Ubuntu
tiff package

libtiff crasher on some image

Bug #43286 reported by DaveR
10
Affects Status Importance Assigned to Milestone
tiff (Ubuntu)
Fix Released
Medium
Unassigned

Bug Description

Binary package hint: nautilus

text file from aborted bugzilla session:

From: David Rowell <email address hidden>
To: <email address hidden>
X-Mailer: bug-buddy 2.14.0
Subject: Natulus crashes copying files from folder to folder

Distribution: Ubuntu 6.06 (dapper)
Package: nautilus
Severity: Normal
Version: GNOME2.14.1 unspecified
Gnome-Distributor: Ubuntu
Synopsis: Natulus crashes copying files from folder to folder
Bugzilla-Product: nautilus
Bugzilla-Component: File and Folder Operations
Bugzilla-Version: unspecified
BugBuddy-GnomeVersion: 2.0 (2.14.1)
Description:
Description of the crash:

Steps to reproduce the crash:
1. select several files, in this case 9Mb, in a folder
2. hold down primary mouse button
3. move to destination folder and release mouse button

Expected Results: files copied

How often does this happen? often enough to be annoying but not always

Additional Information: I wish I could give more info but I was
performing the most basic of tasks so I'm bewildered.

How would I know where "sendmail" is located much less the path to it?? Why can't the program figure it out - its yours - you put it somewhere not I. For that matter I don't even know what "sendmail" is.

Debugging Information:

Backtrace was generated from '/usr/bin/nautilus'

(no debugging symbols found)
Using host libthread_db library "/lib/tls/i686/cmov/libthread_db.so.1".
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
[Thread debugging using libthread_db enabled]
[New Thread -1225021760 (LWP 12657)]
[New Thread -1252873296 (LWP 12918)]
[New Thread -1226454096 (LWP 12661)]
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
(no debugging symbols found)
0xffffe410 in __kernel_vsyscall ()
#0 0xffffe410 in __kernel_vsyscall ()
#1 0xb75888c4 in poll () from /lib/tls/i686/cmov/libc.so.6
#2 0xb7735788 in g_main_context_check () from
/usr/lib/libglib-2.0.so.0
#3 0xb7735c58 in g_main_loop_run () from /usr/lib/libglib-2.0.so.0
#4 0xb7c395a5 in gtk_main () from /usr/lib/libgtk-x11-2.0.so.0
#5 0x08079dd6 in POA_Nautilus_MetafileFactory__fini ()
#6 0xb74ddea2 in __libc_start_main () from
/lib/tls/i686/cmov/libc.so.6
#7 0x080672a1 in ?? ()

Thread 3 (Thread -1226454096 (LWP 12661)):
#0 0xffffe410 in __kernel_vsyscall ()
No symbol table info available.
#1 0xb75888c4 in poll () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.
#2 0xb7735788 in g_main_context_check () from
/usr/lib/libglib-2.0.so.0
No symbol table info available.
#3 0xb7735c58 in g_main_loop_run () from /usr/lib/libglib-2.0.so.0
No symbol table info available.
#4 0xb781770e in link_thread_io_context () from
/usr/lib/libORBit-2.so.0
No symbol table info available.
#5 0xb774e582 in g_static_private_free () from
/usr/lib/libglib-2.0.so.0
No symbol table info available.
#6 0xb7798341 in start_thread () from
/lib/tls/i686/cmov/libpthread.so.0
No symbol table info available.
#7 0xb75924ee in clone () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.

Thread 2 (Thread -1252873296 (LWP 12918)):
#0 0xffffe410 in __kernel_vsyscall ()
No symbol table info available.
#1 0xb779e48b in __waitpid_nocancel ()
   from /lib/tls/i686/cmov/libpthread.so.0
No symbol table info available.
#2 0xb7e9c746 in libgnomeui_module_info_get ()
   from /usr/lib/libgnomeui-2.so.0
No symbol table info available.
#3 <signal handler called>
No symbol table info available.
#4 0xffffe410 in __kernel_vsyscall ()
No symbol table info available.
#5 0xb74f19a1 in raise () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.
#6 0xb74f32b9 in abort () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.
#7 0xb74eaf51 in __assert_fail () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.
#8 0xb6ac63fe in TIFFReadRGBATile () from /usr/lib/libtiff.so.4
No symbol table info available.
#9 0xb6ac731e in TIFFInitJPEG () from /usr/lib/libtiff.so.4
No symbol table info available.
#10 0xb6aaf173 in TIFFSetCompressionScheme () from
/usr/lib/libtiff.so.4
No symbol table info available.
#11 0xb6aafd4f in _TIFFsetDoubleArray () from /usr/lib/libtiff.so.4
No symbol table info available.
#12 0xb6ab0a56 in TIFFVSetField () from /usr/lib/libtiff.so.4
No symbol table info available.
#13 0xb6ab0b05 in TIFFSetField () from /usr/lib/libtiff.so.4
No symbol table info available.
#14 0xb6ab5707 in TIFFReadDirectory () from /usr/lib/libtiff.so.4
No symbol table info available.
#15 0xb6acca04 in TIFFClientOpen () from /usr/lib/libtiff.so.4
No symbol table info available.
#16 0xb54ae7ad in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#17 0xb54aecbd in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#18 0xb54aecf2 in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#19 0x08e060f8 in ?? ()
No symbol table info available.
#20 0xb54ae646 in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#21 0xb54ae69a in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#22 0xb54ae6a4 in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#23 0xb54ae6f3 in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#24 0xb54ae6fa in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#25 0xb54ae705 in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#26 0xb54ae71f in ?? ()
   from /usr/lib/gtk-2.0/2.4.0/loaders/libpixbufloader-tiff.so
No symbol table info available.
#27 0x00000000 in ?? ()
No symbol table info available.

Thread 1 (Thread -1225021760 (LWP 12657)):
#0 0xffffe410 in __kernel_vsyscall ()
No symbol table info available.
#1 0xb75888c4 in poll () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.
#2 0xb7735788 in g_main_context_check () from
/usr/lib/libglib-2.0.so.0
No symbol table info available.
#3 0xb7735c58 in g_main_loop_run () from /usr/lib/libglib-2.0.so.0
No symbol table info available.
#4 0xb7c395a5 in gtk_main () from /usr/lib/libgtk-x11-2.0.so.0
No symbol table info available.
#5 0x08079dd6 in POA_Nautilus_MetafileFactory__fini ()
No symbol table info available.
#6 0xb74ddea2 in __libc_start_main () from
/lib/tls/i686/cmov/libc.so.6
No symbol table info available.
#7 0x080672a1 in ?? ()
No symbol table info available.
#0 0xffffe410 in __kernel_vsyscall ()

See original description
Revision history for this message
Sebastien Bacher (seb128) wrote :

Thanks for your bug. It looks like according to the backtrace that the crash is due to a .tiff, could you figure which one and attach it to the bug?

Changed in nautilus:
assignee: nobody → desktop-bugs
status: Unconfirmed → Needs Info
Revision history for this message
DaveR (djrpublic) wrote : the .tiff file - I think

There was only one .tif in the folder.

It has been opened before but opening it now in the source folder crashes Gimp - viewer - gThumb. Simply opening the copied folder crashes Nautilus. But the thumbnail view is OK in the source folder. In other words I think the copy process borked both the original and copy of the file!

Revision history for this message
Sebastien Bacher (seb128) wrote : Re: Nautitus crash copying files

Thank you for the example, that's a libtiff issue, reassigning

Backtrace from eog:

Program received signal SIGABRT, Aborted.
[Switching to Thread -1226486864 (LWP 31160)]
0xffffe410 in __kernel_vsyscall ()
(gdb) bt
#0 0xffffe410 in __kernel_vsyscall ()
#1 0xb768c9a1 in raise () from /lib/tls/i686/cmov/libc.so.6
#2 0xb768e2b9 in abort () from /lib/tls/i686/cmov/libc.so.6
#3 0xb7685f51 in __assert_fail () from /lib/tls/i686/cmov/libc.so.6
#4 0xb661d0ca in JPEGCleanup (tif=0x8142c70) at tif_jpeg.c:1505
#5 0xb661dcb6 in TIFFInitJPEG (tif=0x8142c70, scheme=7) at tif_jpeg.c:1835
#6 0xb65fea21 in TIFFSetCompressionScheme (tif=0x8142c70, scheme=7) at tif_compress.c:162
#7 0xb65ff67c in _TIFFVSetField (tif=0x8142c70, tag=259, ap=0xb6e540ac "NDc�") at tif_dir.c:179
#8 0xb66009de in TIFFVSetField (tif=0x8142c70, tag=259, ap=0xb6e540a8 "\a") at tif_dir.c:681
#9 0xb6600997 in TIFFSetField (tif=0x8142c70, tag=259) at tif_dir.c:667
#10 0xb6603ba1 in TIFFReadDirectory (tif=0x8142c70) at tif_dirread.c:327
#11 0xb66247d8 in TIFFClientOpen (name=0xb7fadcbd "libtiff-pixbuf", mode=0xb7fadcf2 "r", clientdata=0x81452b8,
    readproc=0xb7fad646 <tiff_read>, writeproc=0xb7fad69a <tiff_write>, seekproc=0xb7fad6a4 <tiff_seek>,
    closeproc=0xb7fad6f3 <tiff_close>, sizeproc=0xb7fad6fa <tiff_size>, mapproc=0xb7fad705 <tiff_map_file>,
    unmapproc=0xb7fad71f <tiff_unmap_file>) at tif_open.c:419
#12 0xb7fad7ad in gdk_pixbuf__tiff_image_stop_load (data=0x81452b8, error=0x80eae08) at io-tiff.c:496
#13 0xb799e2e1 in IA__gdk_pixbuf_loader_close (loader=0x8145660, error=0x80eae08) at gdk-pixbuf-loader.c:759
#14 0x080682e7 in eog_image_load (img=0x8145480, data2read=7, job=0x811b960, error=0x80eae08) at eog-image.c:793
#15 0x08063176 in job_prepare_model_do (job=0x811b960, data=0x80e1c30, error=0x80eae08) at main.c:399
#16 0x0806dfb2 in eog_job_call_action (job=0x811b960) at eog-job.c:386

Changed in nautilus:
assignee: desktop-bugs → nobody
status: Needs Info → Confirmed
Revision history for this message
Sebastien Bacher (seb128) wrote :

The crash is fixed tiff 3.8.2, will be fixed with the sync on Debian after dapper

Changed in tiff:
status: Confirmed → Fix Committed
Revision history for this message
Sebastien Bacher (seb128) wrote :

That upstream change fixes the issue:

RCS file: /cvs/maptools/cvsroot/libtiff/libtiff/tif_jpeg.c,v
retrieving revision 1.43
retrieving revision 1.44
diff -u -r1.43 -r1.44
--- libtiff/tif_jpeg.c 7 Mar 2006 11:59:12 -0000 1.43
+++ libtiff/tif_jpeg.c 15 Mar 2006 20:56:40 -0000 1.44
@@ -1850,9 +1850,6 @@

        assert(scheme == COMPRESSION_JPEG);

- if ((tif->tif_flags & TIFF_CODERSETUP) == 0)
- JPEGCleanup(tif);
-
        /*
         * Allocate state block so tag methods have storage to record values.
         */

Fixed to dapper fix that upload:

 tiff (3.7.4-1ubuntu3) dapper; urgency=low
 .
   * debian/patches/fix_43286_crasher.patch:
     - upstream change, fix a crasher (Ubuntu: #43286)

Changed in tiff:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.