Bug#562765: cheese: segfault continues in jessie

Petter Reinholdtsen pere at hungry.com
Thu Oct 27 11:45:20 UTC 2016 

I ran into the cheese segfault too, using a cheap USB camera from
Clas Ohlson (USB ID 0ac8:3420).  Included is the valgrind output
and gdb backtrace from the crash.  This is on Stretch/testing using
i386.  The same camera work fine on a different laptop running
Jessie/stable using amd64.

CC to everyone involved in this bug report so far.  If you can, please try
to reproduce the crash using valgrind to get more information about why it
crashes.

pere at pxe-test0-pre:~$ time valgrind cheese 
==15626== Memcheck, a memory error detector
==15626== Copyright (C) 2002-2015, and GNU GPL'd, by Julian Seward et al.
==15626== Using Valgrind-3.12.0.SVN and LibVEX; rerun with -h for copyright info
==15626== Command: cheese
==15626== 

(cheese:15626): Gtk-WARNING **: Failed to get the GNOME session proxy: The name org.gnome.SessionManager is not owned

(cheese:15626): Gtk-WARNING **: Theme parsing error: cheese.css:7:35: The style property GtkScrollbar:min-slider-length is deprecated and shouldn't be used anymore. It will be removed in a future version
==15626== Jump to the invalid address stated on the next line
==15626==    at 0x0: ???
==15626==    by 0x52E7C1D: _cogl_gl_flush_attributes_state (cogl-attribute-gl.c:472)
==15626==    by 0x5306302: _cogl_flush_attributes_state (cogl-attribute.c:669)
==15626==    by 0x52E52E1: _cogl_framebuffer_gl_draw_attributes (cogl-framebuffer-gl.c:1182)
==15626==    by 0x5329F06: _cogl_journal_flush_modelview_and_entries (cogl-journal.c:314)
==15626==    by 0x53295C3: batch_and_call (cogl-journal.c:273)
==15626==    by 0x5329CA0: _cogl_journal_flush_texcoord_vbo_offsets_and_entries (cogl-journal.c:565)
==15626==    by 0x53295C3: batch_and_call (cogl-journal.c:273)
==15626==    by 0x5329925: _cogl_journal_flush_vbo_offsets_and_entries (cogl-journal.c:673)
==15626==    by 0x53295C3: batch_and_call (cogl-journal.c:273)
==15626==    by 0x53295C3: batch_and_call (cogl-journal.c:273)
==15626==    by 0x532B168: _cogl_journal_flush (cogl-journal.c:1400)
==15626==  Address 0x0 is not stack'd, malloc'd or (recently) free'd
==15626== 
==15626== 
==15626== Process terminating with default action of signal 11 (SIGSEGV)
==15626==  Bad permissions for mapped region at address 0x0
==15626==    at 0x0: ???
==15626==    by 0x52E7C1D: _cogl_gl_flush_attributes_state (cogl-attribute-gl.c:472)
==15626==    by 0x5306302: _cogl_flush_attributes_state (cogl-attribute.c:669)
==15626==    by 0x52E52E1: _cogl_framebuffer_gl_draw_attributes (cogl-framebuffer-gl.c:1182)
==15626==    by 0x5329F06: _cogl_journal_flush_modelview_and_entries (cogl-journal.c:314)
==15626==    by 0x53295C3: batch_and_call (cogl-journal.c:273)
==15626==    by 0x5329CA0: _cogl_journal_flush_texcoord_vbo_offsets_and_entries (cogl-journal.c:565)
==15626==    by 0x53295C3: batch_and_call (cogl-journal.c:273)
==15626==    by 0x5329925: _cogl_journal_flush_vbo_offsets_and_entries (cogl-journal.c:673)
==15626==    by 0x53295C3: batch_and_call (cogl-journal.c:273)
==15626==    by 0x53295C3: batch_and_call (cogl-journal.c:273)
==15626==    by 0x532B168: _cogl_journal_flush (cogl-journal.c:1400)
==15626== 
==15626== HEAP SUMMARY:
==15626==     in use at exit: 29,882,041 bytes in 124,603 blocks
==15626==   total heap usage: 714,883 allocs, 590,280 frees, 94,104,971 bytes allocated
==15626== 
==15626== LEAK SUMMARY:
==15626==    definitely lost: 49,080 bytes in 36 blocks
==15626==    indirectly lost: 51,987 bytes in 1,765 blocks
==15626==      possibly lost: 21,634,557 bytes in 1,425 blocks
==15626==    still reachable: 7,561,909 bytes in 116,424 blocks
==15626==                       of which reachable via heuristic:
==15626==                         newarray           : 106,386 bytes in 296 blocks
==15626==                         multipleinheritance: 100 bytes in 1 blocks
==15626==         suppressed: 0 bytes in 0 blocks
==15626== Rerun with --leak-check=full to see details of leaked memory
==15626== 
==15626== For counts of detected and suppressed errors, rerun with: -v
==15626== ERROR SUMMARY: 1 errors from 1 contexts (suppressed: 0 from 0)
Killed

real	1m29.031s
user	1m16.716s
sys	0m1.156s
pere at pxe-test0-pre:~$ gdb cheese 
GNU gdb (Debian 7.11.1-2) 7.11.1
Copyright (C) 2016 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "i686-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>.
Find the GDB manual and other documentation resources online at:
<http://www.gnu.org/software/gdb/documentation/>.
For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from cheese...Reading symbols from /usr/lib/debug/.build-id/4b/d84112cd0962f83b8e82eceb8956d8f8ae1896.debug...done.
done.
(gdb) run
Starting program: /usr/bin/cheese 
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/i386-linux-gnu/libthread_db.so.1".
[New Thread 0xb5a8bb40 (LWP 15672)]
[New Thread 0xb528ab40 (LWP 15673)]
[New Thread 0xb46ffb40 (LWP 15674)]

(cheese:15668): Gtk-WARNING **: Failed to get the GNOME session proxy: The name org.gnome.SessionManager is not owned

(cheese:15668): Gtk-WARNING **: Theme parsing error: cheese.css:7:35: The style property GtkScrollbar:min-slider-length is deprecated and shouldn't be used anymore. It will be removed in a future version
[New Thread 0xb19dcb40 (LWP 15675)]
[New Thread 0xb0d6db40 (LWP 15676)]
[New Thread 0xb056cb40 (LWP 15677)]
[New Thread 0xafd6bb40 (LWP 15678)]
[New Thread 0xaf56ab40 (LWP 15679)]
[New Thread 0xaed69b40 (LWP 15680)]
[New Thread 0xae568b40 (LWP 15681)]
[New Thread 0xadd67b40 (LWP 15682)]
[New Thread 0xad566b40 (LWP 15683)]
[New Thread 0xacd65b40 (LWP 15684)]
[New Thread 0xab712b40 (LWP 15685)]

(cheese:15668): Gtk-WARNING **: Calling org.xfce.Session.Manager.Inhibit failed: GDBus.Error:org.freedesktop.DBus.Error.UnknownMethod: Method "Inhibit" with signature "susu" on interface "org.xfce.Session.Manager" doesn't exist


Thread 1 "cheese" received signal SIGSEGV, Segmentation fault.
0x00000001 in ?? ()
(gdb) bt
#0  0x00000001 in ?? ()
#1  0xb6c95852 in _cogl_pipeline_flush_gl_state (ctx=<optimized out>, 
    pipeline=<optimized out>, framebuffer=<optimized out>, 
    with_color_attrib=<optimized out>, unknown_color_alpha=<optimized out>)
    at driver/gl/cogl-pipeline-opengl.c:1459
#2  0xb6c90c1e in _cogl_gl_flush_attributes_state (framebuffer=0x87dffe8, 
    pipeline=0x80fc630, layers_state=0xbfffe8a4, 
    flags=(COGL_DRAW_SKIP_JOURNAL_FLUSH | COGL_DRAW_SKIP_PIPELINE_VALIDATION | COGL_DRAW_SKIP_FRAMEBUFFER_FLUSH | COGL_DRAW_SKIP_LEGACY_STATE | COGL_DRAW_COLOR_ATTRIBUTE_IS_OPAQUE), attributes=0x82ced88, n_attributes=3)
    at driver/gl/cogl-attribute-gl.c:472
#3  0xb6caf303 in _cogl_flush_attributes_state (framebuffer=0x87dffe8, 
    pipeline=0x80fc630, 
    flags=(COGL_DRAW_SKIP_JOURNAL_FLUSH | COGL_DRAW_SKIP_PIPELINE_VALIDATION | COGL_DRAW_SKIP_FRAMEBUFFER_FLUSH | COGL_DRAW_SKIP_LEGACY_STATE | COGL_DRAW_COLOR_ATTRIBUTE_IS_OPAQUE), attributes=0x82ced88, n_attributes=3)
    at cogl-attribute.c:669
#4  0xb6c8e2e2 in _cogl_framebuffer_gl_draw_attributes (framebuffer=0x87dffe8, 
    pipeline=0x80fc630, mode=7, first_vertex=4, n_vertices=4, 
    attributes=0x82ced88, n_attributes=3, 
    flags=(COGL_DRAW_SKIP_JOURNAL_FLUSH | COGL_DRAW_SKIP_PIPELINE_VALIDATION | COGL_DRAW_SKIP_FRAMEBUFFER_FLUSH | COGL_DRAW_SKIP_LEGACY_STATE | COGL_DRAW_COLOR_ATTRIBUTE_IS_OPAQUE)) at driver/gl/cogl-framebuffer-gl.c:1182
---Type <return> to continue, or q <return> to quit---
#5  0xb6cd2f07 in _cogl_journal_flush_modelview_and_entries (
    batch_start=0x89a9454, batch_len=1, data=0xbfffeba4) at cogl-journal.c:314
#6  0xb6cd25c4 in batch_and_call (entries=entries at entry=0x89a9454, 
    n_entries=n_entries at entry=1, 
    can_batch_callback=can_batch_callback at entry=0xb6cd2f70 <compare_entry_pipelines>, batch_callback=0xb6cd3490 <_cogl_journal_flush_pipeline_and_entries>, 
    data=0xbfffeba4) at cogl-journal.c:273
#7  0xb6cd2ca1 in _cogl_journal_flush_texcoord_vbo_offsets_and_entries (
    batch_start=0x89a9454, batch_len=1, data=0xbfffeba4) at cogl-journal.c:565
#8  0xb6cd25c4 in batch_and_call (entries=entries at entry=0x89a9440, 
    n_entries=n_entries at entry=2, 
    can_batch_callback=can_batch_callback at entry=0xb6cd30f0 <compare_entry_layer_numbers>, 
    batch_callback=0xb6cd2c00 <_cogl_journal_flush_texcoord_vbo_offsets_and_entries>, data=0xbfffeba4) at cogl-journal.c:273
#9  0xb6cd2926 in _cogl_journal_flush_vbo_offsets_and_entries (
    batch_start=0x89a9440, batch_len=2, data=<optimized out>)
    at cogl-journal.c:673
#10 0xb6cd25c4 in batch_and_call (entries=<optimized out>, n_entries=2, 
    can_batch_callback=<optimized out>, 
    batch_callback=0xb6cd27c0 <_cogl_journal_flush_vbo_offsets_and_entries>, 
    data=0xbfffeba4) at cogl-journal.c:273
#11 0xb6cd25c4 in batch_and_call (entries=<optimized out>, n_entries=2, 
---Type <return> to continue, or q <return> to quit---
    can_batch_callback=can_batch_callback at entry=0xb6cd2640 <compare_entry_clip_stacks>, 
    batch_callback=0xb6cd26f0 <_cogl_journal_flush_clip_stacks_and_entries>, 
    data=0xbfffeba4) at cogl-journal.c:273
#12 0xb6cd4169 in _cogl_journal_flush (journal=0x82d4a90)
    at cogl-journal.c:1400
#13 0xb6cd55ee in _cogl_framebuffer_flush_journal (framebuffer=0x87dffe8)
    at cogl-framebuffer.c:636
#14 0xb6ca3cf2 in cogl_flush () at cogl.c:323
#15 0xb6cd8fcc in cogl_onscreen_swap_buffers_with_damage (onscreen=0x87dffe8, 
    rectangles=0xbfffed60, n_rectangles=0) at cogl-onscreen.c:316
#16 0xb7ca5e5b in ?? () from /usr/lib/i386-linux-gnu/libclutter-1.0.so.0
#17 0xb7ca95b3 in ?? () from /usr/lib/i386-linux-gnu/libclutter-1.0.so.0
#18 0xb7d183e7 in ?? () from /usr/lib/i386-linux-gnu/libclutter-1.0.so.0
#19 0xb7ca8c52 in ?? () from /usr/lib/i386-linux-gnu/libclutter-1.0.so.0
#20 0xb7106c3b in g_closure_invoke ()
   from /usr/lib/i386-linux-gnu/libgobject-2.0.so.0
#21 0xb711901e in ?? () from /usr/lib/i386-linux-gnu/libgobject-2.0.so.0
#22 0xb7121bb6 in g_signal_emit_valist ()
   from /usr/lib/i386-linux-gnu/libgobject-2.0.so.0
#23 0xb7121ed5 in g_signal_emit ()
   from /usr/lib/i386-linux-gnu/libgobject-2.0.so.0
#24 0xb738d6f0 in ?? () from /usr/lib/i386-linux-gnu/libgdk-3.so.0
---Type <return> to continue, or q <return> to quit---
#25 0xb738e07a in ?? () from /usr/lib/i386-linux-gnu/libgdk-3.so.0
#26 0xb73776fc in ?? () from /usr/lib/i386-linux-gnu/libgdk-3.so.0
#27 0xb7014f81 in ?? () from /lib/i386-linux-gnu/libglib-2.0.so.0
#28 0xb701438b in g_main_context_dispatch ()
   from /lib/i386-linux-gnu/libglib-2.0.so.0
#29 0xb7014779 in ?? () from /lib/i386-linux-gnu/libglib-2.0.so.0
#30 0xb7014844 in g_main_context_iteration ()
   from /lib/i386-linux-gnu/libglib-2.0.so.0
#31 0xb71f014b in g_application_run ()
   from /usr/lib/i386-linux-gnu/libgio-2.0.so.0
#32 0x080593a9 in _vala_main (args=0xbffff434, args_length1=1)
    at src/cheese-main.c:68
#33 0x0804feab in main (argc=1, argv=0xbffff434) at src/cheese-main.c:83
(gdb)

The machine in question is weak and low on resources.  No idea if that is
relevant.

-- 
Happy hacking
Petter Reinholdtsen

More information about the pkg-gnome-maintainers mailing list