From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.ciao.gmane.io!not-for-mail From: Pip Cet Newsgroups: gmane.emacs.bugs Subject: bug#39962: 27.0.90; Crash in Emacs 27.0.90 Date: Mon, 16 Mar 2020 15:33:56 +0000 Message-ID: References: <24162.58107.725366.668639@cochabamba.vanoostrum.org> <83y2s48yn7.fsf@gnu.org> <83zhck6obg.fsf@gnu.org> <83r1xv73ze.fsf@gnu.org> <83imj5bdct.fsf@gnu.org> Mime-Version: 1.0 Content-Type: text/plain; charset="UTF-8" Injection-Info: ciao.gmane.io; posting-host="ciao.gmane.io:159.69.161.202"; logging-data="59850"; mail-complaints-to="usenet@ciao.gmane.io" Cc: eggert@cs.ucla.edu, 39962@debbugs.gnu.org To: Pieter van Oostrum Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Mon Mar 16 18:18:53 2020 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1jDtO8-000FRT-SV for geb-bug-gnu-emacs@m.gmane-mx.org; Mon, 16 Mar 2020 18:18:52 +0100 Original-Received: from localhost ([::1]:43508 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1jDtO7-0002xg-V6 for geb-bug-gnu-emacs@m.gmane-mx.org; Mon, 16 Mar 2020 13:18:51 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:33524) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1jDrlf-0000e1-3m for bug-gnu-emacs@gnu.org; Mon, 16 Mar 2020 11:35:08 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1jDrld-0005rv-W8 for bug-gnu-emacs@gnu.org; Mon, 16 Mar 2020 11:35:03 -0400 Original-Received: from debbugs.gnu.org ([209.51.188.43]:60055) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1jDrld-0005r6-Ru for bug-gnu-emacs@gnu.org; Mon, 16 Mar 2020 11:35:01 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1jDrld-0001mD-P2 for bug-gnu-emacs@gnu.org; Mon, 16 Mar 2020 11:35:01 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Pip Cet Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Mon, 16 Mar 2020 15:35:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 39962 X-GNU-PR-Package: emacs Original-Received: via spool by 39962-submit@debbugs.gnu.org id=B39962.15843728846787 (code B ref 39962); Mon, 16 Mar 2020 15:35:01 +0000 Original-Received: (at 39962) by debbugs.gnu.org; 16 Mar 2020 15:34:44 +0000 Original-Received: from localhost ([127.0.0.1]:37795 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1jDrlL-0001lP-RY for submit@debbugs.gnu.org; Mon, 16 Mar 2020 11:34:44 -0400 Original-Received: from mail-oi1-f172.google.com ([209.85.167.172]:36877) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1jDrlK-0001lC-7e for 39962@debbugs.gnu.org; Mon, 16 Mar 2020 11:34:42 -0400 Original-Received: by mail-oi1-f172.google.com with SMTP id w13so18256829oih.4 for <39962@debbugs.gnu.org>; Mon, 16 Mar 2020 08:34:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=aqR/nPrQhJOeKAKXqJpRBDAcPM8Ntlt3XCfXe1iF9cw=; b=bcz8/TnAq/tur6Yz5HcPu6Bawlrwq2HRd/7Z1mYIu1k1jbu/wktbFQjNEvJp3f1QY4 TklOORhVLI2dIZO+aRf9mEiDbCsrdKdMkKbI0yLZj46Ovuchog3Bo1sakKjlZFDJKHPx H0j+Ls3emcBgGcZhPsn4xSfcAmI4alVCbNxAmsG+6Y4POB7LcwzoIUWOiM82JKgVZUaO Hn7vlGJxYJrW0Aa+/tmbgzoXPgqWfeeKlrwtz90noUl6Q8jYVhSKRlqJErgfK7FsEniy 3rHEYj/mYBpWNdigXA483DMUa1NpjE+qft5Eogr9OEehx4wFciFTWXmFhQTW+jvAz8gL a07g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=aqR/nPrQhJOeKAKXqJpRBDAcPM8Ntlt3XCfXe1iF9cw=; b=WcVbue8X8X46UgU72zJpysA6vqn5SwJdxsVqTErhsyFG+R+CmvLY50cra7KYZNc75x pQHsqfDQnX7FqF2upqpUOoAkBZZDmbrdH+Z3fgH8itR0cVAPij+6AcSbiyoREqoMBjQZ EcDKqtdGXqDdWZyrQpXu8xdPn6Ny3FiAYIiQnZyg2CKOSvbLBOSCoENf4mzmq1taCTrn CUKzMGfA1Wd/zDJ9GfNhvmBh8qWwwnzdzDQviYnaTihFJTfRCmH7vf8F9BY6zo7y+xm+ 5PirjjP0NahjziGSJS5C7fF7+8o7EPlpSt/wAzLVFXYKiYEbKy9iHXqM6nUTTFUOGg8b fLng== X-Gm-Message-State: ANhLgQ29ISyvz9H7mZ0vQKVtIaHEfmnJHNBfQmRul+drA4Sg1I7lVDVM kQc+KiXELvxnCsRptR3VExiXWnJYJQnIriysaqo= X-Google-Smtp-Source: ADFU+vuC3IfMgaBzf0FeTZ2myU1geAGtwRfFI29yWrr8oP/EZOIG9V+tgZDNEFgbvSOrSFx+BixAa7uGYM0wnVbceFY= X-Received: by 2002:aca:b9c2:: with SMTP id j185mr101781oif.112.1584372876673; Mon, 16 Mar 2020 08:34:36 -0700 (PDT) In-Reply-To: X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 209.51.188.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.io gmane.emacs.bugs:177416 Archived-At: On Mon, Mar 16, 2020 at 10:44 AM Pieter van Oostrum wrote: > Pieter van Oostrum writes: > > >>> (gdb) p $rsp > >>> $1 = (void *) 0x7ffeef9c9270 > >> > >> What is the value of stack_bottom? > >> > > (gdb) p &stack_bottom_variable > > $3 = (void **) 0x7ffeefbff628 > > > > (gdb) p current_thread->m_stack_bottom > > $4 = 0x7ffeefbff628 "" > > > >> And how many frames do you have in that backtrace, if you show all of > >> it? > > > > 11567 > > #11567 0x00000001001c281e in main (argc=1, argv=0x7ffeefbff660) at emacs.c:2054 > > (gdb) f 3 > #3 0x00000001002b56e7 in mark_overlay (ptr=0x12c489030) at alloc.c:6213 > 6213 set_vectorlike_marked (&XMARKER (ptr->end)->header); > (gdb) p *ptr > $9 = { > header = { > size = -4611686018360274941 > }, > start = XIL(0x12c488fc5), > end = XIL(0), > plist = XIL(0x11dc4e263), > next = 0x12c488f30 > } Can you show the entire small vector block containing 0x12c488fc0? Something like x/1024gx 0x12c488000 should work. What I think happened is that the vector free list got corrupted somehow, and two vectors believed they owned the memory location 0x12c489040. > So the end of the overlay = 0 It's nil, indeed. That does point to corruption. > , and the size is negative. Corruption. The size looks fine. It's a pseudovector, and tagged, so the two msbs are 1, making it look negative. > This build doesn't have the 0001-Don-t-collect-reachable-killed-buffers-during-GC.patch applied. I guess that patch might help. It's very unlikely.