66742 – gaim-1.0.0 crashes when removing an irc-channel from the buddy list

Bug 66742 - gaim-1.0.0 crashes when removing an irc-channel from the buddy list

Summary: gaim-1.0.0 crashes when removing an irc-channel from the buddy list

Status:	RESOLVED UPSTREAM

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	Current packages (show other bugs)
Hardware:	AMD64 Linux

Importance:	High normal (vote)
Assignee:	Gaim Bugs Crew

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2004-10-08 04:12 UTC by Benjamin Schindler (RETIRED)
Modified:	2004-11-10 10:42 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Benjamin Schindler (RETIRED) gentoo-dev

2004-10-08 04:12:59 UTC

The title sais it all atm. I'm about to try out gaim-1.0.1 to see whether the bug is still there. I have not yet been able to get a backtrace. It would already be helpful to find out whether I'm others (amd64 users especially) experience the same problem. I'll try to get a backtrace of the problem

Reproducible: Always
Steps to Reproduce:
1.
2.
3.




benjamin@Metis ~ $ emerge info
Portage 2.0.51_rc7 (default-linux/amd64/gcc34-2004.2, gcc-3.4.2,
glibc-2.3.4.20040808-r0, 2.6.8-gentoo-r4 x86_64)
=================================================================
System uname: 2.6.8-gentoo-r4 x86_64 AMD Athlon(tm) 64 Processor 3000+
Gentoo Base System version 1.5.3
ccache version 2.3 [enabled]
Autoconf: sys-devel/autoconf-2.59-r4
Automake: sys-devel/automake-1.8.5-r1
Binutils: sys-devel/binutils-2.15.92.0.2
Headers:  sys-kernel/linux26-headers-2.6.8.1
Libtools: sys-devel/libtool-1.5.2-r5
ACCEPT_KEYWORDS="amd64 ~amd64"
AUTOCLEAN="yes"
CFLAGS="-O2 -pipe -march=k8 -fomit-frame-pointer -ftracer"
CHOST="x86_64-pc-linux-gnu"
COMPILER=""
CONFIG_PROTECT="/etc /usr/X11R6/lib/X11/xkb /usr/kde/2/share/config
/usr/kde/3.3/share/config:/usr/kde/3.3/env:/usr/kde/3.3/shutdown
/usr/kde/3/share/config /usr/lib/mozilla/defaults/pref /usr/share/config
/var/qmail/control"
CONFIG_PROTECT_MASK="/etc/gconf /etc/terminfo /etc/env.d"
CXXFLAGS="-O2 -pipe -march=k8 -fomit-frame-pointer -ftracer"
DISTDIR="/usr/portage/distfiles"
FEATURES="autoaddcvs ccache distlocks"
GENTOO_MIRRORS="http://sunsite.cnlab-switch.ch/ftp/mirror/gentoo
http://gentoo.oregonstate.edu http://www.ibiblio.org/pub/Linux/distributions/gentoo"
MAKEOPTS="-j2"
PKGDIR="/usr/portage/packages"
PORTAGE_TMPDIR="/var/tmp"
PORTDIR="/usr/portage"
PORTDIR_OVERLAY="/usr/local/portage"
SYNC="rsync://rsync.gentoo.org/gentoo-portage"
USE="X aalib acpi adns aim alsa amd64 apm avi berkdb bitmap-fonts bonobo
cdparanoia cdr crypt cups doc dvd encode esd evo fam flac foomaticdb ftp gdbm
ggi gif gimp gnome gpm gstreamer gtk gtk2 icq imagemagick imap imlib ipv6 jabber
java jpeg junit kde libwww mad maildir mikmod mng motif mozdevelop mozilla
moznocompose moznoirc moznomail mpeg mplayer msn multilib nas ncurses nls nogcj
oggvorbis openal opengl oss pam pdf pdflib perl png python qt quicktime readline
samba sdl slang spell ssl svg tcltk tcpd tif tiff transcode truetype unicode usb
xine xml xml2 xmms xpm xprint xv zlib"

Comment 1 Don Seiler (RETIRED) gentoo-dev

2004-10-21 10:46:39 UTC

Waiting for debug output and backtrace.

Comment 2 Benjamin Schindler (RETIRED) gentoo-dev

2004-11-02 09:33:38 UTC

I'm sorry, it took my a little long to produce a backgrace. I've got one, and the root of the problem is already determined. Here is a backtrace: 

#0  0x00000000004298da in gaim_account_get_protocol_id (account=0xc0) at account.c:727
#1  0x0000000000468757 in gaim_normalize (account=0xc0, s=0xb1aa80 "gentoo-dev") at util.c:2053
#2  0x0000000000439583 in gaim_find_conversation_with_account (name=0xb1aa80 "gentoo-dev", account=0xc0) at conversation.c:1343
#3  0x0000000000499ce6 in gaim_gtkdialogs_remove_chat_cb (chat=0x6faf00) at gtkdialogs.c:884
#4  0x00000000004bbee2 in action_response_cb (dialog=0xb34f80, id=1, data=0xb32180) at gtkrequest.c:132
#5  0x0000002a95aee0e9 in g_closure_invoke () from /usr/lib/libgobject-2.0.so.0
#6  0x0000002a95b04992 in g_signal_has_handler_pending () from /usr/lib/libgobject-2.0.so.0
#7  0x0000002a95b06351 in g_signal_emit_valist () from /usr/lib/libgobject-2.0.so.0
#8  0x0000002a95b066b3 in g_signal_emit () from /usr/lib/libgobject-2.0.so.0
#9  0x0000002a95aee0e9 in g_closure_invoke () from /usr/lib/libgobject-2.0.so.0
#10 0x0000002a95b04992 in g_signal_has_handler_pending () from /usr/lib/libgobject-2.0.so.0
#11 0x0000002a95b06351 in g_signal_emit_valist () from /usr/lib/libgobject-2.0.so.0
#12 0x0000002a95b066b3 in g_signal_emit () from /usr/lib/libgobject-2.0.so.0
#13 0x000000321497cba8 in _gtk_button_set_depressed () from /usr/lib/libgtk-x11-2.0.so.0
#14 0x0000002a95aee0e9 in g_closure_invoke () from /usr/lib/libgobject-2.0.so.0
#15 0x0000002a95b04014 in g_signal_has_handler_pending() from /usr/lib/libgobject-2.0.so.0
#16 0x0000002a95b06351 in g_signal_emit_valist () from /usr/lib/libgobject-2.0.so.0
#17 0x0000002a95b066b3 in g_signal_emit () from /usr/lib/libgobject-2.0.so.0
#18 0x000000321497c079 in _gtk_button_paint () from /usr/lib/libgtk-x11-2.0.so.0
#19 0x0000003214a2b896 in _gtk_marshal_BOOLEAN__BOXED () from /usr/lib/libgtk-x11-2.0.so.0
#20 0x0000002a95aee0e9 in g_closure_invoke () from /usr/lib/libgobject-2.0.so.0
#21 0x0000002a95b04381 in g_signal_has_handler_pending () from /usr/lib/libgobject-2.0.so.0
#22 0x0000002a95b05ee8 in g_signal_emit_valist () from /usr/lib/libgobject-2.0.so.0
#23 0x0000002a95b066b3 in g_signal_emit () from /usr/lib/libgobject-2.0.so.0
#24 0x0000003214b1b7b7 in gtk_widget_activate () from /usr/lib/libgtk-x11-2.0.so.0
#25 0x0000003214a2984e in gtk_propagate_event () from /usr/lib/libgtk-x11-2.0.so.0
#26 0x0000003214a29c35 in gtk_main_do_event () from /usr/lib/libgtk-x11-2.0.so.0
#27 0x00000032137487c0 in _gdk_events_queue () from /usr/lib/libgdk-x11-2.0.so.0
#28 0x0000002a95d52eca in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#29 0x0000002a95d54ced in g_main_context_acquire () from /usr/lib/libglib-2.0.so.0
#30 0x0000002a95d55095 in g_main_loop_run () from /usr/lib/libglib-2.0.so.0
#31 0x0000003214a29031 in gtk_main () from /usr/lib/libgtk-x11-2.0.so.0
#32 0x00000000004c7a87 in main (argc=1, argv=0x7fbffff0f8) at main.c:911


It's pretty clear, that the value of GaimChat *chat is wrong - 0xc0 is not a valid pointer. 

#3  0x0000000000499ce6 in gaim_gtkdialogs_remove_chat_cb (chat=0x6faf00) at gtkdialogs.c:884
#4  0x00000000004bbee2 in action_response_cb (dialog=0xb34f80, id=1, data=0xb32180) at gtkrequest.c:132

These are probably some relevant calls data->user_data contains chat (which is the argument in #3) and chat->account is an invalid pointer. This data has probably been setup some time before, so it's kindof hard to trace down the problem

Comment 3 Don Seiler (RETIRED) gentoo-dev

2004-11-10 09:15:28 UTC

I reported this upstream and they think they have fixed it.  I will try to get a patch for you to confirm with.

Comment 4 Don Seiler (RETIRED) gentoo-dev

2004-11-10 09:59:28 UTC

I'm told this fix will be in release 1.0.3 later this week.  If 1.0.3 doesn't fix it, then please re-open this bug.

Comment 5 Don Seiler (RETIRED) gentoo-dev

2004-11-10 10:42:51 UTC

Well I got a patch anyway and so try out gaim-1.0.2-r1 and please let me know if that fixes the problem for you.