Unfortunately, now the crash is different and maybe related to a race condition (?).
The problem seems to happen in 2 of the nautilus-sendto plugins: libnstbluetooth.so and libnstevolution.so. What I've done was removing the rest of the plugins and just running valgrind and gdb with each of those 2 plugins. libnstevolution.so : =============== Valgrind: The problem is not reproducible. I will attach the log. GDB: $ gdb nautilus-sendto GNU gdb (Ubuntu/Linaro 7.2-1ubuntu11) 7.2 Copyright (C) 2010 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-linux-gnu". For bug reporting instructions, please see: <http://www.gnu.org/software/gdb/bugs/>... Reading symbols from /usr/bin/nautilus-sendto...(no debugging symbols found)...done. (gdb) r /home/tanty/SketchI.pdf Starting program: /usr/bin/nautilus-sendto /home/tanty/SketchI.pdf [Thread debugging using libthread_db enabled] [New Thread 0x7fffef822700 (LWP 11167)] [New Thread 0x7fffee58a700 (LWP 11169)] Init evolution plugin [New Thread 0x7fffea439700 (LWP 11185)] (nautilus-sendto:11164): Gtk-WARNING **: Error parsing gtk-icon-sizes string: 'panel-menu=24,24 panel=20,20 gtk-button=18,18 gtk-large-toolbar=24,24' (nautilus-sendto:11164): libebook-WARNING **: e-book.c:3095: cannot get book from factory: Invalid source ** (nautilus-sendto:11164): WARNING **: Invalid source (nautilus-sendto:11164): libebook-WARNING **: e-book.c:3095: cannot get book from factory: Invalid source (nautilus-sendto:11164): GLib-WARNING **: GError set over the top of a previous GError or uninitialized memory. This indicates a bug in someone's code. You must ensure an error is NULL before it's set. The overwriting error message was: Invalid source ** (nautilus-sendto:11164): WARNING **: (null) (nautilus-sendto:11164): libebook-WARNING **: e-book.c:3095: cannot get book from factory: Invalid source (nautilus-sendto:11164): GLib-WARNING **: GError set over the top of a previous GError or uninitialized memory. This indicates a bug in someone's code. You must ensure an error is NULL before it's set. The overwriting error message was: Invalid source ** (nautilus-sendto:11164): WARNING **: (null) Program received signal SIGSEGV, Segmentation fault. 0x00007fffebc84a77 in gconf_value_compare () from /usr/lib/libgconf-2.so.4 (gdb) bt #0 0x00007fffebc84a77 in gconf_value_compare () from /usr/lib/libgconf-2.so.4 #1 0x00007fffebc84c1c in gconf_value_compare () from /usr/lib/libgconf-2.so.4 #2 0x00007fffebc85247 in gconf_entry_equal () from /usr/lib/libgconf-2.so.4 #3 0x00007fffebc8b58e in ?? () from /usr/lib/libgconf-2.so.4 #4 0x00007fffebc8b6ea in ?? () from /usr/lib/libgconf-2.so.4 #5 0x00007fffebc8b7bf in ?? () from /usr/lib/libgconf-2.so.4 #6 0x00007fffebc8e7eb in gconf_client_add_dir () from /usr/lib/libgconf-2.so.4 #7 0x00007fffedb8472b in ?? () from /usr/lib/nautilus-sendto/plugins/libnstevolution.so #8 0x00000000004044fd in main () (gdb) I will attach the core. libnstbluetooth.so: =============== Valgrind: The crash is not reproducible, but the UI doesn't appear. It seems to go into an infinite loop (?). I will attach the log. GDB: $ gdb nautilus-sendto GNU gdb (Ubuntu/Linaro 7.2-1ubuntu11) 7.2 Copyright (C) 2010 Free Software Foundation, Inc. License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html> This is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-linux-gnu". For bug reporting instructions, please see: <http://www.gnu.org/software/gdb/bugs/>... Reading symbols from /usr/bin/nautilus-sendto...(no debugging symbols found)...done. (gdb) r /home/tanty/SketchI.pdf Starting program: /usr/bin/nautilus-sendto /home/tanty/SketchI.pdf [Thread debugging using libthread_db enabled] [New Thread 0x7fffef822700 (LWP 21853)] [New Thread 0x7fffed4ad700 (LWP 21854)] [New Thread 0x7fffe7fff700 (LWP 21855)] (nautilus-sendto:21848): Gtk-WARNING **: Error parsing gtk-icon-sizes string: 'panel-menu=24,24 panel=20,20 gtk-button=18,18 gtk-large-toolbar=24,24' (nautilus-sendto:21848): GLib-GObject-WARNING **: specified instance size for type `BluetoothChooserCombo' is smaller than the parent type's `GtkBox' instance size (nautilus-sendto:21848): GLib-CRITICAL **: g_once_init_leave: assertion `initialization_value != 0' failed (nautilus-sendto:21848): GLib-GObject-CRITICAL **: g_object_new: assertion `G_TYPE_IS_OBJECT (object_type)' failed (nautilus-sendto:21848): GLib-GObject-CRITICAL **: g_object_get: assertion `G_IS_OBJECT (object)' failed Program received signal SIGSEGV, Segmentation fault. 0x00007ffff5aa658b in g_object_set () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 (gdb) bt #0 0x00007ffff5aa658b in g_object_set () from /usr/lib/x86_64-linux-gnu/libgobject-2.0.so.0 #1 0x00007fffee3890d0 in ?? () from /usr/lib/nautilus-sendto/plugins/libnstbluetooth.so #2 0x00000000004044fd in main () (gdb) I will attach the core. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/842513 Title: nautilus-sendto crashes with "double free or corruption" To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nautilus-sendto/+bug/842513/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
