https://bugs.kde.org/show_bug.cgi?id=514897
Bug ID: 514897
Summary: plasmashell crashes with a SIGSEGV in
QQmlPrivate::callArrowFunction specifically when the
Notification Manager is processing a new incoming
notification via D-Bus.
Classification: Plasma
Product: plasmashell
Version First 6.5.4
Reported In:
Platform: Fedora RPMs
OS: Linux
Status: REPORTED
Severity: crash
Priority: NOR
Component: Notifications
Assignee: [email protected]
Reporter: [email protected]
CC: [email protected]
Target Milestone: 1.0
SUMMARY
plasmashell crashes with a SIGSEGV in QQmlPrivate::callArrowFunction
specifically when the Notification Manager is processing a new incoming
notification via D-Bus. This seems to involve AOT (Ahead-of-Time) compiled code
in the notification applet.
STEPS TO REPRODUCE
1. Use KDE Plasma 6.5.4 / Qt 6.10.1 (Fedora 43 / Kinoite).
2. Receive a notification
3. It may trigger a crash
OBSERVED RESULT
plasmashell crashes
EXPECTED RESULT
plasmashell should not crash
SOFTWARE/OS VERSIONS
Operating System: Fedora Linux 43 (Kinoite)
KDE Plasma Version: 6.5.4
Qt Version: 6.10.1
Graphics Platform: Wayland
Graphics Processor: NVIDIA GeForce GTX 1650
ADDITIONAL INFORMATION
Backtrace:
#0 __pthread_kill_implementation (threadid=<optimized out>,
signo=signo@entry=11, no_tid=no_tid@entry=0) at pthread_kill.c:44
#1 0x00007f1734386493 in __pthread_kill_internal (threadid=<optimized out>,
signo=11) at pthread_kill.c:89
#2 0x00007f173432c15e in __GI_raise (sig=11) at ../sysdeps/posix/raise.c:26
#3 0x00007f1737711041 in KCrash::defaultCrashHandler (sig=11) at
/usr/src/debug/kf6-kcrash-6.21.0-1.fc43.x86_64/src/kcrash.cpp:605
#4 <signal handler called>
#5 0x00007f1735ef6058 in QQmlPrivate::callArrowFunction
(engine=engine@entry=0x5630d0fd15a0, function=0x0, thisObject=0x5630d26e2d80,
args=0x7fff380f1600, argc=0)
at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/qml/qqml.cpp:2199
#6 0x00007f1735efbf2e in
QQmlPrivate::AOTCompiledContext::callObjectPropertyLookup (this=0x7fff380f1750,
index=<optimized out>, object=<optimized out>, args=0x7fff380f1600, argc=0)
at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/qml/qqml.cpp:2444
#7 0x00007f171cca19c6 in
QmlCacheGeneratedCode::_qt_qml_plasma_applet_org_kde_plasma_notifications_main_qml::aotBuiltFunctions::{lambda(QQmlPrivate::AOTCompiledContext
const*, void**)#26}::operator()(QQmlPrivate::AOTCompiledContext const*, void**)
const::{lambda()#1}::operator()() const (__closure=<synthetic pointer>)
at
/usr/src/debug/plasma-workspace-6.5.4-1.fc43.x86_64/redhat-linux-build/applets/notifications/.rcc/qmlcache/org.kde.plasma.notifications_main_qml.cpp:5472
#8
QmlCacheGeneratedCode::_qt_qml_plasma_applet_org_kde_plasma_notifications_main_qml::aotBuiltFunctions::{lambda(QQmlPrivate::AOTCompiledContext
const*, void**)#26}::operator()(QQmlPrivate::AOTCompiledContext const*, void**)
const (
__closure=0x0, aotContext=0x7fff380f1750, argv=<optimized out>) at
/usr/src/debug/plasma-workspace-6.5.4-1.fc43.x86_64/redhat-linux-build/applets/notifications/.rcc/qmlcache/org.kde.plasma.notifications_main_qml.cpp:5480
#9
QmlCacheGeneratedCode::_qt_qml_plasma_applet_org_kde_plasma_notifications_main_qml::aotBuiltFunctions::{lambda(QQmlPrivate::AOTCompiledContext
const*, void**)#26}::_FUN(QQmlPrivate::AOTCompiledContext const*, void**) ()
at
/usr/src/debug/plasma-workspace-6.5.4-1.fc43.x86_64/redhat-linux-build/applets/notifications/.rcc/qmlcache/org.kde.plasma.notifications_main_qml.cpp:5507
#10 0x00007f1735ec89be in operator() (argc=<optimized out>,
__closure=0x7fff380f1820, argv=0x7fff380f1af0) at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/jsruntime/qv4vme_moth.cpp:452
#11 QV4::coerceAndCall<(anonymous namespace)::AOTCompiledMetaMethod,
QV4::Moth::VME::exec(QV4::MetaTypesStackFrame*,
QV4::ExecutionEngine*)::<lambda(void**, int)> >(QV4::ExecutionEngine *, const
(anonymous namespace)::AOTCompiledMetaMethod *, void **, const QMetaType *,
int, struct {...}) (engine=engine@entry=0x5630d0fd15a0,
typedFunction=typedFunction@entry=0x7fff380f1858, argv=<optimized out>,
types=<optimized out>, argc=<optimized out>, call=...)
at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/jsruntime/qv4jscall_p.h:560
#12 0x00007f1735ed12c8 in QV4::Moth::VME::exec
(frame=frame@entry=0x7fff380f18f0, engine=engine@entry=0x5630d0fd15a0) at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/jsruntime/qv4stackframe_p.h:156
#13 0x00007f1735df4df5 in QV4::Function::call (this=0x5630d26dc860,
thisObject=0x5630d26e2d80, a=a@entry=0x7fff380f1af0,
types=types@entry=0x7fff380f1b00, argc=argc@entry=0, context=<optimized out>)
at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/jsruntime/qv4function.cpp:37
#14 0x00007f1735f857b0 in QQmlJavaScriptExpression::evaluate (this=<optimized
out>, a=a@entry=0x7fff380f1af0, types=types@entry=0x7fff380f1b00,
argc=argc@entry=0)
at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/qml/qqmljavascriptexpression.cpp:270
#15 0x00007f1735f1a133 in QQmlBoundSignalExpression::evaluate (this=<optimized
out>, a=a@entry=0x0) at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/qml/qqmlboundsignal.cpp:200
#16 0x00007f1735f1abd0 in QQmlBoundSignal_callback (e=0x5630d26ddd70, a=0x0) at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/qml/qqmlboundsignal.cpp:315
#17 0x00007f1735fb68d1 in QQmlNotifier::emitNotify (endpoint=<optimized out>,
a=0x0) at
/usr/src/debug/qt6-qtdeclarative-6.10.1-2.fc43.x86_64/src/qml/qml/qqmlnotifier.cpp:74
#18 0x00007f17349d8230 in doActivate<false> (sender=0x5630d26e2d80,
signal_index=52, argv=0x0) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:4147
#19 0x00007f17349d859a in QtPrivate::QSlotObjectBase::call
(this=0x5630d26e3eb0, r=0x5630d26e2d80, a=0x7fff380f3690) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobjectdefs_impl.h:461
#20 doActivate<false> (sender=0x5630d26e3490, signal_index=<optimized out>,
argv=argv@entry=0x7fff380f3690) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:4257
#21 0x00007f17349cee69 in QMetaObject::activate
(sender=sender@entry=0x5630d26e3490, m=m@entry=0x7f1734f2bd80,
local_signal_index=local_signal_index@entry=10, argv=argv@entry=0x7fff380f3690)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:4317
#22 0x00007f1734bf9cfa in QMetaObject::activate<void, QModelIndex, int, int,
QAbstractItemModel::QPrivateSignal> (sender=0x5630d26e3490, mo=0x7f1734f2bd80,
local_signal_index=10, ret=0x0)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobjectdefs.h:319
#23 QAbstractItemModel::rowsInserted (this=this@entry=0x5630d26e3490, _t1=...,
_t2=<optimized out>, _t3=<optimized out>, _t4=...)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/redhat-linux-build/src/corelib/Core_autogen/include/moc_qabstractitemmodel.cpp:688
#24 0x00007f1734c098ae in QAbstractItemModel::endInsertRows
(this=0x5630d26e3490) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/itemmodels/qabstractitemmodel.cpp:2921
#25 0x00007f1734c5c93d in QSortFilterProxyModelPrivate::insert_source_items
(this=this@entry=0x5630d26e3510, source_to_proxy=..., proxy_to_source=...,
source_items=..., source_parent=...,
direction=direction@entry=QSortFilterProxyModel::Direction::Rows,
emit_signal=true) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/itemmodels/qsortfilterproxymodel.cpp:930
#26 0x00007f1734c62b5b in QSortFilterProxyModelPrivate::source_items_inserted
(this=0x5630d26e3510, source_parent=..., start=<optimized out>, end=<optimized
out>, direction=QSortFilterProxyModel::Direction::Rows)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/itemmodels/qsortfilterproxymodel.cpp:1041
#27 0x00007f1734c68c2d in QSortFilterProxyModelPrivate::_q_sourceRowsInserted
(this=0x5630d26e3510, source_parent=..., start=3, end=3)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/itemmodels/qsortfilterproxymodel.cpp:1690
#28 0x00007f17349d859a in QtPrivate::QSlotObjectBase::call
(this=0x5630d26e4410, r=0x5630d26e3490, a=0x7fff380f3a50) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobjectdefs_impl.h:461
#29 doActivate<false> (sender=0x5630d26ddb40, signal_index=<optimized out>,
argv=argv@entry=0x7fff380f3a50) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:4257
#30 0x00007f17349cee69 in QMetaObject::activate
(sender=sender@entry=0x5630d26ddb40, m=m@entry=0x7f1734f2bd80,
local_signal_index=local_signal_index@entry=10, argv=argv@entry=0x7fff380f3a50)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:4317
#31 0x00007f1734bf9cfa in QMetaObject::activate<void, QModelIndex, int, int,
QAbstractItemModel::QPrivateSignal> (sender=0x5630d26ddb40, mo=0x7f1734f2bd80,
local_signal_index=10, ret=0x0)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobjectdefs.h:319
#32 QAbstractItemModel::rowsInserted (this=this@entry=0x5630d26ddb40, _t1=...,
_t2=<optimized out>, _t3=<optimized out>, _t4=...)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/redhat-linux-build/src/corelib/Core_autogen/include/moc_qabstractitemmodel.cpp:688
#33 0x00007f1734c098ae in QAbstractItemModel::endInsertRows
(this=0x5630d26ddb40) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/itemmodels/qabstractitemmodel.cpp:2921
#34 0x00007f17349d859a in QtPrivate::QSlotObjectBase::call
(this=0x5630d27602b0, r=0x5630d26ddb40, a=0x7fff380f3bd0) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobjectdefs_impl.h:461
--Type <RET> for more, q to quit, c to continue without paging--c
#35 doActivate<false> (sender=0x5630d2751580, signal_index=<optimized out>,
argv=argv@entry=0x7fff380f3bd0) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:4257
#36 0x00007f17349cee69 in QMetaObject::activate
(sender=sender@entry=0x5630d2751580, m=m@entry=0x7f1734f2bd80,
local_signal_index=local_signal_index@entry=10, argv=argv@entry=0x7fff380f3bd0)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:4317
#37 0x00007f1734bf9cfa in QMetaObject::activate<void, QModelIndex, int, int,
QAbstractItemModel::QPrivateSignal> (sender=0x5630d2751580, mo=0x7f1734f2bd80,
local_signal_index=10, ret=0x0)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobjectdefs.h:319
#38 QAbstractItemModel::rowsInserted (this=this@entry=0x5630d2751580, _t1=...,
_t2=<optimized out>, _t3=<optimized out>, _t4=...)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/redhat-linux-build/src/corelib/Core_autogen/include/moc_qabstractitemmodel.cpp:688
#39 0x00007f1734c098ae in QAbstractItemModel::endInsertRows
(this=0x5630d2751580) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/itemmodels/qabstractitemmodel.cpp:2921
#40 0x00007f17349d859a in QtPrivate::QSlotObjectBase::call
(this=0x5630d2751510, r=0x5630d2751580, a=0x7fff380f3d40) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobjectdefs_impl.h:461
#41 doActivate<false> (sender=0x5630d1ed44b0, signal_index=<optimized out>,
argv=argv@entry=0x7fff380f3d40) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:4257
#42 0x00007f17349cee69 in QMetaObject::activate (sender=<optimized out>,
m=m@entry=0x7f16e1a1b8c0 <NotificationManager::Server::staticMetaObject>,
local_signal_index=local_signal_index@entry=1, argv=argv@entry=0x7fff380f3d40)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:4317
#43 0x00007f16e1977b42 in QMetaObject::activate<void,
NotificationManager::Notification> (sender=<optimized out>, mo=0x7f16e1a1b8c0
<NotificationManager::Server::staticMetaObject>, local_signal_index=1, ret=0x0)
at /usr/include/qt6/QtCore/qobjectdefs.h:319
#44 NotificationManager::Server::notificationAdded (this=<optimized out>,
_t1=...) at
/usr/src/debug/plasma-workspace-6.5.4-1.fc43.x86_64/redhat-linux-build/libnotificationmanager/notificationmanager_autogen/include/moc_server.cpp:230
#45 0x00007f16e197ff50 in NotificationManager::ServerPrivate::Notify
(this=<optimized out>, app_name=..., replaces_id=0, app_icon=..., summary=...,
body=..., actions=..., hints=..., timeout=-1)
at
/usr/src/debug/plasma-workspace-6.5.4-1.fc43.x86_64/libnotificationmanager/server_p.cpp:240
#46 0x00007f16e19cb47d in NotificationsAdaptor::Notify (this=<optimized out>,
app_name=..., replaces_id=<optimized out>, app_icon=..., summary=..., body=...,
actions=..., hints=..., timeout=<optimized out>)
at
/usr/src/debug/plasma-workspace-6.5.4-1.fc43.x86_64/redhat-linux-build/libnotificationmanager/notificationsadaptor.cpp:69
#47 NotificationsAdaptor::qt_static_metacall (_o=<optimized out>, _c=<optimized
out>, _id=<optimized out>, _a=0x7fff380f4468)
at
/usr/src/debug/plasma-workspace-6.5.4-1.fc43.x86_64/redhat-linux-build/libnotificationmanager/moc_notificationsadaptor.cpp:199
#48 0x00007f16e19cc7e7 in NotificationsAdaptor::qt_metacall
(this=0x5630d2752ca0, _c=<optimized out>, _id=8, _a=0x7fff380f4468)
at
/usr/src/debug/plasma-workspace-6.5.4-1.fc43.x86_64/redhat-linux-build/libnotificationmanager/moc_notificationsadaptor.cpp:244
#49 0x00007f1734f74f5e in QDBusConnectionPrivate::deliverCall
(this=this@entry=0x7f17180016e0, object=object@entry=0x5630d2752ca0, msg=...,
metaTypes=..., slotIdx=12)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/dbus/qdbusintegrator.cpp:1008
#50 0x00007f1734f78f1b in QDBusConnectionPrivate::activateCall
(this=this@entry=0x7f17180016e0, object=0x5630d2752ca0, flags=...,
flags@entry=..., msg=...)
at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/dbus/qdbusintegrator.cpp:917
#51 0x00007f1734f79c6c in QDBusConnectionPrivate::activateObject
(this=0x7f17180016e0, node=..., msg=..., pathStartPos=<optimized out>) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/dbus/qdbusintegrator.cpp:1485
#52 0x00007f1734f7cfca in QDBusActivateObjectEvent::placeMetaCall
(this=0x5630d63aa800) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/dbus/qdbusintegrator.cpp:1605
#53 0x00007f17349c9fcc in QObject::event (this=<optimized out>, e=<optimized
out>) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qobject.cpp:1413
#54 0x00007f1736d6db9f in QApplicationPrivate::notify_helper (this=<optimized
out>, receiver=0x5630d1ed44d0, e=0x5630d63aa800) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/widgets/kernel/qapplication.cpp:3305
#55 0x00007f173496d4e8 in QCoreApplication::notifyInternal2
(receiver=0x5630d1ed44d0, event=0x5630d63aa800) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qcoreapplication.cpp:1109
#56 0x00007f173496d74d in QCoreApplication::sendEvent (receiver=<optimized
out>, event=<optimized out>) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qcoreapplication.cpp:1549
#57 0x00007f1734970b09 in QCoreApplicationPrivate::sendPostedEvents
(receiver=0x0, event_type=0, data=0x5630d0998de0) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qcoreapplication.cpp:1904
#58 0x00007f1734c8ffcf in postEventSourceDispatch (s=0x5630d09a1050) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qeventdispatcher_glib.cpp:246
#59 0x00007f17331952a3 in g_main_dispatch (context=0x7f1718000f60) at
../glib/gmain.c:3565
#60 g_main_context_dispatch_unlocked (context=0x7f1718000f60) at
../glib/gmain.c:4425
#61 0x00007f173319e1f8 in g_main_context_iterate_unlocked
(context=context@entry=0x7f1718000f60, block=block@entry=1,
dispatch=dispatch@entry=1, self=<optimized out>) at ../glib/gmain.c:4490
#62 0x00007f173319e3a3 in g_main_context_iteration (context=0x7f1718000f60,
may_block=1) at ../glib/gmain.c:4556
#63 0x00007f1734c8f80d in QEventDispatcherGlib::processEvents
(this=0x5630d09a0fc0, flags=...) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qeventdispatcher_glib.cpp:399
#64 0x00007f173497a063 in QEventLoop::exec (this=this@entry=0x7fff380f4d20,
flags=..., flags@entry=...) at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/global/qflags.h:77
#65 0x00007f1734975819 in QCoreApplication::exec () at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/corelib/kernel/qcoreapplication.cpp:1452
#66 0x00007f17350ff19d in QGuiApplication::exec () at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/gui/kernel/qguiapplication.cpp:1973
#67 0x00007f1736d6db09 in QApplication::exec () at
/usr/src/debug/qt6-qtbase-6.10.1-3.fc43.x86_64/src/widgets/kernel/qapplication.cpp:2575
#68 0x00005630c89bd94d in main (argc=<optimized out>, argv=<optimized out>) at
/usr/src/debug/plasma-workspace-6.5.5-1.fc43.x86_64/shell/main.cpp:188
This report is AI assisted.
--
You are receiving this mail because:
You are watching all bug changes.
