https://bugs.kde.org/show_bug.cgi?id=511410
Gabriel Souza Franco <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |[email protected] | |m --- Comment #8 from Gabriel Souza Franco <[email protected]> --- I too had this happen today, Xwayland got stuck processing a circular linked list. After printing some pointer values I forced a crash using GDB and this is the resulting backtrace: > (gdb) bt > [snip] > #9 <signal handler called> > #10 damageRegionProcessPending (pDrawable=pDrawable@entry=0x560f689d9030) at > ../xwayland-24.1.9/miext/damage/damage.c:292 > #11 0x0000560f546184e3 in damageCopyArea (pSrc=0x560f67413510, > pDst=0x560f689d9030, pGC=0x560f663a6300, srcx=<optimized out>, > srcy=<optimized out>, width=<optimized out>, height=618, dstx=0, dsty=0) at > ../xwayland-24.1.9/miext/damage/damage.c:778 > #12 0x0000560f545f77ee in compRestoreWindow (pWin=<optimized out>, > pPixmap=0x560f67413510) at ../xwayland-24.1.9/composite/compalloc.c:251 > #13 0x0000560f545fcde3 in compCheckRedirect (pWin=pWin@entry=0x560f689d9030) > at ../xwayland-24.1.9/composite/compwindow.c:181 > #14 0x0000560f545fdd3f in compUnrealizeWindow (pWin=0x560f689d9030) at > ../xwayland-24.1.9/composite/compwindow.c:292 > #15 0x0000560f545f681a in UnrealizeTree (pWin=pWin@entry=0x560f689d9030, > fromConfigure=fromConfigure@entry=0) at ../xwayland-24.1.9/dix/window.c:2805 > #16 0x0000560f545fa0cb in UnmapWindow.isra.0 (pWin=0x560f689d9030, > fromConfigure=fromConfigure@entry=0) at ../xwayland-24.1.9/dix/window.c:2863 > #17 0x0000560f545b9771 in ProcUnmapWindow (client=<optimized out>) at > ../xwayland-24.1.9/dix/dispatch.c:947 > #18 0x0000560f545c2794 in Dispatch () at ../xwayland-24.1.9/dix/dispatch.c:550 > #19 0x0000560f5453963d in dix_main (argc=<optimized out>, argv=<optimized > out>, envp=<optimized out>) at ../xwayland-24.1.9/dix/main.c:277 > #20 main (argc=<optimized out>, argv=<optimized out>, envp=<optimized out>) > at ../xwayland-24.1.9/dix/stubmain.c:34 Doing some postmortem debugging I cannot find the circular list anymore, but there's a suspiciously garbage pNext pointer, possibly indicating a use-after-free or race condition. It may also be caused by the way I crashed the process, I'll try to get more data the next time it happens. -- You are receiving this mail because: You are watching all bug changes.
