Red Hat Bugzilla – Bug 449883
Inkscape and Epiphany crash upon NULL dereference in gsignal while starting
Last modified: 2008-06-12 04:04:59 EDT
Some glib applications, including Inkscape (bug #447349) and Epihpany (bug #446014) can not start, as they crash after NULL pointer dereference. Both crashes trace back into gsignal, which makes me believe that it might not be an application error, but an error in some library, possibly glib. Backtrace from Inkscape: https://bugzilla.redhat.com/attachment.cgi?id=305989 Backtrace from Epiphany: https://bugzilla.redhat.com/attachment.cgi?id=305073
This is what I've spent the last day or so staring at. When I start up epiphany, it hits my breakpoint in signal_emit_unlocked_R 86 times or so, and on the last occasion I can happily either use 'fini' or manually step to the end of the function and long beyond. It _isn't_ crashing in that 86th invocation of the function. Yet when I let it continue, it crashes in signal_emit_unlocked_R() without ever hitting my breakpoint at the start of that function. It'll hit a breakpoint _later_ in that function, but not near the start. I am very confused. It's almost as if a stray return is dumping us into that function. Although the backtrace does look sane. When the first cup of tea of the morning has taken effect, I'm going to start by auditing the use of va_lists in the calling function -- abuse of va_list is frequent, and could have bizarre effects which _might_ include this, somehow. *** This bug has been marked as a duplicate of 450790 ***