*** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***

*** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***

[Toralf Förster]

Just like to report this in case it is an unknown issue:

The current trinity git tree gives with kernel 3.15-x something like the following at a 32 bit stable Gentoo Linux user mode linux guest :



tfoerste@n22 ~ $ nice trinity.sh -t "-q -q -q" -u "-l /usr/local/bin/linux-v3.15"
 starting UML ...  UML started

 prepare trinity job at Thu Jun 12 22:54:29 CEST 2014 1#-1, M=
Trinity v1.5pre  Dave Jones <davej@redhat.com>                               <------- and I'm wondering if here something like "git describe --tags" should be add too to the version string ?
Done parsing arguments.      
Marking all syscalls as enabled.
*** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***
======= Backtrace: =========
/lib/libc.so.6(+0x7a202)[0x400a3202]
/lib/libc.so.6(+0x7af80)[0x400a3f80]
trinity(mkcall+0x17a)[0x805b09a]
trinity(child_process+0x95)[0x80548f5]
trinity(main_loop+0x1e3)[0x80583d3]
trinity(main+0x252)[0x8053712]
/lib/libc.so.6(__libc_start_main+0xf5)[0x40045cc5]
trinity[0x8053c95]
======= Memory map: ========
00100000-00102000 r-xp 00000000 00:00 0 
08048000-08079000 r-xp 00000000 62:00 75867      /usr/bin/trinity
08079000-0807a000 r--p 00030000 62:00 75867      /usr/bin/trinity
0807a000-080d7000 rw-p 00031000 62:00 75867      /usr/bin/trinity
080d7000-080f8000 rw-p 00000000 00:00 0          [heap]
080f8000-0817f000 rw-p 00000000 00:00 0          [heap]
0817f000-083b0000 rw-p 00000000 00:00 0          [heap]
40000000-40020000 r-xp 00000000 62:00 31279      /lib/ld-2.17.so
40020000-40021000 r--p 0001f000 62:00 31279      /lib/ld-2.17.so
40021000-40022000 rw-p 00020000 62:00 31279      /lib/ld-2.17.so
40022000-40023000 rw-p 00000000 00:00 0 
40023000-40024000 rw-s 00000000 00:04 1569       /dev/zero (deleted)
40024000-40026000 rw-p 00000000 00:00 0 
40026000-40028000 rw-s 00000000 00:04 1572       /dev/zero (deleted)
40028000-40029000 rw-p 00000000 00:00 0 
40029000-401d1000 r-xp 00000000 62:00 31281      /lib/libc-2.17.so
401d1000-401d3000 r--p 001a8000 62:00 31281      /lib/libc-2.17.so
401d3000-401d4000 rw-p 001aa000 62:00 31281      /lib/libc-2.17.so
401d4000-401d8000 rw-p 00000000 00:00 0 
401d8000-40230000 rw-s 00000000 00:04 1567       /dev/zero (deleted)
40230000-4024e000 ---s 00000000 00:04 1568       /dev/zero (deleted)
4024e000-40253000 rw-s 0001e000 00:04 1568       /dev/zero (deleted)
40253000-40271000 ---s 00023000 00:04 1568       /dev/zero (deleted)
40271000-4027e000 rw-s 00000000 00:04 1570       /dev/zero (deleted)
4027e000-40280000 rw-s 00000000 00:04 1573       /dev/zero (deleted)
40280000-40282000 rw-s 00000000 00:04 1574       /dev/zero (deleted)
40282000-40382000 rw-s 00000000 00:04 1575       /dev/zero (deleted)
40382000-40482000 rw-s 00000000 00:04 1576       /dev/zero (deleted)
40482000-404c6000 rw-s 00000000 00:04 1577       /dev/zero (deleted)
404c6000-404c7000 rw-p 00000000 00:00 0
404c7000-40582000 rw-s 00045000 00:04 1577       /dev/zero (deleted)
40582000-40782000 rw-s 00000000 00:04 1578       /dev/zero (deleted)
40782000-40982000 rw-s 00000000 00:04 1579       /dev/zero (deleted)
40982000-40b82000 rw-s 00000000 00:04 1580       /dev/zero (deleted)
40b82000-40f82000 rw-s 00000000 00:04 1581       /dev/zero (deleted)
40f82000-41382000 rw-s 00000000 00:04 1582       /dev/zero (deleted)
41382000-41782000 rw-s 00000000 00:04 1583       /dev/zero (deleted)
41782000-42182000 rw-s 00000000 00:04 1584       /dev/zero (deleted)
42182000-42b82000 rw-s 00000000 00:04 1585       /dev/zero (deleted)
42b82000-43582000 rw-s 00000000 00:04 1586       /dev/zero (deleted)
43588000-435a2000 r-xp 00000000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a2000-435a3000 r--p 00019000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a3000-435a4000 rw-p 0001a000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
bfc89000-bfcaa000 rw-p 00000000 00:00 0




-- 
Toralf

Re: *** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***

[Dave Jones]

On Thu, Jun 12, 2014 at 11:04:30PM +0200, Toralf Förster wrote:

 > Trinity v1.5pre  Dave Jones <davej@redhat.com>                               <------- and I'm wondering if here something like "git describe --tags" should be add too to the version string ?

Just pushed something out that does this. (And went back and regenerated
all the release tags to be 'real' tags instead of lightweight ones, so
that git describe actually works). Pull down the latest tags to make it work.

caveat: it needs you to rerun configure.sh each time you pull, which
kinda sucks.  I suppose it'd be better if it somehow did all this stuff
from the Makefile.  I'll look into fixing it sometime unless someone else beats
me to it, but it's not on my urgent list.

 > Done parsing arguments.      
 > Marking all syscalls as enabled.
 > *** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***

I've been chasing a bunch of corruption bugs this last week or so, and
I think I've killed the worst of the bunch.

Does -x mremap make this stop happening for you ?

Asides from damage caused by that syscall the only other bug that I've
got outstanding is that occasionally something stomps on the pid
element of the child structures. Oddly enough, it shows up only when
run with MALLOC_PERTURB_ set. That's the value that gets scribbled
there.  The weird part is that that struct never gets freed, and
the struct is a COW'd mmap from the main process, so it's always
initialized.  Mysterious.

That all said, I've not seen it since I turned a bunch of the
child handling upside down over the last day or so, so I may have
inadvertantly "fixed" it by rewriting it away.
I'm all ears if you see any of the BUG statements where it
dumps the pids however.


I'll poke at mremap in the coming days, because that's the only
thing I'm having to exclude right now because it does so much
damage to trinity's internals.

	Dave

Re: *** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***

[Toralf Förster]

On 06/13/2014 12:06 AM, Dave Jones wrote:
> On Thu, Jun 12, 2014 at 11:04:30PM +0200, Toralf Förster wrote:
> 
>  > Trinity v1.5pre  Dave Jones <davej@redhat.com>                               <------- and I'm wondering if here something like "git describe --tags" should be add too to the version string ?
> 
> Just pushed something out that does this. (And went back and regenerated
> all the release tags to be 'real' tags instead of lightweight ones, so
> that git describe actually works). Pull down the latest tags to make it work.
> 
cool.
> caveat: it needs you to rerun configure.sh each time you pull, which
> kinda sucks.  I suppose it'd be better if it somehow did all this stuff
> from the Makefile.  I'll look into fixing it sometime unless someone else beats
> me to it, but it's not on my urgent list.
> 
ok (althought now the version string is completely empty if git is not installed, eg. on virtual test machines)

>  > Done parsing arguments.      
>  > Marking all syscalls as enabled.
>  > *** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***
> 
> I've been chasing a bunch of corruption bugs this last week or so, and
> I think I've killed the worst of the bunch.
> 
> Does -x mremap make this stop happening for you ?
neither "-x mremap" nor "-x madvise" helped hhm

If it would help a lot I could try to bisect trinity to that.

> Asides from damage caused by that syscall the only other bug that I've
> got outstanding is that occasionally something stomps on the pid
> element of the child structures. Oddly enough, it shows up only when
> run with MALLOC_PERTURB_ set. That's the value that gets scribbled
> there.  The weird part is that that struct never gets freed, and
> the struct is a COW'd mmap from the main process, so it's always
> initialized.  Mysterious.
> 
> That all said, I've not seen it since I turned a bunch of the
> child handling upside down over the last day or so, so I may have
> inadvertantly "fixed" it by rewriting it away.
> I'm all ears if you see any of the BUG statements where it
> dumps the pids however.

WIll look onto it

--
Toralf

Re: *** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***

[Dave Jones]

On Fri, Jun 13, 2014 at 06:21:14PM +0200, Toralf Förster wrote:

 > > caveat: it needs you to rerun configure.sh each time you pull, which
 > > kinda sucks.  I suppose it'd be better if it somehow did all this stuff
 > > from the Makefile.  I'll look into fixing it sometime unless someone else beats
 > > me to it, but it's not on my urgent list.
 > > 
 > ok (althought now the version string is completely empty if git is not installed, eg. on virtual test machines)

Ok, Just pushed something out so it falls back to grepping the Makefile
if git isn't installed. Guess that case is useful if someone was
building from one of the snapshot tarballs.

 > >  > Done parsing arguments.      
 > >  > Marking all syscalls as enabled.
 > >  > *** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***
 > > 
 > > I've been chasing a bunch of corruption bugs this last week or so, and
 > > I think I've killed the worst of the bunch.
 > > 
 > > Does -x mremap make this stop happening for you ?
 > neither "-x mremap" nor "-x madvise" helped hhm
 > 
 > If it would help a lot I could try to bisect trinity to that.

I have a feeling it'll land on one of the bigger changesets, but it
might be useful to narrow down.

	Dave

Re: *** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***

[Toralf Förster]

On 06/13/2014 06:38 PM, Dave Jones wrote:
> On Fri, Jun 13, 2014 at 06:21:14PM +0200, Toralf Förster wrote:
> 
>  > > caveat: it needs you to rerun configure.sh each time you pull, which
>  > > kinda sucks.  I suppose it'd be better if it somehow did all this stuff
>  > > from the Makefile.  I'll look into fixing it sometime unless someone else beats
>  > > me to it, but it's not on my urgent list.
>  > > 
>  > ok (althought now the version string is completely empty if git is not installed, eg. on virtual test machines)
> 
> Ok, Just pushed something out so it falls back to grepping the Makefile
> if git isn't installed. Guess that case is useful if someone was
> building from one of the snapshot tarballs.
> 
>  > >  > Done parsing arguments.      
>  > >  > Marking all syscalls as enabled.
>  > >  > *** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***
>  > > 
>  > > I've been chasing a bunch of corruption bugs this last week or so, and
>  > > I think I've killed the worst of the bunch.
>  > > 
>  > > Does -x mremap make this stop happening for you ?
>  > neither "-x mremap" nor "-x madvise" helped hhm
>  > 
>  > If it would help a lot I could try to bisect trinity to that.
> 
> I have a feeling it'll land on one of the bigger changesets, but it
> might be useful to narrow down.
> 
> 	Dave
> 
> 
I just run this one-liner

$ trinity --list | grep Enabled$ | grep -v AVOID | cut -f3 -d' ' | while read s; do echo; echo $s; trinity -q -q -q -c $s -N 20 -C 1; done    

with latest trinity git tee and latest kernel tree which exposed the syscall "modify_ldt":


modify_ldt
Trinity 1.5pre  Dave Jones <davej@redhat.com>
[init] Marking syscall modify_ldt (123) as to be enabled.
Done parsing arguments.
*** Error in `trinity': double free or corruption (top): 0x0815d870 ***
======= Backtrace: =========
/lib/libc.so.6(+0x7a202)[0x400a3202]
/lib/libc.so.6(+0x7af80)[0x400a3f80]
trinity(mkcall+0x17a)[0x805b0ca]
trinity(child_process+0x95)[0x8054965]
trinity(main_loop+0x1e3)[0x80583f3]
trinity(main+0x252)[0x8053752]
/lib/libc.so.6(__libc_start_main+0xf5)[0x40045cc5]
trinity[0x8053cd5]
======= Memory map: ========
00100000-00102000 r-xp 00000000 00:00 0 
08048000-08079000 r-xp 00000000 62:00 12788      /usr/bin/trinity
08079000-0807a000 r--p 00030000 62:00 12788      /usr/bin/trinity
0807a000-080d7000 rw-p 00031000 62:00 12788      /usr/bin/trinity
080d7000-080f8000 rw-p 00000000 00:00 0          [heap]
080f8000-0817e000 rw-p 00000000 00:00 0          [heap]
40000000-40020000 r-xp 00000000 62:00 31279      /lib/ld-2.17.so
40020000-40021000 r--p 0001f000 62:00 31279      /lib/ld-2.17.so
40021000-40022000 rw-p 00020000 62:00 31279      /lib/ld-2.17.so
40022000-40023000 rw-p 00000000 00:00 0 
40023000-40024000 rw-s 00000000 00:04 292788     /dev/zero (deleted)
40024000-40026000 rw-p 00000000 00:00 0 
40026000-40028000 rw-s 00000000 00:04 292790     /dev/zero (deleted)
40028000-40029000 rw-p 00000000 00:00 0 
40029000-401d1000 r-xp 00000000 62:00 31281      /lib/libc-2.17.so
401d1000-401d3000 r--p 001a8000 62:00 31281      /lib/libc-2.17.so
401d3000-401d4000 rw-p 001aa000 62:00 31281      /lib/libc-2.17.so
401d4000-401d8000 rw-p 00000000 00:00 0 
401d8000-40230000 rw-s 00000000 00:04 292786     /dev/zero (deleted)
40230000-4024e000 ---s 00000000 00:04 292787     /dev/zero (deleted)
4024e000-40253000 rw-s 0001e000 00:04 292787     /dev/zero (deleted)
40253000-40271000 ---s 00023000 00:04 292787     /dev/zero (deleted)
40271000-4027e000 rw-s 00000000 00:04 292789     /dev/zero (deleted)
4027e000-40280000 r--s 00000000 00:04 292791     /dev/zero (deleted)
40280000-40282000 -w-s 00000000 00:04 292792     /dev/zero (deleted)
40282000-40382000 rw-s 00000000 00:04 292793     /dev/zero (deleted)
40382000-40482000 r--s 00000000 00:04 292794     /dev/zero (deleted)
40482000-40582000 -w-s 00000000 00:04 292795     /dev/zero (deleted)
40582000-40782000 rw-s 00000000 00:04 292796     /dev/zero (deleted)
40782000-40982000 r--s 00000000 00:04 292797     /dev/zero (deleted)
40982000-40b82000 -w-s 00000000 00:04 292798     /dev/zero (deleted)
40b82000-40f82000 rw-s 00000000 00:04 292799     /dev/zero (deleted)
40f82000-41382000 r--s 00000000 00:04 292800     /dev/zero (deleted)
41382000-41782000 -w-s 00000000 00:04 292801     /dev/zero (deleted)
41782000-42182000 rw-s 00000000 00:04 292802     /dev/zero (deleted)
42182000-42b82000 r--s 00000000 00:04 292803     /dev/zero (deleted)
42b82000-43582000 -w-s 00000000 00:04 292804     /dev/zero (deleted)
43582000-43583000 rw-p 00000000 00:00 0 
43589000-435a3000 r-xp 00000000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a3000-435a4000 r--p 00019000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a4000-435a5000 rw-p 0001a000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
bfce1000-bfd02000 rw-p 00000000 00:00 0 
*** Error in `trinity': double free or corruption (top): 0x0815d870 ***
======= Backtrace: =========
/lib/libc.so.6(+0x7a202)[0x400a3202]
/lib/libc.so.6(+0x7af80)[0x400a3f80]
trinity(mkcall+0x17a)[0x805b0ca]
trinity(child_process+0x95)[0x8054965]
trinity(main_loop+0x1e3)[0x80583f3]
trinity(main+0x252)[0x8053752]
/lib/libc.so.6(__libc_start_main+0xf5)[0x40045cc5]
trinity[0x8053cd5]
======= Memory map: ========
00100000-00102000 r-xp 00000000 00:00 0 
08048000-08079000 r-xp 00000000 62:00 12788      /usr/bin/trinity
08079000-0807a000 r--p 00030000 62:00 12788      /usr/bin/trinity
0807a000-080d7000 rw-p 00031000 62:00 12788      /usr/bin/trinity
080d7000-080f8000 rw-p 00000000 00:00 0          [heap]
080f8000-0817e000 rw-p 00000000 00:00 0          [heap]
40000000-40020000 r-xp 00000000 62:00 31279      /lib/ld-2.17.so
40020000-40021000 r--p 0001f000 62:00 31279      /lib/ld-2.17.so
40021000-40022000 rw-p 00020000 62:00 31279      /lib/ld-2.17.so
40022000-40023000 rw-p 00000000 00:00 0 
40023000-40024000 rw-s 00000000 00:04 292788     /dev/zero (deleted)
40024000-40026000 rw-p 00000000 00:00 0 
40026000-40028000 rw-s 00000000 00:04 292790     /dev/zero (deleted)
40028000-40029000 rw-p 00000000 00:00 0 
40029000-401d1000 r-xp 00000000 62:00 31281      /lib/libc-2.17.so
401d1000-401d3000 r--p 001a8000 62:00 31281      /lib/libc-2.17.so
401d3000-401d4000 rw-p 001aa000 62:00 31281      /lib/libc-2.17.so
401d4000-401d8000 rw-p 00000000 00:00 0 
401d8000-40230000 rw-s 00000000 00:04 292786     /dev/zero (deleted)
40230000-4024e000 ---s 00000000 00:04 292787     /dev/zero (deleted)
4024e000-40253000 rw-s 0001e000 00:04 292787     /dev/zero (deleted)
40253000-40271000 ---s 00023000 00:04 292787     /dev/zero (deleted)
40271000-4027e000 rw-s 00000000 00:04 292789     /dev/zero (deleted)
4027e000-40280000 r--s 00000000 00:04 292791     /dev/zero (deleted)
40280000-40282000 -w-s 00000000 00:04 292792     /dev/zero (deleted)
40282000-40382000 rw-s 00000000 00:04 292793     /dev/zero (deleted)
40382000-40482000 r--s 00000000 00:04 292794     /dev/zero (deleted)
40482000-40582000 -w-s 00000000 00:04 292795     /dev/zero (deleted)
40582000-40782000 rw-s 00000000 00:04 292796     /dev/zero (deleted)
40782000-40982000 r--s 00000000 00:04 292797     /dev/zero (deleted)
40982000-40b82000 -w-s 00000000 00:04 292798     /dev/zero (deleted)
40b82000-40f82000 rw-s 00000000 00:04 292799     /dev/zero (deleted)
40f82000-41382000 r--s 00000000 00:04 292800     /dev/zero (deleted)
41382000-41782000 -w-s 00000000 00:04 292801     /dev/zero (deleted)
41782000-42182000 rw-s 00000000 00:04 292802     /dev/zero (deleted)
42182000-42b82000 r--s 00000000 00:04 292803     /dev/zero (deleted)
42b82000-43582000 -w-s 00000000 00:04 292804     /dev/zero (deleted)
43582000-43583000 rw-p 00000000 00:00 0 
43589000-435a3000 r-xp 00000000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a3000-435a4000 r--p 00019000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a4000-435a5000 rw-p 0001a000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
bfce1000-bfd02000 rw-p 00000000 00:00 0 
*** Error in `trinity': double free or corruption (top): 0x0815d870 ***
======= Backtrace: =========
/lib/libc.so.6(+0x7a202)[0x400a3202]
/lib/libc.so.6(+0x7af80)[0x400a3f80]
trinity(mkcall+0x17a)[0x805b0ca]
trinity(child_process+0x95)[0x8054965]
trinity(main_loop+0x1e3)[0x80583f3]
trinity(main+0x252)[0x8053752]
/lib/libc.so.6(__libc_start_main+0xf5)[0x40045cc5]
trinity[0x8053cd5]
======= Memory map: ========
00100000-00102000 r-xp 00000000 00:00 0 
08048000-08079000 r-xp 00000000 62:00 12788      /usr/bin/trinity
08079000-0807a000 r--p 00030000 62:00 12788      /usr/bin/trinity
0807a000-080d7000 rw-p 00031000 62:00 12788      /usr/bin/trinity
080d7000-080f8000 rw-p 00000000 00:00 0          [heap]
080f8000-0817e000 rw-p 00000000 00:00 0          [heap]
40000000-40020000 r-xp 00000000 62:00 31279      /lib/ld-2.17.so
40020000-40021000 r--p 0001f000 62:00 31279      /lib/ld-2.17.so
40021000-40022000 rw-p 00020000 62:00 31279      /lib/ld-2.17.so
40022000-40023000 rw-p 00000000 00:00 0 
40023000-40024000 rw-s 00000000 00:04 292788     /dev/zero (deleted)
40024000-40026000 rw-p 00000000 00:00 0 
40026000-40028000 rw-s 00000000 00:04 292790     /dev/zero (deleted)
40028000-40029000 rw-p 00000000 00:00 0 
40029000-401d1000 r-xp 00000000 62:00 31281      /lib/libc-2.17.so
401d1000-401d3000 r--p 001a8000 62:00 31281      /lib/libc-2.17.so
401d3000-401d4000 rw-p 001aa000 62:00 31281      /lib/libc-2.17.so
401d4000-401d8000 rw-p 00000000 00:00 0 
401d8000-40230000 rw-s 00000000 00:04 292786     /dev/zero (deleted)
40230000-4024e000 ---s 00000000 00:04 292787     /dev/zero (deleted)
4024e000-40253000 rw-s 0001e000 00:04 292787     /dev/zero (deleted)
40253000-40271000 ---s 00023000 00:04 292787     /dev/zero (deleted)
40271000-4027e000 rw-s 00000000 00:04 292789     /dev/zero (deleted)
4027e000-40280000 r--s 00000000 00:04 292791     /dev/zero (deleted)
40280000-40282000 -w-s 00000000 00:04 292792     /dev/zero (deleted)
40282000-40382000 rw-s 00000000 00:04 292793     /dev/zero (deleted)
40382000-40482000 r--s 00000000 00:04 292794     /dev/zero (deleted)
40482000-40582000 -w-s 00000000 00:04 292795     /dev/zero (deleted)
40582000-40782000 rw-s 00000000 00:04 292796     /dev/zero (deleted)
40782000-40982000 r--s 00000000 00:04 292797     /dev/zero (deleted)
40982000-40b82000 -w-s 00000000 00:04 292798     /dev/zero (deleted)
40b82000-40f82000 rw-s 00000000 00:04 292799     /dev/zero (deleted)
40f82000-41382000 r--s 00000000 00:04 292800     /dev/zero (deleted)
41382000-41782000 -w-s 00000000 00:04 292801     /dev/zero (deleted)
41782000-42182000 rw-s 00000000 00:04 292802     /dev/zero (deleted)
42182000-42b82000 r--s 00000000 00:04 292803     /dev/zero (deleted)
42b82000-43582000 -w-s 00000000 00:04 292804     /dev/zero (deleted)
43582000-43583000 rw-p 00000000 00:00 0 
43589000-435a3000 r-xp 00000000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a3000-435a4000 r--p 00019000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a4000-435a5000 rw-p 0001a000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
bfce1000-bfd02000 rw-p 00000000 00:00 0 
*** Error in `trinity': double free or corruption (top): 0x0815d870 ***
======= Backtrace: =========
/lib/libc.so.6(+0x7a202)[0x400a3202]
/lib/libc.so.6(+0x7af80)[0x400a3f80]
trinity(mkcall+0x17a)[0x805b0ca]
trinity(child_process+0x95)[0x8054965]
trinity(main_loop+0x1e3)[0x80583f3]
trinity(main+0x252)[0x8053752]
/lib/libc.so.6(__libc_start_main+0xf5)[0x40045cc5]
trinity[0x8053cd5]
======= Memory map: ========
00100000-00102000 r-xp 00000000 00:00 0 
08048000-08079000 r-xp 00000000 62:00 12788      /usr/bin/trinity
08079000-0807a000 r--p 00030000 62:00 12788      /usr/bin/trinity
0807a000-080d7000 rw-p 00031000 62:00 12788      /usr/bin/trinity
080d7000-080f8000 rw-p 00000000 00:00 0          [heap]
080f8000-0817e000 rw-p 00000000 00:00 0          [heap]
40000000-40020000 r-xp 00000000 62:00 31279      /lib/ld-2.17.so
40020000-40021000 r--p 0001f000 62:00 31279      /lib/ld-2.17.so
40021000-40022000 rw-p 00020000 62:00 31279      /lib/ld-2.17.so
40022000-40023000 rw-p 00000000 00:00 0 
40023000-40024000 rw-s 00000000 00:04 292788     /dev/zero (deleted)
40024000-40026000 rw-p 00000000 00:00 0 
40026000-40028000 rw-s 00000000 00:04 292790     /dev/zero (deleted)
40028000-40029000 rw-p 00000000 00:00 0 
40029000-401d1000 r-xp 00000000 62:00 31281      /lib/libc-2.17.so
401d1000-401d3000 r--p 001a8000 62:00 31281      /lib/libc-2.17.so
401d3000-401d4000 rw-p 001aa000 62:00 31281      /lib/libc-2.17.so
401d4000-401d8000 rw-p 00000000 00:00 0 
401d8000-40230000 rw-s 00000000 00:04 292786     /dev/zero (deleted)
40230000-4024e000 ---s 00000000 00:04 292787     /dev/zero (deleted)
4024e000-40253000 rw-s 0001e000 00:04 292787     /dev/zero (deleted)
40253000-40271000 ---s 00023000 00:04 292787     /dev/zero (deleted)
40271000-4027e000 rw-s 00000000 00:04 292789     /dev/zero (deleted)
4027e000-40280000 r--s 00000000 00:04 292791     /dev/zero (deleted)
40280000-40282000 -w-s 00000000 00:04 292792     /dev/zero (deleted)
40282000-40382000 rw-s 00000000 00:04 292793     /dev/zero (deleted)
40382000-40482000 r--s 00000000 00:04 292794     /dev/zero (deleted)
40482000-40582000 -w-s 00000000 00:04 292795     /dev/zero (deleted)
40582000-40782000 rw-s 00000000 00:04 292796     /dev/zero (deleted)
40782000-40982000 r--s 00000000 00:04 292797     /dev/zero (deleted)
40982000-40b82000 -w-s 00000000 00:04 292798     /dev/zero (deleted)
40b82000-40f82000 rw-s 00000000 00:04 292799     /dev/zero (deleted)
40f82000-41382000 r--s 00000000 00:04 292800     /dev/zero (deleted)
41382000-41782000 -w-s 00000000 00:04 292801     /dev/zero (deleted)
41782000-42182000 rw-s 00000000 00:04 292802     /dev/zero (deleted)
42182000-42b82000 r--s 00000000 00:04 292803     /dev/zero (deleted)
42b82000-43582000 -w-s 00000000 00:04 292804     /dev/zero (deleted)
43582000-43583000 rw-p 00000000 00:00 0 
43589000-435a3000 r-xp 00000000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a3000-435a4000 r--p 00019000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
435a4000-435a5000 rw-p 0001a000 62:00 28288      /usr/lib/gcc/i686-pc-linux-gnu/4.7.3/libgcc_s.so.1
bfce1000-bfd02000 rw-p 00000000 00:00 0 



-- 
Toralf

Re: *** Error in `trinity': double free or corruption (!prev): 0x08208e78 ***

[Dave Jones]

On Fri, Jun 13, 2014 at 07:14:16PM +0200, Toralf Förster wrote:
 
 > $ trinity --list | grep Enabled$ | grep -v AVOID | cut -f3 -d' ' | while read s; do echo; echo $s; trinity -q -q -q -c $s -N 20 -C 1; done    
 > 
 > with latest trinity git tee and latest kernel tree which exposed the syscall "modify_ldt":
 > 
 > 
 > modify_ldt
 > Trinity 1.5pre  Dave Jones <davej@redhat.com>
 > [init] Marking syscall modify_ldt (123) as to be enabled.
 > Done parsing arguments.
 > *** Error in `trinity': double free or corruption (top): 0x0815d870 ***
 > ======= Backtrace: =========
 > /lib/libc.so.6(+0x7a202)[0x400a3202]
 > /lib/libc.so.6(+0x7af80)[0x400a3f80]
 > trinity(mkcall+0x17a)[0x805b0ca]
 > trinity(child_process+0x95)[0x8054965]
 > trinity(main_loop+0x1e3)[0x80583f3]
 > trinity(main+0x252)[0x8053752]
 > /lib/libc.so.6(__libc_start_main+0xf5)[0x40045cc5]
 > trinity[0x8053cd5]

Fixed.

thanks,

	Dave