Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

itstool 2.0.4 crashes when freeing xmlDocs #17

Open
shaunix opened this issue Oct 23, 2017 · 9 comments · May be fixed by #18
Open

itstool 2.0.4 crashes when freeing xmlDocs #17

shaunix opened this issue Oct 23, 2017 · 9 comments · May be fixed by #18

Comments

@shaunix
Copy link
Contributor

shaunix commented Oct 23, 2017

In itstool 2.0.4, we started calling freeDoc on xmlDoc object when we're done with them. libxml2's python bindings require manual frees. Previously, we were leaking them, which could cause runaway memory consumption. This was expecially true with --keep-entities or --load-dtd, which increases the size of the xmlDoc objects in memory.

Unfortunately, we're now freeing objects that are still in use, causing crashes. What I've figured out so far is that this only happens when we run scan_node in get_translated. This method is responsible for finding placeholder elements and recursively merging translations. A likely culprit is that, somewhere in prepping the new node to insert, we're not doing a deep enough copy, resulting in some dangling pointers to the xmlDoc we free.
@shaunix shaunix mentioned this issue Oct 23, 2017
Closed
@pullmoll
Copy link

I don't know python too well. Is there perhaps a way to set self._doc to something like NULL or invalid after self._doc.freeDoc() is called? Of course only, if indeed self._doc is to be considered invalid after that call.

@shaunix shaunix changed the title itstool 2.0.4 crashes when freeding xmlDocs itstool 2.0.4 crashes when freeing xmlDocs Oct 24, 2017
@shaunix
Copy link
Contributor Author

shaunix commented Oct 25, 2017

I've just committed some changes that I think fix the memory issues. I'd appreciate if people could test before I roll another release.

@pullmoll
Copy link

Looks good to me! I tested the latest commit 9b84c00 and with the itstool resulting from it could successfully build gtk-doc in the Void Linux environment.

@maxice8
Copy link

maxice8 commented Oct 25, 2017
edited
Loading

can confirm it worked on rhythmbox, gnome-user-docs ( except when cross-compiling to musl based systems) and evolution

@DimStar77
Copy link

DimStar77 commented Oct 25, 2017
edited
Loading

building of gnome-getting-started-docs still makes itstools segfault here
https://build.opensuse.org/package/live_build_log/GNOME:Next/gnome-getting-started-docs/openSUSE_Factory/x86_64

also gnome-user-docs:
https://build.opensuse.org/package/live_build_log/GNOME:Next/gnome-user-docs/openSUSE_Factory/x86_64

@shaunix
Copy link
Contributor Author

shaunix commented Oct 26, 2017

I can also reproduce on gnome-getting-started-docs. Thanks for testing.

@shaunix shaunix reopened this Oct 26, 2017
@shaunix
Copy link
Contributor Author

shaunix commented Oct 31, 2017

This crasher is unrelated, and seems to be a bug in libxml2:

https://bugzilla.gnome.org/show_bug.cgi?id=789714

@gtrentalancia gtrentalancia linked a pull request Nov 1, 2017 that will close this issue
Open
algitbot pushed a commit to alpinelinux/aports that referenced this issue Nov 17, 2017
@ncopa
main/itstool: fix segfault
8d7fd98 
upstream bug: itstool/itstool#17
netbsd-srcmastr pushed a commit to NetBSD/pkgsrc that referenced this issue Dec 15, 2017
@jperkin
itstool: Apply upstream fix for itstool/itstool#17.
052b7db 
Fixes segfaults breaking various dependencies.  Bump PKGREVISION.
@0-wiz-0 0-wiz-0 mentioned this issue Dec 17, 2017
Open
@jtojnar jtojnar mentioned this issue May 31, 2018
Merged
orivej pushed a commit to NixOS/nixpkgs that referenced this issue Jun 1, 2018
@jtojnar @orivej
Revert "itstool: 2.0.2 -> 2.0.4" (#41339)
fd9cfc4 
This reverts commit 48698a0

It crashes and breaks the build of gnome3.gnome_desktop and others.

Upstream issue: itstool/itstool#17
@besser82
Copy link

besser82 commented Jan 6, 2019

This crasher is unrelated, and seems to be a bug in libxml2:

https://bugzilla.gnome.org/show_bug.cgi?id=789714

Confirming.

The fixing patch for libxml2 can be found here: https://bugzilla.opensuse.org/show_bug.cgi?id=1065270

@chkno
Copy link

chkno commented Nov 1, 2019

Fixing libxml2's python wrapper's utf-8 problems doesn't fix itstool's use-after-free problem. At most, it just stops exercising itstool's error path, leaving itstool use-after-free problems that are triggered only on the error path dormant.

The Python2 end-of-life is pressuring distros to move to more up-to-date itstool versions, which require them to apply distro-patches to resolve this issue and/or #22 and/or https://gitlab.gnome.org/GNOME/libxml2/issues/64 and/or https://bugzilla.gnome.org/show_bug.cgi?id=789714 . Nix's patch: NixOS/nixpkgs#72342

doc22940 pushed a commit to doc22940/free-desktop-sdk that referenced this issue Nov 18, 2019
@jjardon @abderrahim
sdk/elements/desktop/itstools.bst: Add patch to avoid crash when buil…
53851d1 
…ding gtk-doc

See itstool/itstool#17
@shaunix shaunix linked a pull request Jun 18, 2020 that will close this issue
Easier fix for #17 #18
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Easier fix for #17
6 participants
@DimStar77 @chkno @besser82 @shaunix @pullmoll @maxice8