Ubuntu
indicator-messages package

indicator-messages-service crashed with SIGSEGV in menuproxy_build_cb()

Bug #944833 reported by Brian K. Mangum on 2012-03-02

This bug report is a duplicate of: Bug #953562: dbusmenu assumes GDBus cancellation is reliable (and it's not). Edit Remove

This bug affects 1 person

	Status	Importance	Assigned to
Messaging Menu	Incomplete	Undecided	Unassigned
gwibber (Ubuntu)	New	Undecided	Unassigned
indicator-messages (Ubuntu)	Incomplete	Medium	Unassigned

Bug Description

I just had closed Gwibber after setting it not to automatically start at login.

ProblemType: Crash
DistroRelease: Ubuntu 12.04
Package: indicator-messages 0.5.92-0ubuntu1
ProcVersionSignature: Ubuntu 3.2.0-17.27-generic-pae 3.2.6
Uname: Linux 3.2.0-17-generic-pae i686
ApportVersion: 1.93-0ubuntu2
Architecture: i386
Date: Fri Mar 2 09:12:24 2012
ExecutablePath: /usr/lib/indicator-messages/indicator-messages-service
InstallationMedia: Ubuntu 12.04 LTS "Precise Pangolin" - Beta i386 (20120301)
ProcCmdline: /usr/lib/indicator-messages/indicator-messages-service
ProcEnviron:
SHELL=/bin/bash
PATH=(custom, no user)
LANG=en_US.UTF-8
SegvAnalysis:
Segfault happened at: 0xb771023b: mov 0x18(%esi),%eax
PC (0xb771023b) ok
source "0x18(%esi)" (0xaaaaaac2) not located in a known VMA region (needed readable region)!
destination "%eax" ok
SegvReason: reading unknown VMA
Signal: 11
SourcePackage: indicator-messages
StacktraceTop:
?? () from /usr/lib/i386-linux-gnu/libdbusmenu-glib.so.4
g_simple_async_result_complete () from /usr/lib/i386-linux-gnu/libgio-2.0.so.0
?? () from /usr/lib/i386-linux-gnu/libgio-2.0.so.0
?? () from /lib/i386-linux-gnu/libglib-2.0.so.0
g_main_context_dispatch () from /lib/i386-linux-gnu/libglib-2.0.so.0
Title: indicator-messages-service crashed with SIGSEGV in g_simple_async_result_complete()
UpgradeStatus: No upgrade log present (probably fresh install)
UserGroups: adm cdrom dip lpadmin plugdev sambashare sudo

Tags:

Revision history for this message

Brian K. Mangum (bkmangum) wrote on 2012-03-02:

Dependencies.txt Edit (2.3 KiB, text/plain; charset="utf-8")
Disassembly.txt Edit (626 bytes, text/plain; charset="utf-8")
ProcMaps.txt Edit (19.5 KiB, text/plain; charset="utf-8")
ProcStatus.txt Edit (800 bytes, text/plain; charset="utf-8")
Registers.txt Edit (492 bytes, text/plain; charset="utf-8")
Stacktrace.txt Edit (980 bytes, text/plain; charset="utf-8")
ThreadStacktrace.txt Edit (4.6 KiB, text/plain; charset="utf-8")

Revision history for this message

Apport retracing service (apport) wrote on 2012-03-02:

StacktraceTop:
menuproxy_build_cb (object=0x95fc620, res=0x960aea8, user_data=0x9602930) at /build/buildd/libdbusmenu-0.5.92/./libdbusmenu-glib/client.c:1069
g_simple_async_result_complete (simple=0x960aea8) at /build/buildd/glib2.0-2.31.18/./gio/gsimpleasyncresult.c:744
complete_in_idle_cb (data=0x960aea8) at /build/buildd/glib2.0-2.31.18/./gio/gsimpleasyncresult.c:756
g_idle_dispatch (source=0x960de10, callback=0xb760ad60 <complete_in_idle_cb>, user_data=0x960aea8) at /build/buildd/glib2.0-2.31.18/./glib/gmain.c:4629
g_main_dispatch (context=0x95ad050) at /build/buildd/glib2.0-2.31.18/./glib/gmain.c:2510

Revision history for this message

Apport retracing service (apport) wrote on 2012-03-02: Stacktrace.txt

Stacktrace.txt Edit (2.5 KiB, text/plain)

Revision history for this message

Apport retracing service (apport) wrote on 2012-03-02: ThreadStacktrace.txt

ThreadStacktrace.txt Edit (10.8 KiB, text/plain)

Changed in indicator-messages (Ubuntu):
importance:	Undecided → Medium
summary:	- indicator-messages-service crashed with SIGSEGV in - g_simple_async_result_complete() + indicator-messages-service crashed with SIGSEGV in menuproxy_build_cb()
tags:	removed: need-i386-retrace

Charles Kerr (charlesk) on 2012-04-12

visibility:

private → public

Revision history for this message

Bilal Akhtar (bilalakhtar) wrote on 2012-04-12:

Seems like Gwibber actually caused this one.

Bilal Akhtar (bilalakhtar) on 2012-04-13

Changed in indicator-messages:
status:	New → Incomplete
Changed in indicator-messages (Ubuntu):
status:	New → Incomplete

Revision history for this message

Charles Kerr (charlesk) wrote on 2012-04-15:

In 0.5.92-0ubuntu1, libdbusmenu-glib/client.c:1069 is the first line in this paragraph:

> if (priv->menuproxy_cancel != NULL) {
> g_object_unref(priv->menuproxy_cancel);
> priv->menuproxy_cancel = NULL;
> }

Which makes me think "priv" is corrupt... but we know it's not NULL because the
previous few lines are:

> /* If this wasn't cancelled, we should be good */
> DbusmenuClient * client = DBUSMENU_CLIENT(user_data);
> /* But let's check */
> g_return_if_fail(client != NULL);
> DbusmenuClientPrivate * priv = DBUSMENU_CLIENT_GET_PRIVATE(client);
> g_return_if_fail(priv != NULL);

All those safeguards smell like someone else has tried to track down a crash in this section of code before...

Revision history for this message

Charles Kerr (charlesk) wrote on 2012-04-15:

Aha, found it. I knew with that much smoke there would be something else lurking around in Launchpad... :)

This is a duplicate of Bug #953562 which has already been handled and fixed by desrt

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #953562 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

Add attachment

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntuindicator-messages package

indicator-messages-service crashed with SIGSEGV in menuproxy_build_cb()

Bug Description

Other bug subscribers

Bug attachments

Remote bug watches

Ubuntu
indicator-messages package