GTK+/Quartz: crash in Gtk::Editable_Class::set_selection_bounds_vfunc_callback (after clipboard_unset(…) )

I assume this is with Inkscape Quartz 0.47+devel - which revision number?
Which gtk2/gtkmm version was installed when creating the application package?

inkscape 0.47 AQUA, devel-r9101

port installed gtk*
The following ports are currently installed:
  gtk-doc @1.11_1
  gtk-doc @1.13_0 (active)
  gtk2 @2.18.6_0+darwin_8+no_x11+quartz (active)
  gtk2-clearlooks @0.6.2_0 (active)
  gtkmm @2.18.2_0 (active)

Hi Wolf,
I am not sure I understand how to reproduce your issue. Could you please add some details?
Thanks,

This is the way I could reproduce it:

* freshly launch inkscape
* enlarge the inkscape window to fit the whole screen (mine is 1600px)
* open the "layers" panel
* Add a new layer
* click the mouse in the layers panel - right hand side besides the new layer name (grey colour, very right side)
* BANG!!!

There seem to be a two distinguished situations:

a) click to the very right side of the layers panel and you can edit the layer name: nothing happens
b) click to the very right side of the layers panel and you just hit the grey area, which will not change to the blue editable box: Crash!

It seems to depend from the width of the inkscape window whether you end up with case a) or b).

Reproduced with Inkscape 0.48+devel r10241 on OS X 10.5.8 (GTK+/Quartz 2.24.4)

Crash report (including list of loaded dylibs)

> It seems to depend from the width of the inkscape
> window whether you end up with case a) or b).

Not confirmed - for me the steps to reproduce do not depend on the size/width of the window: it also happens when dragging a new document window to its smallest size, opening the layer dialog (window slightly expands to adjust for the minimal size of the docked layer dialog) and adding a second layer. The trigger seems to be timing-related (clicking twice on the same editable cell, but not as fast as a double-click).

Since the backtrace hints at an upstream problem, I tried to reproduce it with 'Tree View > Editable Cells' from 'gtk-demo': with both backends (quartz and x11) the same steps in gtk-demo trigger this malloc error (but no crash):

Starting program: /Volumes/green/mp-quartz/with-a-long-long-long-directory-name/bin/gtk-demo
Reading symbols for shared libraries . done
gtk-demo(28350,0xa0175720) malloc: *** error for object 0x1b32c: Non-aligned pointer being freed
*** set a breakpoint in malloc_error_break to debug

Breakpoint 1, 0x90e5e4a9 in malloc_error_break ()
(gdb) bt
#0 0x90e5e4a9 in malloc_error_break ()
#1 0x90e59497 in szone_error ()
#2 0x90d83503 in szone_free ()
#3 0x90d8336d in free ()
#4 0x0000857d in cell_edited ()
#5 0x00a0ef39 in g_closure_invoke ()
#6 0x00a210b3 in signal_emit_unlocked_R ()
#7 0x00a22741 in g_signal_emit_valist ()
#8 0x00a22a49 in g_signal_emit ()
#9 0x0045d01b in gtk_cell_renderer_text_editing_done ()
#10 0x00a0ef39 in g_closure_invoke ()
#11 0x00a210b3 in signal_emit_unlocked_R ()
#12 0x00a22741 in g_signal_emit_valist ()
#13 0x00a2686d in g_signal_emit_by_name ()
#14 0x00451e52 in gtk_cell_editable_editing_done ()
#15 0x00614d1b in gtk_tree_view_stop_editing ()
#16 0x0061a3bd in gtk_tree_view_button_press ()
#17 0x00502b1b in _gtk_marshal_BOOLEAN__BOXED ()
#18 0x00a0ef39 in g_closure_invoke ()
#19 0x00a21238 in signal_emit_unlocked_R ()
#20 0x00a22487 in g_signal_emit_valist ()
#21 0x00a22a49 in g_signal_emit ()
#22 0x006303c6 in gtk_widget_event_internal ()
#23 0x00500d18 in gtk_propagate_event ()
#24 0x0050132a in gtk_main_do_event ()
#25 0x000c6229 in gdk_event_dispatch ()
#26 0x00a8771d in g_main_context_dispatch ()
#27 0x00a8b5ab in g_main_context_iterate ()
#28 0x00a8b887 in g_main_loop_run ()
#29 0x00500261 in gtk_main ()
#30 0x00019f77 in main ()
(gdb) q
The program is running. Exit anyway? (y or n) y
LeWitt:mp-quartz suv$

I cannot reproduce the crash: I always end-up in Wolf's case b). I'm on OS X 10.6 (64bits), with:
gtk 2.24.4
gtkmm 2.24.0

Is 10.6 (64 bits) the only difference?

> Is 10.6 (64 bits) the only difference?

System Info:
$ uname -a
Darwin LeWitt.local 9.8.0 Darwin Kernel Version 9.8.0: Wed Jul 15 16:55:01 PDT 2009; root:xnu-1228.15.4~1/RELEASE_I386 i386
$ port installed gtk2 gtkmm
The following ports are currently installed:
  gtk2 @2.24.4_0+no_x11+quartz (active)
  gtkmm @2.24.0_0 (active)
$ # compiler used for inkscape trunk
$ gcc-4.2 --version
i686-apple-darwin9-gcc-4.2.1 (GCC) 4.2.1 (Apple Inc. build 5577)

This ist my system:

bub$ port installed gtk2 gtkmm
The following ports are currently installed:
  gtk2 @2.22.1_1+no_x11+quartz (active)
  gtkmm @2.22.0_1 (active)

Martins-G4:~ bub$ uname -a
Darwin Martins-G4.local 9.8.0
Darwin Kernel Version 9.8.0: Wed Jul 15 16:57:01 PDT 2009;
root:xnu-1228.15.4~1/RELEASE_PPC Power Macintosh

Martins-G4:~ bub$ gcc --version
gcc (GCC) 4.4.5

I agree with ~suv #7:
It doesnt depend on window width on my machine either.

But there seem to be some circumstances under which the crash does not occur. Today it seems not to be time-related - one single click anywhere in the gray area is enough to kick the app.

Apparently still present (as variation) on OS X 10.7.4 Lion with
- Inkscape 0.48+devel r11562 (64bit)
- glib2 2.33.6
- glibmm 2.33.3
- gtk2 2.24.11 (quartz backend)
- gtkmm 2.24.2

Steps used for attached backtrace:
0) mv ~/.config/inkscape{,-bkp}
1) launch inkscape
2) open 'Layers…' dialog
3) add new layer
4) add another new layer
-> crash when clicking on 'Add' in the floating dialog.

Workaround: crash can be prevented if using this gtk setting (via ~/.gtkrc-2.0):
 gtk-entry-select-on-focus = 0

Also present on OS X 10.7.4 Lion with experimental GTK3 build (64bit):
- Inkscape 0.48+devel r11562 (64bit)
- glib2 2.33.6
- glibmm 2.33.3
- gtk3 3.5.8 (quartz backend)
- gtkmm3 3.5.6

Any help (by someone familiar coding with GTK+/gtkmm) with investigating whether this is Inkscape triggering the crash (in the end), or - if not - with filing an upstream bug in either gtkmm or GTK+ itself would be highly appreciated.

Still present with GTK2/Quartz 2.24.13 and GTK3/Quartz 3.6.0 (tested on OS X 10.7.4).

Closing as 'Invalid' for now - assuming fixed upstream in GTK+: adding / renaming layers works in stable and trunk without crashing Inkscape if using most recent GTK+ versions.

- no longer reproduced with Inkscape stabe / trunk and GTK+/Quartz 2.24.14 built with two later patches from gtk-2-24 git
<http://git.gnome.org/browse/gtk+/commit/?h=gtk-2-24&id=4a8df7a33c298d22bf78b947d0e861fc03ec70e1>
<http://git.gnome.org/browse/gtk+/commit/?h=gtk-2-24&id=e3e055f8551ac8ee033f361261c849c612554184>
- not reproduced with Inkscape trunk and GTK+/Quartz 3.6.3