Bug 156443 - Using some functions crashes Inkscape
Using some functions crashes Inkscape
Product: Fedora
Classification: Fedora
Component: inkscape (Show other bugs)
All Linux
medium Severity medium
: ---
: ---
Assigned To: Phillip Compton
Fedora Extras Quality Assurance
: 157778 (view as bug list)
Depends On: 156219 156228
  Show dependency treegraph
Reported: 2005-04-30 07:41 EDT by Simon Lanzmich
Modified: 2007-11-30 17:11 EST (History)
5 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2005-05-31 13:04:26 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Simon Lanzmich 2005-04-30 07:41:32 EDT
Description of problem:
Using inkscape, several functions crash the program. For example, when I
press Shift+Ctrl+F to open the Fill and Stroke dialog or select the Keyboard
shortcut help from the menu, it crashes. Some other dialogs, for example the
Text + Font dialog opens correctly. I have installed inkscape via yum from
extras-development and have a fully updated FC4-test2 system.

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:
1. Open Inkscape
2. Press Shift+Ctrl+F
Actual results:
Inkscape crashes and gives the following output:

[simon@simon ~]$ inkscape
*** glibc detected *** inkscape: free(): invalid pointer:
0x0000000001cb01a0 ***
======= Backtrace: =========
======= Memory map: ========
00400000-00804000 r-xp 00000000 08:08
135402                             /usr/bin/inkscape
00903000-00937000 rw-p 00403000 08:08
135402                             /usr/bin/inkscape
00937000-01fb4000 rw-p 00937000 00:00 0
31b0400000-31b0408000 r-xp 00000000 08:08
136971                         /usr/X11R6/lib64/libXrender.so.1.2.2
31b0408000-31b0508000 ---p 00008000 08:08
136971                         /usr/X11R6/lib64/libXrender.so.1.2.2
31b0508000-31b0509000 rw-p 00008000 08:08
136971                         /usr/X11R6/lib64/libXrender.so.1.2.2
31b0600000-31b0603000 r-xp 00000000 08:08
137213                         /usr/X11R6/lib64/libXrandr.so.2.0
31b0603000-31b0702000 ---p 00003000 08:08
137213                         /usr/X11R6/lib64/libXrandr.so.2.0
31b0702000-31b0703000 rw-p 00002000 08:08
137213                         /usr/X11R6/lib64/libXrandr.so.2.0
31b0800000-31b0809000 r-xp 00000000 08:08
138455                         /usr/X11R6/lib64/libXcursor.so.1.0.2
31b0809000-31b0909000 ---p 00009000 08:08
138455                         /usr/X11R6/lib64/libXcursor.so.1.0.2
31b0909000-31b090a000 rw-p 00009000 08:08
138455                         /usr/X11R6/lib64/libXcursor.so.1.0.2
31b0a00000-31b0a14000 r-xp 00000000 08:08
140021                         /usr/X11R6/lib64/libXft.so.2.1.2
31b0a14000-31b0b13000 ---p 00014000 08:08
140021                         /usr/X11R6/lib64/libXft.so.2.1.2
31b0b13000-31b0b14000 rw-p 00013000 08:08
140021                         /usr/X11R6/lib64/libXft.so.2.1.2
31b0c00000-31b0c0b000 r-xp 00000000 08:08
140577                         /usr/lib64/libpangox-1.0.so.0.800.1
31b0c0b000-31b0d0b000 ---p 0000b000 08:08
140577                         /usr/lib64/libpangox-1.0.so.0.800.1
Emergency save activated!
Emergency save completed. Inkscape will close now.
If you can reproduce this crash, please file a bug at www.inkscape.org
with a detailed description of the steps leading to the crash, so we can
fix it.

Expected results:
The Fill and Stroke dialog should open.

Additional info:
Comment 1 Michael Schwendt 2005-04-30 09:10:34 EDT
Just for the record, i386 is affected, too. Could be improper usage of libsigc++20.

(gdb) bt
#0  0x0089c7e2 in _dl_sysinfo_int80 () from /lib/ld-linux.so.2
#1  0x00e212dc in raise () from /lib/libc.so.6
#2  0x00e22a28 in abort () from /lib/libc.so.6
#3  0x00e5608a in __libc_message () from /lib/libc.so.6
#4  0x00e5bf94 in _int_free () from /lib/libc.so.6
#5  0x00e5c4cf in free () from /lib/libc.so.6
#6  0x0096b7a9 in operator delete () from /usr/lib/libstdc++.so.6
#7  0x080ddf69 in std::_List_base<sigc::slot_base, std::allocator<sigc::slot_bas
e> >::_M_clear (this=0xa18de48)
    at /usr/lib/gcc/i386-redhat-linux/3.4.2/../../../../include/c++/3.4.2/ext/ne
#8  0x00de6449 in ~signal_base (this=0xa18de30)
    at /usr/lib/gcc/i386-redhat-linux/4.0.0/../../../../include/c++/4.0.0/bits/s
#9  0x0813d8d8 in ~URIReference (this=0xa18de18) at uri-references.h:94
#10 0x0810b0e8 in ~SPClipPathReference (this=0xa18de18) at sp-item.cpp:310
#11 0x081076b6 in sp_item_release (object=0x9eebff4) at sp-item.cpp:310
#12 0x00331817 in g_cclosure_marshal_VOID__VOID ()
   from /usr/lib/libgobject-2.0.so.0
#13 0x00325d9b in g_cclosure_new_swap () from /usr/lib/libgobject-2.0.so.0
#14 0x00326285 in g_closure_invoke () from /usr/lib/libgobject-2.0.so.0
#15 0x00334c96 in g_signal_stop_emission () from /usr/lib/libgobject-2.0.so.0
#16 0x00335ee0 in g_signal_emit_valist () from /usr/lib/libgobject-2.0.so.0
---Type <return> to continue, or q <return> to quit---
Comment 2 Denis Leroy 2005-05-01 00:07:23 EDT
I was able to reproduce the problem. I think this is a binary incompatibility
between the currently available inkscape RPM and the libstdc++ library from
gcc4. It needs to be rebuilt, however i was UNABLE to recompile the inkscape
SRPM: it fails from something that looks like a gcc4 incompatibility related to
bug 156219 (the current gtkmm24s don't build either).

Now for the good news. Inkscape builds and works just fine with the recently
updated libsigc++20-2.0.11, gtkmm24-2.6.2 and glibmm24-2.6.1. All of inkscape
features and dialog boxes work.

I will add the appropriate rebuild requests to the FC4 status page.
Comment 3 Michael Schwendt 2005-05-01 05:25:32 EDT
Thanks for looking into it! For destructor related crashes, that sounds like a
theory indeed. Actually, Inkscape was one of the packages, which failed to
rebuild after the automated release version bump, which I later filed as bug 156228.
Comment 4 Jef Spaleta 2005-05-15 09:55:05 EDT
*** Bug 157778 has been marked as a duplicate of this bug. ***
Comment 5 Michael Schwendt 2005-05-31 13:04:26 EDT
inkscape-0.41-7, which should appear in Fedora Extras Development soon, should
fix this.

Note You need to log in before you can comment on or make changes to this bug.