Bug 14282

Summary: Xephyr over ssh segfaults on startup (but not with -noxv)
Product: Mageia Reporter: Pascal Terjan <pterjan>
Component: RPM PackagesAssignee: Thierry Vignaud <thierry.vignaud>
Status: RESOLVED OLD QA Contact:
Severity: normal    
Priority: Normal CC: marja11
Version: CauldronKeywords: NEEDINFO, Triaged
Target Milestone: ---   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Source RPM: x11-server CVE:
Status comment:

Description Pascal Terjan 2014-10-15 00:53:10 CEST 
(EE) 
(EE) Backtrace:
(EE) 0: Xephyr (xorg_backtrace+0x49) [0x577919]
(EE) 1: Xephyr (0x400000+0x17b8c9) [0x57b8c9]
(EE) 2: /lib64/libpthread.so.0 (0x7f2794557000+0x10180) [0x7f2794567180]
(EE) 3: /lib64/libc.so.6 (strlen+0x2a) [0x7f27924b702a]
(EE) 4: Xephyr (0x400000+0x29d5c) [0x429d5c]
(EE) 5: Xephyr (OsInit+0x36) [0x57b986]
(EE) 6: Xephyr (0x400000+0x48a4b) [0x448a4b]
(EE) 7: /lib64/libc.so.6 (__libc_start_main+0xf0) [0x7f2792451fd0]
(EE) 8: Xephyr (0x400000+0x2636e) [0x42636e]
(EE) 
(EE) Segmentation fault at address 0x0
(EE) 
Fatal server error:
(EE) Caught signal 11 (Segmentation fault). Server aborting
(EE) 


Program received signal SIGSEGV, Segmentation fault.
strlen () at ../sysdeps/x86_64/strlen.S:106
106		movdqu	(%rax), %xmm12

(gdb) bt full
#0  strlen () at ../sysdeps/x86_64/strlen.S:106
No locals.
#1  0x0000000000429d5c in hostx_init () at hostx.c:411
        screen = 0x0
        scrpriv = 0x82ac90
        attr = 163919
        empty_cursor = 0
        cursor_pxm = 0
        red = 65535
        green = 32767
        blue = 0
        pixel = 4364425
        tmpstr = 0x0
        class_len = 0
        shm_rep = 0x0
#2  0x000000000057b986 in OsInit () at osinit.c:311
        been_here = 1
        devnull = <synthetic pointer>
        fname = "\000\000\000\277\377\377\377\377\000\036\365\361\377\177\000\000\000\060\372\367\377\177\000\000\034\351\324\361\377\177", '\000' <repeats 12 times>, "\340\236\377\377\377\377\210\320\377\377\377\177\000\000\025b\337\367\377\177\000\000\320\224\372\367\377\177\000\000\000\360\372\367\377\177\000\000\200\337\377\377\377\177\000\000\005\000\000\000\000\000\000\000 \000\000\000\000\000\000\000\372\245\336\367\377\177\000\000\000\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000\001\000"...
#3  0x0000000000448a4b in dix_main (argc=1, argv=0x7fffffffe168, envp=<optimized out>) at main.c:163
        i = <optimized out>
        alwaysCheckForInput = {0, 1}
#4  0x00007ffff4f35fd0 in __libc_start_main (main=0x426340 <main>, argc=1, argv=0x7fffffffe168, init=<optimized out>, fini=<optimized out>, rtld_fini=<optimized out>, 
    stack_end=0x7fffffffe158) at libc-start.c:289
        result = <optimized out>
        unwind_buf = {cancel_jmp_buf = {{jmp_buf = {0, 6176546094779403329, 4350789, 140737488347488, 0, 0, -6176545335628329919, -6176521255454831551}, mask_was_saved = 0}}, 
          priv = {pad = {0x0, 0x0, 0x587ee0 <__libc_csu_init>, 0x7fffffffe168}, data = {prev = 0x0, cleanup = 0x0, canceltype = 5799648}}}
        not_first_call = <optimized out>
#5  0x000000000042636e in _start () at ../sysdeps/x86_64/start.S:122
No locals.


Reproducible: 

Steps to Reproduce:
Comment 1 Pascal Terjan 2014-10-15 00:58:42 CEST 
Important detail, I am running it over ssh.
Comment 2 Pascal Terjan 2014-10-15 01:10:08 CEST 
Running it with -noxv prevents the crash
Comment 3 Pascal Terjan 2014-10-15 01:11:01 CEST 
Hmm the xv crash is actually different...

(EE) Backtrace:
(EE) 0: Xephyr (xorg_backtrace+0x49) [0x577919]
(EE) 1: Xephyr (0x400000+0x17b8c9) [0x57b8c9]
(EE) 2: /lib64/libpthread.so.0 (0x7f7f7ce59000+0x101c0) [0x7f7f7ce691c0]
(EE) 3: /lib64/libxcb-xv.so.0 (xcb_xv_query_adaptors_info_iterator+0x0) [0x7f7f7bc2f1a0]
(EE) 4: Xephyr (0x400000+0x2c218) [0x42c218]
(EE) 5: Xephyr (0x400000+0x27628) [0x427628]
(EE) 6: Xephyr (0x400000+0x806a7) [0x4806a7]
(EE) 7: Xephyr (AddScreen+0x101) [0x445051]
(EE) 8: Xephyr (0x400000+0x80b61) [0x480b61]
(EE) 9: Xephyr (0x400000+0x48afa) [0x448afa]
(EE) 10: /lib64/libc.so.6 (__libc_start_main+0xf0) [0x7f7f7ad53fd0]
(EE) 11: Xephyr (0x400000+0x2636e) [0x42636e]
(EE) 
(EE) Segmentation fault at address 0x8
(EE) 
Fatal server error:
(EE) Caught signal 11 (Segmentation fault). Server aborting
Manuel Hiebel 2014-10-15 17:26:21 CEST

Keywords: (none) => Triaged
Assignee: bugsquad => thierry.vignaud

Comment 4 Thierry Vignaud 2014-10-15 21:34:13 CEST 
it works fine here (with drakx-in-chroot)
Thierry Vignaud 2015-02-06 08:34:54 CET

Summary: Xephyr segfaults on startup => Xephyr over ssh segfaults on startup (but not with -noxv)

Comment 5 Samuel Verschelde 2015-06-02 20:25:43 CEST 
Is the problem still present?

Keywords: (none) => NEEDINFO

Comment 6 Marja Van Waes 2017-09-10 22:09:06 CEST 
(In reply to Samuel Verschelde from comment #5)
> Is the problem still present?

@ pterjan

I'll close this report as OLD, since you didn't reply.

Please reopen if this bug is still valid.

CC: (none) => marja11
Status: NEW => RESOLVED
Resolution: (none) => OLD