[Mono-bugs] [Bug 69692][Wis] New - marshal.c mono_struct_delete_old double free
bugzilla-daemon@bugzilla.ximian.com
bugzilla-daemon@bugzilla.ximian.com
Thu, 18 Nov 2004 21:57:24 -0500 (EST)
Please do not reply to this email- if you want to comment on the bug, go to the
URL shown below and enter your comments there.
Changed by grompf@sublimeintervention.com.
http://bugzilla.ximian.com/show_bug.cgi?id=69692
--- shadow/69692 2004-11-18 21:57:24.000000000 -0500
+++ shadow/69692.tmp.19912 2004-11-18 21:57:24.000000000 -0500
@@ -0,0 +1,48 @@
+Bug#: 69692
+Product: Mono: Runtime
+Version: 1.1
+OS:
+OS Details:
+Status: NEW
+Resolution:
+Severity:
+Priority: Wishlist
+Component: misc
+AssignedTo: mono-bugs@ximian.com
+ReportedBy: grompf@sublimeintervention.com
+QAContact: mono-bugs@ximian.com
+TargetMilestone: ---
+URL:
+Cc:
+Summary: marshal.c mono_struct_delete_old double free
+
+When running XSP on OSX we are getting:
+
+*** malloc[29449]: Deallocation of a pointer not malloced: 0x2982690; This could be a double
+free(), or free() called with the middle of an allocated block; Try setting environment variable
+MallocHelp to see tools to help debug
+
+Setting MallocBadFreeAbort to 1 in gdb garners:
+
+<snip>
+
+Thread 8 (process 2650 thread 0x3a03):
+#0 0x900429ac in kill ()
+#1 0x9009eb1c in abort ()
+#2 0x90000fa0 in free ()
+#3 0x00054db4 in mono_struct_delete_old (klass=0x1af3910, ptr=0xf1007ae0 "") at marshal.c:
+7069
+#4 0x01e21a70 in ?? ()
+#5 0x01f018f4 in ?? ()
+#6 0x01f01270 in ?? ()
+#7 0x01e07c74 in ?? ()
+#8 0x00058cc8 in start_wrapper (data=0x1af80f0) at threads.c:269
+#9 0x000c4ec4 in timed_thread_start_routine (args=0x1aed040) at timed-thread.c:135
+#10 0x900246e8 in _pthread_body ()
+
+<snip>
+
+Unfortunately after aborting the terrible gdb on osx wont let me print_method_from_ip
+0x01e21a70 so I'm not sure exactly which method is causing this double free.
+
+-kangaroo