Package: fwbuilder Version: 2.1.17-1 Severity: normal
Hi, If I invoke fwbuilder as "fwbuilfer policy.fwb" then it works fine. However if I just type "fwbuilder" and use the "File/Open" menu to load the very same policy file, about half the time it dies with Segmentation Fault: *** glibc detected *** fwbuilder: corrupted double-linked list: 0x08af3880 *** ======= Backtrace: ========= /lib/i686/cmov/libc.so.6[0x43bb1fb9] /lib/i686/cmov/libc.so.6[0x43bb3d4d] /lib/i686/cmov/libc.so.6(__libc_malloc+0x8d)[0x43bb5b1d] /usr/lib/libstdc++.so.6(_Znwj+0x27)[0xf7f41e47] /usr/lib/libstdc++.so.6(_Znaj+0x1d)[0xf7f41f8d] /usr/lib/libqt-mt.so.3(_ZN7QString9setLengthEj+0x3f)[0x456e7e3f] /usr/lib/libqt-mt.so.3(_ZN7QString4growEj+0x30)[0x456e7fe0] /usr/lib/libqt-mt.so.3(_ZN7QStringpLERKS_+0xd5)[0x456ec495] fwbuilder[0x812da28] fwbuilder[0x8109112] fwbuilder[0x8133fae] fwbuilder[0x814301f] fwbuilder[0x836ee11] /usr/lib/libqt-mt.so.3(_ZN7QObject15activate_signalEP15QConnectionListP8QUObject+0xd1)[0x45423431] /usr/lib/libqt-mt.so.3(_ZN7QObject15activate_signalEi+0xbd)[0x4542404d] /usr/lib/libqt-mt.so.3(_ZN9QListView16selectionChangedEv+0x29)[0x45760369] /usr/lib/libqt-mt.so.3(_ZN9QListView11setSelectedEP13QListViewItemb+0xb4)[0x454fd3d4] fwbuilder[0x8133f3d] fwbuilder[0x8134a97] fwbuilder[0x8134b48] fwbuilder[0x8148642] fwbuilder[0x81487d0] fwbuilder[0x8111a84] fwbuilder[0x8114b66] fwbuilder[0x838508f] fwbuilder[0x836df37] /usr/lib/libqt-mt.so.3(_ZN7QObject15activate_signalEP15QConnectionListP8QUObject+0x16d)[0x454234cd] /usr/lib/libqt-mt.so.3(_ZN7QObject15activate_signalEi+0xbd)[0x4542404d] /usr/lib/libqt-mt.so.3(_ZN7QAction9activatedEv+0x29)[0x4576ed89] /usr/lib/libqt-mt.so.3(_ZN7QAction18internalActivationEv+0x50)[0x4555d420] /usr/lib/libqt-mt.so.3(_ZN7QAction9qt_invokeEiP8QUObject+0x106)[0x4576f0a6] /usr/lib/libqt-mt.so.3(_ZN7QObject15activate_signalEP15QConnectionListP8QUObject+0x16d)[0x454234cd] /usr/lib/libqt-mt.so.3(_ZN7QSignal6signalERK8QVariant+0x8e)[0x4574d5be] /usr/lib/libqt-mt.so.3(_ZN7QSignal8activateEv+0x77)[0x4543ee27] /usr/lib/libqt-mt.so.3(_ZN10QPopupMenu17mouseReleaseEventEP11QMouseEvent+0x42a)[0x4552418a] /usr/lib/libqt-mt.so.3(_ZN7QWidget5eventEP6QEvent+0x144)[0x4545bab4] /usr/lib/libqt-mt.so.3(_ZN12QApplication14internalNotifyEP7QObjectP6QEvent+0xda)[0x453c56ea] /usr/lib/libqt-mt.so.3(_ZN12QApplication6notifyEP7QObjectP6QEvent+0x1da)[0x453c661a] /usr/lib/libqt-mt.so.3(_ZN9QETWidget19translateMouseEventEPK7_XEvent+0xdcc)[0x453655cc] /usr/lib/libqt-mt.so.3(_ZN12QApplication15x11ProcessEventEP7_XEvent+0xa8d)[0x4536405d] /usr/lib/libqt-mt.so.3(_ZN10QEventLoop13processEventsEj+0x4a6)[0x45374546] /usr/lib/libqt-mt.so.3(_ZN10QEventLoop9enterLoopEv+0x50)[0x453dc0e0] /usr/lib/libqt-mt.so.3(_ZN10QEventLoop4execEv+0x26)[0x453dbf76] /usr/lib/libqt-mt.so.3(_ZN12QApplication4execEv+0x1f)[0x453c525f] fwbuilder[0x80716a7] /lib/i686/cmov/libc.so.6(__libc_start_main+0xe0)[0x43b5e450] fwbuilder(_ZN13QIconViewItem10setPictureERK8QPicture+0x69)[0x806f331] ======= Memory map: ======== 0803d000-084b2000 r-xp 00000000 fd:00 738293 /usr/bin/fwbuilder 084b2000-084b6000 rw-p 00475000 fd:00 738293 /usr/bin/fwbuilder 084b6000-08f0e000 rw-p 084b6000 00:00 0 [heap] 43b2a000-43b44000 r-xp 00000000 09:00 25463 /lib/ld-2.7.so 43b44000-43b46000 rw-p 00019000 09:00 25463 /lib/ld-2.7.so 43b48000-43c90000 r-xp 00000000 09:00 25762 /lib/i686/cmov/libc-2.7.so 43c90000-43c91000 r--p 00148000 09:00 25762 /lib/i686/cmov/libc-2.7.so 43c91000-43c93000 rw-p 00149000 09:00 25762 /lib/i686/cmov/libc-2.7.so 43c93000-43c96000 rw-p 43c93000 00:00 0 43c98000-43c9a000 r-xp 00000000 09:00 25807 /lib/i686/cmov/libdl-2.7.so 43c9a000-43c9c000 rw-p 00001000 09:00 25807 /lib/i686/cmov/libdl-2.7.so 43c9e000-43cc1000 r-xp 00000000 09:00 25938 /lib/i686/cmov/libm-2.7.so 43cc1000-43cc3000 rw-p 00023000 09:00 25938 /lib/i686/cmov/libm-2.7.so 43cc5000-43cd9000 r-xp 00000000 09:00 25784 /lib/i686/cmov/libpthread-2.7.so 43cd9000-43cdb000 rw-p 00013000 09:00 25784 /lib/i686/cmov/libpthread-2.7.so 43cdb000-43cdd000 rw-p 43cdb000 00:00 0 43cdf000-43cf3000 r-xp 00000000 fd:00 720993 /usr/lib/libz.so.1.2.3.3 43cf3000-43cf4000 rw-p 00013000 fd:00 720993 /usr/lib/libz.so.1.2.3.3 43cf6000-43cf8000 r-xp 00000000 fd:00 721000 /usr/lib/libXau.so.6.0.0 43cf8000-43cf9000 rw-p 00001000 fd:00 721000 /usr/lib/libXau.so.6.0.0 43cfb000-43de1000 r-xp 00000000 fd:00 721007 /usr/lib/libX11.so.6.2.0 43de1000-43de5000 rw-p 000e5000 fd:00 721007 /usr/lib/libX11.so.6.2.0 43de7000-43de8000 r-xp 00000000 fd:00 721005 /usr/lib/libxcb-xlib.so.0.0.0 43de8000-43de9000 rw-p 00000000 fd:00 721005 /usr/lib/libxcb-xlib.so.0.0.0 43deb000-43def000 r-xp 00000000 fd:00 721001 /usr/lib/libXdmcp.so.6.0.0 43def000-43df0000 rw-p 00003000 fd:00 721001 /usr/lib/libXdmcp.so.6.0.0 43df2000-43e09000 r-xp 00000000 fd:00 721004 /usr/lib/libxcb.so.1.0.0 43e09000-43e0a000 rw-p 00016000 fd:00 721004 /usr/lib/libxcb.so.1.0.0 43e27000-43e34000 r-xp 00000000 fd:00 721021 /usr/lib/libXext.so.6.4.0 43e34000-43e35000 rw-p 0000c000 fd:00 721021 /usr/lib/libXext.so.6.4.0 43e37000-43ec4000 r-xp 00000000 fd:00 688730 /usr/lib/libnetsnmp.so.15.1.0 43ec4000-43ec6000 rw-p 0008d000 fd:00 688730 /usr/lib/libnetsnmp.so.15.1.0 43ec6000-43ee5000 rw-p 43ec6000 00:00 0 43f1b000-43f1f000 r-xp 00000000 fd:00 721047 /usr/lib/libXfixes.so.3.1.0 43f1f000-43f20000 rw-p 00003000 fd:00 721047 /usr/lib/libXfixes.so.3.1.0 43f22000-43f40000 r-xp 00000000 fd:00 720995 /usr/lib/libexpat.so.1.0.0 43f40000-43f42000 rw-p 0001d000 fd:00 720995 /usr/lib/libexpat.so.1.0.0 43f44000-43faf000 r-xp 00000000 fd:00 720994 /usr/lib/libfreetype.so.6.3.16 43faf000-43fb3000 rw-p 0006a000 fd:00 720994 /usr/lib/libfreetype.so.6.3.16 43fb5000-43fd7000 r-xp 00000000 fd:00 720999 /usr/lib/libpng12.so.0.15.0 43fd7000-43fd8000 rw-p 00021000 fd:00 720999 /usr/lib/libpng12.so.0.15.0 43fef000Aborted Since it does not always die I suspect the bug is somehow related to threading. valgrind also shows an use-after-free bug: ==30745== Invalid write of size 1 ==30745== at 0x8133DDD: (within /usr/bin/fwbuilder) ==30745== by 0x838A399: (within /usr/bin/fwbuilder) ==30745== by 0x836E903: (within /usr/bin/fwbuilder) ==30745== by 0x454234CC: QObject::activate_signal(QConnectionList*, QUObject*) (in /usr/lib/libqt-mt.so.3.3.8) ==30745== by 0x4576E510: QWidgetStack::aboutToShow(QWidget*) (in /usr/lib/libqt-mt.so.3.3.8) ==30745== by 0x4555CB93: QWidgetStack::raiseWidget(QWidget*) (in /usr/lib/libqt-mt.so.3.3.8) ==30745== by 0x8133EDF: (within /usr/bin/fwbuilder) ==30745== by 0x8134A96: (within /usr/bin/fwbuilder) ==30745== by 0x8134B47: (within /usr/bin/fwbuilder) ==30745== by 0x8148641: (within /usr/bin/fwbuilder) ==30745== by 0x81487CF: (within /usr/bin/fwbuilder) ==30745== by 0x8111A83: (within /usr/bin/fwbuilder) ==30745== by 0x8114B65: (within /usr/bin/fwbuilder) ==30745== by 0x838508E: (within /usr/bin/fwbuilder) ==30745== by 0x836DF36: (within /usr/bin/fwbuilder) ==30745== Address 0xe201df9 is 217 bytes inside a block of size 232 free'd ==30745== at 0x46C12EC: operator delete(void*) (vg_replace_malloc.c:342) ==30745== by 0x8135BF6: (within /usr/bin/fwbuilder) ==30745== by 0x81486B4: (within /usr/bin/fwbuilder) ==30745== by 0x81487CF: (within /usr/bin/fwbuilder) ==30745== by 0x8111A83: (within /usr/bin/fwbuilder) ==30745== by 0x8114B65: (within /usr/bin/fwbuilder) ==30745== by 0x838508E: (within /usr/bin/fwbuilder) ==30745== by 0x836DF36: (within /usr/bin/fwbuilder) ==30745== by 0x454234CC: QObject::activate_signal(QConnectionList*, QUObject*) (in /usr/lib/libqt-mt.so.3.3.8) ==30745== by 0x4542404C: QObject::activate_signal(int) (in /usr/lib/libqt-mt.so.3.3.8) ==30745== by 0x4576ED88: QAction::activated() (in /usr/lib/libqt-mt.so.3.3.8) ==30745== by 0x4555D41F: QAction::internalActivation() (in /usr/lib/libqt-mt.so.3.3.8) ==30745== by 0x4576F0A5: QAction::qt_invoke(int, QUObject*) (in /usr/lib/libqt-mt.so.3.3.8) ==30745== by 0x454234CC: QObject::activate_signal(QConnectionList*, QUObject*) (in /usr/lib/libqt-mt.so.3.3.8) ==30745== by 0x4574D5BD: QSignal::signal(QVariant const&) (in /usr/lib/libqt-mt.so.3.3.8) Gabor -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (990, 'unstable'), (500, 'testing'), (500, 'stable'), (101, 'experimental') Architecture: i386 (x86_64) Kernel: Linux 2.6.24.4 (SMP w/2 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages fwbuilder depends on: ii fwbuilder-common 2.1.17-1 Firewall administration tool GUI ( ii fwbuilder-linux [fwbuilder 2.1.17-1 Firewall Builder policy compiler(s ii libc6 2.7-10 GNU C Library: Shared libraries ii libfwbuilder7 2.1.17-2 Firewall Builder API library ii libgcc1 1:4.3.0-3 GCC support library ii libqt3-mt 3:3.3.8b-5 Qt GUI Library (Threaded runtime v ii libsnmp15 5.4.1~dfsg-6 SNMP (Simple Network Management Pr ii libstdc++6 4.3.0-3 The GNU Standard C++ Library v3 ii libx11-6 2:1.1.4-1 X11 client-side library ii libxext6 2:1.0.4-1 X11 miscellaneous extension librar ii libxml2 2.6.31.dfsg-2 GNOME XML library ii libxslt1.1 1.1.22-1 XSLT processing library - runtime fwbuilder recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
