[SERVER-33050] Shell SIGSEGV in mongo::mozjs::CursorHandleInfo::finalize Created: 01/Feb/18  Updated: 07/May/18  Resolved: 03/May/18

Status: Closed
Project: Core Server
Component/s: Shell
Affects Version/s: 3.4.7
Fix Version/s: None

Type: Bug Priority: Major - P3
Reporter: Vick Mena (Inactive) Assignee: Mira Carey
Resolution: Duplicate Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Attachments: File d_core.thread1.18605.Site1-R01-SG01.1516630502.gz    
Issue Links:
Duplicate
duplicates SERVER-28830 cursorHandleFromId should verify that... Closed
Related
Operating System: ALL
Steps To Reproduce:

kill pid

Sprint: Platforms 2018-03-26, Platforms 2018-05-07
Participants:
Case:
Linked BF Score: 43

 Description   

Issued a SIGTERM to the shell during execution of a test against a replica and the shell core dumps as follows

Reading symbols from /usr/bin/mongo...(no debugging symbols found)...done.
[New LWP 18609]
[New LWP 18607]
[New LWP 18611]
[New LWP 18605]
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
Core was generated by `mongo --ssl --sslCAFile /opt/ampli/cfg/ssl/.ca.crt --sslPEMKeyFile /opt/ampli/c'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0  0x00007f59da1541fb in raise () from /lib/x86_64-linux-gnu/libpthread.so.0
(gdb) bt
#0  0x00007f59da1541fb in raise () from /lib/x86_64-linux-gnu/libpthread.so.0
#1  0x000055f0c37dd124 in mongo::(anonymous namespace)::endProcessWithSignal(int) ()
#2  0x000055f0c37ddad3 in mongo::(anonymous namespace)::abruptQuitWithAddrSignal(int, siginfo_t*, void*) ()
#3  0x000055f0c3a43761 in AsmJSFaultHandler(int, siginfo_t*, void*) ()
#4  <signal handler called>
#5  0x000055f0c36bbb79 in mongo::mozjs::CursorHandleInfo::finalize(JSFreeOp*, JSObject*) ()
#6  0x000055f0c3d138b2 in unsigned long js::gc::Arena::finalize<JSObject>(js::FreeOp*, js::gc::AllocKind, unsigned long) ()
#7  0x000055f0c3cf6799 in FinalizeArenas(js::FreeOp*, js::gc::ArenaHeader**, js::gc::SortedArenaList&, js::gc::AllocKind, js::SliceBudget&, js::gc::ArenaLists::KeepArenasEnum) ()
#8  0x000055f0c3d13baa in js::gc::ArenaLists::forceFinalizeNow(js::FreeOp*, js::gc::AllocKind, js::gc::ArenaLists::KeepArenasEnum, js::gc::ArenaHeader**) ()
#9  0x000055f0c3cf9991 in js::gc::ArenaLists::queueForegroundObjectsForSweep(js::FreeOp*) ()
#10 0x000055f0c3d02869 in js::gc::GCRuntime::beginSweepingZoneGroup() ()
#11 0x000055f0c3d05b31 in js::gc::GCRuntime::beginSweepPhase(bool) ()
#12 0x000055f0c3d092af in js::gc::GCRuntime::incrementalCollectSlice(js::SliceBudget&, JS::gcreason::Reason) ()
#13 0x000055f0c3d09f19 in js::gc::GCRuntime::gcCycle(bool, js::SliceBudget&, JS::gcreason::Reason) ()
#14 0x000055f0c3d0a302 in js::gc::GCRuntime::collect(bool, js::SliceBudget, JS::gcreason::Reason) ()
#15 0x000055f0c3d0a60d in js::gc::GCRuntime::gc(JSGCInvocationKind, JS::gcreason::Reason) ()
#16 0x000055f0c3cc1e1c in js::DestroyContext(JSContext*, js::DestroyContextMode) ()
#17 0x000055f0c36c9231 in mongo::mozjs::MozJSImplScope::~MozJSImplScope() ()
#18 0x000055f0c36c9351 in mongo::mozjs::MozJSImplScope::~MozJSImplScope() ()
#19 0x000055f0c36fb614 in mongo::mozjs::MozJSProxyScope::implThread(void*) ()
#20 0x000055f0c36b06dc in nspr::Thread::ThreadRoutine(void*) ()
#21 0x000055f0c405f1f0 in execute_native_thread_routine ()
#22 0x00007f59da14c184 in start_thread () from /lib/x86_64-linux-gnu/libpthread.so.0
#23 0x00007f59d9e7937d in clone () from /lib/x86_64-linux-gnu/libc.so.6



 Comments   
Comment by Mira Carey [ 03/May/18 ]

Fixed inĀ SERVER-28830

Generated at Thu Feb 08 04:32:07 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.