Comment 2 for bug 1870317

Revision history for this message
Danie de Jager (danie.dejager) wrote :

double free or corruption (out)
Stacktrace:

  at <unknown> <0xffffffff>
  at (wrapper managed-to-native) GLib.SList.g_free (intptr) <0x0005f>
  at GLib.ListBase.Empty () <0x0013c>
  at GLib.ListBase.Dispose (bool) <0x0000f>
  at GLib.ListBase.Finalize () <0x0001d>
  at (wrapper runtime-invoke) object.runtime_invoke_virtual_void__this__ (object,intptr,intptr,intptr) <0x00068>

Native stacktrace:

 /usr/bin/mono(+0xc8514) [0x56397e83f514]
 /lib/x86_64-linux-gnu/libpthread.so.0(+0x12890) [0x7fa40ffcc890]
 /lib/x86_64-linux-gnu/libc.so.6(gsignal+0xc7) [0x7fa40f9efe97]
 /lib/x86_64-linux-gnu/libc.so.6(abort+0x141) [0x7fa40f9f1801]
 /lib/x86_64-linux-gnu/libc.so.6(+0x89897) [0x7fa40fa3a897]
 /lib/x86_64-linux-gnu/libc.so.6(+0x9090a) [0x7fa40fa4190a]
 /lib/x86_64-linux-gnu/libc.so.6(cfree+0x525) [0x7fa40fa48e75]
 [0x40f84900]

Debug info from gdb:

[New LWP 9035]
[New LWP 9036]
[New LWP 9038]
[New LWP 9039]
[New LWP 9091]
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
__lll_lock_wait_private () at ../sysdeps/unix/sysv/linux/x86_64/lowlevellock.S:95
95 ../sysdeps/unix/sysv/linux/x86_64/lowlevellock.S: No such file or directory.
  Id Target Id Frame
* 1 Thread 0x7fa410b80780 (LWP 9032) "Main" __lll_lock_wait_private () at ../sysdeps/unix/sysv/linux/x86_64/lowlevellock.S:95
  2 Thread 0x7fa40efff700 (LWP 9035) "SGen worker" 0x00007fa40ffc79f3 in futex_wait_cancelable (private=<optimized out>, expected=0, futex_word=0x56397ed32a08) at ../sysdeps/unix/sysv/linux/futex-internal.h:88
  3 Thread 0x7fa40f6d2700 (LWP 9036) "Finalizer" 0x00007fa40ffcc23a in __waitpid (pid=9117, stat_loc=0x7fa40f6d076c, options=0) at ../sysdeps/unix/sysv/linux/waitpid.c:30
  4 Thread 0x7fa3ff548700 (LWP 9038) "gmain" 0x00007fa40fac5bf9 in __GI___poll (fds=0x56397fddb860, nfds=2, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29
  5 Thread 0x7fa3fed47700 (LWP 9039) "gdbus" 0x00007fa40fac5bf9 in __GI___poll (fds=0x56397fdee0f0, nfds=2, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29
  6 Thread 0x7fa3eb7fe700 (LWP 9091) "pool" syscall () at ../sysdeps/unix/sysv/linux/x86_64/syscall.S:38

Thread 6 (Thread 0x7fa3eb7fe700 (LWP 9091)):
#0 0x00007fa40facc839 in syscall () at ../sysdeps/unix/sysv/linux/x86_64/syscall.S:38
#1 0x00007fa405c2d87a in g_cond_wait_until () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#2 0x00007fa405bba571 in () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#3 0x00007fa405bbab2c in g_async_queue_timeout_pop () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#4 0x00007fa405c0fc1e in () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#5 0x00007fa405c0f175 in () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#6 0x00007fa40ffc16db in start_thread (arg=0x7fa3eb7fe700) at pthread_create.c:463
#7 0x00007fa40fad288f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95

Thread 5 (Thread 0x7fa3fed47700 (LWP 9039)):
#0 0x00007fa40fac5bf9 in __GI___poll (fds=0x56397fdee0f0, nfds=2, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29
#1 0x00007fa405be75c9 in () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#2 0x00007fa405be7962 in g_main_loop_run () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#3 0x00007fa406638276 in () at /usr/lib/x86_64-linux-gnu/libgio-2.0.so.0
#4 0x00007fa405c0f175 in () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#5 0x00007fa40ffc16db in start_thread (arg=0x7fa3fed47700) at pthread_create.c:463
#6 0x00007fa40fad288f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95

Thread 4 (Thread 0x7fa3ff548700 (LWP 9038)):
#0 0x00007fa40fac5bf9 in __GI___poll (fds=0x56397fddb860, nfds=2, timeout=-1) at ../sysdeps/unix/sysv/linux/poll.c:29
#1 0x00007fa405be75c9 in () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#2 0x00007fa405be76dc in g_main_context_iteration () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#3 0x00007fa405be7721 in () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#4 0x00007fa405c0f175 in () at /usr/lib/x86_64-linux-gnu/libglib-2.0.so.0
#5 0x00007fa40ffc16db in start_thread (arg=0x7fa3ff548700) at pthread_create.c:463
#6 0x00007fa40fad288f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95

Thread 3 (Thread 0x7fa40f6d2700 (LWP 9036)):
#0 0x00007fa40ffcc23a in __waitpid (pid=9117, stat_loc=0x7fa40f6d076c, options=0) at ../sysdeps/unix/sysv/linux/waitpid.c:30
#1 0x000056397e83f5f0 in ()
#2 0x00007fa40ffcc890 in <signal handler called> () at /lib/x86_64-linux-gnu/libpthread.so.0
#3 0x00007fa40f9efe97 in __GI_raise (sig=sig@entry=6) at ../sysdeps/unix/sysv/linux/raise.c:51
#4 0x00007fa40f9f1801 in __GI_abort () at abort.c:79
#5 0x00007fa40fa3a897 in __libc_message (action=action@entry=do_abort, fmt=fmt@entry=0x7fa40fb67b9a "%s\n") at ../sysdeps/posix/libc_fatal.c:181
#6 0x00007fa40fa4190a in malloc_printerr (str=str@entry=0x7fa40fb69870 "double free or corruption (out)") at malloc.c:5350
#7 0x00007fa40fa48e75 in _int_free (have_lock=0, p=0x56398032fd40, av=0x7fa40fd9cc40 <main_arena>) at malloc.c:4278
#8 0x00007fa40fa48e75 in __GI___libc_free (mem=0x56398032fd50) at malloc.c:3124
#9 0x0000000040f84900 in ()
#10 0x000056398032fd50 in ()
#11 0x000056397fa450d0 in ()
#12 0x000056397fa450d0 in ()
#13 0x0000000000000000 in ()

Thread 2 (Thread 0x7fa40efff700 (LWP 9035)):
#0 0x00007fa40ffc79f3 in futex_wait_cancelable (private=<optimized out>, expected=0, futex_word=0x56397ed32a08) at ../sysdeps/unix/sysv/linux/futex-internal.h:88
#1 0x00007fa40ffc79f3 in __pthread_cond_wait_common (abstime=0x0, mutex=0x56397ed32a20, cond=0x56397ed329e0) at pthread_cond_wait.c:502
#2 0x00007fa40ffc79f3 in __pthread_cond_wait (cond=0x56397ed329e0, mutex=0x56397ed32a20) at pthread_cond_wait.c:655
#3 0x000056397e9c7863 in ()
#4 0x00007fa40ffc16db in start_thread (arg=0x7fa40efff700) at pthread_create.c:463
#5 0x00007fa40fad288f in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95

Thread 1 (Thread 0x7fa410b80780 (LWP 9032)):
#0 0x00007fa40fae16ac in __lll_lock_wait_private () at ../sysdeps/unix/sysv/linux/x86_64/lowlevellock.S:95
#1 0x00007fa40fa4b352 in __libc_calloc (n=<optimized out>, elem_size=<optimized out>) at malloc.c:3407
#2 0x000056397ea00656 in ()
#3 0x000056397ea03d5e in ()
#4 0x000056397e8e7ca3 in ()
#5 0x000056397e8e821f in ()
#6 0x0000000040e7951a in ()
#7 0x0000000000000058 in ()
#8 0x0000000000000003 in ()
#9 0x0000000000000003 in ()
#10 0x0000000000000000 in ()

=================================================================
Got a SIGABRT while executing native code. This usually indicates
a fatal error in the mono runtime or one of the native libraries
used by your application.
=================================================================

Aborted (core dumped)