After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 428173 - evolution-2.10 crashed with SIGSEGV [on SmartMail]
evolution-2.10 crashed with SIGSEGV [on SmartMail]
Status: RESOLVED DUPLICATE of bug 495086
Product: evolution-data-server
Classification: Platform
Component: Mailer
1.10.x (obsolete)
Other Linux
: Normal critical
: ---
Assigned To: evolution-mail-maintainers
Evolution QA team
Depends on:
Blocks:
 
 
Reported: 2007-04-10 08:42 UTC by Sebastien Bacher
Modified: 2008-03-01 12:24 UTC
See Also:
GNOME target: ---
GNOME version: 2.17/2.18


Description Sebastien Bacher 2007-04-10 08:42:56 UTC 
The bug has been opened on https://bugs.launchpad.net/ubuntu/+source/evolution/+bug/104780

"Binary package hint: evolution

It crashed, whyen I tried to open INBOX IMAP folder. The server runs Smartmail and it seems that evolution has more than one problem with smartmail. sometimes, it stops receiving the messages, sometimes, it can't open folder with e-mail.
...
Package: evolution 2.10.0-0ubuntu2
...
.

+ Trace 126513

Thread 1 (process 7137)

  • #0 imap_body_decode
    at camel-imap-utils.c line 882
  • #1 imap_parse_body
    at camel-imap-utils.c line 1056
  • #2 imap_get_message
    at camel-imap-folder.c line 2122
  • #3 camel_folder_get_message
    at camel-folder.c line 1070
  • #4 get_message_get
    at mail-ops.c line 1753
  • #5 mail_msg_received
    at mail-mt.c line 582
  • #6 thread_dispatch
    at e-msgport.c line 1005
  • #7 start_thread
    from /lib/tls/i686/cmov/libpthread.so.0
  • #8 lseek64
    from /lib/tls/i686/cmov/libc.so.6 






Comment 1


Sebastien Bacher





          2007-04-10 08:45:15 UTC
        



corresponding code line: "		if (*inptr++ != ')') {", it doesn't like the inptr = 0x0






Comment 2


Jonathon Jongsma





          2007-11-23 18:08:32 UTC
        



I can reproduce this crash as well using google gmail IMAP server on ubuntu gutsy.  I don't have all of the dbg packages for camel installed, but the stack trace looks the same but with a little less information.






Comment 3


Gabriel de Perthuis





          2008-01-08 22:10:34 UTC
        



I used the evo source here:
dget -x http://archive.ubuntu.com/ubuntu/pool/main/e/evolution-data-server/evolution-data-server_1.12.0-0ubuntu5.dsc

Anyway, it seems the parser calls imap_skip_list expecting a list to be there, when in fact the string contains "\"MIXED\" )", imap_skip_list returns a NULL, damage done.

(gdb) frame 0




+
Trace
    184594






    

  • 
#0
imap_body_decode

    
                at camel-imap-utils.c
                  line
                  980

    

    • 







975                                     goto exception;
976
977                             /* envelope */
978                             imap_skip_list (&inptr);
979
980                             if (*inptr++ != ' ')
981                                     goto exception;
982
983                             /* body */
984                             if (!(child = imap_body_decode (&inptr, NULL, folder, cis)))
(gdb) info locals
inptr = 0x0
child = <value optimized out>
type = 0xa89e40 "7bit"
subtype = 0xc57d90 "��G\001"
id = 0x0
ctype = (CamelContentType *) 0xe91f00
description = 0x0
encoding = 0xa89e40 "7bit"
len = 4
size = 110442
p = 0x147ed97 " 0) \"MIXED\")"
(gdb) info args
in = (const char **) 0x42803fc0
ci = (CamelMessageContentInfo *) 0xc51a90
folder = (CamelFolder *) 0xb0ff50
cis = (GPtrArray *) 0xb0cca0
(gdb) print *in
$13 = 0x147ed3f "(\"MESSAGE\" \"RFC822\" (\"name\" \"Consignes .... Commun.eml\") NIL NIL \"7bit\" 110442 0) \"MIXED\")"
(gdb) up 3
(gdb) print body
$15 = 0x147ecf0 "((\"TEXT\" \"PLAIN\" (\"charset\" \"ISO-8859-1\" \"format\" \"flowed\") NIL NIL \"7bit\" 1 0)(\"MESSAGE\" \"RFC822\" (\"name\" \"Consignes .... Commun.eml\") NIL NIL \"7bit\" 110442 0) \"MIXED\")"







Comment 4


Milan Crha





          2008-02-05 15:50:46 UTC
        



This has been fixed in bug #495086 and is included in evolution-data-server since 1.12.3. Can you check with this version, please?






Comment 5


André Klapper





          2008-03-01 12:24:01 UTC
        



in deed, duplicate of bug 495086.

*** This bug has been marked as a duplicate of 495086 ***