From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Eli Zaretskii Newsgroups: gmane.emacs.bugs Subject: bug#17771: 24.3.91; SIGSEGV in cleanup_vector Date: Fri, 13 Jun 2014 17:52:22 +0300 Message-ID: <83fvj8x3o9.fsf@gnu.org> References: <874mzp896b.fsf@rosalinde.fritz.box> <83vbs5w3h7.fsf@gnu.org> <87zjhh6su4.fsf@rosalinde.fritz.box> <83tx7pvw61.fsf@gnu.org> <87ppid6l0x.fsf@rosalinde.fritz.box> <83ppidvsyx.fsf@gnu.org> <87lht16ii3.fsf@rosalinde.fritz.box> <83mwdgx6t4.fsf@gnu.org> <87ha3o7w68.fsf@rosalinde.fritz.box> <83lht0x65z.fsf@gnu.org> <87d2ec7v8p.fsf@rosalinde.fritz.box> Reply-To: Eli Zaretskii NNTP-Posting-Host: plane.gmane.org X-Trace: ger.gmane.org 1402671220 15510 80.91.229.3 (13 Jun 2014 14:53:40 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Fri, 13 Jun 2014 14:53:40 +0000 (UTC) Cc: 17771@debbugs.gnu.org To: Stephen Berman , Dmitry Antipov Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Fri Jun 13 16:53:29 2014 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1WvSr0-0003zj-Aj for geb-bug-gnu-emacs@m.gmane.org; Fri, 13 Jun 2014 16:53:18 +0200 Original-Received: from localhost ([::1]:59540 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WvSr0-000424-1X for geb-bug-gnu-emacs@m.gmane.org; Fri, 13 Jun 2014 10:53:18 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:59861) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WvSqr-000403-Gx for bug-gnu-emacs@gnu.org; Fri, 13 Jun 2014 10:53:16 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1WvSql-0002Ty-14 for bug-gnu-emacs@gnu.org; Fri, 13 Jun 2014 10:53:09 -0400 Original-Received: from debbugs.gnu.org ([140.186.70.43]:55626) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1WvSqk-0002Tq-Tb for bug-gnu-emacs@gnu.org; Fri, 13 Jun 2014 10:53:02 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.80) (envelope-from ) id 1WvSqk-0004HR-97 for bug-gnu-emacs@gnu.org; Fri, 13 Jun 2014 10:53:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Eli Zaretskii Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Fri, 13 Jun 2014 14:53:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 17771 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: Original-Received: via spool by 17771-submit@debbugs.gnu.org id=B17771.140267116916423 (code B ref 17771); Fri, 13 Jun 2014 14:53:02 +0000 Original-Received: (at 17771) by debbugs.gnu.org; 13 Jun 2014 14:52:49 +0000 Original-Received: from localhost ([127.0.0.1]:46776 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1WvSqT-0004Gj-CC for submit@debbugs.gnu.org; Fri, 13 Jun 2014 10:52:49 -0400 Original-Received: from mtaout25.012.net.il ([80.179.55.181]:33367) by debbugs.gnu.org with esmtp (Exim 4.80) (envelope-from ) id 1WvSqN-0004GE-PN for 17771@debbugs.gnu.org; Fri, 13 Jun 2014 10:52:43 -0400 Original-Received: from conversion-daemon.mtaout25.012.net.il by mtaout25.012.net.il (HyperSendmail v2007.08) id <0N7400H003INP800@mtaout25.012.net.il> for 17771@debbugs.gnu.org; Fri, 13 Jun 2014 17:48:53 +0300 (IDT) Original-Received: from HOME-C4E4A596F7 ([87.69.4.28]) by mtaout25.012.net.il (HyperSendmail v2007.08) with ESMTPA id <0N74009PZ3THQC90@mtaout25.012.net.il>; Fri, 13 Jun 2014 17:48:53 +0300 (IDT) In-reply-to: <87d2ec7v8p.fsf@rosalinde.fritz.box> X-012-Sender: halo1@inter.net.il X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.15 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:90340 Archived-At: > From: Stephen Berman > Cc: 17771@debbugs.gnu.org > Date: Fri, 13 Jun 2014 16:13:42 +0200 > > > I installed a trivial workaround for that in r117235 on the emacs-24 > > branch. The diffs are below. Can you try this and see if the problem > > is solved? It's possible that the real problem is somewhere else, in > > which case you will probably see it when you apply the patch. > > With the patch, Emacs still crashes with the same recipe, but the first > frame of backtrace is different (looks like not in Emacs): I think it's just a bogus pointer to the font driver, and somehow valid_font_driver doesn't catch it in time. > Program received signal SIGSEGV, Segmentation fault. > 0x0000000000c260b2 in ?? () > (gdb) bt full > #0 0x0000000000c260b2 in ?? () > No symbol table info available. > #1 0x00000000005aa580 in cleanup_vector (vector=0x3dd52c8) > at ../../../../bzr/emacs/emacs-24/src/alloc.c:2935 > drv = 0x3dd5130 > #2 0x00000000005aa686 in sweep_vectors () > at ../../../../bzr/emacs/emacs-24/src/alloc.c:2974 > total_bytes = 140737488344592 > free_this_block = false > nbytes = 1048 > block = 0x3dd4680 > bprev = 0xbf1060 > lv = 0x6282a3 > lvprev = 0xbf2070 > vector = 0x3dd52c8 > next = 0x3dd52c8 > #3 0x00000000005b0141 in gc_sweep () at ../../../../bzr/emacs/emacs-24/src/alloc.c:6721 So Dmitry, I think Stephen here just found you a perfect recipe to reproduce bug #16140, something that I failed to do. Could you please look into this? Thanks.