evince crashed with SIGSEGV in INT_cairo_surface_set_device_scale()

Bug #1405380 reported by penalvch
42
This bug affects 7 people
Affects Status Importance Assigned to Milestone
evince (Ubuntu)
Invalid
Undecided
Unassigned

Bug Description

Evince crashed after about 10 minutes printing to file PDF with the attached. The next time I printed it took 2 hours so it is intermittenly reproducible.

ProblemType: Crash
DistroRelease: Ubuntu 15.04
Package: evince 3.14.1-0ubuntu1
ProcVersionSignature: Ubuntu 3.16.0-28.38-generic 3.16.7-ckt1
Uname: Linux 3.16.0-28-generic x86_64
ApportVersion: 2.15.1-0ubuntu1
Architecture: amd64
CurrentDesktop: Unity
Date: Wed Dec 24 01:00:32 2014
ExecutablePath: /usr/bin/evince
ExecutableTimestamp: 1413470384
InstallationDate: Installed on 2014-12-14 (10 days ago)
InstallationMedia: Ubuntu 15.04 "Vivid Vervet" - Alpha amd64 (20141213)
ProcCmdline: evince /home/name/Desktop/grammar4.ps
ProcCwd: /home/name
ProcEnviron:
 LANGUAGE=en_US
 PATH=(custom, no user)
 XDG_RUNTIME_DIR=<set>
 LANG=en_US.UTF-8
 SHELL=/bin/bash
SegvAnalysis:
 Segfault happened at: 0x7f8734828a08 <INT_cairo_surface_set_device_scale+8>: mov 0x1c(%rdi),%r9d
 PC (0x7f8734828a08) ok
 source "0x1c(%rdi)" (0x0000001c) not located in a known VMA region (needed readable region)!
 destination "%r9d" ok
SegvReason: reading NULL VMA
Signal: 11
SourcePackage: evince
StacktraceTop:
 INT_cairo_surface_set_device_scale (surface=0x0, sx=1, sy=1) at /build/buildd/cairo-1.13.0~20140204/src/cairo-surface.c:1676
 set_device_scale_on_surface (device_scale=<optimized out>, surface=<optimized out>) at /build/buildd/evince-3.14.1/./libview/ev-pixbuf-cache.c:273
 copy_job_to_job_info (job_render=job_render@entry=0x1a27010, job_info=job_info@entry=0x154df00, pixbuf_cache=pixbuf_cache@entry=0x1427340) at /build/buildd/evince-3.14.1/./libview/ev-pixbuf-cache.c:288
 job_finished_cb (job=<optimized out>, pixbuf_cache=0x1427340) at /build/buildd/evince-3.14.1/./libview/ev-pixbuf-cache.c:340
 _g_closure_invoke_va (closure=0x0, closure@entry=0x19187d0, return_value=return_value@entry=0x0, instance=0x0, instance@entry=0x1a27010, args=0x7f8714021c30, args@entry=0x7fff7e9903d0, n_params=0, param_types=0x7f8714021760) at /build/buildd/glib2.0-2.43.2/./gobject/gclosure.c:831
Title: evince crashed with SIGSEGV in INT_cairo_surface_set_device_scale()
UpgradeStatus: No upgrade log present (probably fresh install)
UserGroups: adm cdrom dip lpadmin plugdev sambashare sudo

Revision history for this message
penalvch (penalvch) wrote :
Revision history for this message
Apport retracing service (apport) wrote :

StacktraceTop:
 INT_cairo_surface_set_device_scale (surface=0x0, sx=1, sy=1) at /build/buildd/cairo-1.13.0~20140204/src/cairo-surface.c:1676
 set_device_scale_on_surface (device_scale=<optimized out>, surface=<optimized out>) at /build/buildd/evince-3.14.1/./libview/ev-pixbuf-cache.c:273
 copy_job_to_job_info (job_render=job_render@entry=0x1a27010, job_info=job_info@entry=0x154df00, pixbuf_cache=pixbuf_cache@entry=0x1427340) at /build/buildd/evince-3.14.1/./libview/ev-pixbuf-cache.c:288
 job_finished_cb (job=<optimized out>, pixbuf_cache=0x1427340) at /build/buildd/evince-3.14.1/./libview/ev-pixbuf-cache.c:340
 _g_closure_invoke_va (closure=0x0, closure@entry=0x19187d0, return_value=return_value@entry=0x0, instance=0x0, instance@entry=0x1a27010, args=0x7f8714021c30, args@entry=0x7fff7e9903d0, n_params=0, param_types=0x7f8714021760) at /build/buildd/glib2.0-2.43.2/./gobject/gclosure.c:831

Revision history for this message
Apport retracing service (apport) wrote : Stacktrace.txt
Revision history for this message
Apport retracing service (apport) wrote : StacktraceSource.txt
Revision history for this message
Apport retracing service (apport) wrote : ThreadStacktrace.txt
Changed in evince (Ubuntu):
importance: Undecided → Medium
tags: removed: need-amd64-retrace
Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in evince (Ubuntu):
status: New → Confirmed
Revision history for this message
Sebastien Bacher (seb128) wrote :

Thanks, that seems similar to https://bugzilla.gnome.org/show_bug.cgi?id=740958 ... maybe you could comment on the upstream bug mentioned your similar issue?

information type: Private → Public
Revision history for this message
penalvch (penalvch) wrote :

Sebastien Bacher, thanks for the follow up.

Given the offending file is attached to this report, I'll print a few times with the latest version of Evince in Vivid (3.14.2-0ubuntu1), and if reproducible I'll just file a new report upstream.

Revision history for this message
Sebastien Bacher (seb128) wrote :

I can confirm the issue in vivid, no need to print, just browsing the document is enough

Revision history for this message
penalvch (penalvch) wrote :

Sebastien Bacher, strange, as while using gnome-session-flashback (compiz) I've printed to file, and navigated the document extensively and no crash...

Changed in evince (Ubuntu):
importance: Medium → High
status: Confirmed → Triaged
tags: added: wily
Changed in evince:
importance: Unknown → Critical
status: Unknown → Expired
penalvch (penalvch)
no longer affects: evince (Ubuntu)
affects: evince → evince (Ubuntu)
Changed in evince (Ubuntu):
importance: Critical → Undecided
status: Expired → New
Revision history for this message
penalvch (penalvch) wrote :

Unable to reproduce the following in Bionic:
* Crashing while reviewing the document.
* Crashing while printing document to PDF.
* 20 minute print time. When I printed it in a fairly resource constrained VM, it took ~10 minutes. The long'ish time to print is correlated to Evince only utilizing one CPU core out of four available to the VM.

Changed in evince (Ubuntu):
status: New → Invalid
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.