Ubuntu
gnome-shell package

Bug #1962513
Comment #6

Comment 6 for bug 1962513

Revision history for this message

Daniel van Vugt (vanvugt) wrote on 2022-03-02 (last edit on 2022-03-03):

Success! Forced the kernel to create regular core files and then added debug symbols in the live session. Also got lucky in that the core dump was not corrupt this time:

Core was generated by `gnome-shell --sm-disable --mode=ubiquity'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0 0x00007f2ace7dda6c in js::gc::Cell::storeBuffer (this=<optimized out>, this=<optimized out>) at .././js/src/gc/Cell.h:363
[Current thread is 1 (Thread 0x7f2ac912f5c0 (LWP 1795))]
(gdb) bt
#0 0x00007f2ace7dda6c in js::gc::Cell::storeBuffer (this=<optimized out>, this=<optimized out>) at .././js/src/gc/Cell.h:363
#1 JSObject::writeBarrierPost (next=<optimized out>, prev=<optimized out>, cellp=<optimized out>) at .././js/src/vm/JSObject.h:758
#2 js::InternalBarrierMethods<JSObject*>::postBarrier (next=<optimized out>, prev=<optimized out>, vp=0x7f2ab4029cf0) at .././js/src/gc/Barrier.h:332
#3 js::InternalBarrierMethods<JSObject*>::postBarrier (vp=0x7f2ab4029cf0, prev=<optimized out>, next=<optimized out>) at .././js/src/gc/Barrier.h:331
#4 0x00007f2ad064a792 in js::BarrierMethods<JSObject*>::postWriteBarrier (next=<optimized out>, prev=<optimized out>, vp=<optimized out>, vp=<optimized out>, prev=<optimized out>, next=<optimized out>) at /usr/include/mozjs-78/js/RootingAPI.h:772
#5 JS::Heap<JSObject*>::postWriteBarrier (next=<optimized out>, prev=<optimized out>, this=<optimized out>, this=<optimized out>, prev=<optimized out>, next=<optimized out>) at /usr/include/mozjs-78/js/RootingAPI.h:366
#6 JS::Heap<JSObject*>::~Heap (this=<optimized out>, this=<optimized out>) at /usr/include/mozjs-78/js/RootingAPI.h:328
#7 mozilla::detail::VectorImpl<JS::Heap<JSObject*>, 0ul, js::SystemAllocPolicy, false>::destroy (aEnd=0x7f2ab4029d00, aBegin=<optimized out>) at /usr/include/mozjs-78/mozilla/Vector.h:65
#8 mozilla::Vector<JS::Heap<JSObject*>, 0ul, js::SystemAllocPolicy>::~Vector (this=<optimized out>, this=<optimized out>) at /usr/include/mozjs-78/mozilla/Vector.h:889
#9 JS::GCVector<JS::Heap<JSObject*>, 0ul, js::SystemAllocPolicy>::~GCVector (this=<optimized out>, this=<optimized out>) at /usr/include/mozjs-78/js/GCVector.h:35
#10 GjsContextPrivate::~GjsContextPrivate (this=<optimized out>, this=<optimized out>) at ../gjs/context.cpp:467
#11 0x00007f2ad064b748 in gjs_context_finalize (object=0x55e730b0d220) at ../gjs/context.cpp:480
#12 0x00007f2ad10d7e5d in g_object_unref () from /lib/x86_64-linux-gnu/libgobject-2.0.so.0
#13 0x00007f2ad132277d in _shell_global_destroy_gjs_context (self=<optimized out>) at ../src/shell-global.c:703
#14 0x000055e72f365ece in main (argc=<optimized out>, argv=<optimized out>) at ../src/main.c:659

Looks like bug 1947130.

Success! Forced the kernel to create regular core files and then added debug symbols in the live session. Also got lucky in that the core dump was not corrupt this time:

Core was generated by `gnome-shell --sm-disable --mode=ubiquity'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0  0x00007f2ace7dda6c in js::gc::Cell::storeBuffer (this=<optimized out>, this=<optimized out>) at .././js/src/gc/Cell.h:363
[Current thread is 1 (Thread 0x7f2ac912f5c0 (LWP 1795))]
(gdb) bt
#0  0x00007f2ace7dda6c in js::gc::Cell::storeBuffer (this=<optimized out>, this=<optimized out>) at .././js/src/gc/Cell.h:363
#1  JSObject::writeBarrierPost (next=<optimized out>, prev=<optimized out>, cellp=<optimized out>) at .././js/src/vm/JSObject.h:758
#2  js::InternalBarrierMethods<JSObject*>::postBarrier (next=<optimized out>, prev=<optimized out>, vp=0x7f2ab4029cf0) at .././js/src/gc/Barrier.h:332
#3  js::InternalBarrierMethods<JSObject*>::postBarrier (vp=0x7f2ab4029cf0, prev=<optimized out>, next=<optimized out>) at .././js/src/gc/Barrier.h:331
#4  0x00007f2ad064a792 in js::BarrierMethods<JSObject*>::postWriteBarrier (next=<optimized out>, prev=<optimized out>, vp=<optimized out>, vp=<optimized out>, prev=<optimized out>, next=<optimized out>) at /usr/include/mozjs-78/js/RootingAPI.h:772
#5  JS::Heap<JSObject*>::postWriteBarrier (next=<optimized out>, prev=<optimized out>, this=<optimized out>, this=<optimized out>, prev=<optimized out>, next=<optimized out>) at /usr/include/mozjs-78/js/RootingAPI.h:366
#6  JS::Heap<JSObject*>::~Heap (this=<optimized out>, this=<optimized out>) at /usr/include/mozjs-78/js/RootingAPI.h:328
#7  mozilla::detail::VectorImpl<JS::Heap<JSObject*>, 0ul, js::SystemAllocPolicy, false>::destroy (aEnd=0x7f2ab4029d00, aBegin=<optimized out>) at /usr/include/mozjs-78/mozilla/Vector.h:65
#8  mozilla::Vector<JS::Heap<JSObject*>, 0ul, js::SystemAllocPolicy>::~Vector (this=<optimized out>, this=<optimized out>) at /usr/include/mozjs-78/mozilla/Vector.h:889
#9  JS::GCVector<JS::Heap<JSObject*>, 0ul, js::SystemAllocPolicy>::~GCVector (this=<optimized out>, this=<optimized out>) at /usr/include/mozjs-78/js/GCVector.h:35
#10 GjsContextPrivate::~GjsContextPrivate (this=<optimized out>, this=<optimized out>) at ../gjs/context.cpp:467
#11 0x00007f2ad064b748 in gjs_context_finalize (object=0x55e730b0d220) at ../gjs/context.cpp:480
#12 0x00007f2ad10d7e5d in g_object_unref () from /lib/x86_64-linux-gnu/libgobject-2.0.so.0
#13 0x00007f2ad132277d in _shell_global_destroy_gjs_context (self=<optimized out>) at ../src/shell-global.c:703
#14 0x000055e72f365ece in main (argc=<optimized out>, argv=<optimized out>) at ../src/main.c:659

Looks like bug 1947130.

Ubuntugnome-shell package

Comment 6 for bug 1962513

Ubuntu
gnome-shell package