[Libreoffice-bugs] [Bug 131366] Crash when I type the letter "i" after the letter "f" in a paragraph with style "emphasis" and font "Linux Biolinum G"

bugzilla-daemon at bugs.documentfoundation.org bugzilla-daemon at bugs.documentfoundation.org
Mon Mar 16 15:31:18 UTC 2020 

https://bugs.documentfoundation.org/show_bug.cgi?id=131366

Julien Nabet <serval2412 at yahoo.fr> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |caolanm at redhat.com,
                   |                            |dr.khaled.hosny at gmail.com,
                   |                            |serval2412 at yahoo.fr

--- Comment #3 from Julien Nabet <serval2412 at yahoo.fr> ---
I retrieved a bt and try to put some breaks but the pb seems in Harfbuzz.
#0  0x00007ffff0b05d0d in (anonymous namespace)::direct_run(bool, void* const*,
unsigned char const*, int*, graphite2::Slot**&, unsigned char,
graphite2::vm::Machine::status_t&, graphite2::SlotMap*)
    (get_table_mode=false, program=0x7fffd5dbd798, data=0x7fffd5dbd878 "\006",
stack=0x7ffffffe3a98, __map=@0x7ffffffe38f0: 0x7ffffffe52e0, _dir=0 '\000',
status=@0x7ffffffe4aa8: graphite2::vm::Machine::finished,
__smap=0x7ffffffe52d0) at
workdir/UnpackedTarball/graphite/src/inc/opcodes.h:473
#1  0x00007ffff0b07313 in graphite2::vm::Machine::run(void* const*, unsigned
char const*, graphite2::Slot**&)
    (this=0x7ffffffe3a90, program=0x7fffd5dbd798, data=0x7fffd5dbd878 "\006",
is=@0x7ffffffe38f0: 0x7ffffffe52e0) at
workdir/UnpackedTarball/graphite/src/direct_machine.cpp:116
#2  0x00007ffff0b02ca4 in
graphite2::vm::Machine::Code::run(graphite2::vm::Machine&, graphite2::Slot**&)
const (this=0x7fffd6286568, m=..., map=@0x7ffffffe38f0: 0x7ffffffe52e0)
    at workdir/UnpackedTarball/graphite/src/Code.cpp:751
#3  0x00007ffff0afe6c3 in graphite2::Pass::testConstraint(graphite2::Rule
const&, graphite2::vm::Machine&) const (this=0x6500a78, r=..., m=...) at
workdir/UnpackedTarball/graphite/src/Pass.cpp:653
#4  0x00007ffff0afd5c4 in graphite2::Pass::findNDoRule(graphite2::Slot*&,
graphite2::vm::Machine&, graphite2::FiniteStateMachine&) const (this=0x6500a78,
slot=@0x7ffffffe3a00: 0x8bd09f0, m=..., fsm=...)
    at workdir/UnpackedTarball/graphite/src/Pass.cpp:512
#5  0x00007ffff0afd221 in graphite2::Pass::runGraphite(graphite2::vm::Machine&,
graphite2::FiniteStateMachine&, bool) const (this=0x6500a78, m=..., fsm=...,
reverse=false)
    at workdir/UnpackedTarball/graphite/src/Pass.cpp:420
#6  0x00007ffff0ae975e in graphite2::Silf::runGraphite(graphite2::Segment*,
unsigned char, unsigned char, int) const (this=0x64f08c8, seg=0x8b567d0,
firstPass=0 '\000', lastPass=1 '\001', dobidi=1)
    at workdir/UnpackedTarball/graphite/src/Silf.cpp:431
#7  0x00007ffff0ada76b in graphite2::Face::runGraphite(graphite2::Segment*,
graphite2::Silf const*) const (this=0x64b3d50, seg=0x8b567d0, aSilf=0x64f08c8)
at workdir/UnpackedTarball/graphite/src/Face.cpp:179
#8  0x00007ffff0c9bdb8 in graphite2::Segment::runGraphite() (this=0x8b567d0) at
workdir/UnpackedTarball/graphite/src/inc/Segment.h:94
#9  0x00007ffff0c9b8e0 in (anonymous
namespace)::makeAndInitialize(graphite2::Font const*, graphite2::Face const*,
unsigned int, graphite2::FeatureVal const*, gr_encform, void const*, unsigned
long, int)
    (font=0x0, face=0x64b3d50, script=1818326126, pFeats=0x5ed9290,
enc=gr_utf32, pStart=0x8b562b0, nChars=3, dir=2) at
workdir/UnpackedTarball/graphite/src/gr_segment.cpp:46
#10 0x00007ffff0c9b772 in gr_make_seg(gr_font const*, gr_face const*,
gr_uint32, gr_feature_val const*, gr_encform, void const*, size_t, int)
    (font=0x0, face=0x64b3d50, script=1818326126, pFeats=0x5ed9290,
enc=gr_utf32, pStart=0x8b562b0, nChars=3, dir=2) at
workdir/UnpackedTarball/graphite/src/gr_segment.cpp:110
#11 0x00007ffff0c424b1 in _hb_graphite2_shape(hb_shape_plan_t*, hb_font_t*,
hb_buffer_t*, hb_feature_t const*, unsigned int)
    (shape_plan=0x6564410, font=0x64b3290, buffer=0x8b57790, features=0x0,
num_features=0) at hb-graphite2.cc:256
#12 0x00007ffff0c3dd57 in hb_shape_plan_execute(hb_shape_plan_t*, hb_font_t*,
hb_buffer_t*, hb_feature_t const*, unsigned int)
    (shape_plan=0x6564410, font=0x64b3290, buffer=0x8b57790, features=0x0,
num_features=0) at ./hb-shaper-list.hh:38
#13 0x00007ffff0c3f229 in hb_shape_full(hb_font_t*, hb_buffer_t*, hb_feature_t
const*, unsigned int, char const* const*)
    (font=0x64b3290, buffer=0x8b57790, features=0x0, num_features=0,
shaper_list=0x7ffffffe5e10) at hb-shape.cc:139
#14 0x00007ffff057aa8b in GenericSalLayout::LayoutText(ImplLayoutArgs&,
SalLayoutGlyphs const*) (this=0x61173c0, rArgs=..., pGlyphs=0x0) at
vcl/source/gdi/CommonSalLayout.cxx:471
#15 0x00007ffff018d7fd in OutputDevice::ImplLayout(rtl::OUString const&, int,
int, Point const&, long, long const*, SalLayoutFlags, vcl::TextLayoutCache
const*, SalLayoutGlyphs const*) const
    (this=0x5e887a0, rOrigStr="Text with the \"Emphasis\" style seems to
trigger the problem. Try typing the letter \"i\" after the \"f\" here, on my
machine it crashes every time: fi", nMinIndex=143, nLen=3, rLogicalPos=Point =
{...}, nLogicalWidth=0, pDXArray=0x0, flags=SalLayoutFlags::GlyphItemsOnly,
pLayoutCache=0x0, pGlyphs=0x0) at vcl/source/outdev/text.cxx:1319

Indeed when putting a break in vcl/source/gdi/CommonSalLayout.cxx:471, GDB
doesn't stop.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/libreoffice-bugs/attachments/20200316/b7c40a0b/attachment.htm>

More information about the Libreoffice-bugs mailing list