#903 segfault when removing feed

git_master
closed-fixed
Lars Windolf
Interface (127)
5
2012-10-30
2010-06-23
Solomon Peachy
No

I hav't been able to get a core dump (and backtrace) yet, but when I remove a feed after liferea's been running a litle while, it terminates wih a segfault.

Starting up a fresh instance usually lets me delete the feed with no problems, but I've noticed that if there's an update job going on after startup, deleting a feed often gives another segfault.

That said, most of the time there are no active updates running when the crash happens. I'll try to get a stack trace. (svn r5401)

Discussion

  • Solomon Peachy
    Solomon Peachy
    2010-07-09

    • labels: 960929 --> Interface
     
  • Solomon Peachy
    Solomon Peachy
    2010-07-09

    I haven't been able to get a core dump -- refuses to dump even with an appropruate ulimit set, but valgrind to the rescue:

    ==29755== Invalid read of size 8
    ==29755== at 0x42FC0E: vfolder_remove_item (vfolder.c:150)
    ==29755== by 0x42F987: vfolder_foreach_data (vfolder.c:139)
    ==29755== by 0x425905: itemlist_remove_all_items (itemlist.c:514)
    ==29755== by 0x4290B8: node_remove (node.c:317)
    ==29755== by 0x4226C2: feedlist_node_removed (feedlist.c:434)
    ==29755== by 0x43BFBF: feed_list_view_delete_response_cb (feed_list_view.c:307)
    ==29755== by 0x34FEA0B98D: g_closure_invoke (in /lib64/libgobject-2.0.so.0.2400.1)
    ==29755== by 0x34FEA1F946: ??? (in /lib64/libgobject-2.0.so.0.2400.1)
    ==29755== by 0x34FEA20DE5: g_signal_emit_valist (in /lib64/libgobject-2.0.so.0.2400.1)
    ==29755== by 0x34FEA213A2: g_signal_emit (in /lib64/libgobject-2.0.so.0.2400.1)
    ==29755== by 0x34FEA0B98D: g_closure_invoke (in /lib64/libgobject-2.0.so.0.2400.1)
    ==29755== by 0x34FEA1F946: ??? (in /lib64/libgobject-2.0.so.0.2400.1)
    ==29755== Address 0xa6811 is not stack'd, malloc'd or (recently) free'd

    svn r5423. It seems to crash only if I see an 'Adding Item blabla for blabla' message logged, so something's trashing the node tree it seems...'

     
  • Lars Windolf
    Lars Windolf
    2012-10-30

    • assigned_to: nobody --> llando
    • status: open --> closed-fixed
     
  • Lars Windolf
    Lars Windolf
    2012-10-30

    Please retest with 1.8.10 or 1.9.7 which have a new search folder implementation. This should not happen anymore!