[xml] Segfault in xmlDocDumpMemory with efence

[Dirk Morris <dmorris metavize com>]

I get a segfault in xmlDocDumpMemory when using electric fence.
(linux 2.6.2)

I've been using this same code for a while with no problems on Debian 
stable:

Good config:
~ # dpkg -l | grep ' libxml2 | libc6 | gcc '                [dmorris @ 
gobbles]
ii  gcc            2.95.4-14      The GNU C compiler.
ii  libc6          2.2.5-11.5     GNU C Library: Shared libraries and 
Timezone
ii  libxml2        2.4.19-4       GNOME XML library

But when I moved to Debian testing I start getting these seqfaults

Bad config:
~ # dpkg -l | grep ' libxml2 | libc6 | gcc '                  [dmorris @ 
timmy]
ii  gcc            3.3.2-2        The GNU C compiler
ii  libc6          2.3.2.ds1-11   GNU C Library: Shared libraries and 
Timezone
ii  libxml2        2.6.5-1        GNOME XML library


The only related bug report I saw was the following:
http://bugzilla.gnome.org/show_bug.cgi?id=69625

which seems to be a windows only thing.

Here is the stack at the time of the sigsegv:

(gdb) where
#0  0x4010b5df in memalign () from /usr/lib/libefence.so.0
#1  0x4010bc4d in malloc () from /usr/lib/libefence.so.0
#2  0x4005f635 in xmlBufferCreate () from /usr/lib/libxml2.so.2
#3  0x400666fe in xmlAllocOutputBuffer () from /usr/lib/libxml2.so.2
#4  0x400624d3 in xmlDocDumpFormatMemoryEnc () from /usr/lib/libxml2.so.2
#5  0x40062609 in xmlDocDumpMemory () from /usr/lib/libxml2.so.2
#6  0x0805c7ab in mnp_request_tostr (req=0x40317fb8) at 
src/common/request.c:366
#7  0x08061a5f in _ru_send_request_lock (sock=10, req=0x40317fb8, 
lock=0x402e3f40, id=103) at src/common/requtil.c:170

Any ideas what is happening?
Without efence, everything works as expected, but I like to use it for 
developement.
Let me know if anymore information would be useful.

-Dirk

Also, I can file a bug if this isnt a known problem.