Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-4045331

Segv in malloc



    • Subcomponent:
    • Resolved In Build:
    • CPU:
    • OS:
      solaris_2.4, solaris_2.5.1


       Waiting to be notified:
                  "stderr Watcher"
               java.lang.ProcessInputStream@EE315810/EE479890 (key=0xee315810): unowned
              Waiting to be notified:
                  "stdout Watcher"
               sun.awt.AWTFinalizer@EE320730/EE393900 (key=0xee320730): unowned
              Waiting to be notified:
               java.io.BufferedInputStream@EE2F0228/EE46B538 (key=0xee2f0228): monitor owner edcc0de0: "New Agent input"
               sun.awt.ScreenUpdater@EE30B590/EE369AA8 (key=0xee30b590): unowned
              Waiting to be notified:
                  "Screen Updater"
               sun.awt.motif.MToolkit@EE307D78/EE357268 (key=0xee307d78): monitor owner ef030de0: "AWT-EventQueue-0"
              Waiting to enter:
              Waiting to be notified:
      Registered Monitor Dump:
          Thread queue lock: unowned
          Name and type hash table lock: unowned
          String intern lock: unowned
          JNI global reference lock: unowned
          BinClass lock: unowned
          Class loading lock: unowned
          Java stack lock: unowned
          Code rewrite lock: unowned
          Heap lock: unowned
          Has finalization queue lock: unowned
          Finalize me queue lock: unowned
              Waiting to be notified:
                  "Finalizer thread"
          Monitor IO lock: unowned
          Child death monitor: unowned
              Waiting to be notified:
                  "process reaper"
          Event monitor: unowned
          I/O monitor: unowned
          Alarm monitor: unowned
              Waiting to be notified:
          Sbrk lock: unowned
          Monitor cache expansion lock: unowned
          Monitor registry: monitor owner ef030de0: "AWT-EventQueue-0"
      Thread Alarm Q:
          sys_thread_t 0xedcf0de0 [Timeout in 88 ms]
          sys_thread_t 0xedd20de0 [Timeout in 88 ms]
          sys_thread_t 0xef340de0 [Timeout in 203 ms]
      Abort (core dumped)
      [anand.palaniswamy@Eng 1997-04-05]

      I've clubbed (4045331, 4040737, 4041821, 4037809) here. They seem to be
      related (all happen from inside AWT).


      BugID: 4045331

      I was using pce to edit a file which I'd just checked out via JWS when java dumped core.

      The core file is

      (it was /set/hotjava/hotjava1/kern/JWS/src/sun/jws/build/core.041597)

      I don't know how to reproduce the problem. However,
      I thought someone might investigate to see if there is enough information to
      shoot this bug.

      pinnacle% dbx /set/dist/sparc-S2/JDK1.1A/bin/sparc/green_threads/java core
      Reading symbolic information for java
      core file header read successfully
      Reading symbolic information for rtld /usr/lib/ld.so.1
      Reading symbolic information for libjava.so
      Reading symbolic information for libm.so.1
      Reading symbolic information for libdl.so.1
      Reading symbolic information for libX11.so.4
      Reading symbolic information for libsocket.so.1
      Reading symbolic information for libnsl.so.1
      Reading symbolic information for libresolv.so.1
      Reading symbolic information for libc.so.1
      Reading symbolic information for libXext.so.0
      Reading symbolic information for libw.so.1
      Reading symbolic information for libintl.so.1
      Reading symbolic information for libmp.so.1
      Reading symbolic information for libawt.so
      Reading symbolic information for libXm.so.3
      Reading symbolic information for libXt.so.4
      Reading symbolic information for libnet.so
      Reading symbolic information for nss_nis.so.1
      program terminated by signal ABRT (Abort)
      (dbx) where
      =>[1] _lwp_kill(0x0, 0x6, 0x7d, 0xef771f14, 0x13, 0x0), at 0xef4b98ec
        [2] sysAbort(0x0, 0xedc61000, 0xedc60398, 0xb, 0x0, 0x10000), at 0xef74ebf8
        ---- called from signal handler with signal 11 (SIGSEGV) ------
        [3] realfree(), at 0xef4cb92c
        [4] cleanfree(0x0, 0xef5159e0, 0xef5159e0, 0xef515a60, 0x0, 0xef5159e0), at 0xef4cc1cc
        [5] _malloc_unlocked(0x20, 0xfc0d5ae8, 0xedc90904, 0x78727300, 0xfc0d5a58, 0x7f000000), at 0xef4cb31c
        [6] malloc(0x20, 0x0, 0x0, 0xfc0d5c64, 0xfc0d5c08, 0x4), at 0xef4cb214
        [7] XtMalloc(0x20, 0xef079211, 0x7fffffff, 0x23, 0x73, 0x4), at 0xef04c4d8
        [8] _XtVaToArgList(0x3cbc90, 0xedc608e8, 0x4, 0xedc6089c, 0x0, 0x0), at 0xef0758fc
        [9] XtVaSetValues(0x3cbc90, 0xef23ec18, 0x0, 0xef23eb80, 0x149, 0xef079733), at 0xef0749e4
        [10] sun_awt_motif_MScrollbarPeer_setValues(0xee3299d0, 0xc3, 0x23, 0x0, 0x149, 0xef2e5400), at 0xef2a9a88
        [11] Java_sun_awt_motif_MScrollbarPeer_setValues_stub(0x518964, 0xedc60ca4, 0xef779870, 0xef771eec, 0x3bb7a812, 0x12), at 0xef2c4ff0
        [12] invokeNativeMethod(0x51893c, 0x3cd948, 0x518964, 0xedc60ca4, 0xef714b5c, 0xee322dc8), at 0xef714ef0
        [13] finish_invokevirtual(0x240798, 0xedc60ca4, 0x518964, 0x518924, 0x23e9f8, 0x51893c), at 0xef7592e0
        [14] do_execute_java_method_vararg(0xedc60ca4, 0xef777049, 0x0, 0x0, 0x0, 0x518520), at 0xef7247d8
        [15] execute_java_dynamic_method(0xedc60ca4, 0xee2ffda8, 0xef777044, 0xef777048, 0xef779800, 0xf5e700b8), at 0xef723e7c
        [16] ThreadRT0(0xee2ffda8, 0xef777048, 0x0, 0xfc0d5c64, 0xfc0d5c08, 0x4), at 0xef744204
        [17] start_func(0xef760400, 0xee2ffda8, 0xef7441ac, 0x0, 0x0, 0x0), at 0xef757aa0


      BugID: 4040737

      I was using Java Workshop which is running on JDK 1.1 when the VM
      dumped core on me. The core file can be found in ~evan/cores/core-java.3.

      Here is the dbx stack trace:
      =>[1] _lwp_kill(0x0, 0x6, 0x0, 0xef771f14, 0x33, 0x0), at 0xef4b98ec
        [2] sysAbort(0x0, 0xedfc1000, 0xedfc0188, 0xb, 0x0, 0x10000), at 0xef74ebf8
        ---- called from signal handler with signal 11 (SIGSEGV) ------
        [3] HandleExposeEvent(), at 0xef2c0368
        [4] awt_canvas_handleEvent(0x6d1808, 0xee2850f8, 0xedfc0780, 0x0, 0xedfc05f7, 0x0), at 0xef2c1354
        [5] DispatchEvent(0xedfc0780, 0x6d1808, 0x8000, 0x0, 0x0, 0xffffffff), at 0xef055b7c
        [6] DecideToDispatch(0xedfc0780, 0xfd644, 0x8000, 0x0, 0x6d1808, 0x0), at 0xef056224
        [7] XtDispatchEvent(0xedfc0780, 0x0, 0xe97b0, 0x2, 0x2, 0xfd3f0), at 0xef056408
        [8] XtAppProcessEvent(0xfd3f0, 0x0, 0xfd5bc, 0xfd3fc, 0xfd5b8, 0x1), at 0xef05ed1c
        [9] awt_MToolkit_loop(0x1, 0xef2e56b4, 0xef2d9440, 0xef2e5634, 0xef2a5400, 0x0), at 0xef2a592c
        [10] sun_awt_motif_MToolkit_run(0xef2e56b4, 0xef2d9450, 0xef771fc4, 0x8, 0x1, 0x3b8c1f), at 0xef2a59c8
        [11] Java_sun_awt_motif_MToolkit_run_stub(0x10ca18, 0xedfc0ca4, 0x41, 0xedfc0ca4, 0x601b8, 0x5fde8), at 0xef2c4250
        [12] invokeNativeMethod(0x10c9f0, 0x101f28, 0x10ca18, 0xedfc0ca4, 0xef714b5c, 0xee3000a0), at 0xef714ef0
        [13] finish_invokevirtual(0x61dd3, 0xedfc0ca4, 0x10ca18, 0x10c9ec, 0x5fde8, 0x10c9f0), at 0xef7592e0
        [14] do_execute_java_method_vararg(0xedfc0ca4, 0xef777049, 0x0, 0x0, 0x0, 0x10c9b0), at 0xef7247d8
        [15] execute_java_dynamic_method(0xedfc0ca4, 0xee307e10, 0xef777044, 0xef777048, 0xef779800, 0xf6030020), at 0xef723e7c
        [16] ThreadRT0(0xee307e10, 0xef777048, 0x22d80, 0xedff0de0, 0x3bb79341, 0x1), at 0xef744204
        [17] start_func(0xef760400, 0xee307e10, 0xef7441ac, 0x0, 0x0, 0x0), at 0xef757aa0
      (dbx) quit


      BugID: 4041821

      I was running Java Workshop on JDK 1.1 and using it to debug
      another instance of Java Workshop when the debuggee VM segv'd.
      I have moved the core file to ~/cores/core-java.4. Here is
      the dbx stack trace:

      (dbx) w
      =>[1] strlen(0x0, 0xf5eb8050, 0x1, 0x7efefeff, 0x81010100, 0xef51353c), at 0xef4a3db0
        [2] format_string(0xef04f9d0, 0xf5eb8050, 0x1, 0x0, 0x3ff, 0x3ff), at 0xef750a08
        [3] jio_vsnprintf(0xef51176d, 0x5e, 0xef772e84, 0xef04fa88, 0xef78dc68, 0xef772e86), at 0xef7514f4
        [4] jio_snprintf(0xef78dc68, 0x400, 0xef772e84, 0xf5eb8050, 0xedcf038c, 0xef04fe20), at 0xef751740
        [5] decode_si_code(0xb, 0xef04fe20, 0xef78d510, 0x2, 0x0, 0x0), at 0xef766134
        [6] signalHandlerPanic(0xef04fe20, 0xef513a38, 0xef04fc60, 0xb, 0x0, 0x10000), at 0xef766414
        ---- called from signal handler with signal 11 (SIGSEGV) ------
        [7] realfree(), at 0xef4cb92c
        [8] _malloc_unlocked(0x60, 0x2, 0xedbf0274, 0x1000a8, 0x333b2037, 0xedbf02dc), at 0xef4cb494
        [9] malloc(0x60, 0x2894e, 0x333b2037, 0x28927, 0x12, 0x0), at 0xef4cb214
        [10] awt_copyXEvent(0xef0501c0, 0xef181290, 0x0, 0x170aa0, 0x176fa8, 0xef10c374), at 0xef180bd8
        [11] awt_canvas_handleEvent(0xef199800, 0xee2fb240, 0xef0501c0, 0x6839c0, 0xef05015f, 0x1), at 0xef18190c
        [12] dispatchToWidget(0xef0501c0, 0xef0501c0, 0x746748, 0x19a560, 0x0, 0x1), at 0xef1657ac
        [13] awt_MToolkit_loop(0x1, 0xef1a56b4, 0xef199440, 0xef1a5634, 0xef165400, 0x0), at 0xef165904
        [14] sun_awt_motif_MToolkit_run(0xef1a56b4, 0xef199450, 0xef784bec, 0x18, 0x3, 0x3b8c25), at 0xef1659c8
        [15] Java_sun_awt_motif_MToolkit_run_stub(0x1c90d8, 0xef050ca4, 0xee300000, 0xef050ca4, 0xef050bb4, 0xef050bbc), at 0xef184250
        [16] invokeNativeMethod(0x1c90d8, 0x1c0860, 0x1, 0xef050ca4, 0x1c90b0, 0xef78e400), at 0xef71f370
        [17] ExecuteJava(0xef050cb4, 0xef050ca4, 0x1c90d4, 0x1c90d8, 0x61ec3, 0x1c90b0), at 0xef76244c
        [18] do_execute_java_method_vararg(0xef050ca4, 0xef78a605, 0x0, 0x0, 0x0, 0x1c9070), at 0xef72ef4c
        [19] execute_java_dynamic_method(0xef050ca4, 0xee309400, 0xef78a600, 0xef78a604, 0xef78d800, 0xf5fbccd0), at 0xef72e58c
        [20] ThreadRT0(0xee309400, 0xef78a604, 0x22cd8, 0xef080de0, 0x3bb7a909, 0x9), at 0xef74ed78
        [21] start_func(0xef772c00, 0xee309400, 0xef74ecf4, 0x0, 0x0, 0x0), at 0xef76dba8


      BugID: 4037809

      I was running Java Workshop on JDK 1.1 when the underlying java
      dumped core on me. I have moved the core file to ~evan/cores/core-java.1

      Here is the dbx stack trace:
      (dbx) w
      =>[1] _lwp_kill(0x0, 0x6, 0x0, 0xef771e94, 0x18, 0x0), at 0xef4b98ec
        [2] sysAbort(0x0, 0xef031000, 0xef030430, 0xb, 0x0, 0x10000), at 0xef74eb70
        ---- called from signal handler with signal 11 (SIGSEGV) ------
        [3] t_delete(), at 0xef4cbd18
        [4] realfree(0xedc90960, 0x0, 0xef7797f0, 0xedc90904, 0xedc9090c, 0x57), at 0xef4cb950
        [5] cleanfree(0x0, 0xef5159e0, 0xef5159e0, 0xef515a60, 0x0, 0xef5159e8), at 0xef4cc1cc
        [6] _malloc_unlocked(0x20, 0xef77a000, 0x535938, 0xfc084c64, 0xfc084c08, 0x60), at 0xef4cb31c
        [7] malloc(0x20, 0x1, 0xef7797f0, 0xef771e6c, 0x3bb79341, 0x1), at 0xef4cb214
        [8] calloc(0x1, 0x20, 0xffffffff, 0x0, 0x0, 0x20), at 0xef4ba93c
        [9] sun_awt_motif_X11Graphics_createFromComponent(0xee2f2da8, 0xee32bdf0, 0xef2e5400, 0xef779730, 0x1, 0x0), at 0xef2afadc
        [10] Java_sun_awt_motif_X11Graphics_createFromComponent_stub(0x1061f8, 0xef030ca4, 0xef771800, 0xef771e6c, 0x3bb7937d, 0x1d), at 0xef2c3c3c
        [11] invokeNativeMethod(0x1061d0, 0x19cd98, 0x1061f8, 0xef030ca4, 0xef714adc, 0x19baf8), at 0xef714e70
        [12] finish_invokevirtual(0x19e026, 0xef030ca4, 0x1061f8, 0x1061c8, 0x19baf8, 0x1061d0), at 0xef759260
        [13] do_execute_java_method_vararg(0xef030ca4, 0xef776fc9, 0x0, 0x0, 0x0, 0x106080), at 0xef724758
        [14] execute_java_dynamic_method(0xef030ca4, 0xee307dd8, 0xef776fc4, 0xef776fc8, 0xef779400, 0xf5fd7480), at 0xef723dfc
        [15] ThreadRT0(0xee307dd8, 0xef776fc8, 0x0, 0xfc084c64, 0xfc084c08, 0x4), at 0xef74417c
        [16] start_func(0xef760400, 0xee307dd8, 0xef744124, 0x0, 0x0, 0x0), at 0xef757a18

      Here is the trace output from java:
      SIGSEGV 11* segmentation violation
          si_signo [11]: SIGSEGV 11* segmentation violation
          si_errno [0]: Error 0
          si_code [1]: SEGV_ACCERR [addr: 0x10]

              stackbase=EF031000, stackpointer=EF0307C0

      Full thread dump:
          "New Agent input" (TID:0xee2f01a0, sys_thread_t:0xedcc0de0, state:R) prio=5
          "stderr Watcher" (TID:0xee313ae0, sys_thread_t:0xedcf0de0, state:CW) prio=5
          "stdout Watcher" (TID:0xee313b28, sys_thread_t:0xedd20de0, state:CW) prio=5
          "Waiter" (TID:0xee313b90, sys_thread_t:0xedf90de0, state:CW) prio=5
          "stderr reader pid=426" (TID:0xee313e80, sys_thread_t:0xedd50de0, state:R) prio=5
          "stdout reader pid=426" (TID:0xee313ef0, sys_thread_t:0xeded0de0, state:R) prio=5
          "process reaper" (TID:0xee2ee7a0, sys_thread_t:0xedf00de0, state:CW) prio=5
          "Page Draw 0" (TID:0xee2ee8d0, sys_thread_t:0xedf30de0, state:S) prio=5
          "ThreadedQueue-5" (TID:0xee321c98, sys_thread_t:0xedd80de0, state:S) prio=5
          "ThreadedQueue-4" (TID:0xee3220a8, sys_thread_t:0xeddb0de0, state:S) prio=5
          "ThreadedQueue-3" (TID:0xee322330, sys_thread_t:0xedde0de0, state:S) prio=5
          "ThreadedQueue-2" (TID:0xee322758, sys_thread_t:0xede10de0, state:S) prio=5
          "ThreadedQueue-1" (TID:0xee313e90, sys_thread_t:0xede40de0, state:S) prio=5
          "ThreadedQueue-0" (TID:0xee314ff8, sys_thread_t:0xede70de0, state:S) prio=5
          "AWT-Finalizer" (TID:0xee320730, sys_thread_t:0xedea0de0, state:CW) prio=9
          "Screen Updater" (TID:0xee30b590, sys_thread_t:0xedf60de0, state:CW) prio=4
          "AWT-Motif" (TID:0xee307e10, sys_thread_t:0xedfc0de0, state:MW) prio=5
          "AWT-Input" (TID:0xee307df0, sys_thread_t:0xedff0de0, state:CW) prio=5
          "AWT-EventQueue-0" (TID:0xee307dd8, sys_thread_t:0xef030de0, state:R) prio=5 *current thread*
          "Finalizer thread" (TID:0xee300220, sys_thread_t:0xef310de0, state:CW) prio=1
          "Async Garbage Collector" (TID:0xee3001d8, sys_thread_t:0xef340de0, state:CW) prio=1
          "Idle thread" (TID:0xee300190, sys_thread_t:0xef370de0, state:R) prio=0
          "Clock" (TID:0xee3000d0, sys_thread_t:0xef430de0, state:CW) prio=12
          "main" (TID:0xee3000a8, sys_thread_t:0x64ed8, state:S) prio=5
      Monitor Cache Dump:
               unknown key (key=0xef513dc0): monitor owner ef030de0: "AWT-EventQueue-0"
               unknown key (key=0xef340de0): unowned
              Waiting to be notified:
                  "Async Garbage Collector"
               java.lang.UNIXProcess@EE315B30/EE4795C8 (key=0xee315b30): unowned
              Waiting to be notified:
               java.lang.ProcessInputStream@EE315680/EE479D18 (key=0xee315680): unowned


          Issue Links



              apalanissunw Anand Palaniswamy (Inactive)
              duke J. Duke (Inactive)
              0 Vote for this issue
              1 Start watching this issue