After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 524121 - Copy in task preview closes evolution
Copy in task preview closes evolution
Status: RESOLVED FIXED
Product: evolution
Classification: Applications
Component: Tasks
2.22.x (obsolete)
Other All
: Normal critical
: ---
Assigned To: Milan Crha
Evolution QA team
: 528721 (view as bug list)
Depends on:
Blocks:
 
 
Reported: 2008-03-24 13:38 UTC by Jo-Erlend Schinstad
Modified: 2008-05-13 08:02 UTC
See Also:
GNOME target: ---
GNOME version: 2.21/2.22


Attachments
proposed evo patch (821 bytes, patch)
2008-04-23 12:00 UTC, Milan Crha
committed Details | Review

Description Jo-Erlend Schinstad 2008-03-24 13:38:02 UTC
Steps to reproduce:
1. Create a new task with some text in the body.
2. Save and close the task editor. 
3. View the task in the preview and select some text
4. Copy the text, either using Edit > Copy or Ctrl+c
5. Notice how evolution just closes.


Stack trace:


Other information:
Please excuse my reporting this as a crasher bug. I don't think Evolution really crashes, but simply shuts down. At least, I don't get any indication that it crashes. The effect on the user is identical, though, so I thought it would be appropriate to handle it the same way.
Comment 1 Akhil Laddha 2008-03-27 14:13:34 UTC
It's a double free crash.

Gdb traces of evolution process

*** glibc detected *** /home/build/opt/gnome2/bin/evolution: double free or corruption (fasttop): 0x0900e4c8 ***

Program received signal SIGINT, Interrupt.
[Switching to Thread 0xb64c66c0 (LWP 21439)]
0xffffe410 in __kernel_vsyscall ()
(gdb) thread apply all bt

Thread 1 (Thread 0xb64c66c0 (LWP 21439))

  • #0 __kernel_vsyscall
  • #1 __lll_mutex_lock_wait
    from /lib/libc.so.6
  • #2 _L_lock_5152
    from /lib/libc.so.6
  • #3 *__GI___libc_free
    at malloc.c line 3620
  • #4 _dl_map_object_deps
    at dl-deps.c line 495
  • #5 dl_open_worker
    at dl-open.c line 330
  • #6 _dl_catch_error
    at dl-error.c line 178
  • #7 _dl_open
    at dl-open.c line 596
  • #8 do_dlopen
    at dl-libc.c line 86
  • #9 _dl_catch_error
    at dl-error.c line 178
  • #10 dlerror_run
    at dl-libc.c line 47
  • #11 *__GI___libc_dlopen_mode
    at dl-libc.c line 160
  • #12 init
    at ../sysdeps/i386/backtrace.c line 43
  • #13 pthread_once
    from /lib/libpthread.so.0
  • #14 *__GI___backtrace
    at ../sysdeps/i386/backtrace.c line 116
  • #15 __libc_message
    at ../sysdeps/unix/sysv/linux/libc_fatal.c line 150
  • #16 malloc_printerr
  • #17 *__GI___libc_free
    at malloc.c line 3622
  • #18 g_free
    at gmem.c line 190
  • #19 copy_row_cb
    at e-calendar-table.c line 884
  • #20 e_bit_array_foreach
    at e-bit-array.c line 197
  • #21 esma_foreach
    at e-selection-model-array.c line 216
  • #22 e_selection_model_foreach
    at e-selection-model.c line 266
  • #23 e_table_selected_row_foreach
    at e-table.c line 2022
  • #24 e_calendar_table_copy_clipboard
    at e-calendar-table.c line 906
  • #25 tasks_control_copy_cmd
    at tasks-control.c line 398
  • #26 marshal_VOID__USER_DATA_STRING
    at bonobo-ui-component.c line 221
  • #27 g_closure_invoke
    at gclosure.c line 490
  • #28 bonobo_closure_invoke_va_list
    at bonobo-types.c line 404
  • #29 bonobo_closure_invoke
    at bonobo-types.c line 467
  • #30 impl_Bonobo_UIComponent_execVerb
    at bonobo-ui-component.c line 158
  • #31 _ORBIT_skel_small_Bonobo_UIComponent_execVerb
    at Bonobo-common.c line 332
  • #32 ORBit_c_stub_invoke
  • #33 Bonobo_UIComponent_execVerb
    at Bonobo-stubs.c line 544
  • #34 impl_emit_verb_on
    at bonobo-ui-engine.c line 1533
  • #35 g_cclosure_marshal_VOID__POINTER
    at gmarshal.c line 601
  • #36 g_type_class_meta_marshal
    at gclosure.c line 567
  • #37 g_closure_invoke
    at gclosure.c line 490
  • #38 signal_emit_unlocked_R
    at gsignal.c line 2478
  • #39 g_signal_emit_valist
    at gsignal.c line 2199
  • #40 g_signal_emit
    at gsignal.c line 2243
  • #41 bonobo_ui_engine_emit_verb_on_w
    at bonobo-ui-engine.c line 3040
  • #42 exec_verb_cb
    at bonobo-ui-sync-menu.c line 473
  • #43 g_cclosure_marshal_VOID__VOID
    at gmarshal.c line 77
  • #44 g_closure_invoke
    at gclosure.c line 490
  • #45 signal_emit_unlocked_R
    at gsignal.c line 2440
  • #46 g_signal_emit_valist
    at gsignal.c line 2199
  • #47 g_signal_emit
    at gsignal.c line 2243
  • #48 closure_accel_activate
    at gtkwidget.c line 4089
  • #49 g_closure_invoke
    at gclosure.c line 490
  • #50 signal_emit_unlocked_R
    at gsignal.c line 2440
  • #51 g_signal_emit_valist
    at gsignal.c line 2209
  • #52 g_signal_emit
    at gsignal.c line 2243
  • #53 gtk_accel_group_activate
    at gtkaccelgroup.c line 739
  • #54 gtk_accel_groups_activate
    at gtkaccelgroup.c line 777
  • #55 gtk_window_activate_key
    at gtkwindow.c line 8018
  • #56 gtk_window_key_press_event
    at gtkwindow.c line 4963
  • #57 bonobo_window_key_press_event
    at bonobo-window.c line 265
  • #58 _gtk_marshal_BOOLEAN__BOXED
    at gtkmarshalers.c line 84
  • #59 g_type_class_meta_marshal
    at gclosure.c line 567
  • #60 g_closure_invoke
    at gclosure.c line 490
  • #61 signal_emit_unlocked_R
    at gsignal.c line 2478
  • #62 g_signal_emit_valist
    at gsignal.c line 2209
  • #63 g_signal_emit
    at gsignal.c line 2243
  • #64 gtk_widget_event_internal
    at gtkwidget.c line 4676
  • #65 gtk_propagate_event
    at gtkmain.c line 2310
  • #66 gtk_main_do_event
    at gtkmain.c line 1556
  • #67 gdk_event_dispatch
    at gdkevents-x11.c line 2365
  • #68 g_main_context_dispatch
    at gmain.c line 2003
  • #69 g_main_context_iterate
    at gmain.c line 2636
  • #70 g_main_loop_run
    at gmain.c line 2844
  • #71 bonobo_main
    at bonobo-main.c line 311
  • #72 main
    at main.c line 782

Comment 2 Akhil Laddha 2008-03-27 14:19:46 UTC
Valgrind traces 

==21975== 
==21975== Invalid free() / delete / delete[]
==21975==    at 0x402243F: free (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==21975==    by 0x586F300: g_free (gmem.c:190)
==21975==    by 0x63C1A40: copy_row_cb (e-calendar-table.c:884)
==21975==    by 0x4194F29: e_bit_array_foreach (e-bit-array.c:197)
==21975==    by 0x408A072: esma_foreach (e-selection-model-array.c:216)
==21975==    by 0x408A514: e_selection_model_foreach (e-selection-model.c:266)
==21975==    by 0x4135459: e_table_selected_row_foreach (e-table.c:2022)
==21975==    by 0x63C188F: e_calendar_table_copy_clipboard (e-calendar-table.c:906)
==21975==    by 0x642AFE5: tasks_control_copy_cmd (tasks-control.c:398)
==21975==    by 0x49347C4: marshal_VOID__USER_DATA_STRING (bonobo-ui-component.c:221)
==21975==    by 0x57FAA31: g_closure_invoke (gclosure.c:490)
==21975==    by 0x4D0020F: bonobo_closure_invoke_va_list (bonobo-types.c:404)
==21975==  Address 0x67B3FA0 is 0 bytes inside a block of size 44 free'd
==21975==    at 0x402243F: free (in /usr/lib/valgrind/x86-linux/vgpreload_memcheck.so)
==21975==    by 0x4525011: icalcomponent_free (icalcomponent.c:270)
==21975==    by 0x63C1A38: copy_row_cb (e-calendar-table.c:882)
==21975==    by 0x4194F29: e_bit_array_foreach (e-bit-array.c:197)
==21975==    by 0x408A072: esma_foreach (e-selection-model-array.c:216)
==21975==    by 0x408A514: e_selection_model_foreach (e-selection-model.c:266)
==21975==    by 0x4135459: e_table_selected_row_foreach (e-table.c:2022)
==21975==    by 0x63C188F: e_calendar_table_copy_clipboard (e-calendar-table.c:906)
==21975==    by 0x642AFE5: tasks_control_copy_cmd (tasks-control.c:398)
==21975==    by 0x49347C4: marshal_VOID__USER_DATA_STRING (bonobo-ui-component.c:221)
==21975==    by 0x57FAA31: g_closure_invoke (gclosure.c:490)
==21975==    by 0x4D0020F: bonobo_closure_invoke_va_list (bonobo-types.c:404)
Comment 3 Milan Crha 2008-04-23 12:00:08 UTC
Created attachment 109760 [details] [review]
proposed evo patch

for evolution;

Fixing typo from patch for bug #516408.
Comment 4 Srinivasa Ragavan 2008-04-28 03:50:04 UTC
Commit it
Comment 5 Milan Crha 2008-04-28 08:47:37 UTC
Committed to trunk. Committed revision 35427.
Committed to gnome-2-22. Committed revision 35428.
Comment 6 Akhil Laddha 2008-05-13 08:02:02 UTC
*** Bug 528721 has been marked as a duplicate of this bug. ***