[Bug 98570] New: segfault in clipboard_received_text_cb

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Thu Nov 3 12:38:18 UTC 2016 

https://bugs.freedesktop.org/show_bug.cgi?id=98570

            Bug ID: 98570
           Summary: segfault in clipboard_received_text_cb
           Product: Spice
           Version: unspecified
          Hardware: x86-64 (AMD64)
                OS: Linux (All)
            Status: NEW
          Severity: normal
          Priority: medium
         Component: spice-gtk
          Assignee: spice-bugs at lists.freedesktop.org
          Reporter: kevin.sopp at additive-net.de

OS: Arch Linux x64
component: spice-gtk3 v0.33

While working inside a Win7 VM virt-manager randomly segfaults on coworkers
laptop about half a dozen times per day. I've only seen the same segfault once
(probably because I don't use it as much as him) on my machine when I pressed
ctrl+c and then ctrl+v inside a Win7 VM. I haven't found out how to reproduce
it though.

I compiled a debug version of spice-gtk3 to get a bit more info, apparently the
argument 'text' can be NULL in clipboard_received_text_cb and then strlen(text)
segfaults.

GDB Backtrace:

Thread 1 "python2" received signal SIGSEGV, Segmentation fault.
0x00007f9e1ea1a446 in strlen () from /usr/lib/libc.so.6
(gdb) bt
#0  0x00007f9e1ea1a446 in strlen () at /usr/lib/libc.so.6
#1  0x00007f9dd677a14d in clipboard_received_text_cb (clipboard=0x55d53820f440,
text=0x0, user_data=<optimized out>) at spice-gtk-session.c:953
#2  0x00007f9e08d5b150 in  () at /usr/lib/libgtk-3.so.0
#3  0x00007f9e08d5a499 in  () at /usr/lib/libgtk-3.so.0
#4  0x00007f9e1c461f75 in g_closure_invoke () at /usr/lib/libgobject-2.0.so.0
#5  0x00007f9e1c473f82 in  () at /usr/lib/libgobject-2.0.so.0
#6  0x00007f9e1c47cbcc in g_signal_emit_valist () at
/usr/lib/libgobject-2.0.so.0
#7  0x00007f9e1c47d45b in g_signal_emit_by_name () at
/usr/lib/libgobject-2.0.so.0
#8  0x00007f9e08c720c3 in  () at /usr/lib/libgtk-3.so.0
#9  0x00007f9e08c761da in  () at /usr/lib/libgtk-3.so.0
#10 0x00007f9e08be5571 in  () at /usr/lib/libgtk-3.so.0
#11 0x00007f9e1c4621a4 in  () at /usr/lib/libgobject-2.0.so.0
#12 0x00007f9e1c47c391 in g_signal_emit_valist () at
/usr/lib/libgobject-2.0.so.0
#13 0x00007f9e1c47cfaf in g_signal_emit () at /usr/lib/libgobject-2.0.so.0
#14 0x00007f9e08d31c2c in  () at /usr/lib/libgtk-3.so.0
#15 0x00007f9e08be44a4 in gtk_main_do_event () at /usr/lib/libgtk-3.so.0
#16 0x00007f9e10d42b85 in  () at /usr/lib/libgdk-3.so.0
#17 0x00007f9e10d9e432 in  () at /usr/lib/libgdk-3.so.0
#18 0x00007f9e1c189587 in g_main_context_dispatch () at
/usr/lib/libglib-2.0.so.0
#19 0x00007f9e1c1897f0 in  () at /usr/lib/libglib-2.0.so.0
#20 0x00007f9e1c18989c in g_main_context_iteration () at
/usr/lib/libglib-2.0.so.0
#21 0x00007f9e1ba3d54d in g_application_run () at /usr/lib/libgio-2.0.so.0
#22 0x00007f9e1bf3c1c8 in ffi_call_unix64 () at /usr/lib/libffi.so.6
#23 0x00007f9e1bf3bc2a in ffi_call () at /usr/lib/libffi.so.6
#24 0x00007f9e1c90474c in  () at /usr/lib/python2.7/site-packages/gi/_gi.so
#25 0x00007f9e1c906218 in  () at /usr/lib/python2.7/site-packages/gi/_gi.so
#26 0x00007f9e1c8fa1e9 in  () at /usr/lib/python2.7/site-packages/gi/_gi.so
#27 0x00007f9e1efa1662 in PyObject_Call () at /usr/lib/libpython2.7.so.1.0
#28 0x00007f9e1f03e665 in PyEval_EvalFrameEx () at /usr/lib/libpython2.7.so.1.0
#29 0x00007f9e1f041159 in PyEval_EvalFrameEx () at /usr/lib/libpython2.7.so.1.0
#30 0x00007f9e1f041159 in PyEval_EvalFrameEx () at /usr/lib/libpython2.7.so.1.0
#31 0x00007f9e1f042dcc in PyEval_EvalCodeEx () at /usr/lib/libpython2.7.so.1.0
#32 0x00007f9e1f042ed8 in PyEval_EvalCode () at /usr/lib/libpython2.7.so.1.0
#33 0x00007f9e1f05d35e in run_mod () at /usr/lib/libpython2.7.so.1.0
#34 0x00007f9e1f05e621 in PyRun_FileExFlags () at /usr/lib/libpython2.7.so.1.0
#35 0x00007f9e1f05f944 in PyRun_SimpleFileExFlags () at
/usr/lib/libpython2.7.so.1.0
#36 0x00007f9e1f072150 in Py_Main () at /usr/lib/libpython2.7.so.1.0
#37 0x00007f9e1e9ba291 in __libc_start_main () at /usr/lib/libc.so.6
#38 0x000055d536849819 in _start ()

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/spice-bugs/attachments/20161103/9ac426c9/attachment.html>

More information about the spice-bugs mailing list