times>"\200"...
#6  0x00007f38b2c3ce2f in cupsdProcessIPPRequest (con=0x7f38b6929dc0)
    at ipp.c:644
        group = <optimized out>
        attr = <optimized out>
        charset = <optimized out>
---Type <return> to continue, or q <return> to quit---
        language = <optimized out>
        uri = 0x7f38b6963920
        username = <optimized out>
        sub_id = 0
#7  0x00007f38b2c27c1e in cupsdReadClient (con=0x7f38b6929dc0) at client.c:2260
        line = '\000' <repeats 13216 times>"\360, \215Y.\377\177\000\000\340\215Y.\377\177\000\000h\217Y.\377\177\000\000\255\342}\262\070\177\000\000\004\000\000\000\000\000\000\000\320\017\231\260\070\177\000\000\000\000\000\000\000\000\000\000\002", '\000' <repeats 87 times>, " ", '\000' <repeats 99 times>, "\001\000\000\000\000\000\000\000\377\377\377\377\377\377\377\377\377\377\377\377", '\000' <repeats 16 times>"\260, \342}\262\070\177\000\000\261\342}\262\070\177\000\000\270\214Y.\377\177\000\000\000\000\000\000\000\000\000\000\315\067\231\260\070\177\000\000\257\342}\262\070\177", '\000' <repeats 1050 times>, "(\000\000\000\060\000\000\000@\220Y.\377\177\000\000\200\217Y.\377\177", '\000' <repeats 178 times>"\360, \215Y.\377\177\000\000\200\220Y.\377\177\000\000\340\216Y.\377\177\000\000\001\000\000\000\000\000\000\000h\217Y.\377\177\000\000\376\000\000\000\000\000\000\000\255\342}\262\070\177\000\000\200"...
        operation = "HTTP/1.1\000ψ\266\070\177\000\000\060\301س8\177\000\000\215\024 \261\070\177\000\000<jֳ8\177\000\000\\$Z.\377\177\000\000\001\000\000\000\000\000\000\000\060\301س8\177\000"
        version = "\000!\227\266\070\177\000\000\377\377\377\377\000\000\000\000---Type <return> to continue, or q <return> to quit---
Y?{N", '\000' <repeats 12 times>"\260, \366\346\262\070\177\000\000\251\034 \261\070\177\000\000\377\377\377\377\000\000\000\000\000o~&\000\000\000"
        locale = "\a\000\000\000\070\177\000\000T\360\346\262\070\177\000\000 \372\346\262\070\177\000\000w?{N\000\000\000\000Y?{N", '\000' <repeats 12 times>"\260, \366\346\262\070\177\000\000хò8\177\000"
        ptr = <optimized out>
        major = 0
        minor = 0
        status = <optimized out>
        ipp_state = <optimized out>
        bytes = <optimized out>
        filename = <optimized out>
        buf = "\323CƲ8\177\000\000\370\027Z.\377\177\000\000\300\211\250\226nC\335b\315\067\231\260\070\177\000\000\250CƲ8\177", '\000' <repeats 11 times>"\375, \000\000\000\000\000\000\205\026\000\000\000\000\000\000\001\000\000\000\000\000\000\000\244\201", '\000' <repeats 22 times>, ";\004\000\000\000\000\000\000\000\020\000\000\000\000\000\000\000oise, ID, USA\000\000ipp://192.168.178.39:631/printers/S600\000serJet-1020", '\000' <repeats 14 times>"\300, қ\260\070\177\000\000\240\235\227\266\070\177\000\000\377\377\377\377\377\377\377\377\005\000\000\000\000\000\000\000\240\235\227\266\070\177\000\000\226h׳8\177\000\000\300\060ΰ8\177\000\000\220h׳8\177\000\000\220l׳8\177"...
---Type <return> to continue, or q <return> to quit---
        filestats = {st_dev = 0, st_ino = 0, st_nlink = 0, st_mode = 0, 
          st_uid = 0, st_gid = 0, __pad0 = 0, st_rdev = 0, st_size = 0, 
          st_blksize = 0, st_blocks = 0, st_atim = {tv_sec = 0, 
            tv_nsec = 4294967296}, st_mtim = {tv_sec = 1, 
            tv_nsec = 7233114292433932112}, st_ctim = {
            tv_sec = 6076561100301560173, tv_nsec = 5197154181213925200}, 
          __unused = {13843062640890964, 6076560962891952431, 211228372816}}
        type = <optimized out>
        p = <optimized out>
        request_id = 0
#8  0x00007f38b2c1f5ce in main (argc=<optimized out>, argv=<optimized out>)
    at main.c:1020
        i = 2
        opt = <optimized out>
        fg = <optimized out>
        fds = 0
        con = 0x7f38b6929dc0
        job = <optimized out>
        lis = <optimized out>
        current_time = 1316700023
        activity = <optimized out>
---Type <return> to continue, or q <return> to quit---
        avahi_client_time = 1316700017
        browse_time = 1316700023
        senddoc_time = 1316700017
        expire_time = 1316700023
        report_time = 1316699971
        event_time = 1316700017
        timeout = <optimized out>
        limit = {rlim_cur = 4096, rlim_max = 4096}
        action = {__sigaction_handler = {
            sa_handler = 0x7f38b2c3adf0 <sigterm_handler>, 
            sa_sigaction = 0x7f38b2c3adf0 <sigterm_handler>}, sa_mask = {
            __val = {81920, 0 <repeats 15 times>}}, sa_flags = 0, 
          sa_restorer = 0}
        run_as_child = 1316700020
        netif_time = 1316699971
        tmo = <optimized out>
        tmo_delay = 0
(gdb) 
(gdb)

Ubuntucups package

Comment 6 for bug 855445

Ubuntu
cups package