Description: LibreOffice Writer reproducibly crashes when trying to print certain characters from CJK fonts. Bug may be also related to operating system (Ubuntu 17.10 64 bit) or the font used. The character which produces the problem: "…" (horizontal ellipsis, code point 0x2026). Problem occurred for the following fonts: "Noto Serif CJK SC" "Noto Serif CJK TC" obviously no crashes for fonts of the "Noto Sans" series. odt file that gives the crash on my system and a backtrace are attached Steps to Reproduce: 1. Open LibreOffice 2. Load "pdf_export_crash_17-12-27.odt" (attached) 3. Select File->Export as PDF; Press OK or 3. Send file to printer Actual Results: LibreOffice crashes immediately Expected Results: produce the pdf / print Reproducible: Always User Profile Reset: Yes OpenGL enabled: Yes Additional Info: Version: 5.4.2.2 Build ID: 1:5.4.2-0ubuntu0.17.10.1 CPU threads: 8; OS: Linux 4.13; UI render: default; VCL: gtk3; Locale: en-US (en_US.UTF-8); Calc: group User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:57.0) Gecko/20100101 Firefox/57.0
Created attachment 138669 [details] odt file that produces the crash
Created attachment 138670 [details] backtrace
I can't reproduce it in Versió: 5.4.3.2 ID de la construcció: 1:5.4.3~rc2-0ubuntu0.17.04.1~lo1 Fils de CPU: 4; SO: Linux 4.10; Renderitzador de la IU: per defecte; VCL: gtk3; Configuració local: ca-ES-valencia (ca_ES.UTF-8); Calc: group To be certain the reported issue is not related to corruption in the user profile, could you please reset your Libreoffice profile ( https://wiki.documentfoundation.org/UserProfile ) and re-test? I have set the bug's status to 'NEEDINFO'. Please change it back to 'UNCONFIRMED' if the issue is still present
Many thanks for the fast response. Yes, I tried to reset the the user profile as described under the link you sent. On my system the error still occurs. I also created a new user and cleared the folder ~/.config/libreoffice for the new account. When I log in as the new user, start Libreoffice, load "pdf_export_crash_17-12-27.odt", and try to export, Libreoffice crashes as before. Do you think this can be related to the version of LibreOffice? Mine is: 5.4.2.2 (default for Ubuntu 17.10) You tested with: 5.4.3.2 Should I better report the bug to Ubuntu? Would any further information help you to locate the bug? Greetings
Could you please try to reproduce it with the latest version of LibreOffice from https://www.libreoffice.org/download/libreoffice-fresh/ ?
Thank you for your advice. Just tried it. It again crashed giving this report: crashreport.libreoffice.org/stats/crash_details/8034031d-1d3c-4276-8d46-c7def7fed476
Could you please try to download a debug build from http://dev-builds.libreoffice.org/daily/master/ ( the ones with dbg on the name) and obtain a backtrace as explained here: https://wiki.documentfoundation.org/QA/BugReport/Debug_Information#GNU.2FLinux ??
Created attachment 138685 [details] backtrace from master_dbg~2017-12-27_00.43.38_LibreOfficeDev_6.1.0.0.alpha0_Linux_x86-64_archive
I proceeded as you advised. The 6.1.0 Version also gave the error. Please have a look for the backtrace for more information. Many thanks!
Let's put this one to NEW since there's a bt.
(In reply to malte.kleemeier from comment #9) > I proceeded as you advised. The 6.1.0 Version also gave the error. > Please have a look for the backtrace for more information. > Many thanks! Thank you very much. In your original report, OpenGL was enabled, does it crash if you disable it from Options - View ?
Created attachment 138699 [details] open GL disabled: backtrace from master_dbg~2017-12-27_00.43.38_LibreOfficeDev_6.1.0.0.alpha0_Linux_x86-64_archive
I disabled anything under Tools->Options->View->Graphics Output (last line under the "Graphics Output" item of the dialog said "GL is currently disabled"). Then I restarted LibreOffice to be sure that the changes made take effect. LibreOffice still crashes (obviously for the same reason as before). There is a backtrace "open GL disabled: backtrace from master_dbg..." giving you more details. Greetings
Ok, I could reproduce the crash after installing https://noto-website-2.storage.googleapis.com/pkgs/NotoSerifCJKsc-hinted.zip Version: 6.1.0.0.alpha0+ Build ID: 45bbb07680b3d81aaf66ef2d11c95d4c48ab23de CPU threads: 4; OS: Linux 4.10; UI render: default; VCL: gtk3; Locale: ca-ES (ca_ES.UTF-8); Calc: group threaded
Reproduced in Version: 5.2.0.0.alpha1+ Build ID: 5b168b3fa568e48e795234dc5fa454bf24c9805e CPU Threads: 4; OS Version: Linux 4.10; UI Render: default; Locale: ca-ES (ca_ES.UTF-8) Version: 4.3.0.0.alpha1+ Build ID: c15927f20d4727c3b8de68497b6949e72f9e6e9e Version 4.1.0.0.alpha0+ (Build ID: efca6f15609322f62a35619619a6d5fe5c9bd5a) LibreOffice 3.3.0 OOO330m19 (Build:6) tag libreoffice-3.3.0.4
Caolán, one for you?
Khaled: since it concerns fonts, thought you might be interested in this bugtracker too.
FontDict element index 3 offset appear to be out by one in the font to overlap over the last byte of element index 2
ah, we squeeze through a float and lose precision
Caolán McNamara committed a patch related to this issue. It has been pushed to "master": http://cgit.freedesktop.org/libreoffice/core/commit/?id=088df374f01a28c06c4602f33fea2b717bf403f5 tdf#114704 use of float as intermediate causes out by one on large offsets It will be available in 6.1.0. The patch should be included in the daily builds available at http://dev-builds.libreoffice.org/daily/ in the next 24-48 hours. More information about daily builds can be found at: http://wiki.documentfoundation.org/Testing_Daily_Builds Affected users are encouraged to test the fix and report feedback.
backport to earlier versions in gerrit
Caolán McNamara committed a patch related to this issue. It has been pushed to "libreoffice-6-0": http://cgit.freedesktop.org/libreoffice/core/commit/?id=4e96c457f08368843d32337a9a2d9ccefa62839e&h=libreoffice-6-0 tdf#114704 use of float as intermediate causes out by one on large offsets It will be available in 6.0.0.2. The patch should be included in the daily builds available at http://dev-builds.libreoffice.org/daily/ in the next 24-48 hours. More information about daily builds can be found at: http://wiki.documentfoundation.org/Testing_Daily_Builds Affected users are encouraged to test the fix and report feedback.
Caolán McNamara committed a patch related to this issue. It has been pushed to "libreoffice-5-4": http://cgit.freedesktop.org/libreoffice/core/commit/?id=7f9a8481f76fc45ff682b654484c1ac311820dfe&h=libreoffice-5-4 tdf#114704 use of float as intermediate causes out by one on large offsets It will be available in 5.4.5. The patch should be included in the daily builds available at http://dev-builds.libreoffice.org/daily/ in the next 24-48 hours. More information about daily builds can be found at: http://wiki.documentfoundation.org/Testing_Daily_Builds Affected users are encouraged to test the fix and report feedback.
Today I tried it on my system using libreoffice-5-4~2018-01-09_14.40.58_LibreOfficeDev_5.4.5.0.0_Linux_x86-64_deb Everything is working fine now. Great work, I'm really impressed by the way error tracking is done at libreoffice. Many thanks!
*** Bug 107056 has been marked as a duplicate of this bug. ***