GNOME Bugzilla – Bug 554478
crash in rsvg_parse_path_do_cmd at rsvg-path.c:144
Last modified: 2011-09-06 11:56:18 UTC
Version: 2.22.3 What were you doing when the application crashed? Opening a Sharepoint 2003 site Distribution: Gentoo Base System release 2.0.0 Gnome Release: 2.22.3 2008-07-01 (Gentoo) BugBuddy Version: 2.22.0 System: Linux 2.6.26-hardened-r1 #2 SMP PREEMPT Thu Sep 4 11:18:04 CDT 2008 i686 X Vendor: The X.Org Foundation X Vendor Release: 10500000 Selinux: Enforcing Accessibility: Disabled GTK+ Theme: Unity Icon Theme: gnome-alternative Memory status: size: 323534848 vsize: 323534848 resident: 192962560 share: 25247744 rss: 192962560 rss_rlim: 4294967295 CPU usage: start_time: 1222796386 rtime: 28129 utime: 25451 stime: 2678 cutime:0 cstime: 0 timeout: 0 it_real_value: 0 frequency: 100 Backtrace was generated from '/usr/bin/epiphany' [Thread debugging using libthread_db enabled] [New Thread 0xb6a27710 (LWP 10525)] [New Thread 0xb1f5cb90 (LWP 1006)] [New Thread 0xb175bb90 (LWP 11591)] [New Thread 0xb28cdb90 (LWP 11589)] [New Thread 0xb38cfb90 (LWP 11588)] [New Thread 0xb30ceb90 (LWP 11587)] [New Thread 0xb56dab90 (LWP 11369)] 0xb7f5a422 in __kernel_vsyscall ()
+ Trace 207580
Thread 1 (Thread 0xb6a27710 (LWP 10525))
*** Bug 554462 has been marked as a duplicate of this bug. ***
This appears to be a crash in RSVG. Changing product.
*** Bug 558736 has been marked as a duplicate of this bug. ***
I am having difficulties to reproduce this bug. Would it be possible to get a recipe that always leads to crash? Thanks.
I'm not sure - open an ssl site with epiphany (possibly in indicating of not valid cert)? Open of window for HTTP Auth (in Ep.)? Open of popup window? That was the situations the error happen to me frequently.
The trace says it's crashing on trying to render the "gtk-dialog-authentication" icon from the user's icon theme, gnome-alternative. However that icon theme (if it's the one I found via google, http://art.gnome.org/themes/icon/1376 ) it has no such icon, so it's the one from the fallback, so we don't know which one it is...
Created attachment 124720 [details] gtk-dialog-authentication.svg The "gnome alternative" icon set falls back to "gnome", which provides "gtk-dialog-authentication.svg". The SVG in question containes the path "M 28,46 A 8,2 0 1 1 12,46 A 8,2 0 1 1 28,46 z", which judging from the stack trace seems to be involved in the crash. Attaching the suspicious file, I've not been able to reproduce the crash though.
The info on top of the stack trace indicates gnome 2.22.3 being used. Trying to narrow things down I have built each revision in the librsvg 2.2x series before a change to rsvg-path.c was made (the stack trace indicates the crash happened there). Not a single revision would exhibit the faulty behaviour, so probably the attached "gtk-dialog-authentication.svg" is not to blame.
It might be helpful: I have no problems with 2.22.2 - so the bug is betwean 2.22.2 and 2.22.3
Reproduced in epiphany 2.24.3 and librsvg 2.26.0 Distribution: Gentoo Base System release 2.0.0 Gnome Release: 2.26.0 2009-03-21 (Gentoo) BugBuddy Version: 2.26.0 System: Linux 2.6.29-zen0 #15 Tue Mar 24 22:46:18 CET 2009 i686 X Vendor: The X.Org Foundation X Vendor Release: 10600000 Selinux: No Accessibility: Disabled GTK+ Theme: Clearlooks Icon Theme: Tango GTK+ Modules: canberra-gtk-module, gnomebreakpad Memory status: size: 407900160 vsize: 407900160 resident: 154910720 share: 23810048 rss: 154910720 rss_rlim: 18446744073709551615 CPU usage: start_time: 1237933566 rtime: 81709 utime: 74769 stime: 6940 cutime:0 cstime: 0 timeout: 0 it_real_value: 0 frequency: 100 Backtrace was generated from '/usr/bin/epiphany' Really redefine built-in command "frame"? (y or n) [answered Y; input not from terminal] Really redefine built-in command "thread"? (y or n) [answered Y; input not from terminal] Really redefine built-in command "start"? (y or n) [answered Y; input not from terminal] [Thread debugging using libthread_db enabled] [New Thread 0xb6b16710 (LWP 5924)] [New Thread 0xa67a5b90 (LWP 18673)] [New Thread 0xad0cdb90 (LWP 18672)] [New Thread 0xad8ceb90 (LWP 5937)] [New Thread 0xae254b90 (LWP 5936)] [New Thread 0xaea55b90 (LWP 5935)] [New Thread 0xafa57b90 (LWP 5931)] [New Thread 0xb5748b90 (LWP 5927)] _______________________________________________________________________________ eax:FFFFFE00 ebx:000048FB ecx:BF80FECC edx:00000000 eflags:00000293 esi:00000000 edi:BF80FECC esp:BF80FDE4 ebp:BF80FEE8 eip:B8008424 cs:0073 ds:007B es:007B fs:0000 gs:0033 ss:007B o d I t S z A p C [007B:BF80FDE4]---------------------------------------------------------[stack] BF80FE14 : 00 00 00 00 00 00 00 00 - 00 00 00 00 00 00 00 00 ................ BF80FE04 : CC FE 80 BF 00 00 00 00 - 01 00 00 00 00 00 00 00 ................ BF80FDF4 : F4 CF 55 B7 00 00 00 00 - B0 ED 4F B7 FB 48 00 00 ..U.......O..H.. BF80FDE4 : E8 FE 80 BF 00 00 00 00 - CC FE 80 BF CB 4E 5A B7 .............NZ. [007B:BF80FECC]---------------------------------------------------------[ data] BF80FECC : 68 65 59 B7 FB 48 00 00 - FF FF FF FF FF FF FF FF heY..H.......... BF80FEDC : F4 CF 55 B7 00 00 00 00 - 38 00 81 BF 38 FF 80 BF ..U.....8...8... [0073:B8008424]---------------------------------------------------------[ code] 0xb8008424 <__kernel_vsyscall+16>: pop %ebp 0xb8008425 <__kernel_vsyscall+17>: pop %edx 0xb8008426 <__kernel_vsyscall+18>: pop %ecx 0xb8008427 <__kernel_vsyscall+19>: ret 0xb8008428: add %ch,(%esi) 0xb800842a: jae 0xb8008494 ------------------------------------------------------------------------------ 0xb8008424 in __kernel_vsyscall ()
+ Trace 213849
----------- .xsession-errors (51 sec old) --------------------- [Error 18:20:39.302] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.303] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.304] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.305] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.306] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.306] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.308] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.309] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.309] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.313] Could not load desktop item: libgnome-desktop-2.so.7 [Error 18:20:39.313] Could not load desktop item: libgnome-desktop-2.so.7 warning: .dynamic section for "//usr//lib/opengl/xorg-x11/lib/libGL.so.1" is not at the expected address warning: difference appears to be caused by prelink, adjusting expectations --------------------------------------------------
Any chance someone can attach the "gtk-dialog-authentication" and "gnome-web-browser" icons from their respective themes?
Created attachment 131360 [details] gtk-dialog-authentication.svg Tango theme has neither of those files. Here's from gnome.
I don't have gnome-web-browser in gnome as well.
(In reply to comment #13) > I don't have gnome-web-browser in gnome as well. > I meant gnome-icon-theme
The gtk-dialog-authentication.svg works for me, like it did for Rob. Line 145 (which is where the alleged crash happens in 2.26.0) is: if(rx < 0)rx = -rx; How that could crash, I don't know. But then, the functions don't seem to line up:
+ Trace 213904
is really rsvg_parse_path_data, and calls rsvg_path_end_of_number
(In reply to comment #15) > The gtk-dialog-authentication.svg works for me, like it did for Rob. Line 145 > (which is where the alleged crash happens in 2.26.0) is: > > if(rx < 0)rx = -rx; > > How that could crash, I don't know. But then, the functions don't seem to line > up: > > #7 0xb03d7aee in rsvg_parse_path_do_cmd () at rsvg-path.c:145 > > is really rsvg_path_arc > > #8 0xb03d915b in rsvg_parse_path () at rsvg-path.c:526 > > is really rsvg_parse_path_data, and calls rsvg_path_end_of_number > At least first two facts matches the source I have on disk. Bug of gdb? Anyway I rebuild the epiphany and librsvg. May be it will help.
After rebuild it seems to be fixed. Strange...
Old version, unreproducible, and no reliable testcase. Let's call this INCOMPLETE.