https://bugs.kde.org/show_bug.cgi?id=520167
Bug ID: 520167
Summary: plasmashell crashed in
KIconLoaderPrivate::insertCachedPixmapWithPath
("double free or corruption (!prev)") when clicking on
notification tray icon with active job
Classification: Plasma
Product: plasmashell
Version First 6.6.80
Reported In:
Platform: KDE Linux
OS: Linux
Status: REPORTED
Severity: crash
Priority: NOR
Component: Notifications
Assignee: [email protected]
Reporter: [email protected]
CC: [email protected]
Target Milestone: 1.0
Application: plasmashell (6.6.80)
ApplicationNotResponding [ANR]: false
Qt Version: 6.11.0
Frameworks Version: 6.27.0
Operating System: Linux 7.0.5-arch1-1 x86_64
Windowing System: Wayland
Distribution: "Arch Linux"
DrKonqi: 6.6.80 [CoredumpBackend]
-- Information about the crash:
I was backing up my system with Kup. I had also minimized its job progress
notification to the System Tray, and it was mostly complete.
When I clicked on the circular progress indicator for the job, plasmashell
froze for about 15 seconds and then crashed.
I tried it again and there was no crash. Seems non-deterministic,
unfortunatrly.
The crash does not seem to be reproducible.
-- Backtrace:
Application: plasmashell (plasmashell), signal: Aborted
Thread 1 (Thread 0x7fd0f2324c80 (LWP 2293)):
[KCrash Handler]
#4 __pthread_kill_implementation (threadid=<optimized out>, signo=6,
no_tid=<optimized out>) at pthread_kill.c:44
#5 0x00007fd0f88cd7d0 in __GI_raise (sig=6) at ../sysdeps/posix/raise.c:26
#6 0x00007fd0f88b4681 in __GI_abort () at abort.c:77
#7 0x00007fd0f88b5700 in __libc_message_impl (vma_name=<optimized out>,
fmt=<optimized out>) at ../sysdeps/posix/libc_fatal.c:138
#8 0x00007fd0f89337cc in __libc_message_wrapper (vmaname=0x7fd0f8a43891
"glibc: fatal", fmt=0x7fd0f8a46e92 "%s\n") at ../include/stdio.h:203
#9 malloc_printerr (str=str@entry=0x7fd0f8a498a8 "double free or corruption
(!prev)") at malloc.c:5341
#10 0x00007fd0f893524c in _int_free_merge_chunk (av=0x7fd0f8aa2ac0
<main_arena>, p=0x562c18f133f0, size=2704) at malloc.c:4423
#11 0x00007fd0f8935382 in _int_free_chunk (av=0x7fd0f8aa2ac0 <main_arena>,
p=0x562c18f133f0, size=2704, have_lock=<optimized out>) at malloc.c:4368
#12 0x00007fd0f8706e3e in QHashPrivate::Span<QCache<QString,
PixmapWithPath>::Node>::addStorage (this=0x562c15ddbd08) at
/usr/include/qt6/QtCore/qhash.h:417
#13 0x00007fd0f86fcfc7 in QHashPrivate::Span<QCache<QString,
PixmapWithPath>::Node>::insert (this=0x562c15ddbd08, i=80) at
/usr/include/qt6/QtCore/qhash.h:291
#14 QHashPrivate::Data<QCache<QString, PixmapWithPath>::Node>::Bucket::insert
(this=<synthetic pointer>) at /usr/include/qt6/QtCore/qhash.h:519
#15 QHashPrivate::Data<QCache<QString,
PixmapWithPath>::Node>::findOrInsert<QString> (this=0x562c110563f8, key=...) at
/usr/include/qt6/QtCore/qhash.h:748
#16 QCache<QString, PixmapWithPath>::insert (this=0x562c110563e8, key=...,
object=0x562c15330eb0, cost=1522) at /usr/include/qt6/QtCore/qcache.h:193
#17 KIconLoaderPrivate::insertCachedPixmapWithPath (this=0x562c11056370,
key=..., data=..., path=...) at
/usr/src/debug/kde-banana-kiconthemes-git/kiconthemes/src/kiconloader.cpp:758
#18 0x00007fd0f87015ac in KIconLoader::loadScaledIcon (this=0x7fd0f23248d8,
_name=..., group=<optimized out>, group@entry=KIconLoader::Desktop,
scale=scale@entry=1.75, _size=..., state=<optimized out>, overlays=...,
path_store=0x7ffe484bbf80, canReturnNull=false, colors=...) at
/usr/include/c++/16.1.1/bits/unique_ptr.h:192
#19 0x00007fd0f86f4acf in KIconEngine::createPixmap (this=<optimized out>,
logicalSize=..., scale=<optimized out>, mode=<optimized out>, state=<optimized
out>) at
/usr/src/debug/kde-banana-kiconthemes-git/kiconthemes/src/kiconengine.cpp:121
#20 0x00007fd0f86f52b3 in KIconEngine::scaledPixmap (this=<optimized out>,
size=..., mode=<optimized out>, state=<optimized out>, scale=<optimized out>)
at
/usr/src/debug/kde-banana-kiconthemes-git/kiconthemes/src/kiconengine.cpp:152
#21 0x00007fd0f972cbff in QIcon::pixmap (this=this@entry=0x7ffe484bc110,
size=..., devicePixelRatio=1.75, mode=<optimized out>,
state=state@entry=QIcon::On) at
/usr/src/debug/qt6-base/qtbase/src/gui/image/qicon.cpp:947
#22 0x00007fd0cc0e81bf in Icon::iconPixmap (this=this@entry=0x562c14514950,
icon=...) at
/usr/src/debug/kde-banana-kirigami-git/kirigami/src/primitives/icon.cpp:586
#23 0x00007fd0cc0e5a7a in Icon::findIcon (this=this@entry=0x562c14514950,
size=...) at
/usr/src/debug/kde-banana-kirigami-git/kirigami/src/primitives/icon.cpp:489
#24 0x00007fd0cc0e6ddc in Icon::updatePolish (this=0x562c14514950) at
/usr/src/debug/kde-banana-kirigami-git/kirigami/src/primitives/icon.cpp:342
#25 0x00007fd0fa9ca9dd in QQuickWindowPrivate::polishItems
(this=0x562c12657c30) at
/usr/src/debug/qt6-declarative/qtdeclarative/src/quick/items/qquickwindow.cpp:346
#26 0x00007fd0fac1b8fd in QSGThreadedRenderLoop::polishAndSync
(this=this@entry=0x562c116ede00, w=<optimized out>, w@entry=0x562c18650fc0,
inExpose=inExpose@entry=true) at
/usr/src/debug/qt6-declarative/qtdeclarative/src/quick/scenegraph/qsgthreadedrenderloop.cpp:1640
#27 0x00007fd0fac1c5ed in QSGThreadedRenderLoop::handleExposure
(this=<optimized out>, window=<optimized out>) at
/usr/src/debug/qt6-declarative/qtdeclarative/src/quick/scenegraph/qsgthreadedrenderloop.cpp:1344
#28 QSGThreadedRenderLoop::exposureChanged (this=<optimized out>,
window=<optimized out>) at
/usr/src/debug/qt6-declarative/qtdeclarative/src/quick/scenegraph/qsgthreadedrenderloop.cpp:1249
#29 0x00007fd0f9842625 in QWindow::event (this=<optimized out>, ev=<optimized
out>) at /usr/src/debug/qt6-base/qtbase/src/gui/kernel/qwindow.cpp:2760
#30 0x00007fd0fb2030df in QApplicationPrivate::notify_helper (this=<optimized
out>, receiver=0x562c12657b00, e=0x7ffe484bc9a0) at
/usr/src/debug/qt6-base/qtbase/src/widgets/kernel/qapplication.cpp:3276
#31 0x00007fd0f90340f8 in QCoreApplication::notifyInternal2
(receiver=0x562c12657b00, event=0x7ffe484bc9a0) at
/usr/src/debug/qt6-base/qtbase/src/corelib/kernel/qcoreapplication.cpp:1109
#32 0x00007fd0f903414d in QCoreApplication::sendSpontaneousEvent
(receiver=<optimized out>, event=<optimized out>) at
/usr/src/debug/qt6-base/qtbase/src/corelib/kernel/qcoreapplication.cpp:1563
#33 0x00007fd0f97d5726 in QGuiApplicationPrivate::processExposeEvent
(e=0x7ffe484bca40) at
/usr/src/debug/qt6-base/qtbase/src/gui/kernel/qguiapplication.cpp:3514
#34 0x00007fd0f984e09a in QWindowSystemEventHandler::sendEvent (this=<optimized
out>, e=0x7ffe484bca40) at
/usr/src/debug/qt6-base/qtbase/src/gui/kernel/qwindowsysteminterface.cpp:190
#35
QWindowSystemHelper<QWindowSystemInterface::SynchronousDelivery>::handleEvent<QWindowSystemInterfacePrivate::ExposeEvent,
QWindow*, QRegion> () at
/usr/src/debug/qt6-base/qtbase/src/gui/kernel/qwindowsysteminterface.cpp:102
#36
QWindowSystemHelper<QWindowSystemInterface::SynchronousDelivery>::handleEvent<QWindowSystemInterfacePrivate::ExposeEvent,
QWindow*, QRegion> () at
/usr/src/debug/qt6-base/qtbase/src/gui/kernel/qwindowsysteminterface.cpp:96
#37 handleWindowSystemEvent<QWindowSystemInterfacePrivate::ExposeEvent,
QWindowSystemInterface::SynchronousDelivery, QWindow*, QRegion> () at
/usr/src/debug/qt6-base/qtbase/src/gui/kernel/qwindowsysteminterface.cpp:138
#38
QWindowSystemInterface::handleExposeEvent<QWindowSystemInterface::SynchronousDelivery>
(window=0x562c12657b00, region=...) at
/usr/src/debug/qt6-base/qtbase/src/gui/kernel/qwindowsysteminterface.cpp:341
#39 0x00007fd0fa035dff in QtWaylandClient::QWaylandWindow::sendExposeEvent
(this=this@entry=0x562c14b43680, rect=...) at
/usr/src/debug/qt6-base/qtbase/src/plugins/platforms/wayland/qwaylandwindow.cpp:615
#40 0x00007fd0fa037757 in QtWaylandClient::QWaylandWindow::updateExposure
(this=0x562c14b43680) at
/usr/src/debug/qt6-base/qtbase/src/plugins/platforms/wayland/qwaylandwindow.cpp:1631
#41 0x00007fd0f8489ac6 in ffi_call_unix64 () at ../src/x86/unix64.S:104
#42 0x00007fd0f848676b in ffi_call_int (cif=cif@entry=0x7ffe484bcce0,
fn=fn@entry=0x7fd0f1833ed0, rvalue=<optimized out>, rvalue@entry=0x0,
avalue=avalue@entry=0x7ffe484bcdb0, closure=closure@entry=0x0) at
../src/x86/ffi64.c:676
#43 0x00007fd0f848906e in ffi_call (cif=cif@entry=0x7ffe484bcce0,
fn=0x7fd0f1833ed0, rvalue=rvalue@entry=0x0, avalue=avalue@entry=0x7ffe484bcdb0)
at ../src/x86/ffi64.c:713
#44 0x00007fd0fc04677d in wl_closure_invoke
(closure=closure@entry=0x7fd0e4010f20, target=<optimized out>,
target@entry=0x562c15164b80, opcode=opcode@entry=0, data=<optimized out>,
flags=1) at ../wayland-1.25.0/src/connection.c:1243
#45 0x00007fd0fc047609 in dispatch_event (display=display@entry=0x562c1104c040,
queue=queue@entry=0x562c1104c138) at
../wayland-1.25.0/src/wayland-client.c:1731
#46 0x00007fd0fc047a13 in dispatch_queue (display=0x562c1104c040,
queue=0x562c1104c138) at ../wayland-1.25.0/src/wayland-client.c:1877
#47 wl_display_dispatch_queue_pending (display=0x562c1104c040,
queue=0x562c1104c138) at ../wayland-1.25.0/src/wayland-client.c:2242
#48 0x00007fd0f9ff537e in QtWaylandClient::QWaylandDisplay::qt_static_metacall
(_o=<optimized out>, _c=<optimized out>, _id=<optimized out>, _a=<optimized
out>) at
/usr/src/debug/qt6-base/qtbase/src/plugins/platforms/wayland/qwaylanddisplay.cpp:231
#49 0x00007fd0f90a0dd9 in doActivate<false> (sender=0x562c11028360,
signal_index=4, argv=0x7ffe484bd030) at
/usr/src/debug/qt6-base/qtbase/src/corelib/kernel/qobject.cpp:4383
#50 0x00007fd0f934fc05 in QAbstractEventDispatcher::awake (this=0x562c11028360)
at
/usr/src/debug/qt6-base/build/src/corelib/Core_autogen/include/moc_qabstracteventdispatcher.cpp:128
#51 QEventDispatcherGlib::processEvents (this=0x562c11028360, flags=...) at
/usr/src/debug/qt6-base/qtbase/src/corelib/kernel/qeventdispatcher_glib.cpp:406
#52 0x00007fd0f90423c3 in QEventLoop::processEvents (this=0x7ffe484bd170,
flags=...) at
/usr/src/debug/qt6-base/qtbase/src/corelib/kernel/qeventloop.cpp:108
#53 QEventLoop::exec (this=0x7ffe484bd170, flags=...) at
/usr/src/debug/qt6-base/qtbase/src/corelib/kernel/qeventloop.cpp:197
#54 0x00007fd0f903796a in QCoreApplication::exec () at
/usr/src/debug/qt6-base/qtbase/src/corelib/kernel/qcoreapplication.cpp:1452
#55 0x00007fd0fb1ff2fa in QApplication::exec () at
/usr/src/debug/qt6-base/qtbase/src/widgets/kernel/qapplication.cpp:2546
#56 0x0000562c01b86553 in main (argc=<optimized out>, argv=<optimized out>) at
/usr/src/debug/kde-banana-plasma-workspace-git/plasma-workspace/shell/main.cpp:204
Reported using DrKonqi
--
You are receiving this mail because:
You are watching all bug changes.
