Ubuntu
libical package

  1. Bug #956843
  2. Comment #2

Comment 2 for bug 956843

Revision history for this message
Robie Basak (racb) wrote : Re: Race condition in timezone handling causes crash

This is not a trivial bug. It looks like a memory corruption issue.

What I have found so far:

An important data structure is an ECalShellView *cal_shell_view. The specific instance I care about (I suspect there may be only one) is as it appears in the first argument when e-cal-shell-view-private.c:e_cal_shell_view_private_constructed is called.

The bug is being triggered some time after ((GnomeCalendar *)cal_shell_view->priv->cal_shell_content->priv->calendar)->priv->model->priv->zone->builtin_timezone is corrupted.

Setting a watch to detect the point when it is corrupted gives me the example backtrace attached. I can't think why malloc would overwrite this memory area unless it is treating that memory as freed. I have tried setting breakpoints to catch something freeing
((GnomeCalendar *)cal_shell_view->priv->cal_shell_content->priv->calendar)->priv->model->priv->zone but haven't had any success there.

Any ideas?