[Mono-bugs] [Bug 598247] New: invalid pointer in mono_custom_attrs_from_index while JITting

bugzilla_noreply at novell.com bugzilla_noreply at novell.com
Tue Apr 20 15:18:26 EDT 2010 

http://bugzilla.novell.com/show_bug.cgi?id=598247

http://bugzilla.novell.com/show_bug.cgi?id=598247#c0


           Summary: invalid pointer in mono_custom_attrs_from_index while
                    JITting
    Classification: Mono
           Product: Mono: Runtime
           Version: SVN
          Platform: Other
        OS/Version: Other
            Status: NEW
          Severity: Critical
          Priority: P5 - None
         Component: JIT
        AssignedTo: rkumpera at novell.com
        ReportedBy: spouliot at novell.com
         QAContact: mono-bugs at lists.ximian.com
          Found By: ---
           Blocker: ---


Created an attachment (id=355714)
 --> (http://bugzilla.novell.com/attachment.cgi?id=355714)
assembly cause the abort

gdb --args mono --security=core-clr --compile-all bin/System.sigabrt.109485.dll

** (process:4962): WARNING **: Invalid custom attribute blob on image
/home/poupou/svn/moon/fuzz/bin/System.sigabrt.109485.dll for index 34e1
*** glibc detected *** /opt/mono/bin/mono: free(): invalid pointer:
0x00000000009e6740 ***
Missing separate debuginfo for /lib64/libgcc_s.so.1
Try: zypper install -C
"debuginfo(build-id)=0206e11fa8ca0db0633073adcbf1349a7871e1dc"
======= Backtrace: =========
/lib64/libc.so.6[0x7ffff6dadc76]
/lib64/libc.so.6(cfree+0x6c)[0x7ffff6db296c]
/opt/mono/bin/mono(mono_custom_attrs_from_index+0x1fb)[0x521a4b]
/opt/mono/bin/mono[0x54ae7f]
/opt/mono/bin/mono[0x54c75b]
/opt/mono/bin/mono[0x44f8f7]
/opt/mono/bin/mono[0x41e83f]
/opt/mono/bin/mono[0x468763]
/opt/mono/bin/mono[0x57696c]
/opt/mono/bin/mono[0x59ddb3]
/opt/mono/bin/mono[0x5c855d]
/lib64/libpthread.so.0[0x7ffff72f165d]
/lib64/libc.so.6(clone+0x6d)[0x7ffff6e0be1d]
======= Memory map: ========
00400000-006c2000 r-xp 00000000 08:02 130853                            
/opt/mono/bin/mono
008c2000-008c3000 r--p 002c2000 08:02 130853                            
/opt/mono/bin/mono
008c3000-008cc000 rw-p 002c3000 08:02 130853                            
/opt/mono/bin/mono
008cc000-00ccb000 rw-p 00000000 00:00 0                                  [heap]
40000000-40001000 r--p 00000000 00:00 0 
40001000-40002000 ---p 00000000 00:00 0 
40002000-40032000 rwxp 00000000 00:00 0 
7ffff0000000-7ffff0021000 rw-p 00000000 00:00 0 
7ffff0021000-7ffff4000000 ---p 00000000 00:00 0 
7ffff5896000-7ffff58ac000 r-xp 00000000 08:02 1393                      
/lib64/libgcc_s.so.1
7ffff58ac000-7ffff5aab000 ---p 00016000 08:02 1393                      
/lib64/libgcc_s.so.1
7ffff5aab000-7ffff5aac000 r--p 00015000 08:02 1393                      
/lib64/libgcc_s.so.1
7ffff5aac000-7ffff5aad000 rw-p 00016000 08:02 1393                      
/lib64/libgcc_s.so.1
7ffff5aad000-7ffff5ade000 rw-p 00000000 00:00 0 
7ffff5ade000-7ffff5af2000 r-xp 00000000 08:02 1428                      
/lib64/libz.so.1.2.3
7ffff5af2000-7ffff5cf2000 ---p 00014000 08:02 1428                      
/lib64/libz.so.1.2.3
7ffff5cf2000-7ffff5cf3000 r--p 00014000 08:02 1428                      
/lib64/libz.so.1.2.3
7ffff5cf3000-7ffff5cf4000 rw-p 00015000 08:02 1428                      
/lib64/libz.so.1.2.3
7ffff5d14000-7ffff5d30000 r-xp 00000000 08:02 130857                    
/opt/mono/lib/libMonoPosixHelper.so
7ffff5d30000-7ffff5f2f000 ---p 0001c000 08:02 130857                    
/opt/mono/lib/libMonoPosixHelper.so
7ffff5f2f000-7ffff5f30000 r--p 0001b000 08:02 130857                    
/opt/mono/lib/libMonoPosixHelper.so
7ffff5f30000-7ffff5f31000 rw-p 0001c000 08:02 130857                    
/opt/mono/lib/libMonoPosixHelper.so
7ffff5f31000-7ffff5f46000 rw-p 00000000 00:00 0 
7ffff5f46000-7ffff5f4f000 ---p 00000000 00:00 0 
7ffff5f4f000-7ffff6147000 rwxp 00000000 00:00 0 
7ffff6147000-7ffff6150000 ---p 00000000 00:00 0 
7ffff6150000-7ffff6348000 rwxp 00000000 00:00 0 
7ffff6348000-7ffff6349000 rw-p 00000000 00:00 0 
7ffff6349000-7ffff6388000 ---p 00000000 00:00 0 
7ffff6388000-7ffff6771000 rw-p 00000000 00:00 0 
7ffff6771000-7ffff6890000 r--p 00000000 08:02 130909                    
/opt/mono/lib/mono/2.0/mscorlib.dll.mdb
7ffff6890000-7ffff6b0d000 r--p 00000000 08:02 130908                    
/opt/mono/lib/mono/2.0/mscorlib.dll
7ffff6b0d000-7ffff6b3a000 r-xp 00000000 08:02 1496                      
/lib64/libpcre.so.0.0.1
7ffff6b3a000-7ffff6d39000 ---p 0002d000 08:02 1496                      
/lib64/libpcre.so.0.0.1
7ffff6d39000-7ffff6d3a000 r--p 0002c000 08:02 1496                      
/lib64/libpcre.so.0.0.1
7ffff6d3a000-7ffff6d3b000 rw-p 0002d000 08:02 1496                      
/lib64/libpcre.so.0.0.1
7ffff6d3b000-7ffff6e8c000 r-xp 00000000 08:02 37009                     
/lib64/libc-2.10.1.so
7ffff6e8c000-7ffff708c000 ---p 00151000 08:02 37009                     
/lib64/libc-2.10.1.so
7ffff708c000-7ffff7090000 r--p 00151000 08:02 37009                     
/lib64/libc-2.10.1.so
7ffff7090000-7ffff7091000 rw-p 00155000 08:02 37009                     
/lib64/libc-2.10.1.so
7ffff7091000-7ffff7096000 rw-p 00000000 00:00 0 
7ffff7096000-7ffff70ea000 r-xp 00000000 08:02 37015                     
/lib64/libm-2.10.1.so
7ffff70ea000-7ffff72e9000 ---p 00054000 08:02 37015                     
/lib64/libm-2.10.1.so
7ffff72e9000-7ffff72ea000 r--p 00053000 08:02 37015                     
/lib64/libm-2.10.1.so
7ffff72ea000-7ffff72eb000 rw-p 00054000 08:02 37015                     
/lib64/libm-2.10.1.so
7ffff72eb000-7ffff7301000 r-xp 00000000 08:02 1384                      
/lib64/libpthread-2.10.1.so
7ffff7301000-7ffff7501000 ---p 00016000 08:02 1384                      
/lib64/libpthread-2.10.1.so
7ffff7501000-7ffff7502000 r--p 00016000 08:02 1384                      
/lib64/libpthread-2.10.1.so
7ffff7502000-7ffff7503000 rw-p 00017000 08:02 1384                      
/lib64/libpthread-2.10.1.so
7ffff7503000-7ffff7507000 rw-p 00000000 00:00 0 
7ffff7507000-7ffff7509000 r-xp 00000000 08:02 37040                     
/lib64/libdl-2.10.1.so
7ffff7509000-7ffff7709000 ---p 00002000 08:02 37040                     
/lib64/libdl-2.10.1.so
7ffff7709000-7ffff770a000 r--p 00002000 08:02 37040                     
/lib64/libdl-2.10.1.so
7ffff770a000-7ffff770b000 rw-p 00003000 08:02 37040                     
/lib64/libdl-2.10.1.so
7ffff770b000-7ffff7713000 r-xp 00000000 08:02 36985                     
/lib64/librt-2.10.1.so
7ffff7713000-7ffff7912000 ---p 00008000 08:02 36985                     
/lib64/librt-2.10.1.so
7ffff7912000-7ffff7913000 r--p 00007000 08:02 36985                     
/lib64/librt-2.10.1.so
7ffff7913000-7ffff7914000 rw-p 00008000 08:02 36985                     
/lib64/librt-2.10.1.so
7ffff7914000-7ffff79d9000 r-xp 00000000 08:02 61739                     
/usr/lib64/libglib-2.0.so.0.2200.4
7ffff79d9000-7ffff7bd8000 ---p 000c5000 08:02 61739                     
/usr/lib64/libglib-2.0.so.0.2200.4
7ffff7bd8000-7ffff7bd9000 r--p 000c4000 08:02 61739                     
/usr/lib64/libglib-2.0.so.0.2200.4
7ffff7bd9000-7ffff7bda000 rw-p 000c5000 08:02 61739                     
/usr/lib64/libglib-2.0.so.0.2200.4
7ffff7bda000-7ffff7bdb000 rw-p 00000000 00:00 0 
7ffff7bdb000-7ffff7bdf000 r-xp 00000000 08:02 65630                     
/usr/lib64/libgthread-2.0.so.0.2200.4
7ffff7bdf000-7ffff7dde000 ---p 00004000 08:02 65630                     
/usr/lib64/libgthread-2.0.so.0.2200.4
7ffff7dde000-7ffff7ddf000 r--p 00003000 08:02 65630                     
/usr/lib64/libgthread-2.0.so.0.2200.4
Program received signal SIGABRT, Aborted.
[Switching to Thread 0x7ffff6146910 (LWP 4967)]
0x00007ffff6d6d4e5 in raise () from /lib64/libc.so.6
(gdb) bt
#0  0x00007ffff6d6d4e5 in raise () from /lib64/libc.so.6
#1  0x00007ffff6d6e9b0 in abort () from /lib64/libc.so.6
#2  0x00007ffff6da866d in ?? () from /lib64/libc.so.6
#3  0x00007ffff6dadc76 in ?? () from /lib64/libc.so.6
#4  0x00007ffff6db296c in free () from /lib64/libc.so.6
#5  0x0000000000521a4b in mono_custom_attrs_from_index (image=0x952600,
idx=13537) at reflection.c:8461
#6  0x000000000054ae7f in field_is_special_static (fklass=Traceback (most
recent call last):
  File "/opt/mono/bin/mono-gdb.py", line 165, in to_string
    class_name = stringify_class_name (klass ["name_space"].string (), klass
["name"].string ())
RuntimeError: Cannot access memory at address 0x13aa
, field=0x1367) at object.c:969
#7  0x000000000054c75b in mono_class_create_runtime_vtable
(raise_on_error=<value optimized out>, class=<value optimized out>,
domain=<value optimized out>)
    at object.c:1910
#8  mono_class_vtable_full (raise_on_error=<value optimized out>, class=<value
optimized out>, domain=<value optimized out>) at object.c:1744
#9  0x000000000044f8f7 in mono_method_to_ir (cfg=0xbb46a0, method=<value
optimized out>, start_bblock=<value optimized out>, 
    end_bblock=<value optimized out>, return_var=<value optimized out>,
dont_inline=<value optimized out>, inline_args=0x0, inline_offset=0, 
    is_virtual_call=0) at method-to-ir.c:7471
#10 0x000000000041e83f in mini_method_compile (method=<value optimized out>,
opts=<value optimized out>, domain=<value optimized out>, 
    run_cctors=<value optimized out>, compile_aot=<value optimized out>,
parts=<value optimized out>) at mini.c:4018
#11 0x0000000000468763 in compile_all_methods_thread_main (args=0x7fffffffdcf0)
at driver.c:879
#12 0x000000000057696c in start_wrapper (data=<value optimized out>) at
threads.c:747
#13 0x000000000059ddb3 in thread_start_routine (args=0x9bc5e8) at
wthreads.c:286
#14 0x00000000005c855d in GC_start_routine (arg=0x7ffff7e1bfc0) at
pthread_support.c:1390
#15 0x00007ffff72f165d in start_thread (arg=<value optimized out>) at
pthread_create.c:297
#16 0x00007ffff6e0be1d in clone () from /lib64/libc.so.6
#17 0x0000000000000000 in ?? ()

-- 
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.

More information about the mono-bugs mailing list