Bug 364850 – crash in Help: trying to read the gdb i...

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 364850 - crash in Help: trying to read the gdb i...


Summary:	crash in Help: trying to read the gdb i...


Status:	RESOLVED FIXED

Product:	yelp
Classification:	Applications
Component:	General
Version:	2.16.x
Hardware:	Other All

Importance:	High critical
Target Milestone:	---
Assigned To:	Yelp maintainers
QA Contact:	Yelp maintainers

URL:
Whiteboard:

Duplicates:	362797 363710 365167 366240 366530 374575 376712 377619 380237 385024 394388 401904 (view as bug list)
Depends on:
Blocks:

Reported:	2006-10-24 23:05 UTC by Mikael Hermansson
Modified:	2007-02-08 01:20 UTC

See Also:
GNOME target:	---
GNOME version:	2.15/2.16

Description Mikael Hermansson 2006-10-24 23:05:13 UTC

Version: 2.16.1

What were you doing when the application crashed?
trying to read the gdb info pages craches yelp.



Distribution: Ubuntu 6.10 (edgy)
Gnome Release: 2.16.1 2006-10-02 (Ubuntu)
BugBuddy Version: 2.16.0

Memory status: size: 93908992 vsize: 0 resident: 93908992 share: 0 rss: 27377664 rss_rlim: 0
CPU usage: start_time: 1161730956 rtime: 0 utime: 99 stime: 0 cutime:94 cstime: 0 timeout: 5 it_real_value: 0 frequency: 0

Backtrace was generated from '/usr/bin/yelp'

(no debugging symbols found)
Using host libthread_db library "/lib/tls/i686/cmov/libthread_db.so.1".
(no debugging symbols found)
[Thread debugging using libthread_db enabled]
[New Thread -1227700560 (LWP 10927)]
[New Thread -1285477472 (LWP 10930)]
[New Thread -1247573088 (LWP 10929)]
(no debugging symbols found)
0xffffe410 in __kernel_vsyscall ()
Setting up the environment for debugging gdb.

+ Trace 78136

Thread 1 (Thread -1227700560 (LWP 10927))

#0 __kernel_vsyscall
#1 __waitpid_nocancel
from /lib/tls/i686/cmov/libpthread.so.0
#2 gnome_gtk_module_info_get
from /usr/lib/libgnomeui-2.so.0
#3 <signal handler called>
#4 __kernel_vsyscall
#5 raise
from /lib/tls/i686/cmov/libc.so.6
#6 abort
from /lib/tls/i686/cmov/libc.so.6
#7 __fsetlocking
from /lib/tls/i686/cmov/libc.so.6
#8 free
from /lib/tls/i686/cmov/libc.so.6
#9 g_free
from /usr/lib/libglib-2.0.so.0
#10 ??
#11 ??
#12 _IO_stdin_used
#13 ??
#14 ??
#15 ??
#0 __kernel_vsyscall

Comment 1 Don Scorgie 2006-10-24 23:14:49 UTC

Okay.  Confirming the bug.  I can reproduce.

The relevant section of the full stacktrace is:

+ Trace 78137

Thread 1 (Thread -1227790672 (LWP 19063))

#0 __kernel_vsyscall
#1 raise
from /lib/tls/i686/cmov/libc.so.6
#2 abort
from /lib/tls/i686/cmov/libc.so.6
#3 __fsetlocking
from /lib/tls/i686/cmov/libc.so.6
#4 free
from /lib/tls/i686/cmov/libc.so.6
#5 IA__g_free
at gmem.c line 187
#6 info_process_text_notes
at yelp-info-parser.c line 1099
#7 parse_tree_level
at yelp-info-parser.c line 717
#8 parse_tree_level
at yelp-info-parser.c line 732
#9 yelp_info_parser_parse_tree
at yelp-info-parser.c line 763
#10 info_pager_parse
at yelp-info-pager.c line 196
#11 xslt_pager_process
at yelp-xslt-pager.c line 185
#12 process_cb
at yelp-pager.c line 268
#13 g_idle_dispatch
at gmain.c line 3926
#14 IA__g_main_context_dispatch
at gmain.c line 2045
#15 g_main_context_iterate
at gmain.c line 2677
#16 IA__g_main_loop_run
at gmain.c line 2881


I'll have a look at the problem soon, promise.

Comment 2 Don Scorgie 2006-10-24 23:16:54 UTC

*** Bug 363710 has been marked as a duplicate of this bug. ***

Comment 3 Don Scorgie 2006-10-25 09:06:20 UTC

The gdb info page seems to use a *Note style that no other info page in the world uses.  At some point, the gdb info page feel out of my computer and so I didn't get any chance to try testing it, despite having code to handle it.  This code path contained a double-free, causing the crash.  Since no other info manual uses this type of *Note (apparently), I missed this during testing.

I've removed the double free and the crash has gone away.  This will make its way into the next version of yelp (2.16.2).

Closing.  Thanks.

2006-10-25  Don Scorgie  <dscorgie@cvs.gnome.org>

	* src/yelp-info-parser.c:
	Fix double free in stupid link types only used by gdb
	info page (apparently).  Bug #364850

Comment 4 Don Scorgie 2006-10-26 09:55:54 UTC

*** Bug 365167 has been marked as a duplicate of this bug. ***

Comment 5 Don Scorgie 2006-11-05 16:50:05 UTC

*** Bug 366530 has been marked as a duplicate of this bug. ***

Comment 6 Don Scorgie 2006-11-05 16:50:21 UTC

*** Bug 366240 has been marked as a duplicate of this bug. ***

Comment 7 Don Scorgie 2006-11-14 15:36:52 UTC

*** Bug 374575 has been marked as a duplicate of this bug. ***

Comment 8 Don Scorgie 2006-11-14 15:37:13 UTC

*** Bug 362797 has been marked as a duplicate of this bug. ***

Comment 9 André Klapper 2006-11-18 23:19:34 UTC

*** Bug 376712 has been marked as a duplicate of this bug. ***

Comment 10 Don Scorgie 2006-11-21 12:07:55 UTC

*** Bug 377619 has been marked as a duplicate of this bug. ***

Comment 11 Don Scorgie 2006-12-02 11:20:41 UTC

*** Bug 380237 has been marked as a duplicate of this bug. ***

Comment 12 Bruno Boaventura 2006-12-12 23:04:41 UTC

*** Bug 385024 has been marked as a duplicate of this bug. ***

Comment 13 Christian Kirbach 2007-01-29 21:21:25 UTC

*** Bug 401904 has been marked as a duplicate of this bug. ***

Comment 14 André Klapper 2007-02-08 01:20:02 UTC

*** Bug 394388 has been marked as a duplicate of this bug. ***