Red Hat Bugzilla – Bug 432767
Tuxtype segfaults when launched
Last modified: 2008-10-15 22:12:32 EDT
Description of problem: When launching tuxtype2 the program segfaults as soon as you try to start a game. Version-Release number of selected component (if applicable): 1.5.3-2.fc6 How reproducible: Always Steps to Reproduce: 1. Start tuxtype2 2. Select a game from the list 3. Screen Freezes Actual results: Screen freezes, but running in a window shows that the program actually segfaults. Additional info: This was initially reported by someone on the fedora-users list, but they don't seem to have created a bug report. I tried it on my system and got the same problem. Both our systems are x86_64 so it might only happen on a 64 bit machine. I've got a stack trace for the crash which I'll attach.
Created attachment 294899 [details] gdb session which shows backtrace from tuxtype2 crash
I installed the SDL debuginfo package to try to get a more useful debug message and it said: Program received signal SIGSEGV, Segmentation fault. [Switching to Thread 46912496271280 (LWP 14399)] 0x0000000000402d99 in SDL_Quit () at src/SDL.c:217 217 { So it looks like this might be an SDL bug rather than a tuxtype bug. I'll leave it assigned to tuxtype for the moment, but it might need to move.
Updating to show that this still does exactly the same thing in F9.
Created attachment 306213 [details] spec file for updated TuxType package This is a problem with TuxType. Updating to 1.5.17 fixes the problem. Attached is a .spec file for 1.5.17. If we could get this into F8 as well as F9, I'd sure appreciate it.
Created attachment 316670 [details] patch to avoid NULL deref Here, its a bug in which ttf_letter doesn't check for a NULL return from TTF_RenderText_Solid. It happens because we pass NULL in as the letter to render. Seems like the right thing to do in that case is just to fail. This patch fixes the problem for me.
Created attachment 316703 [details] new updated version of the patch Found another segfault at another point in the code, involving the same SDL function. It appears that TTF_RenderText_Solid has some odd problems in which is behavior is undefined when passing in a string of non-printable characters. Sometimes it returns null, sometimes it crashes inside the SDL library, etc. This almost certainly makes it an SDL problem, but I know so very little about the internals of SDL. This updated patch got tuxtype2 to work around the problem (and got my son to stop asking me if I'd fixed his game :)
tuxtype2-1.5.17-1.fc8 has been submitted as an update for Fedora 8. http://admin.fedoraproject.org/updates/tuxtype2-1.5.17-1.fc8
tuxtype2-1.5.17-1.fc9 has been submitted as an update for Fedora 9. http://admin.fedoraproject.org/updates/tuxtype2-1.5.17-1.fc9
Update to 1.5.17 fixes crashes (at least in my smoke tests). I am not the normal maintainer here, just the janitor getting this back to basic working order. Please test and give karma.
tuxtype2-1.5.17-1.fc9 has been pushed to the Fedora 9 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update tuxtype2'. You can provide feedback for this update here: http://admin.fedoraproject.org/updates/F9/FEDORA-2008-8126
tuxtype2-1.5.17-1.fc8 has been pushed to the Fedora 8 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update tuxtype2'. You can provide feedback for this update here: http://admin.fedoraproject.org/updates/F8/FEDORA-2008-8137
tuxtype2-1.5.17-1.fc8 has been pushed to the Fedora 8 stable repository. If problems still persist, please make note of it in this bug report.
tuxtype2-1.5.17-1.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.