After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 564122 - Crash in monoscope_update
Crash in monoscope_update
Status: RESOLVED FIXED
Product: GStreamer
Classification: Platform
Component: gst-plugins-good
0.10.x
Other All
: High critical
: 0.10.29
Assigned To: GStreamer Maintainers
GStreamer Maintainers
Depends on:
Blocks:
 
 
Reported: 2008-12-11 14:28 UTC by Sam Morris
Modified: 2011-03-08 15:33 UTC
See Also:
GNOME target: ---
GNOME version: 2.21/2.22


Description Sam Morris 2008-12-11 14:28:39 UTC 
Version: 2.24.3

What were you doing when the application crashed?
A track had finished player a few moments before. Totem was in the background and crashed while I was doing something else.


Distribution: Debian lenny/sid
Gnome Release: 2.22.3 2008-09-18 (Debian)
BugBuddy Version: 2.22.0

System: Linux 2.6.26-1-amd64 #1 SMP Wed Nov 26 18:26:02 UTC 2008 x86_64
X Vendor: The X.Org Foundation
X Vendor Release: 10402000
Selinux: No
Accessibility: Disabled
GTK+ Theme: Clearlooks
Icon Theme: gnome

Memory status: size: 816959488 vsize: 816959488 resident: 60858368 share: 21790720 rss: 60858368 rss_rlim: 18446744073709551615
CPU usage: start_time: 1229000356 rtime: 15364 utime: 14206 stime: 1158 cutime:4 cstime: 11 timeout: 0 it_real_value: 0 frequency: 100

Backtrace was generated from '/usr/bin/totem'

[Thread debugging using libthread_db enabled]
[New Thread 0x7f16e00b6790 (LWP 22160)]
[New Thread 0x4c01e950 (LWP 31565)]
[New Thread 0x4b81d950 (LWP 31558)]
[New Thread 0x4200a950 (LWP 31557)]
[New Thread 0x4b01c950 (LWP 30948)]
[New Thread 0x4a81b950 (LWP 30109)]
[New Thread 0x4a01a950 (LWP 29632)]
[New Thread 0x49819950 (LWP 29520)]
[New Thread 0x49018950 (LWP 29160)]
[New Thread 0x48817950 (LWP 28637)]
[New Thread 0x48016950 (LWP 23374)]
[New Thread 0x47815950 (LWP 23277)]
[New Thread 0x4400e950 (LWP 22819)]
[New Thread 0x4300c950 (LWP 22566)]
[New Thread 0x4480f950 (LWP 22565)]
[New Thread 0x47014950 (LWP 22564)]
[New Thread 0x45010950 (LWP 22554)]
[New Thread 0x45811950 (LWP 22202)]
[New Thread 0x4380d950 (LWP 22195)]
[New Thread 0x40cd7950 (LWP 22174)]
[New Thread 0x414d8950 (LWP 22170)]
[New Thread 0x4280b950 (LWP 22163)]
0x00007f16d87bfb66 in poll () from /lib/libc.so.6

+ Trace 210699

Thread 18 (Thread 0x45811950 (LWP 22202))

  • #0 waitpid
    from /lib/libpthread.so.0
  • #1 IA__g_spawn_sync
    at /build/buildd/glib2.0-2.18.2/glib/gspawn.c line 382
  • #2 IA__g_spawn_command_line_sync
    at /build/buildd/glib2.0-2.18.2/glib/gspawn.c line 694
  • #3 ??
    from /usr/lib/gtk-2.0/modules/libgnomebreakpad.so
  • #4 ??
    from /usr/lib/gtk-2.0/modules/libgnomebreakpad.so
  • #5 <signal handler called>
  • #6 convolve_run
    at convolve.c line 235
  • #7 convolve_match
    at convolve.c line 299
  • #8 monoscope_update
    at monoscope.c line 96
  • #9 gst_monoscope_chain
    at gstmonoscope.c line 403
  • #10 gst_pad_chain_unchecked
    at gstpad.c line 3877
  • #11 gst_pad_push
    at gstpad.c line 4045
  • #12 gst_pad_chain_unchecked
    at gstpad.c line 3877
  • #13 gst_pad_push
    at gstpad.c line 4045
  • #14 gst_base_transform_chain
    at gstbasetransform.c line 1928
  • #15 gst_pad_chain_unchecked
    at gstpad.c line 3877
  • #16 gst_pad_push
    at gstpad.c line 4045
  • #17 gst_base_transform_chain
    at gstbasetransform.c line 1928
  • #18 gst_pad_chain_unchecked
    at gstpad.c line 3877
  • #19 gst_pad_push
    at gstpad.c line 4045
  • #20 gst_base_transform_chain
    at gstbasetransform.c line 1928
  • #21 gst_pad_chain_unchecked
    at gstpad.c line 3877
  • #22 gst_pad_push
    at gstpad.c line 4045
  • #23 gst_queue_loop
    at gstqueue.c line 1047
  • #24 gst_task_func
    at gsttask.c line 192
  • #25 g_thread_pool_thread_proxy
    at /build/buildd/glib2.0-2.18.2/glib/gthreadpool.c line 265
  • #26 g_thread_create_proxy
    at /build/buildd/glib2.0-2.18.2/glib/gthread.c line 635
  • #27 start_thread
    from /lib/libpthread.so.0
  • #28 clone
    from /lib/libc.so.6
  • #29 ?? 




----------- .xsession-errors (423 sec old) ---------------------
(totem:22816): GStreamer-WARNING **: Failed to load plugin '/usr/lib/gstreamer-0.10/libgstice.so': libjinglep2pbase-0.3.so.0: cannot open shared object file: No such file or directory
(totem:23371): GStreamer-WARNING **: Failed to load plugin '/usr/lib/gstreamer-0.10/libgstice.so': libjinglep2pbase-0.3.so.0: cannot open shared object file: No such file or directory
** (epiphany-browser:23075): WARNING **: Unable to delete /home/sam/.gnome2/epiphany/favicon_cache/a3e9cc401a851a2f792e289e06629823
(totem:29157): GStreamer-WARNING **: Failed to load plugin '/usr/lib/gstreamer-0.10/libgstice.so': libjinglep2pbase-0.3.so.0: cannot open shared object file: No such file or directory
** (epiphany-browser:23075): WARNING **: Unable to delete /home/sam/.gnome2/epiphany/favicon_cache/0f9e6aee8f4128267596a0859d441318
(totem:29629): GStreamer-WARNING **: Failed to load plugin '/usr/lib/gstreamer-0.10/libgstice.so': libjinglep2pbase-0.3.so.0: cannot open shared object file: No such file or directory
(evolution:32555): Gdk-CRITICAL **: gdk_window_set_title: assertion `title != NULL' failed
(totem:30945): GStreamer-WARNING **: Failed to load plugin '/usr/lib/gstreamer-0.10/libgstice.so': libjinglep2pbase-0.3.so.0: cannot open shared object file: No such file or directory
--------------------------------------------------
Comment 1 Philip Withnall 2008-12-11 17:06:54 UTC 
Looks like a GStreamer bug.
Comment 2 David Schleef 2009-08-16 22:49:02 UTC 
Why does this look like a GStreamer bug?  It doesn't to me.
Comment 3 Tim-Philipp Müller 2009-08-17 00:46:22 UTC 
> Why does this look like a GStreamer bug?  It doesn't to me.

Because it crashed in code we ship? (gst-plugins-good/gst/monoscope/convolve.c)
Comment 4 Stefan Sauer (gstreamer, gtkdoc dev) 2011-03-02 08:57:01 UTC 
commit d2ee8b979d84f0e714e502116b6fafd9f1d68d16
Author: Stefan Kost <ensonic@users.sf.net>
Date:   Wed Mar 2 10:56:33 2011 +0200

    monoscope: stack needs to be size+1 as we put a end-marker into it
    
    Valgrind is still complaining about one bad read, but this takes care of the
    crash mentioned in the comment and in bug #564122.

I still get one invalid read:

==15142== Invalid read of size 4
==15142==    at 0x4069AD3: monoscope_update (monoscope.c:129)
==15142==    by 0x4069710: gst_monoscope_chain (gstmonoscope.c:395)

==15142==  Address 0x5611584 is 0 bytes after a block of size 134,924 alloc'd
==15142==    at 0x40260BB: calloc (in /usr/lib/valgrind/vgpreload_memcheck-x86-linux.so)
==15142==    by 0x4069822: monoscope_init (monoscope.c:68)
==15142==    by 0x4069075: gst_monoscope_src_setcaps (gstmonoscope.c:234)
==15142==    by 0x40C656B: gst_pad_set_caps (gstpad.c:2692)
==15142==    by 0x4068ABB: get_buffer (gstmonoscope.c:269)
==15142==    by 0x4069724: gst_monoscope_chain (gstmonoscope.c:344)

but the crash is fixed.
Comment 5 Stefan Sauer (gstreamer, gtkdoc dev) 2011-03-02 10:59:07 UTC 
Fixed the remaining critical issues:

commit 3ec3bed497b488364726c87e522c05b846ed4e70
Author: Stefan Kost <ensonic@users.sf.net>
Date:   Wed Mar 2 13:00:31 2011 +0200

    monoscope: don't leak the monoscope_state data
    
    The monoscope_close() implementation was empty.

commit 7bc3344131a307a4da3b0f65c1d6ca6968226f6e
Author: Stefan Kost <ensonic@users.sf.net>
Date:   Wed Mar 2 12:59:35 2011 +0200

    monoscope: we have 64 colors, don't access colors[64]
    
    Fixes remaining invalid read.