Created attachment 81862 [details] .docx file which causes LibreOffice to crash on file open LibreOffice crashes when opening the attached .docx file: $ libreoffice foo.docx # # A fatal error has been detected by the Java Runtime Environment: # # SIGSEGV (0xb) at pc=0x00007f7e475643e4, pid=7882, tid=140181179169152 # # JRE version: 7.0_21-b02 # Java VM: OpenJDK 64-Bit Server VM (23.7-b01 mixed mode linux-amd64 compressed oops) # Problematic frame: # C [libswlo.so+0x4fc3e4] SwTxtNode::IsCollapse() const+0x9004 # # Core dump written. Default location: /home/miller/Windows/core or core.7882 # # An error report file with more information is saved as: # /home/miller/Windows/hs_err_pid7882.log # # If you would like to submit a bug report, please include # instructions on how to reproduce the bug and visit: # http://icedtea.classpath.org/bugzilla #
Created attachment 81863 [details] Error report file referenced in bug report
I can also provide the core file referenced in the previous comment, though it's too large to upload to Bugzilla (about 11 MB compressed).
Created attachment 81903 [details] console + bt with symbols on master sources On pc Debian x86-64 with master sources updated today, I reproduced the crash. I attached console logs + bt
Created attachment 81904 [details] some changes I tried change after change to fix this (see attachment) but still have a segfault, here's the last bt I get: Program received signal SIGSEGV, Segmentation fault. 0x00007ffad9124002 in ViewShell::Imp (this=0x2e6e65646e) at /home/julien/compile-libreoffice/libreoffice/sw/inc/viewsh.hxx:200 200 SwViewImp *Imp() { return mpImp; } (gdb) bt #0 0x00007ffad9124002 in ViewShell::Imp (this=0x2e6e65646e) at /home/julien/compile-libreoffice/libreoffice/sw/inc/viewsh.hxx:200 #1 0x00007ffad956dc78 in SwFlowFrm::MoveSubTree (this=0x62b8ba0, pParent=0x62bf630, pSibling=0x0) at /home/julien/compile-libreoffice/libreoffice/sw/source/core/layout/flowfrm.cxx:606 #2 0x00007ffad95a201b in SwCntntFrm::MoveFtnCntFwd (this=0x62b8ac0, bMakePage=1 '\001', pOldBoss=0x353dac0) at /home/julien/compile-libreoffice/libreoffice/sw/source/core/layout/ftnfrm.cxx:3082 #3 0x00007ffad95713ac in SwFlowFrm::MoveFwd (this=0x62b8ba8, bMakePage=1 '\001', bPageBreak=0 '\000', bMoveAlways=0 '\000') at /home/julien/compile-libreoffice/libreoffice/sw/source/core/layout/flowfrm.cxx:1941 #4 0x00007ffad962b4a2 in SwTabFrm::MakeAll (this=0x62b8ac0) at /home/julien/compile-libreoffice/libreoffice/sw/source/core/layout/tabfrm.cxx:2576 #5 0x00007ffad95584c4 in SwFrm::PrepareMake (this=0x62b8ac0) at /home/julien/compile-libreoffice/libreoffice/sw/source/core/layout/calcmove.cxx:362 ...
Cédric/Michael: one for you? (bt attached + some changes proposed)
Tested using Windows 8.1 with LibreOffice Version: 4.1.4.2 Build ID: 0a0440ccc0227ad9829de5f46be37cfb6edcf72 the document does NOT crash. @Julien, Tristan: Still an issue on Linux (Linux only :) ? )
Created attachment 91270 [details] bt with symbols With master sources updated 2 days ago, I had a crash too (attached bt) I also got a crash with Debian LO package (4.1.3.2).
Created attachment 103656 [details] console_bt with master sources On pc Debian x86-64 with master sources updated today, I could still reproduce this.
Increase a bit importance since crash. Miklos: noticing http://cgit.freedesktop.org/libreoffice/core/commit/?id=ad913681c0e0cdaaa706329f518f59ee54b86d43, I thought you might be interested in this one. (didn't say the commit triggered the problem! :-) Just meant you'd perhaps have an idea of the problem)
http://cgit.freedesktop.org/libreoffice/core/commit/?id=48a679cbc5775a7a033dfe494c2a0a513aba9b1f
Caolan McNamara committed a patch related to this issue. It has been pushed to "libreoffice-4-3": http://cgit.freedesktop.org/libreoffice/core/commit/?id=6da201e1cb5fc1cb9d0f3c27270f98fd2eb03eef&h=libreoffice-4-3 Resolves: fdo#66496 don't crash on loading specific .docx It will be available in LibreOffice 4.3.3. The patch should be included in the daily builds available at http://dev-builds.libreoffice.org/daily/ in the next 24-48 hours. More information about daily builds can be found at: http://wiki.documentfoundation.org/Testing_Daily_Builds Affected users are encouraged to test the fix and report feedback.
Xisco Fauli committed a patch related to this issue. It has been pushed to "master": https://git.libreoffice.org/core/commit/b540e8bc7111ba03ee675a507c098e140a5e81dc tdf#66496: sw: Add unittest It will be available in 7.0.0. The patch should be included in the daily builds available at https://dev-builds.libreoffice.org/daily/ in the next 24-48 hours. More information about daily builds can be found at: https://wiki.documentfoundation.org/Testing_Daily_Builds Affected users are encouraged to test the fix and report feedback.