204214 – creating a HTML message with animated gif crashed

Bug 204214 - creating a HTML message with animated gif crashed

Summary: creating a HTML message with animated gif crashed

Status:	RESOLVED FIXED

Alias:	None

Product:	kmail
Classification:	Unmaintained
Component:	general (show other bugs)
Version:	unspecified
Platform:	Unlisted Binaries Linux

Importance:	NOR crash
Target Milestone:	---
Assignee:	kdepim bugs

URL:
Keywords:

Depends on:
Blocks:

Reported:	2009-08-17 23:13 UTC by Martin Koller
Modified:	2009-08-19 17:35 UTC (History)
CC List:	0 users

See Also:
Latest Commit:
Version Fixed In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Martin Koller 2009-08-17 23:13:25 UTC

Application that crashed: kmail
Version of the application: 1.12.1
KDE Version: 4.3.00 (KDE 4.3.0) "release 152"
Qt Version: 4.5.2
Operating System: Linux 2.6.27.25-0.1-pae i686
Distribution: "openSUSE 11.1 (i586)"

What I was doing when the application crashed:
I was creating a HTML test mail with a few animated gifs inside and also the same gifs as attachments.
I saved it as draft, and reopened again. At some point it crashed.

 -- Backtrace:
Application: KMail (kmail), signal: Segmentation fault
[Current thread is 1 (Thread 0xb3a24700 (LWP 26592))]

Thread 9 (Thread 0xb033eb90 (LWP 26674)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb6778f62 in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xae6b0721 in ?? () from /usr/lib/libxine.so.1
#3  0xb67751b5 in start_thread () from /lib/libpthread.so.0
#4  0xb5aca3be in clone () from /lib/libc.so.6

Thread 8 (Thread 0xad646b90 (LWP 26677)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb5ac06a7 in poll () from /lib/libc.so.6
#2  0xad6d6004 in ?? () from /usr/lib/xine/plugins/1.26/xineplug_ao_out_alsa.so
#3  0xb67751b5 in start_thread () from /lib/libpthread.so.0
#4  0xb5aca3be in clone () from /lib/libc.so.6

Thread 7 (Thread 0xace45b90 (LWP 26678)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb6778c35 in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xae6c2f33 in ?? () from /usr/lib/libxine.so.1
#3  0xb67751b5 in start_thread () from /lib/libpthread.so.0
#4  0xb5aca3be in clone () from /lib/libc.so.6

Thread 6 (Thread 0xac644b90 (LWP 26679)):
#0  0xb6777cc6 in __pthread_mutex_unlock_usercnt () from /lib/libpthread.so.0
#1  0xb40a52e5 in g_main_context_release () from /usr/lib/libglib-2.0.so.0
#2  0xb40a6f85 in ?? () from /usr/lib/libglib-2.0.so.0
#3  0xb40a7241 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#4  0xb68f78f7 in QEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4
#5  0xb68ca78a in QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4
#6  0xb68cabd2 in QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4
#7  0xb67d4229 in QThread::exec() () from /usr/lib/libQtCore.so.4
#8  0xae7052f8 in ?? () from /usr/lib/kde4/phonon_xine.so
#9  0xb67d7572 in ?? () from /usr/lib/libQtCore.so.4
#10 0xb67751b5 in start_thread () from /lib/libpthread.so.0
#11 0xb5aca3be in clone () from /lib/libc.so.6

Thread 5 (Thread 0xaba38b90 (LWP 26680)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb6778f62 in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xae6bf17e in ?? () from /usr/lib/libxine.so.1
#3  0xb67751b5 in start_thread () from /lib/libpthread.so.0
#4  0xb5aca3be in clone () from /lib/libc.so.6

Thread 4 (Thread 0xaadc5b90 (LWP 26681)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb6778c35 in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xae6b447c in ?? () from /usr/lib/libxine.so.1
#3  0xae6ba8a1 in ?? () from /usr/lib/libxine.so.1
#4  0xb67751b5 in start_thread () from /lib/libpthread.so.0
#5  0xb5aca3be in clone () from /lib/libc.so.6

Thread 3 (Thread 0xaa3f7b90 (LWP 26682)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb6778c35 in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xae6b447c in ?? () from /usr/lib/libxine.so.1
#3  0xae6bbaa5 in ?? () from /usr/lib/libxine.so.1
#4  0xb67751b5 in start_thread () from /lib/libpthread.so.0
#5  0xb5aca3be in clone () from /lib/libc.so.6

Thread 2 (Thread 0xa9bf6b90 (LWP 26683)):
#0  0xffffe430 in __kernel_vsyscall ()
#1  0xb6778c35 in pthread_cond_wait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#2  0xae6c6128 in ?? () from /usr/lib/libxine.so.1
#3  0xb67751b5 in start_thread () from /lib/libpthread.so.0
#4  0xb5aca3be in clone () from /lib/libc.so.6

Thread 1 (Thread 0xb3a24700 (LWP 26592)):
[KCrash Handler]
#6  0xb5fef32f in QTextBlock::iterator::operator++() () from /usr/lib/libQtGui.so.4
#7  0xb73c3e2c in KMComposeWin::collectImages (this=0xa5d2950, root=0xaf50c20) at /usr/src/debug/kdepim-4.3.0/kmail/kmcomposewin.cpp:1807
#8  0xb73d64b0 in KMComposeWin::setMsg (this=0xa5d2950, newMsg=0x93b4718, mayAutoSign=false, allowDecryption=true, isModified=false) at /usr/src/debug/kdepim-4.3.0/kmail/kmcomposewin.cpp:1642
#9  0xb75cb230 in KMEditMsgCommand::execute (this=0x916cd08) at /usr/src/debug/kdepim-4.3.0/kmail/kmcommands.cpp:691
#10 0xb75cb132 in KMCommand::slotPostTransfer (this=0x916cd08, result=KMCommand::OK) at /usr/src/debug/kdepim-4.3.0/kmail/kmcommands.cpp:273
#11 0xb75d51f4 in KMCommand::qt_metacall (this=0x916cd08, _c=QMetaObject::InvokeMetaMethod, _id=5, _a=0xbfdece3c) at /usr/src/debug/kdepim-4.3.0/build/kmail/kmcommands.moc:87
#12 0xb75d59a2 in KMEditMsgCommand::qt_metacall (this=0x916cd08, _c=QMetaObject::InvokeMetaMethod, _id=9, _a=0xbfdece3c) at /usr/src/debug/kdepim-4.3.0/build/kmail/kmcommands.moc:546
#13 0xb68e1788 in QMetaObject::activate(QObject*, int, int, void**) () from /usr/lib/libQtCore.so.4
#14 0xb68e2412 in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib/libQtCore.so.4
#15 0xb75c7173 in KMCommand::messagesTransfered (this=0x916cd08, _t1=KMCommand::OK) at /usr/src/debug/kdepim-4.3.0/build/kmail/kmcommands.moc:102
#16 0xb75e469c in KMCommand::transferSelectedMsgs (this=0x916cd08) at /usr/src/debug/kdepim-4.3.0/kmail/kmcommands.cpp:367
#17 0xb75e48f3 in KMCommand::slotStart (this=0x916cd08) at /usr/src/debug/kdepim-4.3.0/kmail/kmcommands.cpp:265
#18 0xb75d5203 in KMCommand::qt_metacall (this=0x916cd08, _c=QMetaObject::InvokeMetaMethod, _id=4, _a=0xbfded008) at /usr/src/debug/kdepim-4.3.0/build/kmail/kmcommands.moc:86
#19 0xb75d59a2 in KMEditMsgCommand::qt_metacall (this=0x916cd08, _c=QMetaObject::InvokeMetaMethod, _id=8, _a=0xbfded008) at /usr/src/debug/kdepim-4.3.0/build/kmail/kmcommands.moc:546
#20 0xb68e1788 in QMetaObject::activate(QObject*, int, int, void**) () from /usr/lib/libQtCore.so.4
#21 0xb68e2412 in QMetaObject::activate(QObject*, QMetaObject const*, int, void**) () from /usr/lib/libQtCore.so.4
#22 0xb68e75b7 in ?? () from /usr/lib/libQtCore.so.4
#23 0xb68e76dc in ?? () from /usr/lib/libQtCore.so.4
#24 0xb68dc72f in QObject::event(QEvent*) () from /usr/lib/libQtCore.so.4
#25 0xb5da17fc in QApplicationPrivate::notify_helper(QObject*, QEvent*) () from /usr/lib/libQtGui.so.4
#26 0xb5da9aee in QApplication::notify(QObject*, QEvent*) () from /usr/lib/libQtGui.so.4
#27 0xb7e4327d in KApplication::notify(QObject*, QEvent*) () from /usr/lib/libkdeui.so.5
#28 0xb68cc16b in QCoreApplication::notifyInternal(QObject*, QEvent*) () from /usr/lib/libQtCore.so.4
#29 0xb68fb5f6 in ?? () from /usr/lib/libQtCore.so.4
#30 0xb68f7980 in ?? () from /usr/lib/libQtCore.so.4
#31 0xb40a39c8 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0
#32 0xb40a7083 in ?? () from /usr/lib/libglib-2.0.so.0
#33 0xb40a7241 in g_main_context_iteration () from /usr/lib/libglib-2.0.so.0
#34 0xb68f78d8 in QEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4
#35 0xb5e41cc5 in ?? () from /usr/lib/libQtGui.so.4
#36 0xb68ca78a in QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4
#37 0xb68cabd2 in QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) () from /usr/lib/libQtCore.so.4
#38 0xb68cd079 in QCoreApplication::exec() () from /usr/lib/libQtCore.so.4
#39 0xb5da1677 in QApplication::exec() () from /usr/lib/libQtGui.so.4
#40 0x0804a820 in main (argc=9, argv=0x706d6170) at /usr/src/debug/kdepim-4.3.0/kmail/main.cpp:146

Reported using DrKonqi

Comment 1 Martin Koller 2009-08-17 23:18:41 UTC

On restart of kmail, it hangs in an endless loop. Attaching with gdb shows the bt e.g.:

#0  0xb5f2d21b in QTextFragment::charFormat() const () from /usr/lib/libQtGui.so.4
#1  0xb7300e8e in KMComposeWin::collectImages (this=0x8807208, root=0x8944e88)
    at /usr/src/debug/kdepim-4.3.0/kmail/kmcomposewin.cpp:1810
#2  0xb73134b0 in KMComposeWin::setMsg (this=0x8807208, newMsg=0x875b418, mayAutoSign=false,
    allowDecryption=false, isModified=true) at /usr/src/debug/kdepim-4.3.0/kmail/kmcomposewin.cpp:1642
#3  0xb74616da in KMKernel::recoverDeadLetters (this=0xbfa5e698)
    at /usr/src/debug/kdepim-4.3.0/kmail/kmkernel.cpp:1316
#4  0x0804a7ea in main (argc=-1236062192, argv=0x87c7088) at /usr/src/debug/kdepim-4.3.0/kmail/main.cpp:134

Comment 2 Thomas McGuire 2009-08-18 00:34:02 UTC

SVN commit 1012649 by tmcguire:

Don't crash on mails where there are two embedded images on the same text block.

BUG: 204214


 M  +14 -6     textedit.cpp  


WebSVN link: http://websvn.kde.org/?view=rev&revision=1012649

Comment 3 Thomas McGuire 2009-08-19 17:35:57 UTC

SVN commit 1013338 by tmcguire:

Backport of:
SVN commit 1012649 by tmcguire:

Don't crash on mails where there are two embedded images on the same text block.

CCBUG: 204214


 M  +15 -6     kmcomposewin.cpp  


WebSVN link: http://websvn.kde.org/?view=rev&revision=1013338