polkitd crashed with SIGSEGV in g_simple_async_result_complete()

Bug #707447 reported by Jean-Baptiste Lallement on 2011-01-25
This bug affects 11 people
Affects Status Importance Assigned to Milestone
policykit-1 (Ubuntu)

Bug Description

Binary package hint: policykit-1

This crash occurs when the authentication dialog is displayed and the parent application is closed without closing the auth dialog first.

I can't reproduce it manually but this is very reproducible with ldtp

1. install python-ldtp, enable 'assitive technologies' and logout/in
2. in python run:
>>> import ldtp
>>> ldtp.launchapp('time-admin')
>>> ldtp.click('dlgTimeandDateSettings','btn2')
>>> ldtp.closewindow('dlgTimeandDateSettings')

ProblemType: Crash
DistroRelease: Ubuntu 11.04
Package: policykit-1 0.99-1
ProcVersionSignature: Ubuntu 2.6.37-12.26-generic 2.6.37
Uname: Linux 2.6.37-12-generic i686
Architecture: i386
Date: Tue Jan 25 15:23:03 2011
ExecutablePath: /usr/lib/policykit-1/polkitd
InstallationMedia: Ubuntu 11.04 "Natty Narwhal" - Alpha i386 (20110124.2)
ProcCmdline: /usr/lib/policykit-1/polkitd
ProcCwd: /

 Segfault happened at: 0xde3c23: cmpb $0x0,(%edx)
 PC (0x00de3c23) ok
 source "$0x0" ok
 destination "(%edx)" (0x0880e000) not located in a known VMA region (needed writable region)!
SegvReason: writing unknown VMA
Signal: 11
SourcePackage: policykit-1
 ?? () from /usr/lib/libpolkit-backend-1.so.0
 ?? () from /usr/lib/libpolkit-backend-1.so.0
 ?? () from /usr/lib/libpolkit-backend-1.so.0
 g_simple_async_result_complete () from /usr/lib/libgio-2.0.so.0
 ?? () from /usr/lib/libgio-2.0.so.0
Title: polkitd crashed with SIGSEGV in g_simple_async_result_complete()

Jean-Baptiste Lallement (jibel) wrote :
description: updated

 #0 0x00de3c23 in _polkit_subject_get_cmdline (subject=<value optimized out>)
     at polkitbackendinteractiveauthority.c:453
  process = (PolkitSubject *) 0x87f1180
  ret = Unhandled dwarf expression opcode 0x9f
StacktraceTop: _polkit_subject_get_cmdline (subject=<value optimized out>)

Changed in policykit-1 (Ubuntu):
importance: Undecided → Medium
tags: removed: need-i386-retrace
visibility: private → public
Patrick Wright (patrickmwright) wrote :

Tested in Natty Beta 2. Application closes correctly when following the defined steps manually and using ldtp.

Changed in policykit-1 (Ubuntu):
status: New → Fix Released
tags: added: testcase
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Duplicates of this bug

Other bug subscribers