Segfault in `shell_dbus_init()` when using sysprof
Using Debian sid/unstable with mutter 44.4-3, gnome-shell 44.4-1 and sysprof 45~rc-1, I ran
sysprof-cli --session-bus --gnome-shell capture.syscap
and then pressed Ctrl + Shift + n in a GNOME Terminal window to open a new terminal window. GNOME Shell terminated with a segmentation fault:
$ coredumpctl gdb 1253726
PID: 1253726 (gnome-shell)
UID: 5272 (pmenzel)
GID: 5272 (pmenzel)
Signal: 11 (SEGV)
Timestamp: Sun 2023-09-17 11:05:04 CEST (2min 44s ago)
Command Line: /usr/bin/gnome-shell
Executable: /usr/bin/gnome-shell
Control Group: /user.slice/user-5272.slice/user@5272.service/session.slice/org.gnome.Shell@x11.service
Unit: user@5272.service
User Unit: org.gnome.Shell@x11.service
Slice: user-5272.slice
Owner UID: 5272 (pmenzel)
Boot ID: 5692383c6772448db2871bb019a59b6b
Machine ID: 88c996ae63fc4f929b2dad45836260f4
Hostname: ersatz
Storage: /var/lib/systemd/coredump/core.gnome-shell.5272.5692383c6772448db2871bb019a59b6b.1253726.1694941504000000.zst (present)
Size on Disk: 14.0M
Message: Process 1253726 (gnome-shell) of user 5272 dumped core.
Module libudev.so.1 from deb systemd-254.3-1.amd64
Module libsystemd.so.0 from deb systemd-254.3-1.amd64
Stack trace of thread 1253726:
#0 0x00007f0c97311f06 get_input_event (libmutter-12.so.0 + 0x111f06)
#1 0x00007f0c9731211b get_event_name (libmutter-12.so.0 + 0x11211b)
#2 0x00007f0c9731ae9d meta_x11_event_source_dispatch (libmutter-12.so.0 + 0x11ae9d)
#3 0x00007f0c97924099 g_main_dispatch (libglib-2.0.so.0 + 0x57099)
#4 0x00007f0c979272d7 g_main_context_dispatch_unlocked (libglib-2.0.so.0 + 0x5a2d7)
#5 0x00007f0c97927bdf g_main_loop_run (libglib-2.0.so.0 + 0x5abdf)
#6 0x00007f0c972da039 meta_context_run_main_loop (libmutter-12.so.0 + 0xda039)
#7 0x000055d25ce2d9a3 main (gnome-shell + 0x39a3)
#8 0x00007f0c974946ca __libc_start_call_main (libc.so.6 + 0x276ca)
#9 0x00007f0c97494785 __libc_start_main_impl (libc.so.6 + 0x27785)
#10 0x000055d25ce2dc71 _start (gnome-shell + 0x3c71)
Stack trace of thread 1255752:
#0 0x00007f0c975689ff __GI___poll (libc.so.6 + 0xfb9ff)
#1 0x00007f0c97927237 g_main_context_poll_unlocked (libglib-2.0.so.0 + 0x5a237)
#2 0x00007f0c97927bdf g_main_loop_run (libglib-2.0.so.0 + 0x5abdf)
#3 0x00007f0c97b35d6a gdbus_shared_thread_func (libgio-2.0.so.0 + 0x122d6a)
#4 0x00007f0c979549e1 g_thread_proxy (libglib-2.0.so.0 + 0x879e1)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255758:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255749:
#0 0x00007f0c9756dec9 syscall (libc.so.6 + 0x100ec9)
#1 0x00007f0c979829a4 g_cond_wait (libglib-2.0.so.0 + 0xb59a4)
#2 0x00007f0c978f115b g_async_queue_pop_intern_unlocked (libglib-2.0.so.0 + 0x2415b)
#3 0x00007f0c9795506a g_thread_pool_spawn_thread (libglib-2.0.so.0 + 0x8806a)
#4 0x00007f0c979549e1 g_thread_proxy (libglib-2.0.so.0 + 0x879e1)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255760:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255759:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255778:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255775:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255777:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255750:
#0 0x00007f0c975689ff __GI___poll (libc.so.6 + 0xfb9ff)
#1 0x00007f0c97927237 g_main_context_poll_unlocked (libglib-2.0.so.0 + 0x5a237)
#2 0x00007f0c979278f0 g_main_context_iteration (libglib-2.0.so.0 + 0x5a8f0)
#3 0x00007f0c97927941 glib_worker_main (libglib-2.0.so.0 + 0x5a941)
#4 0x00007f0c979549e1 g_thread_proxy (libglib-2.0.so.0 + 0x879e1)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1256057:
#0 0x00007f0c975689ff __GI___poll (libc.so.6 + 0xfb9ff)
#1 0x00007f0c567302e1 poll (libpulse.so.0 + 0x342e1)
#2 0x00007f0c56721fa4 pa_mainloop_poll (libpulse.so.0 + 0x25fa4)
#3 0x00007f0c56722606 pa_mainloop_iterate (libpulse.so.0 + 0x26606)
#4 0x00007f0c567226b0 pa_mainloop_run (libpulse.so.0 + 0x266b0)
#5 0x00007f0c567303b9 thread (libpulse.so.0 + 0x343b9)
#6 0x00007f0c566d133f internal_thread_func (libpulsecommon-16.1.so + 0x5b33f)
#7 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#8 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255753:
#0 0x00007f0c975689ff __GI___poll (libc.so.6 + 0xfb9ff)
#1 0x00007f0c97927237 g_main_context_poll_unlocked (libglib-2.0.so.0 + 0x5a237)
#2 0x00007f0c979278f0 g_main_context_iteration (libglib-2.0.so.0 + 0x5a8f0)
#3 0x00007f0c92a6a4bd n/a (libdconfsettings.so + 0xb4bd)
#4 0x00007f0c979549e1 g_thread_proxy (libglib-2.0.so.0 + 0x879e1)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255757:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255765:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255766:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255771:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c95274167 _ZN7mozilla6detail21ConditionVariableImpl4waitERNS0_9MutexImplE (libmozjs-102.so.0 + 0xa74167)
#3 0x00007f0c952742f5 _ZN7mozilla6detail21ConditionVariableImpl8wait_forERNS0_9MutexImplERKNS_16BaseTimeDurationINS_27TimeDurationValueCalculatorEEE (libmozjs-102.so.0 + 0xa742f5)
#4 0x00007f0c94a7dad5 n/a (libmozjs-102.so.0 + 0x27dad5)
#5 0x00007f0c94a7db81 n/a (libmozjs-102.so.0 + 0x27db81)
#6 0x00007f0c94a7ce97 n/a (libmozjs-102.so.0 + 0x27ce97)
#7 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#8 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255772:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c95274167 _ZN7mozilla6detail21ConditionVariableImpl4waitERNS0_9MutexImplE (libmozjs-102.so.0 + 0xa74167)
#3 0x00007f0c952742f5 _ZN7mozilla6detail21ConditionVariableImpl8wait_forERNS0_9MutexImplERKNS_16BaseTimeDurationINS_27TimeDurationValueCalculatorEEE (libmozjs-102.so.0 + 0xa742f5)
#4 0x00007f0c94a7dad5 n/a (libmozjs-102.so.0 + 0x27dad5)
#5 0x00007f0c94a7db81 n/a (libmozjs-102.so.0 + 0x27db81)
#6 0x00007f0c94a7ce97 n/a (libmozjs-102.so.0 + 0x27ce97)
#7 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#8 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255774:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c719133fd n/a (iris_dri.so + 0x1133fd)
#3 0x00007f0c718c584b n/a (iris_dri.so + 0xc584b)
#4 0x00007f0c7191332b n/a (iris_dri.so + 0x11332b)
#5 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#6 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1256170:
#0 0x00007f0c9756dec9 syscall (libc.so.6 + 0x100ec9)
#1 0x00007f0c97982b70 g_cond_wait_until (libglib-2.0.so.0 + 0xb5b70)
#2 0x00007f0c978f1133 g_async_queue_pop_intern_unlocked (libglib-2.0.so.0 + 0x24133)
#3 0x00007f0c978f1765 g_async_queue_timeout_pop (libglib-2.0.so.0 + 0x24765)
#4 0x00007f0c9795522d g_thread_pool_wait_for_new_pool (libglib-2.0.so.0 + 0x8822d)
#5 0x00007f0c979549e1 g_thread_proxy (libglib-2.0.so.0 + 0x879e1)
#6 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#7 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255770:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c95274167 _ZN7mozilla6detail21ConditionVariableImpl4waitERNS0_9MutexImplE (libmozjs-102.so.0 + 0xa74167)
#3 0x00007f0c952742f5 _ZN7mozilla6detail21ConditionVariableImpl8wait_forERNS0_9MutexImplERKNS_16BaseTimeDurationINS_27TimeDurationValueCalculatorEEE (libmozjs-102.so.0 + 0xa742f5)
#4 0x00007f0c94a7dad5 n/a (libmozjs-102.so.0 + 0x27dad5)
#5 0x00007f0c94a7db81 n/a (libmozjs-102.so.0 + 0x27db81)
#6 0x00007f0c94a7ce97 n/a (libmozjs-102.so.0 + 0x27ce97)
#7 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#8 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
Stack trace of thread 1255769:
#0 0x00007f0c974f2156 __futex_abstimed_wait_common64 (libc.so.6 + 0x85156)
#1 0x00007f0c974f4818 __pthread_cond_wait_common (libc.so.6 + 0x87818)
#2 0x00007f0c95274167 _ZN7mozilla6detail21ConditionVariableImpl4waitERNS0_9MutexImplE (libmozjs-102.so.0 + 0xa74167)
#3 0x00007f0c952742f5 _ZN7mozilla6detail21ConditionVariableImpl8wait_forERNS0_9MutexImplERKNS_16BaseTimeDurationINS_27TimeDurationValueCalculatorEEE (libmozjs-102.so.0 + 0xa742f5)
#4 0x00007f0c94a7dad5 n/a (libmozjs-102.so.0 + 0x27dad5)
#5 0x00007f0c94a7db81 n/a (libmozjs-102.so.0 + 0x27db81)
#6 0x00007f0c94a7ce97 n/a (libmozjs-102.so.0 + 0x27ce97)
#7 0x00007f0c974f53ec start_thread (libc.so.6 + 0x883ec)
#8 0x00007f0c97575a2c __clone3 (libc.so.6 + 0x108a2c)
ELF object binary architecture: AMD x86-64
[…]
(gdb) set pagination off
warning: Unexpected size of section `.reg-xstate/1253726' in core file.
(gdb) bt
#0 0x00007f0c97311f06 in ?? ()
#1 0x00007f0c9731211b in ?? ()
#2 0x000000000000373c in shell_dbus_init (replace=1595043424) at ../src/main.c:100
#3 main (argc=<optimized out>, argv=<optimized out>) at ../src/main.c:645
(gdb) bt f
#0 0x00007f0c97311f06 in ?? ()
No symbol table info available.
#1 0x00007f0c9731211b in ?? ()
No symbol table info available.
#2 0x000000000000373c in shell_dbus_init (replace=1595043424) at ../src/main.c:100
request_name_result = 32764
session = 0x55d25ec3cdf0
bus = <optimized out>
error = 0x7ffc5d1940c0
request_name_flags = <optimized out>
session = <optimized out>
bus = <optimized out>
error = <optimized out>
request_name_flags = <optimized out>
request_name_result = <optimized out>
#3 main (argc=<optimized out>, argv=<optimized out>) at ../src/main.c:645
context = 0x7ffc5d1940c0
error = 0x55d25ec7e2b0
ecode = 0