GNOME Bugzilla – Bug 642224
crash in free, ev_document_info_free
Last modified: 2011-04-11 00:33:10 UTC
Version: 2.32.0 What were you doing when the application crashed? I just closed evince after viewing a pdf file. Then evince crashed. Distribution: Gentoo Base System release 2.0.1 Gnome Release: 2.32.1 2010-12-08 (Gentoo) BugBuddy Version: 2.32.0 System: Linux 2.6.37-lh #1 SMP PREEMPT Tue Feb 8 09:06:39 CET 2011 x86_64 X Vendor: The X.Org Foundation X Vendor Release: 10904000 Selinux: No Accessibility: Disabled GTK+ Theme: Glossy Icon Theme: Gion GTK+ Modules: canberra-gtk-module, gnomesegvhandler Memory status: size: 464621568 vsize: 464621568 resident: 36691968 share: 24477696 rss: 36691968 rss_rlim: 18446744073709551615 CPU usage: start_time: 1297603604 rtime: 32 utime: 29 stime: 3 cutime:0 cstime: 0 timeout: 0 it_real_value: 0 frequency: 100 Backtrace was generated from '/usr/bin/evince' 0x00002afe2adaca4d in waitpid () from /lib/libpthread.so.0
+ Trace 225947
Thread 1 (process 12175)
Inferior 1 [process 12175] will be detached. Quit anyway? (y or n) [answered Y; input not from terminal] ----------- .xsession-errors --------------------- warning: Unable to find libthread_db matching inferior's thread library, thread debugging will not be available. warning: Unable to find libthread_db matching inferior's thread library, thread debugging will not be available. warning: the debug information found in "/usr/lib64/debug//usr/lib64/liblcms.so.1.0.19.debug" does not match "/usr/lib64/liblcms.so.1" (CRC mismatch). warning: the debug information found in "/usr/lib64/debug/usr/lib64/liblcms.so.1.0.19.debug" does not match "/usr/lib64/liblcms.so.1" (CRC mismatch). warning: Unable to find libthread_db matching inferior's thread library, thread debugging will not be available. warning: Unable to find libthread_db matching inferior's thread library, thread debugging will not be available. warning: Unable to find libthread_db matching inferior's thread library, thread debugging will not be available. --------------------------------------------------
Created attachment 180772 [details] test pdf This one makes it crash.
Downstream report: https://bugs.gentoo.org/show_bug.cgi?id=354709
Probably a duplicate of bug 638312 (but this one looks to have a better backtrace). Patch: http://git.gnome.org/browse/evince/commit/?id=f77e6cf4fd7fef49ac91d8c62b6a9a993529adb8 Should solve this per other bug comments
(In reply to comment #3) > Probably a duplicate of bug 638312 (but this one looks to have a better > backtrace). > > Patch: > http://git.gnome.org/browse/evince/commit/?id=f77e6cf4fd7fef49ac91d8c62b6a9a993529adb8 This patch doesn't help here.
justin, which version of poppler are you using?
poppler-0.16.2 cmaked with cmake -C /var/tmp/portage/app-text/poppler-0.16.2/temp/gentoo_common_config.cmake -DCMAKE_INSTALL_PREFIX=/usr -DBUILD_GTK_TESTS=OFF -DBUILD_QT4_TESTS=OFF -DBUILD_CPP_TESTS=OFF -DWITH_Qt3=OFF -DENABLE_SPLASH=ON -DENABLE_ZLIB=ON -DENABLE_abiword=ON -DENABLE_ABIWORD=ON -DENABLE_Abiword=ON -DENABLE_LIBCURL=OFF -DENABLE_CPP=ON -DENABLE_LIBOPENJPEG=OFF -DENABLE_lcms=ON -DENABLE_LCMS=ON -DENABLE_Lcms=ON -DENABLE_utils=ON -DENABLE_UTILS=ON -DENABLE_Utils=ON -DENABLE_XPDF_HEADERS=ON -DWITH_cairo=ON -DWITH_CAIRO=ON -DWITH_Cairo=ON -DWITH_GTK=ON -DWITH_GObjectIntrospection=OFF -DWITH_jpeg=ON -DWITH_JPEG=ON -DWITH_Jpeg=ON -DWITH_png=ON -DWITH_PNG=ON -DWITH_Png=ON -DWITH_qt4=ON -DWITH_QT4=ON -DWITH_Qt4=ON -DUSE_EXCEPTIONS=OFF -DCMAKE_BUILD_TYPE=Gentoo -DCMAKE_INSTALL_DO_STRIP=OFF -DCMAKE_USER_MAKE_RULES_OVERRIDE=/var/tmp/portage/app-text/poppler-0.16.2/temp/gentoo_rules.cmake /var/tmp/portage/app-text/poppler-0.16.2/work/poppler-0.16.2
As I noted in the downstream bug, the crash can also be triggered by accessing document properties in the menu.
I've noticed something strange about that pdf - part of pdfinfo output is: Creator: Microsoft Word Producer: Acrobat PDFWriter 3.0 for Windows CreationDate: D:00000101000000Z So, could it be that evince doesn't handle this seemingly invalid value gracefully ?
*** Bug 642216 has been marked as a duplicate of this bug. ***
Like Justin, I'm also using Gentoo, also using amd64, using the same versions of poppler and evince as Justin, and I get the same crashes. The patch referred to in Comment #3 fixes it for me (I think Justin forgot to run autoconf and autoheader). With the patch, I still get the following suspicious-looking compiler warning, which may indicate a separate problem: ev-poppler.cc:2083:2: warning: converting to non-pointer type ‘gboolean’ from NULL That's from this line in backends/pdf/ev-poppler.cc, pdf_document_text_get_text_layout(): g_return_val_if_fail (POPPLER_IS_PAGE (page->backend_page), NULL); Corresponding line in trunk: http://git.gnome.org/browse/evince/tree/backend/pdf/ev-poppler.cc?id=f77e6cf4fd7fef49ac91d8c62b6a9a993529adb8#n2074
@comment 10: that's probably unrelated and a trivial typo: FALSE!=NULL even if it seems it sometimes could.
For me, patch from comment 10 fixed the problem. Justin, perhaps you forgot to run autoreconf ?
*** Bug 644482 has been marked as a duplicate of this bug. ***
Looks like ArchLinux is already including: http://git.gnome.org/browse/evince/commit/?id=f77e6cf4fd7fef49ac91d8c62b6a9a993529adb8 Could it be committed to 2.32 branch also? And maybe comment #12 suggestion would also interest (not sure if that warnings are also valid for master)
Thanks for taking the time to report this bug. This particular bug has already been reported into our bug tracking system, but we are happy to tell you that the problem has already been fixed. It should be solved in the next software version. You may want to check for a software upgrade. *** This bug has been marked as a duplicate of bug 638312 ***