GNOME Bugzilla – Bug 394532
f-u-s-a crashed
Last modified: 2011-06-10 12:24:57 UTC
Steps to reproduce: Haven't been able to recreate it :( Stack trace: System: Linux 2.6.17-gentoo-r8 #2 PREEMPT Wed Sep 13 19:41:38 EEST 2006 i686 X Vendor: The X.Org Foundation X Vendor Release: 70199903 Selinux: No Accessibility: Enabled Memory status: size: 28393472 vsize: 0 resident: 28393472 share: 0 rss: 11460608 rss_rlim: 0 CPU usage: start_time: 1168203628 rtime: 0 utime: 804 stime: 0 cutime:589 cstime: 0 timeout: 215 it_real_value: 0 frequency: 0 Backtrace was generated from '/usr/libexec/fast-user-switch-applet' Using host libthread_db library "/lib/libthread_db.so.1". [Thread debugging using libthread_db enabled] [New Thread -1223055680 (LWP 14344)] _______________________________________________________________________________ eax:FFFFFE00 ebx:000078C8 ecx:BFE63CE8 edx:00000000 eflags:00200246 esi:00000000 edi:08160AE0 esp:BFE63C08 ebp:BFE63CF8 eip:FFFFE410 cs:0073 ds:007B es:007B fs:0000 gs:0033 ss:007B o d I t s Z a P c [007B:BFE63C08]---------------------------------------------------------[stack] BFE63C38 : 48 00 00 00 00 00 00 00 - B4 E3 05 08 06 00 00 00 H............... BFE63C28 : 00 00 00 00 00 00 00 00 - A9 BA 9C B7 58 8D 09 08 ............X... BFE63C18 : D8 2A F0 B7 9A 1A ED B7 - C8 78 00 00 E8 3C E6 BF .*.......x...<.. BFE63C08 : F8 3C E6 BF 00 00 00 00 - E8 3C E6 BF C3 32 84 B7 .<.......<...2.. [007B:08160AE0]---------------------------------------------------------[ data] 08160AE0 : A0 18 17 08 00 00 00 00 - 10 00 00 00 11 00 00 00 ................ 08160AF0 : 40 51 13 08 00 00 00 00 - B4 87 A5 B7 01 01 00 00 @Q.............. [0073:FFFFE410]---------------------------------------------------------[ code] 0xffffe410 <__kernel_vsyscall+16>: pop %ebp 0xffffe411 <__kernel_vsyscall+17>: pop %edx 0xffffe412 <__kernel_vsyscall+18>: pop %ecx 0xffffe413 <__kernel_vsyscall+19>: ret 0xffffe414 <_fini+1209533648>: nop 0xffffe415 <_fini+1209533649>: nop ------------------------------------------------------------------------------ 0xffffe410 in __kernel_vsyscall ()
+ Trace 100629
Other information: Also, bug-buddy couldn't find appropriate module for this..
*** Bug 413282 has been marked as a duplicate of this bug. ***
Detailed stacktrace. Confirming.
*** Bug 422664 has been marked as a duplicate of this bug. ***
A ubuntu bug about this has been filled here: https://bugs.launchpad.net/ubuntu/+source/fast-user-switch-applet/+bug/130610
So here's the story here: There are two similar problems, the original 394532 and the Ubuntu 130610. In both cases, it relates to how we deal with the response to the gdm CONSOLE_SERVERS command after we update console servers. (See http://www.jirka.org/gdm-documentation/x1180.html for the specs on this command.) We are *supposed* to get a semicolon-separated list of comma-separated triples: (display, user, location). A) The problem in 394532 is this line (fusa-manager.c:972): nested = (items[i].location[0] == ':'); If there is no third option in the response from GDM, obviously items[i].location will be null, and this will cause a segfault. I don't know what response GDM actually gave in the presenting case; I would rather like to know. Giving a <3-tuple would cause this result. Perhaps we can treat it as equivalent to "-1", i.e. not known or not supported. (TBH I don't think we support -1 very well either.) B) The problem in 130610 is that items[i].location appears to contain random crap (reported as "U\x89\xe5\x8bE\u0008\xc7@") which correctly causes a critical error; I don't think this is a bug.
fast-user-switch-applet development has been stalled and it has been unmaintained for a few years now. Maintainers don't have future development plan so i am closing the bugs as WONTFIX. Please feel free to reopen the bugs in future if anyone takes the responsibility of active development.