Bug 386065 - Crash when scrolling in tmux
Summary: Crash when scrolling in tmux
Status: RESOLVED WORKSFORME
Alias: None
Product: konsole
Classification: Applications
Component: general (show other bugs)
Version: 17.08.2
Platform: Other Linux
: NOR normal
Target Milestone: ---
Assignee: Konsole Developer
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2017-10-22 11:18 UTC by JR
Modified: 2018-03-01 01:11 UTC (History)
0 users

See Also:
Latest Commit:
Version Fixed In:
Sentry Crash Report:

Attachments
backtrace (4.21 KB, text/plain)
2017-10-22 11:18 UTC, JR 		Details
View All Add an attachment

Note You need to log in before you can comment on or make changes to this bug.
Description JR 2017-10-22 11:18:18 UTC 
Created attachment 108505 [details]
backtrace

Manjaro x64 current (171022), konsole package is 17.08.2-1 and the program itself reports 17.08.2. Qt5 packages are version 5.9.2-1. (Not sure which component to pick so I'll go with general.)

When scrolling in tmux Konsole very reliably crashes. It happens with the Konsole from the Manjaro package as well as one compiled from git (4203dd) and affects Yakuake as well. I'm attaching the full 42-frame backtrace[1] but the last 10 are as follows:

#0  0x00007ffff0d8e8a0 in raise () from /usr/lib/libc.so.6
#1  0x00007ffff0d8ff09 in abort () from /usr/lib/libc.so.6
#2  0x00007ffff0dd1517 in __libc_message () from /usr/lib/libc.so.6
#3  0x00007ffff0dd7c84 in malloc_printerr () from /usr/lib/libc.so.6
#4  0x00007ffff0dd9599 in _int_free () from /usr/lib/libc.so.6
#5  0x00007fffed2782e4 in hb_buffer_destroy () from /usr/lib/libharfbuzz.so.0
#6  0x00007ffff2567f88 in QTextEngine::shapeTextWithHarfbuzzNG(QScriptItem const&, unsigned short const*, int, QFontEngine*, QVector<unsigned int> const&, bool, bool) const ()
   from /usr/lib/libQt5Gui.so.5
#7  0x00007ffff256a8fe in QTextEngine::shapeText(int) const () from /usr/lib/libQt5Gui.so.5
#8  0x00007ffff256b490 in QTextEngine::shape(int) const () from /usr/lib/libQt5Gui.so.5
#9  0x00007ffff2572921 in QTextEngine::shapeLine(QScriptLine const&) () from /usr/lib/libQt5Gui.so.5
#10 0x00007ffff270e8ec in QPainter::drawText(QPointF const&, QString const&, int, int) () from /usr/lib/libQt5Gui.so.5

This may be a harfbuzz bug, but I believe the behaviour started with the recent Konsole update. I haven't tried bisecting anything yet.


[1]: Also https://pastebin.com/J0TawBHq
Comment 1 JR 2017-10-22 16:15:32 UTC 
Terminal output when it crashes:

konsole: malloc.c:2427: sysmalloc: Assertion `(old_top == initial_top (av) && old_size == 0) || ((unsigned long) (old_size) >= MINSIZE && prev_inuse (old_top) && ((unsigned long) old_end & (pagesize - 1)) == 0)' failed.
zsh: abort (core dumped)  /usr/local/bin/konsole
Comment 2 Kurt Hindenburg 2018-02-14 03:56:15 UTC 
can you attach your tmux.conf and what version?
Comment 3 JR 2018-02-15 01:56:37 UTC 
I can no longer reproduce with konsole 17.12.1, Qt5 5.10.0 and tmux 2.6.
Comment 4 Christoph Feck 2018-03-01 01:11:52 UTC 
Thanks for the update; changing status.