Bug 150591

Summary: Calc Segmentation Fault Segfault Crash Coredump Upon Close After Changes
Product: LibreOffice Reporter: nroycea+documentfoundation
Component: CalcAssignee: Not Assigned <libreoffice-bugs>
Status: RESOLVED WORKSFORME    
Severity: normal CC: doug.doubt, miguelangelrv
Priority: medium    
Version: 7.4.0.3 release   
Hardware: x86-64 (AMD64)   
OS: Linux (All)   
Whiteboard:
Crash report or crash signature: Regression By:

Description nroycea+documentfoundation 2022-08-25 02:13:54 UTC 
ArchLinux
*****
                Module /usr/lib/libreoffice/program/soffice.bin with build-id 3815e65db61b9f2d0e5dfa3d6b6013835afa7>
                Stack trace of thread 801283:
                #0  0x00007f9534ec1884 n/a (n/a + 0x0)
                ELF object binary architecture: AMD x86-64
*****
Open Calc and start a new spreadsheet
Add '1' to A1
Save
Close
(This is fine)

Open calc and load saved file
Copy Paste A1 to A2
Save
Close
(Segfault)

Repeat last group of steps to repeat at-will.
Comment 1 m_a_riosv 2022-08-25 16:47:35 UTC 
Please test with a clean profile, Menu/Help/Restart in Safe Mode
Comment 2 nroycea+documentfoundation 2022-08-25 18:20:00 UTC 
That is something I had already done before I posted. Even renaming my current profile dir and starting clean that way. Safe mode exhibited the same behavior.
I even just did it again just now in safe-mode before sending this. Same result.
Comment 3 QA Administrators 2022-08-26 03:36:58 UTC Comment hidden (obsolete)
Comment 4 nroycea+documentfoundation 2022-09-27 19:35:03 UTC 
What is required for this issue to become "CONFIRMED"?
Updated to 7.4.1-3 5 days ago and the issue persists:
*****
                Module /usr/lib/libreoffice/program/soffice.bin with build-id 83674d1926803881ad244daf79bed854b279d>
                Stack trace of thread 635370:
                #0  0x00007f84ea70b884 n/a (n/a + 0x0)
                ELF object binary architecture: AMD x86-64
*****

Also adding on another issue where closing the window when it's "maximized" makes the window non-visible when opening it.
I'm forced to right-mouse-context the program in the KDE app tray and choose "Move" to snap it to a side in order for the window to have any dimension to it.
Comment 5 Doug Doubt 2023-01-03 16:22:18 UTC 
This still crashes on:
> soffice --version
LibreOffice 7.4.3.2 40(Build:2)
Running on opensuse:tumbleweed:20230101 with KDE for a window manager.

The simple way to recreate this is to start calc:
> soffice --calc

Then enter "ctl c" followed by "ctl q"
The "KCrash Handler" gives the following stack from the Segmentation fault:
[KCrash Handler]
#4  0x00007f33a21b84f0 in rtl_uString_release () at /usr/lib64/libreoffice/program/libuno_sal.so.3
#5  0x00007f339ef2050b in  () at /usr/lib64/libreoffice/program/libmergedlo.so
#6  0x00007f339f065295 in  () at /usr/lib64/libreoffice/program/libmergedlo.so
#7  0x00007f339dc45095 in __run_exit_handlers () at /lib64/libc.so.6
#8  0x00007f339dc45220 in  () at /lib64/libc.so.6
#9  0x00007f339dc2c5b7 in __libc_start_call_main () at /lib64/libc.so.6
#10 0x00007f339dc2c679 in __libc_start_main_impl () at /lib64/libc.so.6
#11 0x000055f99547c805 in  ()

Looks to me like some code is missing a reset of a memory pointer following a memory free.
Comment 6 Doug Doubt 2023-01-25 01:30:04 UTC 
Cannot reproduce on version: LibreOffice 7.4.4.2 40(Build:2)
Comment 7 nroycea+documentfoundation 2023-01-26 01:40:15 UTC 
Confirmed, works for me. Closing.