Bug 771140

Summary: [abrt] openoffice.org-brand-1:3.3.0-20.8.fc14: IsSctFrm: Process /usr/lib64/openoffice.org3/program/soffice.bin was killed by signal 11 (SIGSEGV)
Product: [Fedora] Fedora Reporter: Alex <a.delachenal>
Component: openoffice.orgAssignee: Caolan McNamara <caolanm>
Status: CLOSED INSUFFICIENT_DATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 14CC: caolanm
Target Milestone: ---   
Target Release: ---   
Hardware: x86_64   
OS: Unspecified   
Whiteboard: abrt_hash:cc22fa26e8c5d19981f31db6fa45cac5d88b5532
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2012-01-04 12:07:09 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Attachments:
Description Flags
File: backtrace none

Description Alex 2012-01-01 22:52:02 UTC 
abrt version: 1.1.18
architecture: x86_64
Attached file: backtrace, 64534 bytes
cmdline: /usr/lib64/openoffice.org3/program/soffice.bin -quickstart -nologo -nodefault
comment: so far, I had never experienced such a nuisance in Open Office Writer: very strange!
component: openoffice.org
Attached file: coredump, 228675584 bytes
crash_function: IsSctFrm
executable: /usr/lib64/openoffice.org3/program/soffice.bin
kernel: 2.6.35.14-106.fc14.x86_64
package: openoffice.org-brand-1:3.3.0-20.8.fc14
rating: 4
reason: Process /usr/lib64/openoffice.org3/program/soffice.bin was killed by signal 11 (SIGSEGV)
release: Fedora release 14 (Laughlin)
time: 1325457737
uid: 500

How to reproduce
-----
1. other open programs: Firefox (with 6 tabs) + 2 instances of Nautilus, browsing on folders on two (physically) distinct partitions (i.e., different hard disks)
2. I have been working on the same file (Open Office Writer) for about 2 days
3. I had just copied&pasted a short phrase from Firefox (Google query) into the Writer file
Comment 1 Alex 2012-01-01 22:52:07 UTC 
Created attachment 550170 [details]
File: backtrace
Comment 2 Caolan McNamara 2012-01-04 12:03:01 UTC 
bool lcl_IsCalcUpperAllowed( const SwFrm& rFrm )
{
    return !rFrm.GetUpper()->IsSctFrm() &&
           !rFrm.GetUpper()->IsFooterFrm() &&
           // --> OD 2004-11-02 #i23129#, #i36347# - no format of upper Writer fly frame
           !rFrm.GetUpper()->IsFlyFrm() &&
           // <--
           !( rFrm.GetUpper()->IsTabFrm() && rFrm.GetUpper()->GetUpper()->IsInTab() ) &&
           !( rFrm.IsTabFrm() && rFrm.GetUpper()->IsInTab() );
}

I suppose that GetUpper is returning NULL for some fundamental bustage elsewhere. Hard to be sure from the backtrace.
Comment 3 Caolan McNamara 2012-01-04 12:07:09 UTC 
no, can't be that, calls to lcl_IsCalcUpperAllowed are protected by
if ( GetUpper() ) :-(

Must be busted in some way which would need a reproducer in order to figure this out. Have to be honest and close it as cant fix with the available information. With some luck a reproducer for this will show up eventually (or already has and this is fixed in recent fedoras)