GNOME Bugzilla – Bug 313685
Latest Pango [1.10.0] crashes evolution 2.2
Last modified: 2005-08-17 23:02:40 UTC
Steps to reproduce: I don't seem to be able to easily reproduce this. Stack trace: Backtrace was generated from '/usr/bin/evolution-2.2' Using host libthread_db library "/lib/tls/libthread_db.so.1". [Thread debugging using libthread_db enabled] [New Thread 1096615296 (LWP 1471)] [New Thread 1160268720 (LWP 2222)] [Thread debugging using libthread_db enabled] [New Thread 1096615296 (LWP 1471)] [New Thread 1160268720 (LWP 2222)] [Thread debugging using libthread_db enabled] [New Thread 1096615296 (LWP 1471)] [New Thread 1160268720 (LWP 2222)] [New Thread 1156406192 (LWP 1561)] [New Thread 1154304944 (LWP 1517)] [New Thread 1113000880 (LWP 1477)] [New Thread 1110506416 (LWP 1476)] [New Thread 1107577776 (LWP 1474)] [New Thread 1105476528 (LWP 1473)] 0xffffe410 in ?? ()
+ Trace 62481
Thread 8 (Thread 1105476528 (LWP 1473))
Other information: We patch pango with the attached patches - it may not make a difference, but an important point to note.
Created attachment 50826 [details] [review] broken test patch
Created attachment 50827 [details] [review] fullwidth space patch
Created attachment 50828 [details] [review] pua patch
I usually see the crash on chinese spam messages fwiw. freetype2-devel-2.1.7-53.5 freetype2-2.1.7-53.5
If it happens again (gdb) frame 11 (gdb) p *(PangoCairoFcFont *)font Would be useful
(gdb) p *(PangoCairoFcFont *)font $1 = {font = {parent_instance = {parent_instance = {g_type_instance = { g_class = 0x860b320}, ref_count = 22, qdata = 0x0}}, font_pattern = 0x8958320, fontmap = 0x85aa4d8, context_key = 0x8955938, matrix = {xx = 1, xy = 0, yx = 0, yy = 1, x0 = 0, y0 = 0}, description = 0x8957698, metrics_by_lang = 0xa9af798, is_hinted = 1, is_transformed = 0}, font_face = 0xa96bbb8, scaled_font = 0xa7f1ab8, font_matrix = {xx = 13.333333333333334, yx = 0, xy = 0, yy = 13.333333333333334, x0 = 0, y0 = 0}, ctm = {xx = 1, yx = 0, xy = 0, yy = 1, x0 = 0, y0 = 0}, options = 0x89580d0, glyph_info = 0x8954fc0}
Full trace -
+ Trace 62509
(gdb) p *face $4 = {num_faces = 177894672, face_index = 1, face_flags = 177887256, style_flags = 177211240, num_glyphs = 1, family_name = 0xa900658 "Courier", style_name = 0xa9a57f0 "WEIGHT_NAME", num_fixed_sizes = 1, available_sizes = 0xa98c860, num_charmaps = 177894888, charmaps = 0x1, generic = {data = 0xa96bee0, finalizer = 0xa98d0b8}, bbox = {xMin = 1, yMin = 177651440, xMax = 177227776, yMax = 1}, units_per_EM = 48896, ascender = 2710, descender = -16624, height = 2710, max_advance_width = 0, max_advance_height = 0, underline_position = 12, underline_thickness = 0, glyph = 0xa96bf20, size = 0x0, charmap = 0x78, driver = 0x88c9dd8, memory = 0x0, stream = 0x4b, sizes_list = {head = 0x88c9cc0, tail = 0x0}, autohint = {data = 0x4b, finalizer = 0xa96bf30}, extensions = 0x1, internal = 0xa96bf40}
Also seeing a lots of - Gdk-CRITICAL **: gdk_drawable_get_colormap: assertion `GDK_IS_DRAWABLE (drawable)' failed Gdk-WARNING **: gdk_window_set_back_pixmap(): pixmap must have a colormap type warnings with various applications. Probably is a separate issue.
I've applied eviction cache patch from the Fedora packages and the crash doesn't appear to be happening. Will attach the patch below.
Created attachment 50878 [details] [review] Fedora eviction cache patch