Bug 111793 - double free or corruption (fasttop) in nouveau_bo_del
Summary: double free or corruption (fasttop) in nouveau_bo_del
Status: NEW
Alias: None
Product: xorg
Classification: Unclassified
Component: Driver/nouveau (show other bugs)
Version: unspecified
Hardware: x86-64 (AMD64) Linux (All)
: not set not set
Assignee: Nouveau Project
QA Contact: Xorg Project Team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2019-09-23 23:55 UTC by Yury Semikhatsky
Modified: 2019-09-24 01:44 UTC (History)
0 users

See Also:
i915 platform:
i915 features:


Attachments
assertion in nouveau_pushbuf_data at ../nouveau/pushbuf.c:723 (436.47 KB, text/plain)
2019-09-23 23:55 UTC, Yury Semikhatsky
no flags Details
dmesg output (137.05 KB, text/plain)
2019-09-23 23:55 UTC, Yury Semikhatsky
no flags Details
double free or corruption (fasttop) (442.40 KB, text/plain)
2019-09-23 23:58 UTC, Yury Semikhatsky
no flags Details

Note You need to log in before you can comment on or make changes to this bug.
Description Yury Semikhatsky 2019-09-23 23:55:07 UTC
Created attachment 145484 [details]
assertion in nouveau_pushbuf_data at ../nouveau/pushbuf.c:723

This happens all the time when I'm trying to load cnn.com in WebKit minibrowser. More details about the scenario can be found at https://bugs.webkit.org/show_bug.cgi?id=200437

There is either segfault or assertion failure everytime I load the site. Attaching a couple of core dumps to the bug.
Comment 1 Yury Semikhatsky 2019-09-23 23:55:33 UTC
Created attachment 145485 [details]
dmesg output
Comment 2 Yury Semikhatsky 2019-09-23 23:58:25 UTC
Created attachment 145486 [details]
double free or corruption (fasttop)
Comment 3 Karol Herbst 2019-09-24 00:33:06 UTC
this is probably a multithreading bug inside mesa. We are aware of the situation, just fixing it might take a while as it requires bigger rework. We are on it though. Just limited in time sadly.
Comment 4 Yury Semikhatsky 2019-09-24 01:44:03 UTC
Thanks for your response. Let me know if you need help with testing the fix with the WebKit scenarios.


Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.