Bug#314164: libgnomevfs2-0: evolution segfault in _gnome_vfs_drive_from_corba()

dann frazier dann frazier <dannf@hp.com>, 314164@bugs.debian.org
Wed, 15 Jun 2005 09:56:41 -0600 

On Wed, 2005-06-15 at 09:13 +0200, Sjoerd Simons wrote:
> On Tue, Jun 14, 2005 at 05:58:12PM -0600, dann frazier wrote:
> > Package: libgnomevfs2-0
> > Version: 2.10.1-4
> > Severity: important
> > 
> > With the new libgnomevfs2-0, evolution now segfaults on my system.
> > 
> > To reproduce:
> >  1) start a new message
> >  2) Insert->Text File
> >  3) SEGV
> > 
> > _gnome_vfs_drive_from_corba is accessing the corba_drive pointer, without
> > checking if it is NULL first (it is NULL in this backtrace).
> 
> Does this only happen in evolution or also with other programs when they want
> to display the file selector (e.g. zenity --file-selection)

Thanks for the quick response.
zenity also segfaults:

dannf@krebs:/tmp$ LD_LIBRARY_PATH=/usr/lib/debug gdb zenity
GNU gdb 6.3-debian
Copyright 2004 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you
are
welcome to change it and/or distribute copies of it under certain
conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for
details.
This GDB was configured as "ia64-linux"...(no debugging symbols found)
Using host libthread_db library "/usr/lib/debug/libthread_db.so.1".

(gdb) set args --file-selection
(gdb) run
Starting program: /usr/bin/zenity --file-selection
(no debugging symbols found)
(no debugging symbols found)
[Thread debugging using libthread_db enabled]
[New Thread 16384 (LWP 2505)]
[New Thread 32769 (LWP 2508)]
[New Thread 16386 (LWP 2509)]

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 16384 (LWP 2505)]
_gnome_vfs_drive_from_corba (corba_drive=0x0,
    volume_monitor=0x60000000000e5640) at gnome-vfs-drive.c:600
600     gnome-vfs-drive.c: No such file or directory.
        in gnome-vfs-drive.c
(gdb) bt
#0  _gnome_vfs_drive_from_corba (corba_drive=0x0,
    volume_monitor=0x60000000000e5640) at gnome-vfs-drive.c:600
#1  0x20000000019326f0 in read_drives_from_daemon
(volume_monitor_client=0x1)
    at gnome-vfs-volume-monitor-client.c:132
#2  0x2000000001932a90 in gnome_vfs_volume_monitor_client_init (
    volume_monitor_client=0x1) at gnome-vfs-volume-monitor-client.c:189
#3  0x2000000000e27e60 in IA__g_type_create_instance (type=1020)
    at gtype.c:1525
#4  0x2000000000dfe7d0 in g_object_constructor (type=1020,
    n_construct_properties=0, construct_params=0x0) at gobject.c:1045
#5  0x2000000000dfd890 in IA__g_object_newv
(object_type=6917529027641894192,
    n_parameters=0, parameters=0x0) at gobject.c:843
#6  0x2000000000dfe740 in IA__g_object_new_valist (
    object_type=6917529027641894192, first_property_name=0x0,
    var_args=0x60000fffffffb4a0) at gobject.c:975
#7  0x2000000000dfd200 in IA__g_object_new
(object_type=6917529027641894192,
    first_property_name=0x0) at gobject.c:816
#8  0x2000000001933c90 in _gnome_vfs_get_volume_monitor_internal
(create=1)
    at gnome-vfs-volume-monitor.c:243
#9  0x2000000001933d50 in gnome_vfs_get_volume_monitor ()
    at gnome-vfs-volume-monitor.c:277
#10 0x200000000186b580 in gtk_file_system_gnome_vfs_init ()
   from /usr/lib/gtk-2.0/2.4.0/filesystems/libgnome-vfs.so
#11 0x2000000000e27e60 in IA__g_type_create_instance (type=1020)
    at gtype.c:1525
#12 0x2000000000dfe7d0 in g_object_constructor (type=1020,
    n_construct_properties=0, construct_params=0x0) at gobject.c:1045
#13 0x2000000000dfd890 in IA__g_object_newv
(object_type=6917529027641881424,
    n_parameters=0, parameters=0x0) at gobject.c:843
#14 0x2000000000dfe740 in IA__g_object_new_valist (
    object_type=6917529027641881424, first_property_name=0x0,
    var_args=0x60000fffffffb580) at gobject.c:975
#15 0x2000000000dfd200 in IA__g_object_new
(object_type=6917529027641881424,
    first_property_name=0x0) at gobject.c:816
#16 0x200000000186af20 in gtk_file_system_gnome_vfs_new ()
   from /usr/lib/gtk-2.0/2.4.0/filesystems/libgnome-vfs.so
#17 0x2000000001876b60 in fs_module_create ()
   from /usr/lib/gtk-2.0/2.4.0/filesystems/libgnome-vfs.so
#18 0x20000000006df130 in _gtk_file_system_module_create (
    fs_module=0x6000000000081b20) at gtkfilesystem.c:1102
#19 0x20000000006df350 in _gtk_file_system_create (
    file_system_name=0x6000000000081630 "gnome-vfs") at
gtkfilesystem.c:1141
#20 0x20000000006c1990 in set_file_system_backend
(impl=0x6000000000080d90,
    backend=0x0) at gtkfilechooserdefault.c:3733
#21 0x2000000000dfeaa0 in g_object_constructor
(type=6917529027641609616,
    n_construct_properties=0, construct_params=0x6000000000065d10)
    at gobject.c:1041
#22 0x20000000006c11a0 in gtk_file_chooser_default_constructor (
    type=6917529027641466376, n_construct_properties=0,
    construct_params=0x6000000000065d10) at gtkfilechooserdefault.c:3594
#23 0x2000000000dfd890 in IA__g_object_newv
(object_type=6917529027641601792,
    n_parameters=0, parameters=0x60000000000730d0) at gobject.c:843
#24 0x2000000000dfe4f0 in IA__g_object_new_valist (
    object_type=6917529027641601792, first_property_name=0x0,
    var_args=0x60000fffffffb660) at gobject.c:1026
#25 0x2000000000dfd200 in IA__g_object_new
(object_type=6917529027641601792,
    first_property_name=0x20000000009a46d0 "file-system-backend")
    at gobject.c:816
#26 0x20000000006c96a0 in _gtk_file_chooser_default_new
(file_system=0x0)
---Type <return> to continue, or q <return> to quit---
    at gtkfilechooserdefault.c:6141
#27 0x20000000006cbc80 in gtk_file_chooser_widget_constructor (type=0,
    n_construct_properties=7126144, construct_params=0xc00000000000048e)
    at gtkfilechooserwidget.c:156
#28 0x2000000000dfd890 in IA__g_object_newv
(object_type=6917529027641597840,
    n_parameters=1, parameters=0x600000000007ee28) at gobject.c:843
#29 0x2000000000dfe740 in IA__g_object_new_valist (
    object_type=6917529027641597840, first_property_name=0x0,
    var_args=0x60000fffffffb6e0) at gobject.c:975
#30 0x2000000000dfd200 in IA__g_object_new
(object_type=6917529027641597840,
    first_property_name=0x0) at gobject.c:816
#31 0x20000000006b3dc0 in gtk_file_chooser_dialog_constructor (
    type=6917529027641597840, n_construct_properties=0,
    construct_params=0x20000000006b3da0) at gtkfilechooserdialog.c:374
#32 0x2000000000dfd890 in IA__g_object_newv
(object_type=6917529027641461760,
    n_parameters=1, parameters=0x60000000000711e0) at gobject.c:843
#33 0x2000000000dfe4f0 in IA__g_object_new_valist (
    object_type=6917529027641461760, first_property_name=0x0,
    var_args=0x60000fffffffb7a0) at gobject.c:1026
#34 0x2000000000dfd200 in IA__g_object_new
(object_type=6917529027641461760,
    first_property_name=0x2000000000a2d8b8 "title") at gobject.c:816
#35 0x20000000006b4320 in gtk_file_chooser_dialog_new_valist (title=0x0,
    parent=0x0, action=GTK_FILE_CHOOSER_ACTION_OPEN, backend=0x0,
    first_button_text=0x4000000000019648 "gtk-cancel",
    varargs=0x60000fffffffb7a0) at gtkfilechooserdialog.c:580
#36 0x20000000006b4450 in IA__gtk_file_chooser_dialog_new (title=0x0,
    parent=0x0, action=GTK_FILE_CHOOSER_ACTION_OPEN,
    first_button_text=0x4000000000019648 "gtk-cancel")
    at gtkfilechooserdialog.c:625
#37 0x400000000000d750 in ?? ()
#38 0x4000000000009470 in ?? ()
#39 0x200000000119db20 in __libc_start_main (
    main=@0x400000000001b850: 0x4000000000009250 <_init+14032>, argc=2,
    ubp_av=0x60000fffffffb7d8,
    init=@0x400000000001b820: 0x40000000000187e0 <_init+76896>,
    fini=0x200000000003e940 <_rtld_local+64>,
    rtld_fini=0x200000000003a630 <local+40>,
stack_end=0x60000fffffffb7d0)
    at ../sysdeps/generic/libc-start.c:242
#40 0x40000000000090c0 in ?? ()
#41 0x0000000000000000 in ?? ()
Previous frame identical to this frame (corrupt stack?)