[Pidgin] #3517: pidgin-2.1.1 crashes when using MSN
Pidgin
trac at pidgin.im
Fri Oct 12 02:08:16 EDT 2007
#3517: pidgin-2.1.1 crashes when using MSN
-------------------+--------------------------------------------------------
Reporter: patoh | Owner: khc
Type: defect | Status: new
Priority: minor | Component: MSN
Version: 2.2.1 | Keywords:
Pending: 0 |
-------------------+--------------------------------------------------------
pidgin-2.1.1 crashes after loggin in to MSN, the backtrace also seems to
point towards MSN.
Here is the backtrace.
{{{
[patoh at asmodeus][~]
% gdb
GNU gdb 6.6
Copyright (C) 2006 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you
are
welcome to change it and/or distribute copies of it under certain
conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB. Type "show warranty" for
details.
This GDB was configured as "i686-pc-linux-gnu".
(gdb) file /usr/bin/pidgin
Reading symbols from /usr/bin/pidgin...done.
Using host libthread_db library "/lib/libthread_db.so.1".
(gdb) run
Starting program: /usr/bin/pidgin
[Thread debugging using libthread_db enabled]
[New Thread -1223412016 (LWP 2431)]
[New Thread -1256715376 (LWP 2446)]
[New Thread -1265108080 (LWP 2448)]
[New Thread -1265501296 (LWP 2450)]
[Thread -1265501296 (LWP 2450) exited]
[New Thread -1265501296 (LWP 2457)]
[Thread -1265501296 (LWP 2457) exited]
*** glibc detected *** /usr/bin/pidgin: free(): invalid next size (fast):
0x087440e8 ***
======= Backtrace: =========
/lib/libc.so.6[0xb760846f]
/lib/libc.so.6(__libc_free+0x89)[0xb760a189]
/usr/lib/libglib-2.0.so.0(g_free+0x31)[0xb772daa1]
/usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so[0xb62fd60d]
/usr/lib/libpng12.so.0(png_free+0x33)[0xb721a073]
/usr/lib/libpng12.so.0(png_free_data+0x3c9)[0xb72024f9]
/usr/lib/libpng12.so.0[0xb72028eb]
/usr/lib/libpng12.so.0[0xb720e4f0]
/usr/lib/libpng12.so.0(png_destroy_read_struct+0x73)[0xb720e8d3]
/usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-png.so[0xb62fe1d2]
/usr/lib/libgdk_pixbuf-2.0.so.0(gdk_pixbuf_loader_close+0xda)[0xb7a1e28a]
/usr/bin/pidgin[0x8073d0f]
/usr/bin/pidgin[0x807b811]
/usr/bin/pidgin[0x807bddc]
/usr/bin/pidgin[0x807be26]
/usr/bin/pidgin[0x807c12e]
/usr/lib/libpurple.so.0(purple_blist_update_buddy_icon+0x3d)[0xb783726d]
/usr/lib/libpurple.so.0(purple_buddy_set_icon+0x67)[0xb7839117]
/usr/lib/libpurple.so.0(purple_buddy_icon_update+0xd7)[0xb783dea7]
/usr/lib/libpurple.so.0(purple_buddy_icon_set_data+0x64)[0xb783e024]
/usr/lib/libpurple.so.0(purple_buddy_icons_set_for_user+0x79)[0xb783e349]
/usr/lib/purple-2/libmsn.so[0xb65c9fd2]
/usr/lib/purple-2/libmsn.so(msn_slp_process_msg+0xa4)[0xb65cb3d4]
/usr/lib/purple-2/libmsn.so(msn_slplink_process_msg+0x131)[0xb65cc4e1]
/usr/lib/purple-2/libmsn.so(msn_p2p_msg+0x4d)[0xb65ca63d]
/usr/lib/purple-2/libmsn.so(msn_cmdproc_process_msg+0x53)[0xb65ba373]
/usr/lib/purple-2/libmsn.so[0xb65ce624]
/usr/lib/purple-2/libmsn.so(msn_cmdproc_process_payload+0x5d)[0xb65ba42d]
/usr/lib/purple-2/libmsn.so[0xb65c9144]
/usr/bin/pidgin[0x80a1195]
/usr/lib/libglib-2.0.so.0[0xb77555ff]
/usr/lib/libglib-2.0.so.0(g_main_context_dispatch+0x175)[0xb77261e5]
/usr/lib/libglib-2.0.so.0[0xb77295a1]
/usr/lib/libglib-2.0.so.0(g_main_loop_run+0x1e7)[0xb7729987]
/usr/lib/libgtk-x11-2.0.so.0(gtk_main+0xc1)[0xb7c11e71]
/usr/bin/pidgin(main+0xa25)[0x80b86c5]
/lib/libc.so.6(__libc_start_main+0xdc)[0xb75b89cc]
/usr/bin/pidgin[0x806a8b1]
======= Memory map: ========
08048000-080fa000 r-xp 00000000 08:03 954440 /usr/bin/pidgin
080fa000-080fb000 r--p 000b1000 08:03 954440 /usr/bin/pidgin
080fb000-080fe000 rw-p 000b2000 08:03 954440 /usr/bin/pidgin
080fe000-087b3000 rw-p 080fe000 00:00 0 [heap]
b40e7000-b4105000 r-xp 00000000 08:03 4905809
/usr/lib/libjpeg.so.62.0.0
b4105000-b4106000 rw-p 0001e000 08:03 4905809
/usr/lib/libjpeg.so.62.0.0
b411f000-b4120000 ---p b411f000 00:00 0
b4120000-b4920000 rw-p b4120000 00:00 0
b4920000-b4924000 r-xp 00000000 08:03 5333040 /lib/libnss_dns-2.6.1.so
b4924000-b4926000 rw-p 00003000 08:03 5333040 /lib/libnss_dns-2.6.1.so
b4939000-b493d000 r-xp 00000000 08:03 954152
/usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-jpeg.so
b493d000-b493e000 r--p 00003000 08:03 954152
/usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-jpeg.so
b493e000-b493f000 rw-p 00004000 08:03 954152
/usr/lib/gtk-2.0/2.10.0/loaders/libpixbufloader-jpeg.so
b493f000-b4940000 ---p b493f000 00:00 0
b4940000-b4980000 rw-p b4940000 00:00 0
b4980000-b4981000 ---p b4980000 00:00 0
b4981000-b5181000 rw-p b4981000 00:00 0
b5181000-b51e1000 rw-s 00000000 00:08 8159248 /SYSV00000000 (deleted)
b51e1000-b5265000 r--p 00000000 08:03 1074155 /usr/share/fonts/dejavu
/DejaVuSans-Bold.ttf
b5265000-b527c000 r--s 00000000 08:03 4709907 /usr/lib/aspell-0.60
/en_GB-ise-wo_accents-only.rws
b527c000-b5504000 r--s 00000000 08:03 4709607 /usr/lib/aspell-0.60/en-
common.rws
b5504000-b55b6000 r-xp 00000000 08:03 5576090
/usr/lib/libaspell.so.15.1.4
b55b6000-b55ba000 rw-p 000b1000 08:03 5576090
/usr/lib/libaspell.so.15.1.4
b55ba000-b55be000 rw-p b55ba000 00:00 0
b55c0000-b55d7000 r--s 00000000 08:03 4710002 /usr/lib/aspell-0.60
/en_US-wo_accents-only.rws
b55d7000-b5601000 r-xp 00000000 08:03 2649063
/usr/lib/enchant/libenchant_myspell.so
b5601000-b5602000 r--p 00029000 08:03 2649063
/usr/lib/enchant/libenchant_myspell.so
b5602000-b5613000 rw-p 0002a000 08:03 2649063
/usr/lib/enchant/libenchant_myspell.so
b5613000-b5615000 r-xp 00000000 08:03 955049
/usr/lib/pango/1.6.0/modules/pango-basic-fc.so
b5615000-b5616000 r--p 00001000 08:03 955049
/usr/lib/pango/1.6.0/modules/pango-basic-fc.so
b5616000-b5617000 rw-p 00002000 08:03 955049
/usr/lib/pango/1.6.0/modules/pango-basic-fc.so
b5617000-b56a3000 r--p 00000000 08:03 1074165
/usr/share/fonts/dejavu/DejaVuSans.ttf
b56a3000-b56a9000 r--s 00000000 08:03 5118193
/var/cache/fontconfig/87f5e051180a7a75f16eb6fe7dbd3749-x86.cache-2
b56a9000-b56ab000 r--s 00000000 08:03 5118384
/var/cache/fontconfig/76fa4b957c916922374347f144bde9da-x86.cache-2
b56ab000-b56b9000 r--s 00000000 08:03 6050285
/var/cache/fontconfig/8d4af663993b81a124ee82e610bb31f9-x86.cache-
Program received signal SIGABRT, Aborted.
[Switching to Thread -1223412016 (LWP 2431)]
0xffffe410 in __kernel_vsyscall ()
(gdb) bt
#0 0xffffe410 in __kernel_vsyscall ()
#1 0xb75cc011 in *__GI_raise (sig=6)
at ../nptl/sysdeps/unix/sysv/linux/raise.c:64
#2 0xb75cd838 in *__GI_abort () at abort.c:88
#3 0xb76027ab in __libc_message (do_abort=2,
fmt=0xb76b7ca8 "*** glibc detected *** %s: %s: 0x%s ***\n")
at ../sysdeps/unix/sysv/linux/libc_fatal.c:170
#4 0xb760846f in malloc_printerr (action=2,
str=0xb76b7cf4 "free(): invalid next size (fast)", ptr=<value
optimized out>)
at malloc.c:5887
#5 0xb760a189 in *__GI___libc_free (mem=0x87440e8) at malloc.c:3622
#6 0xb772daa1 in IA__g_free (mem=0x87440e8) at gmem.c:187
#7 0xb62fd60d in png_free_callback (o=0x872b600, x=0x87440e8) at io-
png.c:244
#8 0xb721a073 in png_free (png_ptr=0x6, ptr=0x97f) at pngmem.c:506
#9 0xb72024f9 in png_free_data (png_ptr=0x872b600, info_ptr=0x86a1000,
mask=32767, num=-1) at png.c:444
#10 0xb72028eb in png_info_destroy (png_ptr=0x872b600, info_ptr=0x86a1000)
at png.c:597
#11 0xb720e4f0 in png_read_destroy (png_ptr=0x872b600, info_ptr=0x0,
end_info_ptr=0x0) at pngread.c:1180
#12 0xb720e8d3 in png_destroy_read_struct (png_ptr_ptr=0x8602a00,
info_ptr_ptr=0x8602a04, end_info_ptr_ptr=0x0) at pngread.c:1121
#13 0xb62fe1d2 in gdk_pixbuf__png_image_stop_load (context=0x8602a00,
---Type <return> to continue, or q <return> to quit---
error=0xbfb019d8) at io-png.c:493
#14 0xb7a1e28a in IA__gdk_pixbuf_loader_close (loader=0x8731070,
error=0x0)
at gdk-pixbuf-loader.c:724
#15 0x08073d0f in pidgin_blist_get_buddy_icon (node=<value optimized out>,
scaled=1, greyed=1) at gtkblist.c:2237
#16 0x0807b811 in buddy_node (buddy=0x8301780, iter=0xbfb01bdc,
node=0x8301710)
at gtkblist.c:5026
#17 0x0807bddc in pidgin_blist_update_contact (list=<value optimized out>,
node=<value optimized out>) at gtkblist.c:5154
#18 0x0807be26 in pidgin_blist_update_buddy (list=0x82867d0, node=0x6,
status_change=2431) at gtkblist.c:5176
#19 0x0807c12e in pidgin_blist_update (list=0x82867d0, node=0x8301780)
at gtkblist.c:5282
#20 0xb783726d in purple_blist_update_buddy_icon (buddy=0x8301780) at
blist.c:813
#21 0xb7839117 in purple_buddy_set_icon (buddy=0x8301780, icon=0x82a2a38)
at blist.c:1172
#22 0xb783dea7 in purple_buddy_icon_update (icon=0x82a2a38) at
buddyicon.c:369
#23 0xb783e024 in purple_buddy_icon_set_data (icon=0x82a2a38,
data=0x8731a00 "\211PNG\r\n\032\n", len=22806,
checksum=0x8313468 "V9oBFo/QbSP2cXlWhIEJyW4G3KI=") at buddyicon.c:434
#24 0xb783e349 in purple_buddy_icons_set_for_user (account=0x8174248,
username=0x8634400 "benevenson455 at hotmail.com", icon_data=0x8731a00,
icon_len=22806, checksum=0x8313468 "V9oBFo/QbSP2cXlWhIEJyW4G3KI=")
---Type <return> to continue, or q <return> to quit---
at buddyicon.c:505
#25 0xb65c9fd2 in got_user_display (slpcall=0x8643728,
data=0x857aaa8 "\211PNG\r\n\032\n", size=22806) at slp.c:1003
#26 0xb65cb3d4 in msn_slp_process_msg (slplink=0x86c8b90,
slpmsg=0x858fdd0)
at slpcall.c:254
#27 0xb65cc4e1 in msn_slplink_process_msg (slplink=0x86c8b90,
msg=0x864f638)
at slplink.c:630
#28 0xb65ca63d in msn_p2p_msg (cmdproc=0x8485038, msg=0x864f638) at
slp.c:762
#29 0xb65ba373 in msn_cmdproc_process_msg (cmdproc=0x8485038,
msg=0x864f638)
at cmdproc.c:248
#30 0xb65ce624 in msg_cmd_post (cmdproc=0x8485038, cmd=0x863d840,
payload=0x862c224 "MIME-Version: 1.0\r\nContent-Type:
application/x-msnmsgrp2p\r\nP2P-Dest:
shifts.games at gmail.com\r\n\r\nd§ÝVwëi(\204T", len=1317)
at switchboard.c:739
#31 0xb65ba42d in msn_cmdproc_process_payload (cmdproc=0x8485038,
payload=0x862c224 "MIME-Version: 1.0\r\nContent-Type:
application/x-msnmsgrp2p\r\nP2P-Dest:
shifts.games at gmail.com\r\n\r\nd§ÝVwëi(\204T", payload_len=1317)
at cmdproc.c:223
#32 0xb65c9144 in read_cb (data=0x8480e30, source=36,
cond=PURPLE_INPUT_READ)
at servconn.c:443
#33 0x080a1195 in pidgin_io_invoke (source=0x8740900, condition=G_IO_IN,
data=0x87440b8) at gtkeventloop.c:78
#34 0xb77555ff in g_io_unix_dispatch (source=0x87408b8,
---Type <return> to continue, or q <return> to quit---
callback=0x80a1150 <pidgin_io_invoke>, user_data=0x87440b8) at
giounix.c:162
#35 0xb77261e5 in IA__g_main_context_dispatch (context=0x81236c8) at
gmain.c:2061
#36 0xb77295a1 in g_main_context_iterate (context=0x81236c8, block=1,
dispatch=1, self=0x80fe008) at gmain.c:2694
#37 0xb7729987 in IA__g_main_loop_run (loop=0x8553438) at gmain.c:2898
#38 0xb7c11e71 in IA__gtk_main () at gtkmain.c:1144
#39 0x080b86c5 in main (argc=Cannot access memory at address 0x6
) at gtkmain.c:853
(gdb) stop
(gdb) end
This command cannot be used at the top level.
(gdb) exit
Undefined command: "exit". Try "help".
(gdb) quit
The program is running. Exit anyway? (y or n) y
[patoh at asmodeus][~]
}}}
--
Ticket URL: <http://developer.pidgin.im/ticket/3517>
Pidgin <http://pidgin.im>
Pidgin
More information about the Tracker
mailing list