496489 – Crash with segmentation fault when browsing settings for a newly created account.

Bug 496489 - Crash with segmentation fault when browsing settings for a newly created account.

Summary: Crash with segmentation fault when browsing settings for a newly created acco...

Status:	REPORTED

Alias:	None

Product:	NeoChat
Classification:	Applications
Component:	General (show other bugs)
Version:	git master
Platform:	Other Linux

Importance:	NOR crash
Target Milestone:	---
Assignee:	Tobias Fella

URL:
Keywords:	qt6

Depends on:
Blocks:

Reported:	2024-11-20 12:00 UTC by dreieck
Modified:	2024-11-25 21:36 UTC (History)
CC List:	4 users (show)

See Also:
Latest Commit:	19510858a
Version Fixed In:
Sentry Crash Report:

Attachments
Terminal output of a GDB run of NeoChat. (33.43 KB, text/plain) 2024-11-20 12:00 UTC, dreieck	Details
View All Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description dreieck 2024-11-20 12:00:09 UTC

Created attachment 175971 [details]
Terminal output of a GDB run of NeoChat.

Here: https://github.com/quotient-im/libQuotient/issues/828#issuecomment-2480554133 I was told that this is a NeoChat issue, to I report it here.

---

SUMMARY

If I add a new account, then click a bit in the settings, a segmentation fault happens.

It does not happen anymore when I restart NeoChat afterwards and log in with the already created account.

But if I add a new account and then click in the settings, it happens again:

It happened twice, each time after logging in with a new account and going "somewhere" (I do not remember exactly where first and in which order) into the settings just after logging in with the new account.

GDB backtrace:

```
#0  0x00007ffff4bad9ef in ??? () at /usr/lib/libQt6Core.so.6
#1  0x000055555578493e in NeoChatConnection::errorOccured (this=this@entry=0x0, _t1=...) at /usr/src/debug/neochat-debug-git/build/src/neochat_autogen/include/moc_neochatconnection.cpp:689
#2  0x000055555591af40 in operator() (__closure=0x555556cca4e0, error=...) at /usr/src/debug/neochat-debug-git/neochat/src/login.cpp:88
#3  operator() (__closure=<optimized out>) at /usr/include/qt6/QtCore/qobjectdefs_impl.h:141
#4  QtPrivate::FunctorCallBase::call_internal<void, QtPrivate::FunctorCall<QtPrivate::IndexesList<0, 1, 2, 3>, QtPrivate::List<QString, QString, int, int>, void, LoginHelper::init()::<lambda(QString, const QString&, int, int)> >::call(LoginHelper::init()::<lambda(QString, const QString&, int, int)>&, void**)::<lambda()> > (args=<optimized out>, fn=<optimized out>)
    at /usr/include/qt6/QtCore/qobjectdefs_impl.h:65
#5  QtPrivate::FunctorCall<QtPrivate::IndexesList<0, 1, 2, 3>, QtPrivate::List<QString, QString, int, int>, void, LoginHelper::init()::<lambda(QString, const QString&, int, int)> >::call
    (f=..., arg=<optimized out>) at /usr/include/qt6/QtCore/qobjectdefs_impl.h:140
#6  QtPrivate::FunctorCallable<LoginHelper::init()::<lambda(QString, const QString&, int, int)>, QString, QString, int, int>::call<QtPrivate::List<QString, QString, int, int>, void>
    (f=..., arg=<optimized out>) at /usr/include/qt6/QtCore/qobjectdefs_impl.h:362
#7  QtPrivate::QCallableObject<LoginHelper::init()::<lambda(QString, const QString&, int, int)>, QtPrivate::List<QString, QString, int, int>, void>::impl(int, QtPrivate::QSlotObjectBase *, QObject *, void **, bool *) (which=<optimized out>, this_=0x555556cca4d0, r=<optimized out>, a=<optimized out>, ret=<optimized out>) at /usr/include/qt6/QtCore/qobjectdefs_impl.h:572
#8  0x00007ffff4badd9a in ??? () at /usr/lib/libQt6Core.so.6
#9  0x00007ffff6b5bcf9 in Quotient::Connection::networkError (this=this@entry=0x555556cb7400, _t1=..., _t2=..., _t3=<optimized out>, _t3@entry=1, _t4=<optimized out>, _t4@entry=0)
    at /usr/src/debug/libquotient-debug-git/build/QuotientQt6_autogen/include/moc_connection.cpp:1829
#10 0x00007ffff6b5f833 in operator() (__closure=<optimized out>, retriesTaken=1, nextInMilliseconds=0) at /usr/src/debug/libquotient-debug-git/libquotient-git/Quotient/connection.cpp:455
#11 operator() (__closure=<optimized out>) at /usr/include/qt6/QtCore/qobjectdefs_impl.h:141
#12 QtPrivate::FunctorCallBase::call_internal<void, QtPrivate::FunctorCall<QtPrivate::IndexesList<0, 1>, QtPrivate::List<int, long int>, void, Quotient::Connection::sync(int)::<lambda(int, int)> >::call(Quotient::Connection::sync(int)::<lambda(int, int)>&, void**)::<lambda()> > (args=<optimized out>, fn=<optimized out>) at /usr/include/qt6/QtCore/qobjectdefs_impl.h:65
#13 QtPrivate::FunctorCall<QtPrivate::IndexesList<0, 1>, QtPrivate::List<int, long int>, void, Quotient::Connection::sync(int)::<lambda(int, int)> >::call (f=<optimized out>, arg=<optimized out>)
    at /usr/include/qt6/QtCore/qobjectdefs_impl.h:140
#14 QtPrivate::FunctorCallable<Quotient::Connection::sync(int)::<lambda(int, int)>, int, long int>::call<QtPrivate::List<int, long>, void> (f=<optimized out>, arg=<optimized out>)
    at /usr/include/qt6/QtCore/qobjectdefs_impl.h:362
#15 QtPrivate::QCallableObject<Quotient::Connection::sync(int)::<lambda(int, int)>, QtPrivate::List<int, long int>, void>::impl(int, QtPrivate::QSlotObjectBase *, QObject *, void **, bool *)
    (which=<optimized out>, this_=<optimized out>, r=<optimized out>, a=<optimized out>, ret=<optimized out>) at /usr/include/qt6/QtCore/qobjectdefs_impl.h:572
#16 0x00007ffff4badd9a in ??? () at /usr/lib/libQt6Core.so.6
#17 0x00007ffff6b43349 in Quotient::BaseJob::retryScheduled (this=<optimized out>, _t1=<optimized out>, _t2=<optimized out>)
    at /usr/src/debug/libquotient-debug-git/build/QuotientQt6_autogen/T4CFEN5LXH/moc_basejob.cpp:510
#18 0x00007ffff4badd9a in ??? () at /usr/lib/libQt6Core.so.6
#19 0x00007ffff4bb6f44 in QTimer::timerEvent(QTimerEvent*) () at /usr/lib/libQt6Core.so.6
#20 0x00007ffff4b9f569 in QObject::event(QEvent*) () at /usr/lib/libQt6Core.so.6
#21 0x00007ffff5cfe0b7 in QApplicationPrivate::notify_helper(QObject*, QEvent*) () at /usr/lib/libQt6Widgets.so.6
#22 0x00007ffff4b55f08 in QCoreApplication::notifyInternal2(QObject*, QEvent*) () at /usr/lib/libQt6Core.so.6
#23 0x00007ffff4ccaba9 in QTimerInfoList::activateTimers() () at /usr/lib/libQt6Core.so.6
#24 0x00007ffff4db3edc in ??? () at /usr/lib/libQt6Core.so.6
#25 0x00007ffff250aeb9 in ??? () at /usr/lib/libglib-2.0.so.0
#26 0x00007ffff256b5d7 in ??? () at /usr/lib/libglib-2.0.so.0
#27 0x00007ffff250a432 in g_main_context_iteration () at /usr/lib/libglib-2.0.so.0
#28 0x00007ffff4db1358 in QEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () at /usr/lib/libQt6Core.so.6
#29 0x00007ffff4b61a55 in QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) () at /usr/lib/libQt6Core.so.6
#30 0x00007ffff4b5723a in QCoreApplication::exec() () at /usr/lib/libQt6Core.so.6
#31 0x00005555555da3b6 in main (argc=<optimized out>, argv=<optimized out>) at /usr/src/debug/neochat-debug-git/neochat/src/main.cpp:307
```

Attached:

Full terminal output of a run of `gdb neochat` (so, it includes NeoChat's own terminal output).


STEPS TO REPRODUCE

See above.


OBSERVED RESULT

See above.


EXPECTED RESULT

No crash. Settings browse- and editable.


SOFTWARE/OS VERSIONS
Windows: n/a
macOS: n/a
(available in the Info Center app, or by running `kinfo` in a terminal window)
Linux/KDE Plasma: 
KDE Plasma Version: 6.2.3
KDE Frameworks Version: 6.8.0
Qt Version: 6.8.0


Regards!

Comment 1 John Kizer 2024-11-25 18:36:55 UTC

Hi - an updated Fedora 41 package for NeoChat (24.08.3 with libquotient 0.9) went out on the 22nd, are you able to update to that and see if this still shows up?

Comment 2 dreieck 2024-11-25 21:18:49 UTC

(In reply to John Kizer from comment #1)
> an updated Fedora 41 package for NeoChat (24.08.3 with libquotient 0.9) went out on the 22nd, are you able to update to that

I am not using Fedora so I cannot update to that (how did you assume that I use Fedora?).

What I used was NeoChat with libQuotient, both built locally from git, both were after or at the release versions you mentioned:

* NeoChat: 25.03.70+git, git commit hash: 4b0802207
* libQuotient: 0.9.0+git, git commit hash: 8f5b4ea2

(Sorry that I initially did set a 24.x version in the drop down menu. I don't know why.)

But I just rebuilt both from their latest git repository state:
* libQuotient from https://github.com/quotient-im/libQuotient, version 0.9.0+git, git commit hash: e579e0be
* NeoChat from https://github.com/KDE/neochat, version 25.03.70+git, git commit hash: 19510858a

I started NeoChat, removed the account and re-added it. NeoChat did crash while fetching messages.

Last lines of terminal output and GDB backtrace:

```
[...]
quotient.main: E2EE switched on in "!<censored>:<censored>"
quotient.main: E2EE switched on in "!<censored>:<censored>"
qrc:/qt/qml/org/kde/neochat/login/WelcomePage.qml:209: TypeError: Property 'closeDialog' of object WelcomePage_QMLTYPE_259(0x55555b669600) is not a function
quotient.jobs: "QueryKeysJob" stopped without ready network reply
quotient.jobs: Won't proceed with the abandoned request: "POST https://matrix.frei.chat/_matrix/client/v3/keys/query"
quotient.jobs: "QueryKeysJob" stopped with empty network reply
quotient.jobs: 429 <- GET https://matrix.frei.chat/_matrix/client/v1/rooms/%21<censored>%3A<censored>/hierarchy
quotient.jobs: "GetSpaceHierarchyJob" status TooManyRequests: Too many requests, next retry advised after 10 ms
quotient.jobs: 429 <- GET https://matrix.frei.chat/_matrix/client/v1/rooms/%21<censored>%3A<censored>/hierarchy
quotient.jobs: "GetSpaceHierarchyJob" status TooManyRequests: Too many requests, next retry advised after 6 ms
quotient.jobs: 429 <- GET https://matrix.frei.chat/_matrix/client/v1/rooms/%21<censored>%3A<censored>/hierarchy
quotient.jobs: "GetSpaceHierarchyJob" status TooManyRequests: Too many requests, next retry advised after 44 ms
[Thread 0x7fff62bef6c0 (LWP 10291) exited]
quotient.jobs.sync: "SyncJob-101" status Timeout: The job has timed out
quotient.jobs.sync: "SyncJob-101" stopped without ready network reply
quotient.jobs.sync: "SyncJob-101": retry #1 in 0 s

Thread 1 "neochat" received signal SIGSEGV, Segmentation fault.
0x00007ffff4bad9ef in ?? () from /usr/lib/libQt6Core.so.6
(gdb) bt
#0  0x00007ffff4bad9ef in ??? () at /usr/lib/libQt6Core.so.6
#1  0x000055555578643e in ??? ()
#2  0x000055555591cb00 in ??? ()
#3  0x00007ffff4badd9a in ??? () at /usr/lib/libQt6Core.so.6
#4  0x00007ffff6b5bbb9 in Quotient::Connection::networkError(QString, QString, int, int) () at /usr/lib/libQuotientQt6.so.0.9
#5  0x00007ffff6b5f6b3 in ??? () at /usr/lib/libQuotientQt6.so.0.9
#6  0x00007ffff4badd9a in ??? () at /usr/lib/libQt6Core.so.6
#7  0x00007ffff6b431f9 in Quotient::BaseJob::retryScheduled(int, long) () at /usr/lib/libQuotientQt6.so.0.9
#8  0x00007ffff4badd9a in ??? () at /usr/lib/libQt6Core.so.6
#9  0x00007ffff4bb6f44 in QTimer::timerEvent(QTimerEvent*) () at /usr/lib/libQt6Core.so.6
#10 0x00007ffff4b9f569 in QObject::event(QEvent*) () at /usr/lib/libQt6Core.so.6
#11 0x00007ffff5cfe0b7 in QApplicationPrivate::notify_helper(QObject*, QEvent*) () at /usr/lib/libQt6Widgets.so.6
#12 0x00007ffff4b55f08 in QCoreApplication::notifyInternal2(QObject*, QEvent*) () at /usr/lib/libQt6Core.so.6
#13 0x00007ffff4ccaba9 in QTimerInfoList::activateTimers() () at /usr/lib/libQt6Core.so.6
#14 0x00007ffff4db3f24 in ??? () at /usr/lib/libQt6Core.so.6
#15 0x00007ffff2516afb in g_main_dispatch (context=0x7fffe8000f30) at ../glib/glib/gmain.c:3357
#16 0x00007ffff2516c18 in g_main_context_dispatch_unlocked (context=context@entry=0x7fffe8000f30) at ../glib/glib/gmain.c:4208
#17 0x00007ffff251842f in g_main_context_iterate_unlocked (context=context@entry=0x7fffe8000f30, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at ../glib/glib/gmain.c:4273
#18 0x00007ffff2518a44 in g_main_context_iteration (context=0x7fffe8000f30, may_block=1) at ../glib/glib/gmain.c:4338
#19 0x00007ffff4db1358 in QEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) () at /usr/lib/libQt6Core.so.6
#20 0x00007ffff4b61a55 in QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) () at /usr/lib/libQt6Core.so.6
#21 0x00007ffff4b5723a in QCoreApplication::exec() () at /usr/lib/libQt6Core.so.6
#22 0x00005555555db256 in ??? ()
#23 0x00007ffff4437d6e in __libc_start_call_main (main=main@entry=0x5555555d9d50, argc=argc@entry=1, argv=argv@entry=0x7fffffffd7c8) at ../sysdeps/nptl/libc_start_call_main.h:58
#24 0x00007ffff4437e2a in __libc_start_main_impl (main=0x5555555d9d50, argc=1, argv=0x7fffffffd7c8, init=<optimized out>, fini=<optimized out>, rtld_fini=<optimized out>, stack_end=0x7fffffffd7b8)
    at ../csu/libc-start.c:360
#25 0x00005555556ffeb5 in ??? ()
```

Regards!

Comment 3 John Kizer 2024-11-25 21:36:34 UTC

(In reply to dreieck from comment #2)
> I am not using Fedora so I cannot update to that (how did you assume that I
> use Fedora?).

Sorry about that, got my wires crossed with two different reports!