Bug#1124932: gnome-shell: Sometimes segfaults when attempting to unlock VeraCrypt volume with wrong password
intrigeri
intrigeri at debian.org
Wed Jan 7 13:27:26 GMT 2026
Package: gnome-shell
Version: 48.4-1~deb13u1
Severity: important
Hi,
This bug can cause data loss (as any GNOME Shell crash) but it only affects
users who have opted in for the VeraCrypt support in udisks (context for the
curious, irrelevant to this bug:
https://github.com/storaged-project/udisks/issues/589), which I suppose is not
common — hence the non-RC severity.
To reproduce:
1. Create empty /etc/udisks2/tcrypt.conf
This flag file needs to exist in order to activate VeraCrypt detection
heuristics in udisks. Its content does not matter.
2. Restart udisks2.service
3. `dd` a VeraCrypt volume to a USB stick
I've been using this one:
https://gitlab.tails.boum.org/tails/tails/-/blob/stable/features/misc_files/container_with_pim.hc
4. Unplug and re-plug the USB stick
5. GNOME Shell displays a dialog offering to unlock the USB stick.
Type any password then click "Unlock".
6. Most of the time, this works, as in I see "Sorry, that didn't work.
Please try again." Sometimes gnome-shell and gvfs-udisks2-volume-monitor
segfault and I'm back to GDM.
This seems to be a regression in Trixie, since this problem was reported to us
by 4 different users shortly after the release of Tails based on Trixie, and
never before.
I could not reproduce this bug on current sid so my best hope is that this
behavior rings a bell to one of you, and the fix can cheaply be backported
to Trixie.
I've installed systemd-coredump and the relevant -dbgsym packages until I got
a core dump that's hopefully somewhat useful to you. The core dump is 411 MB
large, I can upload it somewhere if someone has capacity to dive into this.
Here's the stack trace:
PID: 1852 (gnome-shell)
UID: 1000 (toto)
GID: 1000 (toto)
Signal: 11 (SEGV)
Timestamp: Wed 2026-01-07 08:22:42 EST (1min 25s ago)
Command Line: /usr/bin/gnome-shell
Executable: /usr/bin/gnome-shell
Control Group: /user.slice/user-1000.slice/user at 1000.service/session.slice/org.gnome.Shell at wayland.service
Unit: user at 1000.service
User Unit: org.gnome.Shell at wayland.service
Slice: user-1000.slice
Owner UID: 1000 (toto)
Boot ID: 8635b0045a8b4892a055eda83d1b18e8
Machine ID: 0bcddbf841c5494aae3900262661705c
Hostname: trixie-desktop
Storage: /var/lib/systemd/coredump/core.gnome-shell.1000.8635b0045a8b4892a055eda83d1b18e8.1852.1767792162000000.zst (present)
Size on Disk: 16.1M
Message: Process 1852 (gnome-shell) of user 1000 dumped core.
Module libzstd.so.1 from deb libzstd-1.5.7+dfsg-1.amd64
Module libuuid.so.1 from deb util-linux-2.41-5.amd64
Module libgcc_s.so.1 from deb gcc-14-14.2.0-19.amd64
Module libblkid.so.1 from deb util-linux-2.41-5.amd64
Module libudev.so.1 from deb systemd-257.9-1~deb13u1.amd64
Module libstdc++.so.6 from deb gcc-14-14.2.0-19.amd64
Module libatomic.so.1 from deb gcc-14-14.2.0-19.amd64
Module libmount.so.1 from deb util-linux-2.41-5.amd64
Module libsystemd.so.0 from deb systemd-257.9-1~deb13u1.amd64
Module libpolkit-gobject-1.so.0 from deb policykit-1-126-2.amd64
Module libpolkit-agent-1.so.0 from deb policykit-1-126-2.amd64
Stack trace of thread 1852:
#0 0x00007fc975065a56 CLUTTER_IS_CONTENT (libmutter-clutter-16.so.0 + 0x63a56)
#1 0x00007fc9758fcee2 g_cclosure_marshal_VOID__BOOLEANv (libgobject-2.0.so.0 + 0x19ee2)
#2 0x00007fc9758fab81 _g_closure_invoke_va (libgobject-2.0.so.0 + 0x17b81)
#3 0x00007fc9759108b8 signal_emit_valist_unlocked (libgobject-2.0.so.0 + 0x2d8b8)
#4 0x00007fc9759165a6 g_signal_emit_valist (libgobject-2.0.so.0 + 0x335a6)
#5 0x00007fc975916663 g_signal_emit (libgobject-2.0.so.0 + 0x33663)
#6 0x00007fc97509f70b emit_frame_signal (libmutter-clutter-16.so.0 + 0x9d70b)
#7 0x00007fc9750a0826 clutter_timeline_do_frame (libmutter-clutter-16.so.0 + 0x9e826)
#8 0x00007fc9750a11c0 _clutter_timeline_do_tick (libmutter-clutter-16.so.0 + 0x9f1c0)
#9 0x00007fc97507107d advance_timelines (libmutter-clutter-16.so.0 + 0x6f07d)
#10 0x00007fc97530c385 g_main_dispatch (libglib-2.0.so.0 + 0x5c385)
#11 0x00007fc97530e5b7 g_main_context_dispatch_unlocked (libglib-2.0.so.0 + 0x5e5b7)
#12 0x00007fc97530f01f g_main_loop_run (libglib-2.0.so.0 + 0x5f01f)
#13 0x00007fc974d1ade2 meta_context_run_main_loop (libmutter-16.so.0 + 0x11ade2)
#14 0x00007fc973ff56ce ffi_call_unix64 (libffi.so.8 + 0x76ce)
#15 0x00007fc973ff497e ffi_call_int (libffi.so.8 + 0x697e)
#16 0x00007fc973ff51ab ffi_call (libffi.so.8 + 0x71ab)
#17 0x00007fc975165dae _ZN3Gjs8Function6invokeEP9JSContextRKN2JS8CallArgsENS3_6HandleIP8JSObjectEEP11_GIArgument (libgjs.so.0 + 0x56dae)
#18 0x00007fc9751662de _ZN3Gjs8Function4callEP9JSContextjPN2JS5ValueE (libgjs.so.0 + 0x572de)
#19 0x00007fc971b8d4ef _Z12CallJSNativeP9JSContextPFbS0_jPN2JS5ValueEEN2js10CallReasonERKNS1_8CallArgsE (libmozjs-128.so.0 + 0x18d4ef)
#20 0x00007fc971b7f160 InternalCall (libmozjs-128.so.0 + 0x17f160)
#21 0x00007fc971b8d1eb MaybeEnterInterpreterTrampoline (libmozjs-128.so.0 + 0x18d1eb)
#22 0x00007fc971b8d7b0 _ZN2js23InternalCallOrConstructEP9JSContextRKN2JS8CallArgsENS_14MaybeConstructENS_10CallReasonE (libmozjs-128.so.0 + 0x18d7b0)
#23 0x00007fc971b8da29 InternalCall (libmozjs-128.so.0 + 0x18da29)
#24 0x00007fc971c3fab3 _ZN2JS4CallEP9JSContextNS_6HandleINS_5ValueEEES4_RKNS_16HandleValueArrayENS_13MutableHandleIS3_EE (libmozjs-128.so.0 + 0x23fab3)
#25 0x00007fc97519a482 Call (libgjs.so.0 + 0x8b482)
#26 0x00007fc97519ef2f _ZN17GjsContextPrivate11eval_moduleEPKcPhPP7_GError (libgjs.so.0 + 0x8ff2f)
#27 0x00007fc97519f092 gjs_context_eval_module (libgjs.so.0 + 0x90092)
#28 0x00007fc97519f189 gjs_context_eval_module_file (libgjs.so.0 + 0x90189)
#29 0x000055b3d75829c6 main (/usr/bin/gnome-shell + 0x39c6)
#30 0x00007fc974a33ca8 __libc_start_call_main (libc.so.6 + 0x29ca8)
#31 0x00007fc974a33d65 __libc_start_main_impl (libc.so.6 + 0x29d65)
#32 0x000055b3d7582ce1 _start (/usr/bin/gnome-shell + 0x3ce1)
Stack trace of thread 1874:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a996ad __syscall_cancel (libc.so.6 + 0x8f6ad)
#3 0x00007fc974b0de6e __GI_ppoll (libc.so.6 + 0x103e6e)
#4 0x00007fc97530e68c ppoll (libglib-2.0.so.0 + 0x5e68c)
#5 0x00007fc97530f01f g_main_loop_run (libglib-2.0.so.0 + 0x5f01f)
#6 0x00007fc974e0d1e6 thread_impl_func (libmutter-16.so.0 + 0x20d1e6)
#7 0x00007fc97533f883 g_thread_proxy (libglib-2.0.so.0 + 0x8f883)
#8 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#9 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1868:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a996ad __syscall_cancel (libc.so.6 + 0x8f6ad)
#3 0x00007fc974b0de6e __GI_ppoll (libc.so.6 + 0x103e6e)
#4 0x00007fc97530e68c ppoll (libglib-2.0.so.0 + 0x5e68c)
#5 0x00007fc97530f01f g_main_loop_run (libglib-2.0.so.0 + 0x5f01f)
#6 0x00007fc975531c5a gdbus_shared_thread_func (libgio-2.0.so.0 + 0x129c5a)
#7 0x00007fc97533f883 g_thread_proxy (libglib-2.0.so.0 + 0x8f883)
#8 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#9 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1877:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a996ad __syscall_cancel (libc.so.6 + 0x8f6ad)
#3 0x00007fc974b0de6e __GI_ppoll (libc.so.6 + 0x103e6e)
#4 0x00007fc97530e68c ppoll (libglib-2.0.so.0 + 0x5e68c)
#5 0x00007fc97530f01f g_main_loop_run (libglib-2.0.so.0 + 0x5f01f)
#6 0x00007fc974e090cd input_thread (libmutter-16.so.0 + 0x2090cd)
#7 0x00007fc97533f883 g_thread_proxy (libglib-2.0.so.0 + 0x8f883)
#8 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#9 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 2201:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a996ad __syscall_cancel (libc.so.6 + 0x8f6ad)
#3 0x00007fc974b1aa6d epoll_wait (libc.so.6 + 0x110a6d)
#4 0x00007fc96c085816 n/a (libspa-support.so + 0x1c816)
#5 0x00007fc96c070b7d n/a (libspa-support.so + 0x7b7d)
#6 0x00007fc9744e1b55 n/a (libpipewire-0.3.so.0 + 0xb2b55)
#7 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#8 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1869:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a996ad __syscall_cancel (libc.so.6 + 0x8f6ad)
#3 0x00007fc974b0de6e __GI_ppoll (libc.so.6 + 0x103e6e)
#4 0x00007fc97530e68c ppoll (libglib-2.0.so.0 + 0x5e68c)
#5 0x00007fc97530ed20 g_main_context_iteration (libglib-2.0.so.0 + 0x5ed20)
#6 0x00007fc96ddf5add n/a (libdconfsettings.so + 0xbadd)
#7 0x00007fc97533f883 g_thread_proxy (libglib-2.0.so.0 + 0x8f883)
#8 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#9 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1865:
#0 0x00007fc974b18779 syscall (libc.so.6 + 0x10e779)
#1 0x00007fc97533f184 g_cond_wait_impl (libglib-2.0.so.0 + 0x8f184)
#2 0x00007fc9752d577b g_async_queue_pop_intern_unlocked (libglib-2.0.so.0 + 0x2577b)
#3 0x00007fc97533fb40 g_thread_pool_spawn_thread (libglib-2.0.so.0 + 0x8fb40)
#4 0x00007fc97533f883 g_thread_proxy (libglib-2.0.so.0 + 0x8f883)
#5 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#6 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1866:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a996ad __syscall_cancel (libc.so.6 + 0x8f6ad)
#3 0x00007fc974b0de6e __GI_ppoll (libc.so.6 + 0x103e6e)
#4 0x00007fc97530e68c ppoll (libglib-2.0.so.0 + 0x5e68c)
#5 0x00007fc97530ed20 g_main_context_iteration (libglib-2.0.so.0 + 0x5ed20)
#6 0x00007fc97530ed71 glib_worker_main (libglib-2.0.so.0 + 0x5ed71)
#7 0x00007fc97533f883 g_thread_proxy (libglib-2.0.so.0 + 0x8f883)
#8 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#9 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1870:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a99c9c __futex_abstimed_wait_common64 (libc.so.6 + 0x8fc9c)
#3 0x00007fc974a9c158 __pthread_cond_wait_common (libc.so.6 + 0x92158)
#4 0x00007fc9725eb317 _ZN7mozilla6detail21ConditionVariableImpl4waitERNS0_9MutexImplE (libmozjs-128.so.0 + 0xbeb317)
#5 0x00007fc971c817f5 _ZN2js17ConditionVariable4waitERNS_5MutexE (libmozjs-128.so.0 + 0x2817f5)
#6 0x00007fc971c81891 _ZN2js12HelperThread10ThreadMainEPNS_18InternalThreadPoolEPS0_ (libmozjs-128.so.0 + 0x281891)
#7 0x00007fc971c80f77 _ZN2js6detail16ThreadTrampolineIRFvPNS_18InternalThreadPoolEPNS_12HelperThreadEEJRS3_S5_EE8callMainIJLm0ELm1EEEEvSt16integer_sequenceImJXspT_EEE (libmozjs-128.so.0 + 0x280f77)
#8 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#9 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1871:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a99c9c __futex_abstimed_wait_common64 (libc.so.6 + 0x8fc9c)
#3 0x00007fc974a9c158 __pthread_cond_wait_common (libc.so.6 + 0x92158)
#4 0x00007fc9725eb317 _ZN7mozilla6detail21ConditionVariableImpl4waitERNS0_9MutexImplE (libmozjs-128.so.0 + 0xbeb317)
#5 0x00007fc971c817f5 _ZN2js17ConditionVariable4waitERNS_5MutexE (libmozjs-128.so.0 + 0x2817f5)
#6 0x00007fc971c81891 _ZN2js12HelperThread10ThreadMainEPNS_18InternalThreadPoolEPS0_ (libmozjs-128.so.0 + 0x281891)
#7 0x00007fc971c80f77 _ZN2js6detail16ThreadTrampolineIRFvPNS_18InternalThreadPoolEPNS_12HelperThreadEEJRS3_S5_EE8callMainIJLm0ELm1EEEEvSt16integer_sequenceImJXspT_EEE (libmozjs-128.so.0 + 0x280f77)
#8 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#9 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1873:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a99c9c __futex_abstimed_wait_common64 (libc.so.6 + 0x8fc9c)
#3 0x00007fc974a9c158 __pthread_cond_wait_common (libc.so.6 + 0x92158)
#4 0x00007fc9725eb317 _ZN7mozilla6detail21ConditionVariableImpl4waitERNS0_9MutexImplE (libmozjs-128.so.0 + 0xbeb317)
#5 0x00007fc971c817f5 _ZN2js17ConditionVariable4waitERNS_5MutexE (libmozjs-128.so.0 + 0x2817f5)
#6 0x00007fc971c81891 _ZN2js12HelperThread10ThreadMainEPNS_18InternalThreadPoolEPS0_ (libmozjs-128.so.0 + 0x281891)
#7 0x00007fc971c80f77 _ZN2js6detail16ThreadTrampolineIRFvPNS_18InternalThreadPoolEPNS_12HelperThreadEEJRS3_S5_EE8callMainIJLm0ELm1EEEEvSt16integer_sequenceImJXspT_EEE (libmozjs-128.so.0 + 0x280f77)
#8 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#9 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 2775:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a996ad __syscall_cancel (libc.so.6 + 0x8f6ad)
#3 0x00007fc974b0d9c6 __GI___poll (libc.so.6 + 0x1039c6)
#4 0x00007fc930492aa5 n/a (libpulse.so.0 + 0x34aa5)
#5 0x00007fc9304842ac pa_mainloop_poll (libpulse.so.0 + 0x262ac)
#6 0x00007fc93048497a pa_mainloop_iterate (libpulse.so.0 + 0x2697a)
#7 0x00007fc930484a20 pa_mainloop_run (libpulse.so.0 + 0x26a20)
#8 0x00007fc930492b7b n/a (libpulse.so.0 + 0x34b7b)
#9 0x00007fc9304327b3 n/a (libpulsecommon-17.0.so + 0x5c7b3)
#10 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#11 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1876:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a99c9c __futex_abstimed_wait_common64 (libc.so.6 + 0x8fc9c)
#3 0x00007fc974a9c158 __pthread_cond_wait_common (libc.so.6 + 0x92158)
#4 0x00007fc9559afc5d n/a (libgallium-25.0.7-2.so + 0x5afc5d)
#5 0x00007fc95597b2ab n/a (libgallium-25.0.7-2.so + 0x57b2ab)
#6 0x00007fc9559afb8b n/a (libgallium-25.0.7-2.so + 0x5afb8b)
#7 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#8 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 1872:
#0 0x00007fc974aa49ee __syscall_cancel_arch (libc.so.6 + 0x9a9ee)
#1 0x00007fc974a99668 __internal_syscall_cancel (libc.so.6 + 0x8f668)
#2 0x00007fc974a99c9c __futex_abstimed_wait_common64 (libc.so.6 + 0x8fc9c)
#3 0x00007fc974a9c158 __pthread_cond_wait_common (libc.so.6 + 0x92158)
#4 0x00007fc9725eb317 _ZN7mozilla6detail21ConditionVariableImpl4waitERNS0_9MutexImplE (libmozjs-128.so.0 + 0xbeb317)
#5 0x00007fc971c817f5 _ZN2js17ConditionVariable4waitERNS_5MutexE (libmozjs-128.so.0 + 0x2817f5)
#6 0x00007fc971c81891 _ZN2js12HelperThread10ThreadMainEPNS_18InternalThreadPoolEPS0_ (libmozjs-128.so.0 + 0x281891)
#7 0x00007fc971c80f77 _ZN2js6detail16ThreadTrampolineIRFvPNS_18InternalThreadPoolEPNS_12HelperThreadEEJRS3_S5_EE8callMainIJLm0ELm1EEEEvSt16integer_sequenceImJXspT_EEE (libmozjs-128.so.0 + 0x280f77)
#8 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#9 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
Stack trace of thread 2181:
#0 0x00007fc974b18779 syscall (libc.so.6 + 0x10e779)
#1 0x00007fc97533f184 g_cond_wait_impl (libglib-2.0.so.0 + 0x8f184)
#2 0x00007fc9752d577b g_async_queue_pop_intern_unlocked (libglib-2.0.so.0 + 0x2577b)
#3 0x00007fc9752d5c2b g_async_queue_pop (libglib-2.0.so.0 + 0x25c2b)
#4 0x00007fc970c462a7 n/a (libpangoft2-1.0.so.0 + 0xe2a7)
#5 0x00007fc97533f883 g_thread_proxy (libglib-2.0.so.0 + 0x8f883)
#6 0x00007fc974a9cb7b start_thread (libc.so.6 + 0x92b7b)
#7 0x00007fc974b1a7b8 __clone3 (libc.so.6 + 0x1107b8)
ELF object binary architecture: AMD x86-64
More information about the pkg-gnome-maintainers
mailing list