From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.ciao.gmane.io!not-for-mail From: Andrea Corallo Newsgroups: gmane.emacs.bugs Subject: bug#41321: 27.0.91; Emacs aborts due to invalid pseudovector objects Date: Fri, 22 May 2020 08:35:55 +0000 Message-ID: References: <83zha8cgpi.fsf@gnu.org> <83r1vibmyj.fsf@gnu.org> <83imgublku.fsf@gnu.org> <831rncjuwf.fsf@gnu.org> Mime-Version: 1.0 Content-Type: text/plain Injection-Info: ciao.gmane.io; posting-host="ciao.gmane.io:159.69.161.202"; logging-data="5897"; mail-complaints-to="usenet@ciao.gmane.io" User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.3 (gnu/linux) Cc: 41321@debbugs.gnu.org, Stefan Monnier , pipcet@gmail.com To: Eli Zaretskii Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Fri May 22 10:37:10 2020 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1jc3B0-0001Pu-Ek for geb-bug-gnu-emacs@m.gmane-mx.org; Fri, 22 May 2020 10:37:10 +0200 Original-Received: from localhost ([::1]:52734 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1jc3Az-0001yT-Ar for geb-bug-gnu-emacs@m.gmane-mx.org; Fri, 22 May 2020 04:37:09 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:47792) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1jc3As-0001yI-Lf for bug-gnu-emacs@gnu.org; Fri, 22 May 2020 04:37:02 -0400 Original-Received: from debbugs.gnu.org ([209.51.188.43]:46477) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1jc3As-0003mW-CR for bug-gnu-emacs@gnu.org; Fri, 22 May 2020 04:37:02 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1jc3As-0002kC-8u for bug-gnu-emacs@gnu.org; Fri, 22 May 2020 04:37:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Andrea Corallo Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Fri, 22 May 2020 08:37:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 41321 X-GNU-PR-Package: emacs Original-Received: via spool by 41321-submit@debbugs.gnu.org id=B41321.159013656210469 (code B ref 41321); Fri, 22 May 2020 08:37:02 +0000 Original-Received: (at 41321) by debbugs.gnu.org; 22 May 2020 08:36:02 +0000 Original-Received: from localhost ([127.0.0.1]:58022 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1jc39u-0002id-0X for submit@debbugs.gnu.org; Fri, 22 May 2020 04:36:02 -0400 Original-Received: from mx.sdf.org ([205.166.94.20]:60718) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1jc39s-0002iM-6a for 41321@debbugs.gnu.org; Fri, 22 May 2020 04:36:00 -0400 Original-Received: from sdf.org (ma.sdf.org [205.166.94.33]) by mx.sdf.org (8.15.2/8.14.5) with ESMTPS id 04M8ZuKk025730 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256 bits) verified NO); Fri, 22 May 2020 08:35:57 GMT Original-Received: (from akrl@localhost) by sdf.org (8.15.2/8.12.8/Submit) id 04M8ZtrJ015172; Fri, 22 May 2020 08:35:55 GMT In-Reply-To: <831rncjuwf.fsf@gnu.org> (Eli Zaretskii's message of "Fri, 22 May 2020 10:22:56 +0300") X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.io gmane.emacs.bugs:180739 Archived-At: Eli Zaretskii writes: > FETCH_END calls marker-position, and that segfaults because the marker > points to invalid memory, which was probably unmapped from the process > address space (so I guess this is w32-specific, as GNU systems don't > really return memory to the system). The start_marker is also > invalid, it's just that FETCH_END is called first. > > Since the previous call to before-change-functions already used the > same overlay markers, I suspect that the call to > before-change-functions caused the memory to be unmapped (perhaps due > to GC). As you see below, the value of before-change-functions is > > (t syntax-ppss-flush-cache) > > So the prime suspect is what happens when syntax-ppss-flush-cache > runs, and thus I CC Stefan. The main question to answer now from my > POV is how come a marker on buffer position 3116 which was valid > before before-change-functions was called became invalid as result of > some Lisp, in particular as result of calling before-change-functions. > > Here's the backtrace; ideas for further debugging are welcome. Hi Eli, I'be curious of the outcome if you had a look to your 'garbage_collect' assembly to investigate the possible relation with 41357 as suggested here https://lists.gnu.org/archive/html/bug-gnu-emacs/2020-05/msg01095.html Hope it helps Andrea -- akrl@sdf.org