==5416== Memcheck, a memory error detector ==5416== Copyright (C) 2002-2015, and GNU GPL'd, by Julian Seward et al. ==5416== Using Valgrind-3.11.0 and LibVEX; rerun with -h for copyright info ==5416== Command: /home/ofourdan/local/bin/Xwayland :2 -rootless -listen 38 -listen 39 -wm 40 -terminate ==5416== Parent PID: 5247 ==5416== ==5416== Syscall param msync(start) points to uninitialised byte(s) ==5416== at 0x97F8200: __msync_nocancel (in /usr/lib64/libpthread-2.22.so) ==5416== by 0x506EEE1: ??? (in /usr/lib64/libunwind.so.8.0.1) ==5416== by 0x50729B6: ??? (in /usr/lib64/libunwind.so.8.0.1) ==5416== by 0x5072EFD: ??? (in /usr/lib64/libunwind.so.8.0.1) ==5416== by 0x5073258: ??? (in /usr/lib64/libunwind.so.8.0.1) ==5416== by 0x506F8F0: _ULx86_64_step (in /usr/lib64/libunwind.so.8.0.1) ==5416== by 0x50703C2: ??? (in /usr/lib64/libunwind.so.8.0.1) ==5416== by 0x506E4C1: backtrace (in /usr/lib64/libunwind.so.8.0.1) ==5416== by 0x471931: OsInit (osinit.c:207) ==5416== by 0x43BE5B: dix_main (main.c:165) ==5416== by 0x9F2B57F: (below main) (in /usr/lib64/libc-2.22.so) ==5416== Address 0xffeffe000 is on thread 1's stack ==5416== in frame #7, created by backtrace (???:) ==5416== ==5416== Syscall param sendmsg(msg.msg_iov[0]) points to uninitialised byte(s) ==5416== at 0x97F8080: __sendmsg_nocancel (in /usr/lib64/libpthread-2.22.so) ==5416== by 0x62A3C10: wl_connection_flush.part.4 (connection.c:300) ==5416== by 0x62A3480: wl_display_dispatch_queue (wayland-client.c:1559) ==5416== by 0x62A379E: wl_display_roundtrip_queue (wayland-client.c:989) ==5416== by 0x42306B: xwl_screen_init (xwayland.c:599) ==5416== by 0x4385A0: AddScreen (dispatch.c:3864) ==5416== by 0x423F6B: InitOutput (xwayland.c:711) ==5416== by 0x43BF03: dix_main (main.c:204) ==5416== by 0x9F2B57F: (below main) (in /usr/lib64/libc-2.22.so) ==5416== Address 0xc69215e is 4,158 bytes inside a block of size 16,424 alloc'd ==5416== at 0x4C2A9C7: calloc (in /usr/lib64/valgrind/vgpreload_memcheck-amd64-linux.so) ==5416== by 0x62A3D21: wl_connection_create (connection.c:166) ==5416== by 0x62A3006: wl_display_connect_to_fd (wayland-client.c:848) ==5416== by 0x62A311E: wl_display_connect (wayland-client.c:900) ==5416== by 0x422FEA: xwl_screen_init (xwayland.c:579) ==5416== by 0x4385A0: AddScreen (dispatch.c:3864) ==5416== by 0x423F6B: InitOutput (xwayland.c:711) ==5416== by 0x43BF03: dix_main (main.c:204) ==5416== by 0x9F2B57F: (below main) (in /usr/lib64/libc-2.22.so) ==5416== ==5416== Invalid write of size 8 ==5416== at 0x52F1F30: ??? (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x52D63FA: ??? (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x5290B88: pixman_fill (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x4B0593: fbFill (fbfill.c:125) ==5416== by 0x49C4BF: fbPolyFillRect (fbfillrect.c:72) ==5416== by 0x48D363: glamor_poly_fill_rect_bail (glamor_rects.c:152) ==5416== by 0x48D363: glamor_poly_fill_rect (glamor_rects.c:164) ==5416== by 0x53BAD7: damagePolyFillRect (damage.c:1194) ==5416== by 0x4C1379: miPaintWindow (miexpose.c:540) ==5416== by 0x4C103D: miWindowExposures (miexpose.c:394) ==5416== by 0x4CE70F: miClearToBackground (miwindow.c:114) ==5416== by 0x580BBC: compFreeClientSubwindows (compalloc.c:441) ==5416== by 0x57C3B8: FreeCompositeClientSubwindows (compext.c:94) ==5416== Address 0x100ef420 is 0 bytes after a block of size 208 alloc'd ==5416== at 0x4C28C50: malloc (in /usr/lib64/valgrind/vgpreload_memcheck-amd64-linux.so) ==5416== by 0x454F08: AllocatePixmap (pixmap.c:119) ==5416== by 0x49F7A7: fbCreatePixmapBpp (fbpixmap.c:53) ==5416== by 0x4270CC: xwl_glamor_create_screen_resources (xwayland-glamor.c:238) ==5416== by 0x43BFAD: dix_main (main.c:225) ==5416== by 0x9F2B57F: (below main) (in /usr/lib64/libc-2.22.so) ==5416== ==5416== Invalid write of size 8 ==5416== at 0x52F1F37: ??? (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x52D63FA: ??? (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x5290B88: pixman_fill (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x4B0593: fbFill (fbfill.c:125) ==5416== by 0x49C4BF: fbPolyFillRect (fbfillrect.c:72) ==5416== by 0x48D363: glamor_poly_fill_rect_bail (glamor_rects.c:152) ==5416== by 0x48D363: glamor_poly_fill_rect (glamor_rects.c:164) ==5416== by 0x53BAD7: damagePolyFillRect (damage.c:1194) ==5416== by 0x4C1379: miPaintWindow (miexpose.c:540) ==5416== by 0x4C103D: miWindowExposures (miexpose.c:394) ==5416== by 0x4CE70F: miClearToBackground (miwindow.c:114) ==5416== by 0x580BBC: compFreeClientSubwindows (compalloc.c:441) ==5416== by 0x57C3B8: FreeCompositeClientSubwindows (compext.c:94) ==5416== Address 0x100ef430 is 16 bytes after a block of size 208 alloc'd ==5416== at 0x4C28C50: malloc (in /usr/lib64/valgrind/vgpreload_memcheck-amd64-linux.so) ==5416== by 0x454F08: AllocatePixmap (pixmap.c:119) ==5416== by 0x49F7A7: fbCreatePixmapBpp (fbpixmap.c:53) ==5416== by 0x4270CC: xwl_glamor_create_screen_resources (xwayland-glamor.c:238) ==5416== by 0x43BFAD: dix_main (main.c:225) ==5416== by 0x9F2B57F: (below main) (in /usr/lib64/libc-2.22.so) ==5416== valgrind: m_mallocfree.c:303 (get_bszB_as_is): Assertion 'bszB_lo == bszB_hi' failed. valgrind: Heap block lo/hi size mismatch: lo = 272, hi = 0. This is probably caused by your program erroneously writing past the end of a heap block and corrupting heap metadata. If you fix any invalid writes reported by Memcheck, this assertion failure will probably go away. Please try that before reporting this as a bug. host stacktrace: ==5416== at 0x38083FA8: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux) ==5416== by 0x380840C4: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux) ==5416== by 0x38084251: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux) ==5416== by 0x38091AFC: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux) ==5416== by 0x3807D663: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux) ==5416== by 0x3807BEF3: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux) ==5416== by 0x380800CA: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux) ==5416== by 0x3807B48A: ??? (in /usr/lib64/valgrind/memcheck-amd64-linux) ==5416== by 0x80A5E962C: ??? ==5416== by 0x802CB1F2F: ??? ==5416== by 0x8020083EF: ??? ==5416== by 0x5290B5F: ??? (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x8020083EF: ??? ==5416== by 0x1BFF: ??? ==5416== by 0x5BB0D: ??? ==5416== by 0x805DD0FFF: ??? ==5416== by 0x16A32: ??? sched status: running_tid=1 Thread 1: status = VgTs_Runnable (lwpid 5416) ==5416== at 0x52F1F3B: ??? (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x52D63FA: ??? (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x5290B88: pixman_fill (in /usr/lib64/libpixman-1.so.0.33.4) ==5416== by 0x4B0593: fbFill (fbfill.c:125) ==5416== by 0x49C4BF: fbPolyFillRect (fbfillrect.c:72) ==5416== by 0x48D363: glamor_poly_fill_rect_bail (glamor_rects.c:152) ==5416== by 0x48D363: glamor_poly_fill_rect (glamor_rects.c:164) ==5416== by 0x53BAD7: damagePolyFillRect (damage.c:1194) ==5416== by 0x4C1379: miPaintWindow (miexpose.c:540) ==5416== by 0x4C103D: miWindowExposures (miexpose.c:394) ==5416== by 0x4CE70F: miClearToBackground (miwindow.c:114) ==5416== by 0x580BBC: compFreeClientSubwindows (compalloc.c:441) ==5416== by 0x57C3B8: FreeCompositeClientSubwindows (compext.c:94) ==5416== by 0x45BE21: doFreeResource (resource.c:895) ==5416== by 0x45D066: FreeClientResources (resource.c:1161) ==5416== by 0x4377A1: CloseDownClient (dispatch.c:3427) ==5416== by 0x438022: Dispatch (dispatch.c:442) ==5416== by 0x43C0F2: dix_main (main.c:300) ==5416== by 0x9F2B57F: (below main) (in /usr/lib64/libc-2.22.so) Thread 2: status = VgTs_WaitSys (lwpid 5417) ==5416== at 0x97F4B10: pthread_cond_wait@@GLIBC_2.3.2 (in /usr/lib64/libpthread-2.22.so) ==5416== by 0x11F28342: cnd_wait (threads_posix.h:159) ==5416== by 0x11F28342: pipe_semaphore_wait (os_thread.h:259) ==5416== by 0x11F28342: thread_function (lp_rast.c:805) ==5416== by 0x11F281D6: impl_thrd_routine (threads_posix.h:87) ==5416== by 0x97EF609: start_thread (in /usr/lib64/libpthread-2.22.so) ==5416== by 0xA00DA7C: clone (in /usr/lib64/libc-2.22.so) Thread 3: status = VgTs_WaitSys (lwpid 5418) ==5416== at 0x97F4B10: pthread_cond_wait@@GLIBC_2.3.2 (in /usr/lib64/libpthread-2.22.so) ==5416== by 0x11F28342: cnd_wait (threads_posix.h:159) ==5416== by 0x11F28342: pipe_semaphore_wait (os_thread.h:259) ==5416== by 0x11F28342: thread_function (lp_rast.c:805) ==5416== by 0x11F281D6: impl_thrd_routine (threads_posix.h:87) ==5416== by 0x97EF609: start_thread (in /usr/lib64/libpthread-2.22.so) ==5416== by 0xA00DA7C: clone (in /usr/lib64/libc-2.22.so) Thread 4: status = VgTs_WaitSys (lwpid 5419) ==5416== at 0x97F4B10: pthread_cond_wait@@GLIBC_2.3.2 (in /usr/lib64/libpthread-2.22.so) ==5416== by 0x11F28342: cnd_wait (threads_posix.h:159) ==5416== by 0x11F28342: pipe_semaphore_wait (os_thread.h:259) ==5416== by 0x11F28342: thread_function (lp_rast.c:805) ==5416== by 0x11F281D6: impl_thrd_routine (threads_posix.h:87) ==5416== by 0x97EF609: start_thread (in /usr/lib64/libpthread-2.22.so) ==5416== by 0xA00DA7C: clone (in /usr/lib64/libc-2.22.so) Thread 5: status = VgTs_WaitSys (lwpid 5420) ==5416== at 0x97F4B10: pthread_cond_wait@@GLIBC_2.3.2 (in /usr/lib64/libpthread-2.22.so) ==5416== by 0x11F28342: cnd_wait (threads_posix.h:159) ==5416== by 0x11F28342: pipe_semaphore_wait (os_thread.h:259) ==5416== by 0x11F28342: thread_function (lp_rast.c:805) ==5416== by 0x11F281D6: impl_thrd_routine (threads_posix.h:87) ==5416== by 0x97EF609: start_thread (in /usr/lib64/libpthread-2.22.so) ==5416== by 0xA00DA7C: clone (in /usr/lib64/libc-2.22.so) Note: see also the FAQ in the source distribution. It contains workarounds to several common problems. In particular, if Valgrind aborted or crashed after identifying problems in your program, there's a good chance that fixing those problems will prevent Valgrind aborting or crashing, especially if it happened in m_mallocfree.c. If that doesn't help, please report this bug to: www.valgrind.org In the bug report, send all the above text, the valgrind version, and what OS and version you are using. Thanks.