Bug 316488

Summary: Kmail crash when opening a reply to IMAP mail
Product: [Applications] kmail2 Reporter: kkoksvik
Component: generalAssignee: kdepim bugs <kdepim-bugs>
Status: RESOLVED WORKSFORME    
Severity: crash CC: kkoksvik, tulan.kansen
Priority: NOR    
Version: 4.10.1   
Target Milestone: ---   
Platform: Ubuntu   
OS: Linux   
Latest Commit: Version Fixed In:
Sentry Crash Report:
Attachments: New crash information added by DrKonqi
New crash information added by DrKonqi

Description kkoksvik 2013-03-10 21:01:59 UTC 
Application: kmail (4.10.1)
KDE Platform Version: 4.10.1
Qt Version: 4.8.3
Operating System: Linux 3.5.0-17-generic x86_64
Distribution: Linux Mint 14 Nadia

-- Information about the crash:
- What I was doing when the application crashed:

I was reading a mail in the side prewiew pane when i pressed reply on the menubar kmail crached imediatly

Mint 14 KDE edition up to date

-- Backtrace:
Application: KMail (kmail), signal: Aborted
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
[Current thread is 1 (Thread 0x7f35bb7977c0 (LWP 12695))]

Thread 3 (Thread 0x7f35b27fb700 (LWP 12699)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:162
#1  0x00007f35c6be2b2d in ?? () from /usr/lib/x86_64-linux-gnu/libQtWebKit.so.4
#2  0x00007f35c6be2c39 in ?? () from /usr/lib/x86_64-linux-gnu/libQtWebKit.so.4
#3  0x00007f35cfe52e9a in start_thread (arg=0x7f35b27fb700) at pthread_create.c:308
#4  0x00007f35d259ecbd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:112
#5  0x0000000000000000 in ?? ()

Thread 2 (Thread 0x7f35b1efa700 (LWP 12700)):
#0  0x00007f35d2593303 in __GI___poll (fds=<optimized out>, nfds=<optimized out>, timeout=<optimized out>) at ../sysdeps/unix/sysv/linux/poll.c:87
#1  0x00007f35ca7aed84 in ?? () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#2  0x00007f35ca7aeea4 in g_main_context_iteration () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#3  0x00007f35d2f29c46 in QEventDispatcherGlib::processEvents (this=0x7f35ac0008c0, flags=...) at kernel/qeventdispatcher_glib.cpp:426
#4  0x00007f35d2efa2ef in QEventLoop::processEvents (this=this@entry=0x7f35b1ef9dc0, flags=...) at kernel/qeventloop.cpp:149
#5  0x00007f35d2efa578 in QEventLoop::exec (this=0x7f35b1ef9dc0, flags=...) at kernel/qeventloop.cpp:204
#6  0x00007f35d2dfbb40 in QThread::exec (this=<optimized out>) at thread/qthread.cpp:501
#7  0x00007f35d2dfeb1c in QThreadPrivate::start (arg=0x19d0db0) at thread/qthread_unix.cpp:338
#8  0x00007f35cfe52e9a in start_thread (arg=0x7f35b1efa700) at pthread_create.c:308
#9  0x00007f35d259ecbd in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:112
#10 0x0000000000000000 in ?? ()

Thread 1 (Thread 0x7f35bb7977c0 (LWP 12695)):
[KCrash Handler]
#6  0x00007f35d24e1425 in __GI_raise (sig=<optimized out>) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
#7  0x00007f35d24e4b8b in __GI_abort () at abort.c:91
#8  0x00007f35d251f39e in __libc_message (do_abort=2, fmt=0x7f35d2629028 "*** glibc detected *** %s: %s: 0x%s ***\n") at ../sysdeps/unix/sysv/linux/libc_fatal.c:201
#9  0x00007f35d2529b96 in malloc_printerr (action=3, str=0x7f35d2629188 "double free or corruption (out)", ptr=<optimized out>) at malloc.c:5007
#10 0x00007f35d36d7739 in ~QTextCharFormat (this=0x7fff49001260, __in_chrg=<optimized out>) at ../../include/QtGui/../../src/gui/text/qtextformat.h:372
#11 QTextTableCell::columnSpan (this=<optimized out>) at text/qtexttable.cpp:212
#12 0x00007f35d36c0745 in QTextDocumentLayoutPrivate::layoutTable (this=this@entry=0x3019df0, table=0x22fbcc0, layoutFrom=layoutFrom@entry=222, layoutTo=layoutTo@entry=222, parentY=..., parentY@entry=...) at text/qtextdocumentlayout.cpp:1627
#13 0x00007f35d36c2c0c in QTextDocumentLayoutPrivate::layoutFrame (this=this@entry=0x3019df0, f=f@entry=0x22fbcc0, layoutFrom=layoutFrom@entry=222, layoutTo=layoutTo@entry=222, frameWidth=..., frameWidth@entry=..., frameHeight=..., parentY=...) at text/qtextdocumentlayout.cpp:2107
#14 0x00007f35d36c340f in QTextDocumentLayoutPrivate::layoutFrame (this=this@entry=0x3019df0, f=f@entry=0x22fbcc0, layoutFrom=layoutFrom@entry=222, layoutTo=layoutTo@entry=222, parentY=...) at text/qtextdocumentlayout.cpp:2049
#15 0x00007f35d36c48b8 in QTextDocumentLayoutPrivate::layoutFlow (this=0x3019df0, it=..., layoutStruct=0x7fff490021c0, layoutFrom=222, layoutTo=222, width=...) at text/qtextdocumentlayout.cpp:2311
#16 0x00007f35d36c2ef1 in QTextDocumentLayoutPrivate::layoutFrame (this=this@entry=0x3019df0, f=f@entry=0x301a2d0, layoutFrom=layoutFrom@entry=222, layoutTo=layoutTo@entry=222, frameWidth=..., frameWidth@entry=..., frameHeight=..., parentY=...) at text/qtextdocumentlayout.cpp:2143
#17 0x00007f35d36c340f in QTextDocumentLayoutPrivate::layoutFrame (this=this@entry=0x3019df0, f=f@entry=0x301a2d0, layoutFrom=layoutFrom@entry=222, layoutTo=layoutTo@entry=222, parentY=parentY@entry=...) at text/qtextdocumentlayout.cpp:2049
#18 0x00007f35d36c5741 in QTextDocumentLayout::doLayout (this=this@entry=0x22fbf50, from=from@entry=222, oldLength=oldLength@entry=1, length=length@entry=0) at text/qtextdocumentlayout.cpp:2939
#19 0x00007f35d36c66c9 in QTextDocumentLayout::documentChanged (this=0x22fbf50, from=222, oldLength=1, length=0) at text/qtextdocumentlayout.cpp:2902
#20 0x00007f35d36a6284 in QTextDocumentPrivate::finishEdit (this=0x22fb460) at text/qtextdocument_p.cpp:1220
#21 0x00007f35d36cc045 in removeSelectedText (this=<optimized out>) at text/qtextcursor.cpp:1662
#22 QTextCursor::removeSelectedText (this=0x7fff49002560) at text/qtextcursor.cpp:1655
#23 0x00007f35cbccf628 in KPIMTextEdit::TextEdit::loadImage (this=0x3019be0, image=..., matchName=..., resourceName=...) at ../../kpimtextedit/textedit.cpp:517
#24 0x00007f35ce752f68 in Message::ComposerViewBase::collectImages (this=this@entry=0x244f950, root=<optimized out>) at ../../messagecomposer/composerviewbase.cpp:1506
#25 0x00007f35ce75c469 in Message::ComposerViewBase::setMessage (this=0x244f950, msg=...) at ../../messagecomposer/composerviewbase.cpp:181
#26 0x00007f35d406aa56 in KMComposeWin::setMessage (this=this@entry=0x25a1f00, newMsg=..., lastSignState=lastSignState@entry=false, lastEncryptState=lastEncryptState@entry=false, mayAutoSign=mayAutoSign@entry=true, allowDecryption=allowDecryption@entry=false, isModified=isModified@entry=false) at ../../kmail/kmcomposewin.cpp:1556
#27 0x00007f35d406e127 in KMComposeWin::KMComposeWin (this=this@entry=0x25a1f00, aMsg=..., lastSignState=lastSignState@entry=false, lastEncryptState=lastEncryptState@entry=false, context=context@entry=KMail::Composer::Reply, id=id@entry=0, textSelection=..., customTemplate=..., __in_chrg=<optimized out>, __vtt_parm=<optimized out>) at ../../kmail/kmcomposewin.cpp:473
#28 0x00007f35d406f10f in KMComposeWin::create (msg=..., lastSignState=<optimized out>, lastEncryptState=<optimized out>, context=KMail::Composer::Reply, identity=0, textSelection=..., customTemplate=...) at ../../kmail/kmcomposewin.cpp:174
#29 0x00007f35d4007ba9 in KMReplyCommand::execute (this=0x24495b0) at ../../kmail/kmcommands.cpp:864
#30 0x00007f35d4006c21 in KMCommand::slotPostTransfer (this=0x24495b0, result=KMCommand::OK) at ../../kmail/kmcommands.cpp:272
#31 0x00007f35d2f10f8f in QMetaObject::activate (sender=0x24495b0, m=<optimized out>, local_signal_index=<optimized out>, argv=0x7fff49003420) at kernel/qobject.cpp:3547
#32 0x00007f35d4006a2e in KMCommand::messagesTransfered (this=this@entry=0x24495b0, _t1=_t1@entry=KMCommand::OK) at ./kmcommands.moc:117
#33 0x00007f35d400af7c in KMCommand::slotJobFinished (this=0x24495b0) at ../../kmail/kmcommands.cpp:382
#34 0x00007f35d2f10f8f in QMetaObject::activate (sender=0x22fc170, m=<optimized out>, local_signal_index=<optimized out>, argv=0x7fff490035d0) at kernel/qobject.cpp:3547
#35 0x00007f35d46691c2 in KJob::result (this=this@entry=0x22fc170, _t1=_t1@entry=0x22fc170) at ./kjob.moc:208
#36 0x00007f35d4669200 in KJob::emitResult (this=0x22fc170) at ../../kdecore/jobs/kjob.cpp:318
#37 0x00007f35d2f1046e in QObject::event (this=0x22fc170, e=<optimized out>) at kernel/qobject.cpp:1195
#38 0x00007f35d341fe9c in QApplicationPrivate::notify_helper (this=this@entry=0x14f66b0, receiver=receiver@entry=0x22fc170, e=e@entry=0x225fe90) at kernel/qapplication.cpp:4562
#39 0x00007f35d342430a in QApplication::notify (this=0x7fff49004260, receiver=0x22fc170, e=0x225fe90) at kernel/qapplication.cpp:4423
#40 0x00007f35d4c2bad6 in KApplication::notify (this=0x7fff49004260, receiver=0x22fc170, event=0x225fe90) at ../../kdeui/kernel/kapplication.cpp:311
#41 0x00007f35d2efb59e in QCoreApplication::notifyInternal (this=0x7fff49004260, receiver=receiver@entry=0x22fc170, event=event@entry=0x225fe90) at kernel/qcoreapplication.cpp:915
#42 0x00007f35d2eff421 in sendEvent (event=0x225fe90, receiver=0x22fc170) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:231
#43 QCoreApplicationPrivate::sendPostedEvents (receiver=0x0, event_type=0, data=0x1493220) at kernel/qcoreapplication.cpp:1539
#44 0x00007f35d2f29a93 in sendPostedEvents () at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:236
#45 postEventSourceDispatch (s=0x1501430) at kernel/qeventdispatcher_glib.cpp:279
#46 0x00007f35ca7aeab5 in g_main_context_dispatch () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#47 0x00007f35ca7aede8 in ?? () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#48 0x00007f35ca7aeea4 in g_main_context_iteration () from /lib/x86_64-linux-gnu/libglib-2.0.so.0
#49 0x00007f35d2f29c26 in QEventDispatcherGlib::processEvents (this=0x1494b00, flags=...) at kernel/qeventdispatcher_glib.cpp:424
#50 0x00007f35d34c4c1e in QGuiEventDispatcherGlib::processEvents (this=<optimized out>, flags=...) at kernel/qguieventdispatcher_glib.cpp:204
#51 0x00007f35d2efa2ef in QEventLoop::processEvents (this=this@entry=0x7fff49003ee0, flags=...) at kernel/qeventloop.cpp:149
#52 0x00007f35d2efa578 in QEventLoop::exec (this=0x7fff49003ee0, flags=...) at kernel/qeventloop.cpp:204
#53 0x00007f35d2eff738 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:1187
#54 0x0000000000402c1d in main (argc=<optimized out>, argv=<optimized out>) at ../../kmail/main.cpp:146

Possible duplicates by query: bug 315334, bug 314123, bug 314055, bug 313684, bug 311589.

Reported using DrKonqi
Comment 1 kkoksvik 2013-03-10 21:06:06 UTC 
Created attachment 77923 [details]
New crash information added by DrKonqi

kmail (4.10.1) on KDE Platform 4.10.1 using Qt 4.8.3

- What I was doing when the application crashed:
selecting replay to all on menubar for IMAP e-mail

-- Backtrace (Reduced):
#6  0x00007f38af0b6425 in __GI_raise (sig=<optimized out>) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
#7  0x00007f38af0b9b8b in __GI_abort () at abort.c:91
[...]
#9  0x00007f38af0feb96 in malloc_printerr (action=3, str=0x7f38af1fe1f0 "free(): invalid next size (fast)", ptr=<optimized out>) at malloc.c:5007
#10 0x00007f38b0252885 in free (alignment=8, x=<optimized out>) at ../../include/QtCore/../../src/corelib/tools/qvector.h:99
#11 free (x=<optimized out>, this=<optimized out>) at ../../include/QtCore/../../src/corelib/tools/qvector.h:468
Comment 2 tulan.kansen 2014-03-20 11:07:07 UTC 
Created attachment 85645 [details]
New crash information added by DrKonqi

kmail (4.12.3) on KDE Platform 4.12.3 using Qt 4.8.5

- What I was doing when the application crashed:
Want to answer an email, presses shorcut to reply to all recipients -> crash

-- Backtrace (Reduced):
#5  0x0000003881435c39 in __GI_raise (sig=sig@entry=6) at ../nptl/sysdeps/unix/sysv/linux/raise.c:56
#6  0x0000003881437348 in __GI_abort () at abort.c:89
[...]
#8  0x000000388147bb27 in malloc_printerr (action=<optimized out>, str=0x388157c698 "malloc(): smallbin double linked list corrupted", ptr=<optimized out>) at malloc.c:4930
#9  0x000000388147ea54 in _int_malloc (av=0x38817b8760 <main_arena>, bytes=128) at malloc.c:3315
#10 0x000000388147ff6c in __GI___libc_malloc (bytes=128) at malloc.c:2859
Comment 3 kkoksvik 2014-09-27 11:44:14 UTC 
I have not encountered this in a long time.

I consider the bug as closed.

Thanks :-)