Bug 953486

Summary: Realmd crash on exit due to double free
Product: [Fedora] Fedora Reporter: Stef Walter <stefw>
Component: realmdAssignee: Stef Walter <stefw>
Status: CLOSED CURRENTRELEASE QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 19CC: ajsfedora, jhrozek, pkis, stefw, yaneti, yelley
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2013-07-09 13:27:06 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 918092    

Description Stef Walter 2013-04-18 09:53:26 UTC 
I saw this crash after joining a domain, when realmd timed out and exited.

#0  0x00007ff86d9f6819 in raise () from /lib64/libc.so.6
#1  0x00007ff86d9f7f28 in abort () from /lib64/libc.so.6
#2  0x00007ff86f4c3615 in mem_error () from /lib64/libglib-2.0.so.0
#3  0x00007ff86f50bb6b in slab_allocator_free_chunk ()
   from /lib64/libglib-2.0.so.0
#4  0x00007ff86f50be16 in magazine_cache_push_magazine ()
   from /lib64/libglib-2.0.so.0
#5  0x00007ff86f4c3ae1 in thread_memory_magazine2_unload.isra.11 ()
   from /lib64/libglib-2.0.so.0
#6  0x00007ff86f50cc58 in g_slice_free1 () from /lib64/libglib-2.0.so.0
#7  0x00007ff870165213 in config_line_free (data=<optimized out>)
    at realm-ini-config.c:114
#8  0x00007ff87016524c in reset_config_data (self=self@entry=0x7ff870937860)
    at realm-ini-config.c:253
#9  0x00007ff87016608e in realm_ini_config_finalize (obj=0x7ff870937860)
    at realm-ini-config.c:266
#10 0x00007ff86fa9837b in g_object_unref () from /lib64/libgobject-2.0.so.0
#11 0x00007ff87017353d in realm_samba_provider_finalize (obj=0x7ff8540036e0)
    at realm-samba-provider.c:191
#12 0x00007ff86fa9837b in g_object_unref () from /lib64/libgobject-2.0.so.0
#13 0x00007ff86f4edac8 in g_list_foreach () from /lib64/libglib-2.0.so.0
#14 0x00007ff86f4edaeb in g_list_free_full () from /lib64/libglib-2.0.so.0
#15 0x00007ff8701612c8 in realm_all_provider_finalize (obj=0x7ff87092b2e0)
    at realm-all-provider.c:273
#16 0x00007ff86fa9837b in g_object_unref () from /lib64/libgobject-2.0.so.0
#17 0x00007ff86f4d67e8 in g_datalist_clear () from /lib64/libglib-2.0.so.0
#18 0x00007ff86fa9837b in g_object_unref () from /lib64/libgobject-2.0.so.0
#19 0x00007ff870160494 in main (argc=1, argv=0x7fffed4eca98)
    at realm-daemon.c:543
Comment 1 Stef Walter 2013-05-13 11:03:48 UTC 
*** Bug 961459 has been marked as a duplicate of this bug. ***
Comment 2 Stef Walter 2013-05-13 20:06:02 UTC 
*** Bug 961908 has been marked as a duplicate of this bug. ***
Comment 3 Stef Walter 2013-05-27 09:46:39 UTC 
We have not seen this issue again since switching away from gslice. That's not particularly good news, and I hope that the bug is not lurking.
Comment 4 Stef Walter 2013-07-09 13:27:06 UTC 
This bug has not been seen since the above changes. Will reopen if it shows up again.