Began experiencing frequent Evolution segfaults, on the password dialog window. Suspect issue with uninitialized buffer for /usr/share/icons/gnome/scalable/status/dialog-password.svg Reproducible: Always Steps to Reproduce: 1. Open Evolution 2. Cause a password dialog window to open 3. Immediate crash Ran an strace and discovered read from filehandle 41 was not returning a length. Looking back through trace log, discovered that 41 was supposed to be /usr/share/icons/gnome/scalable/status/dialog-password.svg. File exists, is 31109 bytes long, and opens in other SVG viewers. Removing the file alleviates the segfault. Re-emerged x11-themes/gnome-icon-theme-2.24.0 to get a 'known good' copy of file....crash returns.
Could you please share the version of Evolution that you are using, output from emerge --info, a copy of the SVG file, and, if possible, a backtrace [1]? [1] http://www.gentoo.org/proj/en/qa/backtraces.xml
mail-client/evolution-2.24.5 ----- emerge --info Portage 2.1.6.7 (default/linux/x86/2008.0/desktop, gcc-4.1.2, glibc-2.8_p20080602-r1, 2.6.27-gentoo-r8 i686) ================================================================= System uname: Linux-2.6.27-gentoo-r8-i686-Intel-R-_Pentium-R-_4_CPU_3.40GHz-with-glibc2.0 Timestamp of tree: Sat, 25 Apr 2009 02:00:01 +0000 distcc 3.0 i686-pc-linux-gnu [disabled] app-shells/bash: 3.2_p39 dev-java/java-config: 1.3.7-r1, 2.1.7 dev-lang/python: 2.4.4-r13, 2.5.4-r2 dev-python/pycrypto: 2.0.1-r6 dev-util/cmake: 2.6.2-r1 sys-apps/baselayout: 1.12.11.1 sys-apps/sandbox: 1.6-r2 sys-devel/autoconf: 2.13, 2.63 sys-devel/automake: 1.4_p6, 1.5, 1.7.9-r1, 1.8.5-r3, 1.9.6-r2, 1.10.2 sys-devel/binutils: 2.18-r3 sys-devel/gcc-config: 1.4.0-r4 sys-devel/libtool: 1.5.26 virtual/os-headers: 2.6.23-r3 ACCEPT_KEYWORDS="x86" CBUILD="i686-pc-linux-gnu" CFLAGS="-march=prescott -O2 -pipe -ftracer -frename-registers -ftree-vectorize" CHOST="i686-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/kde/3.5/env /usr/kde/3.5/share/config /usr/kde/3.5/shutdown /usr/share/config /var/lib/hsqldb" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/env.d/java/ /etc/fonts/fonts.conf /etc/gconf /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo /etc/texmf/language.dat.d /etc/texmf/language.def.d /etc/texmf/updmap.d /etc/texmf/web2c /etc/udev/rules.d" CXXFLAGS="-march=prescott -O2 -pipe -ftracer -frename-registers -ftree-vectorize" DISTDIR="/usr/portage/distfiles" FEATURES="ccache distlocks fixpackages parallel-fetch protect-owned sandbox sfperms splitdebug strict unmerge-orphans userfetch" GENTOO_MIRRORS="http://distfiles.gentoo.org http://distro.ibiblio.org/pub/linux/distributions/gentoo" LANG="en_US" LC_ALL="en_US" LDFLAGS="-Wl,-O1 -Wl,--sort-common -Wl,--warn-once" MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="/usr/local/portage" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="X a52 aac acl acpi aim alsa aotuv arts asf audiofile berkdb bluetooth branding bzip2 cairo cdparanoia cdr cli cracklib crypt css cups dbus dga dri dts dvd dvdr dvdread eds emboss encode esd evo fam ffmpeg firefox flac foomaticdb fortran gdbm gif glitz gphoto2 gpm gstreamer gtk hal iconv imlib ipod ipv6 isdnlog java jpeg kde ldap libnotify lirc mad midi mikmod mjpeg mmx mp3 mp4 mpeg mplayer mudflap musicbrainz mysql ncurses nls nodrm nptl nptlonly ogg oggvorbis opengl openmp pam pcre pda pdf perl png ppds pppd python qt qt3 qt3support qt4 quicktime readline reflection scanner sdl session speex spell spl sse sse2 ssl startup-notification svg sysfs tcpd theora threads tiff timidity truetype udev unicode usb userlocales v4l visualizations vorbis wifi win32codecs win34codecs x86 xine xml xorg xulrunner xv xvid yahoo zlib" ALSA_CARDS="emu10k1" ALSA_PCM_PLUGINS="adpcm alaw asym copy dmix dshare dsnoop empty extplug file hooks iec958 ioplug ladspa lfloat linear meter mmap_emul mulaw multi null plug rate route share shm softvol" APACHE2_MODULES="actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" ELIBC="glibc" INPUT_DEVICES="keyboard mouse evdev" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" LIRC_DEVICES="hauppauge" USERLAND="GNU" VIDEO_CARDS="i810 nvidia vesa fbdev" Unset: CPPFLAGS, CTARGET, EMERGE_DEFAULT_OPTS, FFLAGS, INSTALL_MASK, LINGUAS, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS
Created attachment 189742 [details] SVG in question I think this file is fine...it opens in other SVG viewers and Evolution crashes no matter what actual graphic is contained in this file.
Created attachment 189753 [details] backtrace of crash
This _might_ actually be related to bug 239992
Could you sync and try with librsvg-2.22.3-r1? It contains the patch in the aforementioned bug.
rebuilt with librsvg-2.22.3-r1 as requested. crash perists (excerpt from strace) open("/usr/share/icons/gnome/scalable/status/dialog-password.svg", O_RDONLY|O_LARGEFILE) = 16 fstat64(16, {st_mode=S_IFREG|0644, st_size=31109, ...}) = 0 read(16, "<?xml version=\"1.0\" encoding=\"UTF"..., 65536) = 31109 ... read(16, ""..., 65536) = 0 --- SIGSEGV (Segmentation fault) @ 0 (0) ---
I'm shooting in the dark here, but do you see the crash if you open the file with rsvg-view?
I get a segfault when attempting to open that file with rsvg-view
gdb rsvg-view (gdb) run /usr/share/icons/gnome/scalable/status/dialog-password.svg Starting program: /usr/bin/rsvg-view /usr/share/icons/gnome/scalable/status/dialog-password.svg (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) (no debugging symbols found) [Thread debugging using libthread_db enabled] [New Thread 0xb62c76f0 (LWP 9485)] Program received signal SIGSEGV, Segmentation fault. [Switching to Thread 0xb62c76f0 (LWP 9485)] 0xb7b084b9 in rsvg_bbox_init () from /usr/lib/librsvg-2.so.2 (gdb) bt #0 0xb7b084b9 in rsvg_bbox_init () from /usr/lib/librsvg-2.so.2 #1 0xb7b0ea14 in rsvg_handle_render_cairo_sub () from /usr/lib/librsvg-2.so.2 #2 0xb7b0ef34 in rsvg_handle_get_pixbuf_sub () from /usr/lib/librsvg-2.so.2 #3 0x0804abea in pixbuf_from_data_with_size_data () #4 0x0804c0b0 in main ()
Color me confused, but I don't see how that path could fail. Could you maybe rebuild librsvg without optimizations and get that backtrace again? I'd like to see what missing calls are there, to get the exact callpath.
please get back to us per comment #11
