GNOME Bugzilla – Bug 467791
crash in html_map_add_shape (map=0x0) at htmlmap.c:49
Last modified: 2008-02-26 14:24:59 UTC
What were you doing when the application crashed? Deleting a mail message and then reading a message from nova-online-h@franz.wgbh.org Distribution: openSUSE 10.2 (X86-64) Gnome Release: 2.16.1 2006-11-28 (SUSE) BugBuddy Version: 2.16.0 Memory status: size: 787431424 vsize: 787431424 resident: 116404224 share: 24645632 rss: 141049856 rss_rlim: -774895616 CPU usage: start_time: 1187272855 rtime: 23701 utime: 22210 stime: 1491 cutime:120 cstime: 59 timeout: 0 it_real_value: 0 frequency: 100 Backtrace was generated from '/opt/gnome/bin/evolution-2.8' (no debugging symbols found) Using host libthread_db library "/lib64/libthread_db.so.1". (no debugging symbols found) [Thread debugging using libthread_db enabled] [New Thread 47754835161824 (LWP 14174)] [New Thread 1225075008 (LWP 15690)] [New Thread 1191504192 (LWP 14723)] [New Thread 1157933376 (LWP 14203)] [New Thread 1149540672 (LWP 14202)] [New Thread 1141147968 (LWP 14200)] [New Thread 1140881728 (LWP 14199)] [New Thread 1132489024 (LWP 14198)] [New Thread 1124096320 (LWP 14193)] [New Thread 1115703616 (LWP 14192)] [New Thread 1098918208 (LWP 14188)] [New Thread 1090525504 (LWP 14186)] [New Thread 1082132800 (LWP 14185)] 0x00002b6ec7666c5f in waitpid () from /lib64/libpthread.so.0
+ Trace 156012
Thread 1 (Thread 47754835161824 (LWP 14174))
Created attachment 93871 [details] bad-email This is the email that caused the crash. Whenever I select this email in evolution it crashes.
*** Bug 441262 has been marked as a duplicate of this bug. ***
ho jon, the email also crashes my evolution 2.11.5 here (i should fix my setup to provide a useful stacktrace, sigh). could you please install some debugging packages [1], start the application as normal, and reproduce the crash, if possible? once bug-buddy pops up, you can find the stacktrace in the details, now containing way more information. please copy that stacktrace and paste it as a comment here. thanks in advance for helping to fix this! [1] debugging packages for gtkhtml, evolution, evolution-data-server, gtk, and glib (as far as those packages are provided by your distribution). More details can be found here: http://live.gnome.org/GettingTraces
I've got the evolution debuginfo files (I even built the evolution package myself this time so that gpilot would work): >rpm -qa | grep evolution evolution-data-server-devel-1.8.2-11 evolution-sharp-debuginfo-0.12.0-5 evolution-exchange-debuginfo-2.8.2-4 evolution-debuginfo-2.8.2-7.1 evolution-devel-2.8.2-7.1 evolution-sharp-0.12.0-5 evolution-data-server-1.8.2-11 evolution-2.8.2-7.1 evolution-webcal-2.8.0-26 evolution-exchange-2.8.2-5 evolution-data-server-32bit-1.8.2-11 libopensync-plugin-evolution2-debuginfo-0.20-9 evolution-webcal-debuginfo-2.8.0-26 libopensync-plugin-evolution2-0.20-9 evolution-data-server-debuginfo-1.8.2-5 evolution-pilot-2.8.2-7.1 I added some more debug packages, I'll try again shortly.
Here's my second try: Distribution: openSUSE 10.2 (X86-64) Gnome Release: 2.16.1 2006-11-28 (SUSE) BugBuddy Version: 2.16.0 Memory status: size: 540831744 vsize: 540831744 resident: 17707008 share: 21229568 rss: 38936576 rss_rlim: 1737231360 CPU usage: start_time: 1187441890 rtime: 460 utime: 434 stime: 26 cutime:0 cstime: 0 timeout: 0 it_real_value: 0 frequency: 100 Backtrace was generated from '/opt/gnome/bin/evolution-2.8' Using host libthread_db library "/lib64/libthread_db.so.1". [Thread debugging using libthread_db enabled] [New Thread 47718487985376 (LWP 31390)] [New Thread 1124362560 (LWP 31441)] [New Thread 1124096320 (LWP 31440)] [New Thread 1115703616 (LWP 31439)] [New Thread 1107310912 (LWP 31417)] [New Thread 1098918208 (LWP 31416)] [New Thread 1090525504 (LWP 31410)] [New Thread 1082132800 (LWP 31404)] 0x00002b665110dc5f in waitpid () from /lib64/libpthread.so.0
+ Trace 156130
Thread 1 (Thread 47718487985376 (LWP 31390))
Ok, so I see that my evolution-data-server package has a debuginfo package with it, but it's the wrong one. If this is a problem, let me know and I can rebuild it from source as well. There is an active bug with SUSE on this. https://bugzilla.novell.com/show_bug.cgi?id=233122
perfect trace *and* an example message, thanks a lot!
*** Bug 492314 has been marked as a duplicate of this bug. ***
*** Bug 492324 has been marked as a duplicate of this bug. ***
bug 467791 on evo 2.21.5: Program received signal SIGSEGV, Segmentation fault. [Switching to Thread -1209100608 (LWP 3017)] 0x0050d4ff in html_map_add_shape (map=0x0, shape=0xa5430e0) at htmlmap.c:49 49 g_ptr_array_add (map->shapes, shape); (gdb) thread apply all bt [...]
+ Trace 183344
Thread 1 (Thread -1209100608 (LWP 3017))
Created attachment 101738 [details] [review] patch to workaround broken html messages this fix works for me by avoiding the crash and displaying the message, but a cleaner approach may be more appropriate.
Andre, I think, just commit this and leave the bug open to fix the main issue. (Commit to stable/head)
workaround committed to svn trunk (revision 8669). the workaround will be included in the next development version (2.21.5) and the upcoming stable version 2.22.0.
Created attachment 105927 [details] [review] proposed gtkhtml patch for gtkhtml; Andre is a coder, wow :) Andre did it almost right, the only thing was it was leaking. There was misplaced attribute in the "A" element in the message, which caused evo to crash.
Nice Milan. Commit it.
Committed to trunk. Committed revision 8757.