tmux crashed with SIGSEGV

StacktraceTop:
 key_bindings_dispatch (bd=0x55caba2389a0, item=item@entry=0x55caba234920, c=c@entry=0x0, m=m@entry=0x0, fs=fs@entry=0x55caba2349a0) at key-bindings.c:461
 cmd_send_keys_inject (c=0x0, item=0x55caba234920, key=<optimized out>) at cmd-send-keys.c:80
 cmd_send_keys_exec (self=0x55caba23a470, item=0x55caba234920) at cmd-send-keys.c:168
 cmdq_fire_command (item=0x55caba234920) at cmd-queue.c:235
 cmdq_next (c=c@entry=0x55caba279e10) at cmd-queue.c:354

Hello Henning, thanks for your report. I can't reproduce the issue using Eoan, the same version of tmux and the same architecture. Is this something that happened one-off, or does it happen often/always on your system?

Since there isn't enough information in your report to differentiate between a problem specific to your system and a bug in Ubuntu, I'm marking this bug as Incomplete for the moment. If you believe that this is really a bug, we'd be grateful if you would then provide a more complete description of the problem and its context, and then change the bug status back to New.

As the stacktrace doesn't contain any private information I'm removing the "private security" status from this report.

Thank you!

Hello. The crash that I experienced was very similar if not identical to this report. In my case, I was able to isolate the problem thus:

1. Start a tmux server in the background and issue a `tmux send-keys -t` at it – the server crashes.
2. Start a tmux server in the background, attach to the session, hit [q] in the frame that shows all of the errors in the old configuration, which was not updated since the upgrade to Eoan, and issue the same `tmux send-keys -t` again – now the server does not crash.

So, the crash seems to happen when sending keystrokes to a frame that is still showing error messages from parsing the configuration.

Thanks Amir, reproduced the problem. Basically:

- add an invalid config to ~/.tmux.conf
- run tmux
- quickly detach
- run "tmux send-keys -t 0 q" (where "q" is just a keystroke to send)
you will get an error saying "lost server" and a crash dump in /var/crash.

Thanks for your checks Amir and Andreas.
Since this involves a "bad config" I'd say the prio isn't high.

But if one of you could report the crash upstream that would probably help the most to eventually get rid of it.

There currently is 3.0-rc5 in Debian/experiemental.
No final 3.0 yet at https://github.com/tmux/tmux/releases
Maybe by reporting this there it will make it into 3.0 final?

I was able to reproduce on a fresh 3.0-rc5 build and report it upstream: https://github.com/tmux/tmux/issues/1980

Thanks Amir for the reproducer and for filing the bug upstream. The bug has been already fixed upstream by this commit:

https://github.com/tmux/tmux/commit/3c312a915094fe566c323aee35387d144cdeb6b2

I'm linking this report to the upstream bug report.

WHen tmux 3.0 is really released we should check if the fix is in and if not maybe backport for the scope of Ubuntu 20.04.
But for now give upstream some time to release things...

The fixing commit landed in tmux 3.1a. We have 3.1c in Hirsute and Impish, so I'm marking the "devel" task as Fix Released.

According to the version numbers Focal is still affected (I didn't verify with the reproducer), so I'm adding a Focal task to reflect this. I doubt this bug qualifies for a SRU (not "high-impact" enough, see [1]), but this opinion of mine is fully open for discussion.

[1] https://wiki.ubuntu.com/StableReleaseUpdates#When