[Bug 75844] New: Fix SIGSEGV in libdrm memory alloc for height == 0 and width == 0

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Thu Mar 6 06:48:30 PST 2014 

https://bugs.freedesktop.org/show_bug.cgi?id=75844

          Priority: medium
            Bug ID: 75844
          Assignee: chris at chris-wilson.co.uk
           Summary: Fix SIGSEGV in libdrm memory alloc for height == 0 and
                    width == 0
        QA Contact: intel-gfx-bugs at lists.freedesktop.org
          Severity: normal
    Classification: Unclassified
                OS: All
          Reporter: thomas.mey at web.de
          Hardware: x86-64 (AMD64)
            Status: NEW
           Version: git
         Component: Driver/intel
           Product: xorg

Created attachment 95229
  --> https://bugs.freedesktop.org/attachment.cgi?id=95229&action=edit
ix SIGSEGV for heigth = 0 and width = 0 in libdrm memory alloc

intel driver creates a crash in libdrm while trying to allocate a framebuffer
with heigth == 0 and width == 0.
Circumvent this situation by returning NULL.

Backtrace is :

#0  0x00007f4e567a034b in drm_intel_gem_bo_free (bo=0x477c840) at
intel_bufmgr_gem.c:936
#1  0x00007f4e567a20a4 in drm_intel_gem_bo_alloc_internal (bufmgr=0x2921e20,
name=0x7f4e56ac3946 "front buffer", size=0, flags=<optimized out>,
tiling_mode=1, stride=0)
    at intel_bufmgr_gem.c:734
#2  0x00007f4e56a9e262 in intel_allocate_framebuffer
(scrn=scrn at entry=0x2912eb0, width=width at entry=0, height=height at entry=0,
cpp=<optimized out>, out_pitch=out_pitch at entry=0x7ffff44ae9d0, 
    out_tiling=out_tiling at entry=0x7ffff44ae9cc) at intel_memory.c:240
#3  0x00007f4e56a99f55 in intel_xf86crtc_resize (scrn=0x2912eb0, width=0,
height=0) at intel_display.c:1551
#4  0x00000000004cccf9 in xf86RandR12ScreenSetSize (pScreen=0x293a900, width=0,
height=0, mmWidth=0, mmHeight=0) at xf86RandR12.c:699
#5  0x000000000050c3a4 in rrCheckPixmapBounding (h=0, w=0, y=0, x=0,
rr_crtc=0x2930430, pScreen=0x293a900) at rrcrtc.c:510
#6  RRCrtcSet (crtc=0x2930430, mode=0x0, x=0, y=0, rotation=rotation at entry=1,
numOutputs=numOutputs at entry=0, outputs=outputs at entry=0x0) at rrcrtc.c:554
#7  0x000000000050d566 in ProcRRSetCrtcConfig (client=0x48721b0) at
rrcrtc.c:1167
#8  0x000000000043a327 in Dispatch () at dispatch.c:432
#9  0x00000000004288da in main (argc=12, argv=0x7ffff44aeeb8, envp=<optimized
out>) at main.c:298

See also bug report https://bugzilla.redhat.com/show_bug.cgi?id=1056299

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freedesktop.org/archives/intel-gfx-bugs/attachments/20140306/8380a698/attachment.html>

More information about the intel-gfx-bugs mailing list