[Pidgin] #8361: Pidgin crashes attempting to join a jabber chat room

Fri Feb 6 09:36:13 EST 2009

#8361: Pidgin crashes attempting to join a jabber chat room
-------------------------+--------------------------------------------------
 Reporter:  elainexiong  |           Owner:  deryni
     Type:  defect       |          Status:  new   
Milestone:               |       Component:  XMPP  
  Version:  2.5.1        |      Resolution:        
 Keywords:  null nick    |   Launchpad_bug:        
-------------------------+--------------------------------------------------
Description changed by deryni:

Old description:

> Running pidgin -d gets a core with this stack:
>
> Loading modules: [ libuutil.so.1 ld.so.1 ]
> > $c
> libc_hwcap1.so.1`_lwp_kill+0x15(1, 6, 8045a34, fee9a18e)
> libc_hwcap1.so.1`raise+0x22(6, 0, 8045a84, fee716fa)
> libc_hwcap1.so.1`abort+0xf2(fef70000, fa6ebbf0, 8045ab8, 8045abc,
> fa6ec039,
> 816c0e4)
> sighandler+0xc8(b, 0, 8045f6c)
> libc_hwcap1.so.1`__sighndlr+0xf(b, 0, 8045f6c, 80c5b90)
> libc_hwcap1.so.1`call_user_handler+0x2af(b)
> libc_hwcap1.so.1`sigacthandler+0xdf(b, 0, 8045f6c)
> libglib-2.0.so.0.1800.0`g_str_hash+0x16(0)
> libglib-2.0.so.0.1800.0`g_hash_table_insert_internal+0x43(87ecd68, 0,
> 81dd440, 1
> )
> libglib-2.0.so.0.1800.0`g_hash_table_replace+0x16(87ecd68, 0, 81dd440)
> libjabber.so.0.0.0`jabber_chat_track_handle+0x49(919dbc0, 0, 91a49c0, 0,
> 8d9eda0
> )
> libjabber.so.0.0.0`jabber_presence_parse+0xccb(83f6a60, 91ae590)
> libjabber.so.0.0.0`jabber_process_packet+0x311(83f6a60, 8046338)
> libjabber.so.0.0.0`jabber_parser_element_end_libxml+0x55(83f6a60,
> 8d2a2ed, 0,
> 8d2a012)
> libxml2.so.2`xmlParseEndTag2+0x1f5(8d2cac8, 0, 8d2a012, 0, 0, 0)
> libxml2.so.2`xmlParseTryOrFinish+0x601(8d2cac8, 0)
> libxml2.so.2`xmlParseChunk+0x16f(8d2cac8, f8db10e0, 117, 0)
> libjabber.so.0.0.0`jabber_parser_process+0x30(83f6a60, f8db10e0, 117)
> libjabber.so.0.0.0`jabber_recv_cb_ssl+0xa8(83f6a20, 839edf0, 1)
> libpurple.so.0.5.1`recv_cb+0x15(839edf0, 11, 1)
> pidgin_io_invoke+0x36(8251758, 1, 8ca83e0)
> libglib-2.0.so.0.1800.0`g_io_unix_dispatch+0x3b(8c8cd08, 80b1774,
> 8ca83e0)
> libglib-2.0.so.0.1800.0`g_main_dispatch+0x1e0(813c898)
> libglib-2.0.so.0.1800.0`g_main_context_dispatch+0x85(813c898)
> libglib-2.0.so.0.1800.0`g_main_context_iterate+0x3ce(813c898, 1, 1,
> 811ade0)
> libglib-2.0.so.0.1800.0`g_main_loop_run+0x1b8(8c9bc38)
> libgtk-x11-2.0.so.0.1400.3`gtk_main+0xb2(8046d94, 8046c28, feffb7e4,
> 8100144, 1
> , 0)
> main+0x922(1, 8046c6c, 8046c74)
> _start+0x7a(1, 8046dfc, 0, 8046e03, 8046e15, 8046e2f)
> >
>
> and the tail of the debug messages:
>
> (09:22:45) jabber: Recv (ssl)(312): <presence from='tsc-
> kernel at muc.im.sun.com/br220228-sr2-cblr05-03'
> to='cg13442 at im.sun.com/SunRay' xml:lang='en'><x
> xmlns='http://jabber.org/protocol/muc'/><x
> xmlns='http://jabber.org/protocol/muc#user'><item
> jid='br220228 at im.sun.com/sr2-cblr05-03' nick='br220228-sr2-cblr05-03'
> role='participant'/></x></presence>
> (09:22:45) jabber: Recv (ssl)(315): <presence from='tsc-
> kernel at muc.im.sun.com/sm203872-sr1-apacbpo-03'
> to='cg13442 at im.sun.com/SunRay' xml:lang='en'><x
> xmlns='http://jabber.org/protocol/muc'/><x
> xmlns='http://jabber.org/protocol/muc#user'><item
> jid='sm203872 at im.sun.com/sr1-apacbpo-03' nick='sm203872-sr1-apacbpo-03'
> role='participant'/></x></presence>
> (09:22:45) jabber: Recv (ssl)(306): <presence from='tsc-
> kernel at muc.im.sun.com/richarsw-sr1-egmp-02'
> to='cg13442 at im.sun.com/SunRay' xml:lang='en'><x
> xmlns='http://jabber.org/protocol/muc'/><x
> xmlns='http://jabber.org/protocol/muc#user'><item
> jid='richarsw at im.sun.com/sr1-egmp-02' nick='richarsw-sr1-egmp-02'
> role='participant'/></x></presence>
> (09:22:45) jabber: Recv (ssl)(312): <presence from='tsc-
> kernel at muc.im.sun.com/rm203916-sr2-cblr05-07'
> to='cg13442 at im.sun.com/SunRay' xml:lang='en'><x
> xmlns='http://jabber.org/protocol/muc'/><x
> xmlns='http://jabber.org/protocol/muc#user'><item
> jid='rm203916 at im.sun.com/sr2-cblr05-07' nick='rm203916-sr2-cblr05-07'
> role='participant'/></x></presence>
> (09:22:45) jabber: Recv (ssl)(279): <presence from='tsc-
> kernel at muc.im.sun.com' id='aRNek-175' to='cg13442 at im.sun.com/SunRay'
> xml:lang='en'><status>Available</status><priority>1</priority><x
> xmlns='http://jabber.org/protocol/muc#user'><item
> jid='ds199283 at im.sun.com/spark' nick=''
> role='participant'/></x></presence>
> Pidgin 2.5.1 has segfaulted and attempted to dump a core file.
> This is a bug in the software and has happened through
> no fault of your own.
>
> If you can reproduce the crash, please notify the developers
> by reporting a bug at:
> http://developer.pidgin.im/simpleticket/
>
> Please make sure to specify what you were doing at the time
> and post the backtrace from the core file.  If you do not know
> how to get the backtrace, please read the instructions at
> http://developer.pidgin.im/wiki/GetABacktrace
>
> If you need further assistance, please IM either SeanEgn or
> LSchiere (via AIM).  Contact information for Sean and Luke
> on other protocols is at
> http://developer.pidgin.im/wiki/DeveloperPages
> Abort(coredump)
> : exdev.eu FSS 343 $;
>
> Looks like the server is sending a presence with a NULL nick which kill
> pidgin. Pidgin should not core in this case.

New description:

 Running pidgin -d gets a core with this stack:

 {{{
 Loading modules: [ libuutil.so.1 ld.so.1 ]
 > $c
 libc_hwcap1.so.1`_lwp_kill+0x15(1, 6, 8045a34, fee9a18e)
 libc_hwcap1.so.1`raise+0x22(6, 0, 8045a84, fee716fa)
 libc_hwcap1.so.1`abort+0xf2(fef70000, fa6ebbf0, 8045ab8, 8045abc,
 fa6ec039,
 816c0e4)
 sighandler+0xc8(b, 0, 8045f6c)
 libc_hwcap1.so.1`__sighndlr+0xf(b, 0, 8045f6c, 80c5b90)
 libc_hwcap1.so.1`call_user_handler+0x2af(b)
 libc_hwcap1.so.1`sigacthandler+0xdf(b, 0, 8045f6c)
 libglib-2.0.so.0.1800.0`g_str_hash+0x16(0)
 libglib-2.0.so.0.1800.0`g_hash_table_insert_internal+0x43(87ecd68, 0,
 81dd440, 1
 )
 libglib-2.0.so.0.1800.0`g_hash_table_replace+0x16(87ecd68, 0, 81dd440)
 libjabber.so.0.0.0`jabber_chat_track_handle+0x49(919dbc0, 0, 91a49c0, 0,
 8d9eda0
 )
 libjabber.so.0.0.0`jabber_presence_parse+0xccb(83f6a60, 91ae590)
 libjabber.so.0.0.0`jabber_process_packet+0x311(83f6a60, 8046338)
 libjabber.so.0.0.0`jabber_parser_element_end_libxml+0x55(83f6a60, 8d2a2ed,
 0,
 8d2a012)
 libxml2.so.2`xmlParseEndTag2+0x1f5(8d2cac8, 0, 8d2a012, 0, 0, 0)
 libxml2.so.2`xmlParseTryOrFinish+0x601(8d2cac8, 0)
 libxml2.so.2`xmlParseChunk+0x16f(8d2cac8, f8db10e0, 117, 0)
 libjabber.so.0.0.0`jabber_parser_process+0x30(83f6a60, f8db10e0, 117)
 libjabber.so.0.0.0`jabber_recv_cb_ssl+0xa8(83f6a20, 839edf0, 1)
 libpurple.so.0.5.1`recv_cb+0x15(839edf0, 11, 1)
 pidgin_io_invoke+0x36(8251758, 1, 8ca83e0)
 libglib-2.0.so.0.1800.0`g_io_unix_dispatch+0x3b(8c8cd08, 80b1774, 8ca83e0)
 libglib-2.0.so.0.1800.0`g_main_dispatch+0x1e0(813c898)
 libglib-2.0.so.0.1800.0`g_main_context_dispatch+0x85(813c898)
 libglib-2.0.so.0.1800.0`g_main_context_iterate+0x3ce(813c898, 1, 1,
 811ade0)
 libglib-2.0.so.0.1800.0`g_main_loop_run+0x1b8(8c9bc38)
 libgtk-x11-2.0.so.0.1400.3`gtk_main+0xb2(8046d94, 8046c28, feffb7e4,
 8100144, 1
 , 0)
 main+0x922(1, 8046c6c, 8046c74)
 _start+0x7a(1, 8046dfc, 0, 8046e03, 8046e15, 8046e2f)
 >

 and the tail of the debug messages:

 (09:22:45) jabber: Recv (ssl)(312): <presence from='tsc-
 kernel at muc.im.sun.com/br220228-sr2-cblr05-03'
 to='cg13442 at im.sun.com/SunRay' xml:lang='en'><x
 xmlns='http://jabber.org/protocol/muc'/><x
 xmlns='http://jabber.org/protocol/muc#user'><item
 jid='br220228 at im.sun.com/sr2-cblr05-03' nick='br220228-sr2-cblr05-03'
 role='participant'/></x></presence>
 (09:22:45) jabber: Recv (ssl)(315): <presence from='tsc-
 kernel at muc.im.sun.com/sm203872-sr1-apacbpo-03'
 to='cg13442 at im.sun.com/SunRay' xml:lang='en'><x
 xmlns='http://jabber.org/protocol/muc'/><x
 xmlns='http://jabber.org/protocol/muc#user'><item
 jid='sm203872 at im.sun.com/sr1-apacbpo-03' nick='sm203872-sr1-apacbpo-03'
 role='participant'/></x></presence>
 (09:22:45) jabber: Recv (ssl)(306): <presence from='tsc-
 kernel at muc.im.sun.com/richarsw-sr1-egmp-02' to='cg13442 at im.sun.com/SunRay'
 xml:lang='en'><x xmlns='http://jabber.org/protocol/muc'/><x
 xmlns='http://jabber.org/protocol/muc#user'><item
 jid='richarsw at im.sun.com/sr1-egmp-02' nick='richarsw-sr1-egmp-02'
 role='participant'/></x></presence>
 (09:22:45) jabber: Recv (ssl)(312): <presence from='tsc-
 kernel at muc.im.sun.com/rm203916-sr2-cblr05-07'
 to='cg13442 at im.sun.com/SunRay' xml:lang='en'><x
 xmlns='http://jabber.org/protocol/muc'/><x
 xmlns='http://jabber.org/protocol/muc#user'><item
 jid='rm203916 at im.sun.com/sr2-cblr05-07' nick='rm203916-sr2-cblr05-07'
 role='participant'/></x></presence>
 (09:22:45) jabber: Recv (ssl)(279): <presence from='tsc-
 kernel at muc.im.sun.com' id='aRNek-175' to='cg13442 at im.sun.com/SunRay'
 xml:lang='en'><status>Available</status><priority>1</priority><x
 xmlns='http://jabber.org/protocol/muc#user'><item
 jid='ds199283 at im.sun.com/spark' nick=''
 role='participant'/></x></presence>
 Pidgin 2.5.1 has segfaulted and attempted to dump a core file.
 This is a bug in the software and has happened through
 no fault of your own.

 If you can reproduce the crash, please notify the developers
 by reporting a bug at:
 http://developer.pidgin.im/simpleticket/

 Please make sure to specify what you were doing at the time
 and post the backtrace from the core file.  If you do not know
 how to get the backtrace, please read the instructions at
 http://developer.pidgin.im/wiki/GetABacktrace

 If you need further assistance, please IM either SeanEgn or
 LSchiere (via AIM).  Contact information for Sean and Luke
 on other protocols is at
 http://developer.pidgin.im/wiki/DeveloperPages
 Abort(coredump)
 : exdev.eu FSS 343 $;
 }}}

 Looks like the server is sending a presence with a NULL nick which kill
 pidgin. Pidgin should not core in this case.

--

-- 
Ticket URL: <http://developer.pidgin.im/ticket/8361#comment:1>
Pidgin <http://pidgin.im>
Pidgin