[Mono-bugs] [Bug 568021] New: [verifier] sigsegv in mono_error_set_bad_image

bugzilla_noreply at novell.com bugzilla_noreply at novell.com
Mon Jan 4 10:30:12 EST 2010 

http://bugzilla.novell.com/show_bug.cgi?id=568021

http://bugzilla.novell.com/show_bug.cgi?id=568021#c0


           Summary: [verifier] sigsegv in mono_error_set_bad_image
    Classification: Mono
           Product: Mono: Runtime
           Version: 2.6.x
          Platform: Other
        OS/Version: Other
            Status: NEW
          Severity: Normal
          Priority: P5 - None
         Component: verifier
        AssignedTo: rkumpera at novell.com
        ReportedBy: spouliot at novell.com
         QAContact: mono-bugs at lists.ximian.com
          Found By: ---
           Blocker: ---


Created an attachment (id=334802)
 --> (http://bugzilla.novell.com/attachment.cgi?id=334802)
assembly to reproduce crash

MONO_PATH=/opt/mono/lib/moonlight/plugin/ gdb --args mono --security=core-clr
--compile-all System.ServiceModel.sigabrt.126188.dll

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x416fc950 (LWP 25293)]
0x00007f08b0a63d30 in strlen () from /lib64/libc.so.6
(gdb) bt
#0  0x00007f08b0a63d30 in strlen () from /lib64/libc.so.6
#1  0x00007f08b0a2ea3b in vfprintf () from /lib64/libc.so.6
#2  0x00007f08b0acde70 in __vasprintf_chk () from /lib64/libc.so.6
#3  0x00007f08b18550cb in g_vasprintf () from /usr/lib64/libglib-2.0.so.0
#4  0x00007f08b1841bb0 in g_strdup_vprintf () from /usr/lib64/libglib-2.0.so.0
#5  0x0000000000665c32 in mono_error_set_bad_image (oerror=0x416f9b80,
image=0x9d6390, msg_format=0x6b4b80 "Could not resolve signature of method
%s:%s")
    at mono-error.c:254
#6  0x000000000056b333 in mono_class_inflate_generic_method_full_checked
(method=0xa639b0, klass_hint=0xb5f9b0, context=0xb5f988, error=0x416f9b80) at
class.c:947
#7  0x000000000056af68 in mono_class_inflate_generic_method_full
(method=0xa639b0, klass_hint=0xb5f9b0, context=0xb5f988) at class.c:840
#8  0x00000000005716a2 in mono_class_setup_vtable_general (class=0xb5f9b0,
overrides=0xb62ad0, onum=14) at class.c:3428
#9  0x0000000000570bc2 in mono_class_setup_vtable (class=0xb5f9b0) at
class.c:2987
#10 0x000000000057148e in mono_class_setup_vtable_general (class=0xb36638,
overrides=0xb09ab0, onum=1) at class.c:3397
#11 0x0000000000570bc2 in mono_class_setup_vtable (class=0xb36638) at
class.c:2987
#12 0x0000000000573d5d in mono_class_init (class=0xb60090) at class.c:4219
#13 0x00000000005cc82f in method_from_memberref (image=0x9d6390, idx=611,
typespec_context=0x0, used_context=0x416fa6ec) at loader.c:941
#14 0x00000000005cdcfd in mono_get_method_from_token (image=0x9d6390,
token=167772771, klass=0x0, context=0x0, used_context=0x416fa6ec) at
loader.c:1495
#15 0x00000000005ce142 in mono_get_method_full (image=0x9d6390,
token=167772771, klass=0x0, context=0x0) at loader.c:1609
#16 0x000000000057f66e in verifier_load_method (ctx=0x416fa870,
token=167772771, opcode=0x6b9aeb "newobj") at verify.c:864
#17 0x000000000058b505 in do_newobj (ctx=0x416fa870, token=167772771) at
verify.c:3973
#18 0x0000000000593c57 in mono_method_verify (method=0xb365c0, level=48) at
verify.c:5556
#19 0x00000000005968dc in mono_method_verify_with_current_settings
(method=0xb365c0, skip_visibility=0) at verify.c:6084
#20 0x000000000041a97a in mini_method_verify (cfg=0xa44c00, method=0xb365c0) at
mini.c:1251
#21 0x000000000045112b in mono_method_to_ir (cfg=0xa44c00, method=0xb365c0,
start_bblock=0x0, end_bblock=0x0, return_var=0x0, dont_inline=0x0,
inline_args=0x0, 
    inline_offset=0, is_virtual_call=0) at method-to-ir.c:5407
#22 0x000000000041f785 in mini_method_compile (method=0xb365c0, opts=55667199,
domain=0x7f08b1d5cdb0, run_cctors=0, compile_aot=0, parts=0) at mini.c:3404
#23 0x00000000004a3dce in compile_all_methods_thread_main (args=0x7fffb9ecca30)
at driver.c:881
#24 0x00000000005b00f6 in start_wrapper (data=0xa29520) at threads.c:662
#25 0x0000000000659333 in thread_start_routine (args=0x9fcc00) at
wthreads.c:286
#26 0x000000000067254e in GC_start_routine (arg=0x7f08b1d5de70) at
pthread_support.c:1390
#27 0x00007f08b0f9c040 in start_thread () from /lib64/libpthread.so.0
#28 0x00007f08b0ab908d in clone () from /lib64/libc.so.6
#29 0x0000000000000000 in ?? ()
(gdb) up 5
#5  0x0000000000665c32 in mono_error_set_bad_image (oerror=0x416f9b80,
image=0x9d6390, msg_format=0x6b4b80 "Could not resolve signature of method
%s:%s")
    at mono-error.c:254
254        set_error_message ();
(gdb) p msg_format
$1 = 0x6b4b80 "Could not resolve signature of method %s:%s"
(gdb) up
#6  0x000000000056b333 in mono_class_inflate_generic_method_full_checked
(method=0xa639b0, klass_hint=0xb5f9b0, context=0xb5f988, error=0x416f9b80) at
class.c:947
warning: Source file is more recent than executable.
947            mono_error_set_bad_image (error, method->klass->image, "Could
not resolve signature of method %s:%s", name, method->name);
(gdb) p name
$2 = 0xb63960 "System.Collections.Generic.SynchronizedCollection`1[T]"
(gdb) p method->name
$3 = 0x7f08b1d2f99f "System.Collections.IList.get_IsReadOnly"
(gdb) down
#5  0x0000000000665c32 in mono_error_set_bad_image (oerror=0x416f9b80,
image=0x9d6390, msg_format=0x6b4b80 "Could not resolve signature of method
%s:%s")
    at mono-error.c:254
254        set_error_message ();
(gdb) p *error
$4 = {error_code = 5, flags = 0, type_name = 0x0, assembly_name =
0x7f08b1d2d231 "System.ServiceModel", member_name = 0x0, exception_name_space =
0x0, 
  exception_name = 0x0, klass = 0x0, full_message = 0x0, padding =
{0x7fffb9ecc830, 0x416fc220, 0x0, 0x7f08b0a5d6e6, 0xb42540}, 
  message = "Could not resolve signature of method
System.Collections.Generic.SynchronizedCollection`1[T]:System.Collections.IList.get_IsRea"}
(gdb) p sizeof(error->message)
$5 = 128
(gdb) p g_vsnprintf(error->message, sizeof (error->message), msg_format, args)

Program received signal SIGSEGV, Segmentation fault.
0x00007f08b0a63d30 in strlen () from /lib64/libc.so.6
The program being debugged was signaled while in a function called from GDB.
GDB remains in the frame where the signal was received.
To change this behavior use "set unwindonsignal on"
Evaluation of the expression containing the function (g_vsnprintf) will be
abandoned.

-- 
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.

More information about the mono-bugs mailing list