199713 – krunner memory corruption while searching

Bug 199713 - krunner memory corruption while searching

Summary: krunner memory corruption while searching

Status:	RESOLVED DUPLICATE of bug 201110

Alias:	None

Product:	krunner
Classification:	Plasma
Component:	general (show other bugs)
Version:	unspecified
Platform:	Unlisted Binaries Linux

Importance:	NOR crash
Target Milestone:	---
Assignee:	Plasma Bugs List

URL:
Keywords:

Depends on:
Blocks:

Reported:	2009-07-10 21:20 UTC by George Kiagiadakis
Modified:	2009-07-22 15:35 UTC (History)
CC List:	1 user (show)

See Also:
Latest Commit:
Version Fixed In:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description George Kiagiadakis 2009-07-10 21:20:59 UTC

Application that crashed: krunner
Version of the application: 0.1
KDE Version: 4.2.95 (KDE 4.2.95 (KDE 4.3 RC1))
Qt Version: 4.5.2
Operating System: Linux 2.6.30-1-amd64 x86_64
Distribution: Debian GNU/Linux unstable (sid)

What I was doing when the application crashed:
I just fired up krunner and tried to type "empathy". I cannot reproduce. I hope the backtrace is useful enough to locate the memory corruption.

 -- Backtrace:
Application: Run Command Interface (kdeinit4), signal: Aborted
__lll_lock_wait_private ()
    at ../nptl/sysdeps/unix/sysv/linux/x86_64/lowlevellock.S:91
	in ../nptl/sysdeps/unix/sysv/linux/x86_64/lowlevellock.S
[Current thread is 1 (Thread 0x7f4db8cc2760 (LWP 4761))]

Thread 8 (Thread 0x7f4d95bd2950 (LWP 5255)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:261
#1  0x00007f4db880a739 in QByteArray::size (out=..., ba=...) at ../../include/QtCore/../../src/corelib/tools/qbytearray.h:377
#2  QBitArray::size (out=..., ba=...) at tools/qbitarray.h:67
#3  operator<< (out=..., ba=...) at tools/qbitarray.cpp:666
#4  0x0000000000096258 in ?? ()
#5  0x0000000001315800 in ?? ()
#6  0x0000000001082550 in ?? ()
#7  0x00007f4d95bd21f0 in ?? ()
#8  0x00007f4d95bd2950 in ?? ()
#9  0x0000000000001000 in ?? ()
#10 0x0000000001313150 in ?? ()
#11 0x0000000001315800 in ?? ()
#12 0x0000000001082550 in ?? ()
#13 0x0000000001313151 in ?? ()
#14 0x00007f4d95bd2950 in ?? ()
#15 0x0000000000001000 in ?? ()
#16 0x00007f4daec99e04 in ThreadWeaver::WeaverImpl::blockThreadUntilJobsAreBeingAssigned (this=0x7f4d95bd1f80, th=0x7f4d95bd1f90) at ../../../threadweaver/Weaver/WeaverImpl.cpp:365
#17 0x00007f4daec9c5b3 in ThreadWeaver::WorkingHardState::applyForWork (this=0x1311690, th=0x1082550) at ../../../threadweaver/Weaver/WorkingHardState.cpp:71
#18 0x00007f4daec9ab2f in ThreadWeaver::ThreadRunHelper::run (this=0x7f4d95bd2080, parent=0x1315800, th=0x1082550) at ../../../threadweaver/Weaver/Thread.cpp:87
#19 0x00007f4daec9af89 in ThreadWeaver::Thread::run (this=0x1082550) at ../../../threadweaver/Weaver/Thread.cpp:142
#20 0x00007f4db8809742 in QThread::start (this=0x130c18c, priority=128) at thread/qthread_unix.cpp:338
#21 0x0000000000000000 in ?? ()

Thread 7 (Thread 0x7f4d953d1950 (LWP 5256)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:261
#1  0x00007f4db880a739 in QByteArray::size (out=..., ba=...) at ../../include/QtCore/../../src/corelib/tools/qbytearray.h:377
#2  QBitArray::size (out=..., ba=...) at tools/qbitarray.h:67
#3  operator<< (out=..., ba=...) at tools/qbitarray.cpp:666
#4  0x0000000000096258 in ?? ()
#5  0x0000000001315800 in ?? ()
#6  0x0000000001117100 in ?? ()
#7  0x00007f4d953d11f0 in ?? ()
#8  0x00007f4d953d1950 in ?? ()
#9  0x0000000000001000 in ?? ()
#10 0x0000000001313150 in ?? ()
#11 0x0000000001315800 in ?? ()
#12 0x0000000001117100 in ?? ()
#13 0x0000000001313151 in ?? ()
#14 0x00007f4d953d1950 in ?? ()
#15 0x0000000000001000 in ?? ()
#16 0x00007f4daec99e04 in ThreadWeaver::WeaverImpl::blockThreadUntilJobsAreBeingAssigned (this=0x7f4d953d0f80, th=0x7f4d953d0f90) at ../../../threadweaver/Weaver/WeaverImpl.cpp:365
#17 0x00007f4daec9c5b3 in ThreadWeaver::WorkingHardState::applyForWork (this=0x1311690, th=0x1117100) at ../../../threadweaver/Weaver/WorkingHardState.cpp:71
#18 0x00007f4daec9ab2f in ThreadWeaver::ThreadRunHelper::run (this=0x7f4d953d1080, parent=0x1315800, th=0x1117100) at ../../../threadweaver/Weaver/Thread.cpp:87
#19 0x00007f4daec9af89 in ThreadWeaver::Thread::run (this=0x1117100) at ../../../threadweaver/Weaver/Thread.cpp:142
#20 0x00007f4db8809742 in QThread::start (this=0x130c18c, priority=128) at thread/qthread_unix.cpp:338
#21 0x0000000000000000 in ?? ()

Thread 6 (Thread 0x7f4d94bd0950 (LWP 5257)):
[KCrash Handler]
#5  0x00007f4db603a065 in *__GI_raise (sig=<value optimized out>) at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
#6  0x00007f4db603d153 in *__GI_abort () at abort.c:88
#7  0x00007f4db60705e8 in __libc_message (do_abort=2, fmt=0x7f4db6124ed0 "*** glibc detected *** %s: %s: 0x%s ***\n") at ../sysdeps/unix/sysv/linux/libc_fatal.c:173
#8  0x00007f4db607a118 in malloc_printerr (action=2, str=0x7f4db61224fa "malloc(): memory corruption", ptr=<value optimized out>) at malloc.c:5994
#9  0x00007f4db607ca24 in _int_malloc (av=0x7f4db6356a00, bytes=4) at malloc.c:4252
#10 0x00007f4db607e838 in *__GI___libc_malloc (bytes=4) at malloc.c:3551
#11 0x00007f4db8470e1f in KTraderParse_putSymbol (_name=0x7f4d880b2945 "") from /usr/lib/libkdecore.so.5
#12 0x00007f4db8471bdd in kiotraderlex () from /usr/lib/libkdecore.so.5
#13 0x00007f4db84707ff in kiotraderparse () at yacc.c:1405
#14 0x00007f4db8470bce in KTraderParse_mainParse (_code=<value optimized out>) at yacc.y:151
#15 0x00007f4db846c832 in KTraderParse::parseConstraints (_constr=<value optimized out>) at ../../kdecore/services/ktraderparse.cpp:44
#16 0x00007f4db846ab02 in KServiceTypeTrader::applyConstraints (lst=..., constraint=...) at ../../kdecore/services/kservicetypetrader.cpp:59
#17 0x00007f4db846adfa in KServiceTypeTrader::defaultOffers (this=<value optimized out>, serviceType=<value optimized out>, constraint=...) at ../../kdecore/services/kservicetypetrader.cpp:127
#18 0x00007f4db846b693 in KServiceTypeTrader::query (this=0x1733960, serviceType=..., constraint=...) at ../../kdecore/services/kservicetypetrader.cpp:141
#19 0x00007f4d9925e66c in ServiceRunner::match (this=0x1afc890, context=...) at ../../../../plasma/runners/services/servicerunner.cpp:56
#20 0x00007f4db043146b in Plasma::AbstractRunner::performMatch (this=0x1afc890, localContext=...) at ../../plasma/abstractrunner.cpp:160
#21 0x00007f4daec9b83c in ThreadWeaver::JobRunHelper::runTheJob (this=0x7f4d94bcfff0, th=0x1097e50, job=0x1335050) at ../../../threadweaver/Weaver/Job.cpp:106
#22 0x00007f4daec9bb61 in ThreadWeaver::Job::execute (this=0x1335050, th=0x1097e50) at ../../../threadweaver/Weaver/Job.cpp:135
#23 0x00007f4daec9aaff in ThreadWeaver::ThreadRunHelper::run (this=0x7f4d94bd0080, parent=0x1315800, th=0x1097e50) at ../../../threadweaver/Weaver/Thread.cpp:95
#24 0x00007f4daec9af89 in ThreadWeaver::Thread::run (this=0x1097e50) at ../../../threadweaver/Weaver/Thread.cpp:142
#25 0x00007f4db8809742 in QThread::start (this=0x1299, priority=5257) at thread/qthread_unix.cpp:338
#26 0x0000000000000000 in ?? ()

Thread 5 (Thread 0x7f4d8ffff950 (LWP 5258)):
#0  pthread_cond_wait@@GLIBC_2.3.2 () at ../nptl/sysdeps/unix/sysv/linux/x86_64/pthread_cond_wait.S:261
#1  0x00007f4db880a739 in QByteArray::size (out=..., ba=...) at ../../include/QtCore/../../src/corelib/tools/qbytearray.h:377
#2  QBitArray::size (out=..., ba=...) at tools/qbitarray.h:67
#3  operator<< (out=..., ba=...) at tools/qbitarray.cpp:666
#4  0x0000000000096258 in ?? ()
#5  0x0000000001315800 in ?? ()
#6  0x0000000001ae9380 in ?? ()
#7  0x00007f4d8ffff1f0 in ?? ()
#8  0x00007f4d8ffff950 in ?? ()
#9  0x0000000000001000 in ?? ()
#10 0x0000000001313150 in ?? ()
#11 0x0000000001315800 in ?? ()
#12 0x0000000001ae9380 in ?? ()
#13 0x0000000001313151 in ?? ()
#14 0x00007f4d8ffff950 in ?? ()
#15 0x0000000000001000 in ?? ()
#16 0x00007f4daec99e04 in ThreadWeaver::WeaverImpl::blockThreadUntilJobsAreBeingAssigned (this=0x7f4d8fffef80, th=0x7f4d8fffef90) at ../../../threadweaver/Weaver/WeaverImpl.cpp:365
#17 0x00007f4daec9c5b3 in ThreadWeaver::WorkingHardState::applyForWork (this=0x1311690, th=0x1ae9380) at ../../../threadweaver/Weaver/WorkingHardState.cpp:71
#18 0x00007f4daec9ab2f in ThreadWeaver::ThreadRunHelper::run (this=0x7f4d8ffff080, parent=0x1315800, th=0x1ae9380) at ../../../threadweaver/Weaver/Thread.cpp:87
#19 0x00007f4daec9af89 in ThreadWeaver::Thread::run (this=0x1ae9380) at ../../../threadweaver/Weaver/Thread.cpp:142
#20 0x00007f4db8809742 in QThread::start (this=0x130c18c, priority=128) at thread/qthread_unix.cpp:338
#21 0x0000000000000000 in ?? ()

Thread 4 (Thread 0x7f4d8f7fe950 (LWP 5259)):
#0  __lll_lock_wait_private () at ../nptl/sysdeps/unix/sysv/linux/x86_64/lowlevellock.S:91
#1  0x00007f4db607f5ae in _L_lock_3848 () from /lib/libc.so.6
#2  0x00007f4db607bc4b in *__GI___libc_free (mem=0x7f4db6356a00) at malloc.c:3623
#3  0x00007f4d98de9dda in ~ConstIteratorData (this=0x7f4d8f7fdc00, __in_chrg=<value optimized out>) at ../../kabc/addressbook.cpp:57
#4  ~ConstIterator (this=0x7f4d8f7fdc00, __in_chrg=<value optimized out>) at ../../kabc/addressbook.cpp:223
#5  0x00007f4d98deeae3 in KABC::AddressBook::allAddressees (this=0x1b0a730) at ../../kabc/addressbook.cpp:636
#6  0x00007f4d990571f2 in ?? () from /usr/lib/kde4/krunner_contacts.so
#7  0x00007f4db043146b in Plasma::AbstractRunner::performMatch (this=0x1ae9e90, localContext=...) at ../../plasma/abstractrunner.cpp:160
#8  0x00007f4daec9b83c in ThreadWeaver::JobRunHelper::runTheJob (this=0x7f4d8f7fdff0, th=0x1b3c1e0, job=0x1ba2050) at ../../../threadweaver/Weaver/Job.cpp:106
#9  0x00007f4daec9bb61 in ThreadWeaver::Job::execute (this=0x1ba2050, th=0x1b3c1e0) at ../../../threadweaver/Weaver/Job.cpp:135
#10 0x00007f4daec9aaff in ThreadWeaver::ThreadRunHelper::run (this=0x7f4d8f7fe080, parent=0x1315800, th=0x1b3c1e0) at ../../../threadweaver/Weaver/Thread.cpp:95
#11 0x00007f4daec9af89 in ThreadWeaver::Thread::run (this=0x1b3c1e0) at ../../../threadweaver/Weaver/Thread.cpp:142
#12 0x00007f4db8809742 in QThread::start (this=0x7f4db6356a00, priority=128) at thread/qthread_unix.cpp:338
#13 0x0000000000000000 in ?? ()

Thread 3 (Thread 0x7f4d8effd950 (LWP 5260)):
#0  __lll_lock_wait_private () at ../nptl/sysdeps/unix/sysv/linux/x86_64/lowlevellock.S:91
#1  0x00007f4db607f5ae in _L_lock_3848 () from /lib/libc.so.6
#2  0x00007f4db607bc4b in *__GI___libc_free (mem=0x7f4db6356a00) at malloc.c:3623
#3  0x00007f4db884ce5c in QString::setUnicode (this=0x7f4d80080ea0, unicode=0x7f4d8effc218, size=<value optimized out>) at tools/qstring.cpp:3850
#4  0x00007f4db846fbf5 in ~QString (this=0x7f4db8536da0, __in_chrg=<value optimized out>) at /usr/include/qt4/QtCore/qstring.h:866
#5  ~ParseTreeID (this=0x7f4db8536da0, __in_chrg=<value optimized out>) at ../../kdecore/services/ktraderparsetree_p.h:257
#6  0x00007f4db847024f in ~KSharedPtr (this=0x1fe5420, __in_chrg=<value optimized out>) at ../../kdecore/util/ksharedptr.h:90
#7  ~ParseTreeMATCH (this=0x1fe5420, __in_chrg=<value optimized out>) at ../../kdecore/services/ktraderparsetree_p.h:183
#8  0x00007f4db846febf in ~KSharedPtr (this=0x1fe5450, __in_chrg=<value optimized out>) at ../../kdecore/util/ksharedptr.h:90
#9  ~ParseTreeAND (this=0x1fe5450, __in_chrg=<value optimized out>) at ../../kdecore/services/ktraderparsetree_p.h:129
#10 0x00007f4db846cb74 in ~KSharedPtr (this=0x1fe52e0, __in_chrg=<value optimized out>) at ../../kdecore/util/ksharedptr.h:90
#11 ~ParseTreeBRACKETS (this=0x1fe52e0, __in_chrg=<value optimized out>) at ../../kdecore/services/ktraderparsetree_p.h:215
#12 0x00007f4db846fdbf in ~KSharedPtr (this=0x1fe5480, __in_chrg=<value optimized out>) at ../../kdecore/util/ksharedptr.h:90
#13 ~ParseTreeOR (this=0x1fe5480, __in_chrg=<value optimized out>) at ../../kdecore/services/ktraderparsetree_p.h:114
#14 0x00007f4db846fdbf in ~KSharedPtr (this=0x1fe54b0, __in_chrg=<value optimized out>) at ../../kdecore/util/ksharedptr.h:90
#15 ~ParseTreeOR (this=0x1fe54b0, __in_chrg=<value optimized out>) at ../../kdecore/services/ktraderparsetree_p.h:114
#16 0x00007f4db846cb74 in ~KSharedPtr (this=0x1fe54e0, __in_chrg=<value optimized out>) at ../../kdecore/util/ksharedptr.h:90
#17 ~ParseTreeBRACKETS (this=0x1fe54e0, __in_chrg=<value optimized out>) at ../../kdecore/services/ktraderparsetree_p.h:215
#18 0x00007f4db846febf in ~KSharedPtr (this=0x207fee0, __in_chrg=<value optimized out>) at ../../kdecore/util/ksharedptr.h:90
#19 ~ParseTreeAND (this=0x207fee0, __in_chrg=<value optimized out>) at ../../kdecore/services/ktraderparsetree_p.h:129
#20 0x00007f4db846c726 in KSharedPtr<KTraderParse::ParseTreeBase>::attach (_ptr1=<value optimized out>) at ../../kdecore/util/ksharedptr.h:214
#21 KSharedPtr<KTraderParse::ParseTreeBase>::operator= (_ptr1=<value optimized out>) at ../../kdecore/util/ksharedptr.h:97
#22 KTraderParse_setParseTree (_ptr1=<value optimized out>) at ../../kdecore/services/ktraderparse.cpp:52
#23 0x00007f4db8470b41 in kiotraderparse () at yacc.y:77
#24 0x00007f4db8470bce in KTraderParse_mainParse (_code=<value optimized out>) at yacc.y:151
#25 0x00007f4db846c832 in KTraderParse::parseConstraints (_constr=<value optimized out>) at ../../kdecore/services/ktraderparse.cpp:44
#26 0x00007f4db846ab02 in KServiceTypeTrader::applyConstraints (lst=..., constraint=...) at ../../kdecore/services/kservicetypetrader.cpp:59
#27 0x00007f4db846adfa in KServiceTypeTrader::defaultOffers (this=<value optimized out>, serviceType=<value optimized out>, constraint=...) at ../../kdecore/services/kservicetypetrader.cpp:127
#28 0x00007f4db846b693 in KServiceTypeTrader::query (this=0x1733960, serviceType=..., constraint=...) at ../../kdecore/services/kservicetypetrader.cpp:141
#29 0x00007f4d9925e66c in ServiceRunner::match (this=0x1afc890, context=...) at ../../../../plasma/runners/services/servicerunner.cpp:56
#30 0x00007f4db043146b in Plasma::AbstractRunner::performMatch (this=0x1afc890, localContext=...) at ../../plasma/abstractrunner.cpp:160
#31 0x00007f4daec9b83c in ThreadWeaver::JobRunHelper::runTheJob (this=0x7f4d8effcff0, th=0x1bac850, job=0x15a82a0) at ../../../threadweaver/Weaver/Job.cpp:106
#32 0x00007f4daec9bb61 in ThreadWeaver::Job::execute (this=0x15a82a0, th=0x1bac850) at ../../../threadweaver/Weaver/Job.cpp:135
#33 0x00007f4daec9aaff in ThreadWeaver::ThreadRunHelper::run (this=0x7f4d8effd080, parent=0x1315800, th=0x1bac850) at ../../../threadweaver/Weaver/Thread.cpp:95
#34 0x00007f4daec9af89 in ThreadWeaver::Thread::run (this=0x1bac850) at ../../../threadweaver/Weaver/Thread.cpp:142
#35 0x00007f4db8809742 in QThread::start (this=0x7f4db6356a00, priority=128) at thread/qthread_unix.cpp:338
#36 0x0000000000000000 in ?? ()

Thread 2 (Thread 0x7f4d8dc42950 (LWP 8339)):
#0  __lll_lock_wait_private () at ../nptl/sysdeps/unix/sysv/linux/x86_64/lowlevellock.S:91
#1  0x00007f4db607f5ae in _L_lock_3848 () from /lib/libc.so.6
#2  0x00007f4db607bc4b in *__GI___libc_free (mem=0x7f4db6356a00) at malloc.c:3623
#3  0x00007f4db575b0ea in ?? () from /usr/lib/libglib-2.0.so.0
#4  0x00007f4db891bf82 in QByteArray::detach (this=<value optimized out>, uc=0x111be00, len=6338584, state=0x7f4d8dc42950) at ../../include/QtCore/../../src/corelib/tools/qbytearray.h:410
#5  QByteArray::data (this=<value optimized out>, uc=0x111be00, len=6338584, state=0x7f4d8dc42950) at ../../include/QtCore/../../src/corelib/tools/qbytearray.h:404
#6  QIsciiCodec::convertFromUnicode (this=<value optimized out>, uc=0x111be00, len=6338584, state=0x7f4d8dc42950) at codecs/qisciicodec.cpp:237
#7  0x00007f4db880974a in QThread::start (this=0x7f4db6356a00, priority=128) at thread/qthread_unix.cpp:338
#8  0x0000000000000000 in ?? ()

Thread 1 (Thread 0x7f4db8cc2760 (LWP 4761)):
#0  __lll_lock_wait_private () at ../nptl/sysdeps/unix/sysv/linux/x86_64/lowlevellock.S:91
#1  0x00007f4db607f5ae in _L_lock_3848 () from /lib/libc.so.6
#2  0x00007f4db607bc4b in *__GI___libc_free (mem=0x7f4db6356a00) at malloc.c:3623
#3  0x00007f4db04b01ef in QSet<Plasma::FindMatchesJob*>::remove(Plasma::FindMatchesJob* const&) () from /usr/lib/libplasma.so.3
#4  0x00007f4db04af265 in Plasma::RunnerManagerPrivate::jobDone (this=<value optimized out>, _c=<value optimized out>, _id=<value optimized out>, _a=0x7fff05db5b20)
    at ../../plasma/runnermanager.cpp:189
#5  Plasma::RunnerManager::qt_metacall (this=<value optimized out>, _c=<value optimized out>, _id=<value optimized out>, _a=0x7fff05db5b20) at ./runnermanager.moc:94
#6  0x00007f4db8907862 in QSignalMapper (this=0x7f4db6356a00, parent=0x80) at kernel/qsignalmapper.cpp:119
#7  0x00007fff05db5aa0 in ?? ()
#8  0x00007fff05db5a90 in ?? ()
#9  0x00007fff05db5ac0 in ?? ()
#10 0x0000000000000038 in ?? ()
#11 0x0000000001f6cb50 in ?? ()
#12 0x0000000500000005 in ?? ()
#13 0x0000000001b53050 in ?? ()
#14 0x0000000001080db0 in ?? ()
#15 0x0000000001f6cb40 in ?? ()
#16 0x00000001ac44e0fc in ?? ()
#17 0x0000000001b53050 in ?? ()
#18 0x0000000100000005 in ?? ()
#19 0x0000000001315920 in ?? ()
#20 0x0000000000000002 in ?? ()
#21 0x0000000001080e08 in ?? ()
#22 0x00007f4d80080f10 in ?? ()
#23 0x0000000000000000 in ?? ()

Reported using DrKonqi

Comment 1 Dario Andres 2009-07-15 15:11:35 UTC

This could be related to bug 192536. Thanks

Comment 2 Dario Andres 2009-07-22 15:35:58 UTC

Merging with bug 201110 which has a complete backtrace. Thanks

*** This bug has been marked as a duplicate of bug 201110 ***