From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Ami Fischman Newsgroups: gmane.emacs.bugs Subject: bug#12745: crash in bidi_pop_it during (idle) redisplay Date: Fri, 23 Nov 2012 12:14:27 -0800 Message-ID: References: <508CA6FC.4070203@cs.ucla.edu> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: multipart/alternative; boundary=f46d043d67e905bd7f04cf2f3bb5 X-Trace: ger.gmane.org 1353701687 16749 80.91.229.3 (23 Nov 2012 20:14:47 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Fri, 23 Nov 2012 20:14:47 +0000 (UTC) Cc: Alp Aker , 12745@debbugs.gnu.org To: Eli Zaretskii Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Fri Nov 23 21:14:58 2012 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1TbzeJ-0003Pt-3x for geb-bug-gnu-emacs@m.gmane.org; Fri, 23 Nov 2012 21:14:55 +0100 Original-Received: from localhost ([::1]:40944 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1Tbze8-0001wq-Ez for geb-bug-gnu-emacs@m.gmane.org; Fri, 23 Nov 2012 15:14:44 -0500 Original-Received: from eggs.gnu.org ([208.118.235.92]:41808) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1Tbze0-0001e4-Nj for bug-gnu-emacs@gnu.org; Fri, 23 Nov 2012 15:14:38 -0500 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1Tbzdy-0003SB-ND for bug-gnu-emacs@gnu.org; Fri, 23 Nov 2012 15:14:36 -0500 Original-Received: from debbugs.gnu.org ([140.186.70.43]:53245) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1Tbzdy-0003RR-KY for bug-gnu-emacs@gnu.org; Fri, 23 Nov 2012 15:14:34 -0500 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.72) (envelope-from ) id 1TbzfN-0001w4-Rr for bug-gnu-emacs@gnu.org; Fri, 23 Nov 2012 15:16:01 -0500 X-Loop: help-debbugs@gnu.org In-Reply-To: <508CA6FC.4070203@cs.ucla.edu> Resent-From: Ami Fischman Original-Sender: debbugs-submit-bounces@debbugs.gnu.org Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Fri, 23 Nov 2012 20:16:01 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 12745 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: Original-Received: via spool by 12745-submit@debbugs.gnu.org id=B12745.13537017617433 (code B ref 12745); Fri, 23 Nov 2012 20:16:01 +0000 Original-Received: (at 12745) by debbugs.gnu.org; 23 Nov 2012 20:16:01 +0000 Original-Received: from localhost ([127.0.0.1]:35263 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.72) (envelope-from ) id 1TbzfM-0001vq-6F for submit@debbugs.gnu.org; Fri, 23 Nov 2012 15:16:00 -0500 Original-Received: from mail-vb0-f44.google.com ([209.85.212.44]:55133) by debbugs.gnu.org with esmtp (Exim 4.72) (envelope-from ) id 1TbzfH-0001vf-NF for 12745@debbugs.gnu.org; Fri, 23 Nov 2012 15:15:58 -0500 Original-Received: by mail-vb0-f44.google.com with SMTP id fc26so1870297vbb.3 for <12745@debbugs.gnu.org>; Fri, 23 Nov 2012 12:14:27 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:date:message-id:subject:from:to:cc:content-type :x-gm-message-state; bh=23B7TSlM5cb4OHo8EItzrYoz4WEol3EbkzfPJmk3V/s=; b=niIbbxfhW2eb+Y6GMoTHNg2lemW/x+ABVRp2VsRabcZbALTrDQOyl3U3c4yDJXipQ3 G0sxO2BYcGbnCPky3wnU8SKEiT46kpCfJyWMULEqKJ8WjWuf/dAmJSXh1jVUSs1/eHxs ORTdyW1iWKj+2k4tHEj7BZm41+dLMkvwOkK96lTgcYei5+vwCuSybHk8LCATBL4bnYUD 2awA98BA41OTKkzCuMFZbRlBJWTEL/502pI5rgZ58wIuvF1MU3I7E8/owDMUq0JYn5aL TCACw+cuu9Wa2Ly6p/NLoeb6ZuwH26F8uTgxBy71JXYQTBlck9qc0je3pZvyiehRy91/ 8r6g== Original-Received: by 10.220.150.145 with SMTP id y17mr7547203vcv.11.1353701667486; Fri, 23 Nov 2012 12:14:27 -0800 (PST) Original-Received: by 10.58.205.212 with HTTP; Fri, 23 Nov 2012 12:14:27 -0800 (PST) X-Gm-Message-State: ALoCoQmPFhRGk7V3s8sLdMILDRPI7CH3EI/MiiqR8DdE4EHA94ItzLcDTbgdRzEd0Ks/f3l1mPUq X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.13 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6.x X-Received-From: 140.186.70.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:67367 Archived-At: --f46d043d67e905bd7f04cf2f3bb5 Content-Type: text/plain; charset=ISO-8859-1 This morning I had the first crash since updating to d7ef9678754509d426df5f6f2086ca03f7d68b1c on trunk (which doesn't include 110767's fix to init_from_display_pos), in an emacs that's been running for 10 days. #0 0x00007f958a006b7b in raise (sig=) at ../nptl/sysdeps/unix/sysv/linux/pt-raise.c:42 #1 0x00000000004cf767 in terminate_due_to_signal (sig=6, backtrace_limit=) at emacs.c:344 #2 0x00000000004e98c0 in emacs_abort () at sysdep.c:2061 #3 0x0000000000492515 in bidi_pop_it (bidi_it=) at bidi.c:638 #4 0x00000000004492a1 in pop_it (it=0x7fff2ab33b18) at xdisp.c:5860 #5 0x0000000000453558 in next_overlay_string (it=0x7fff2ab33b18) at xdisp.c:5309 #6 0x0000000000427a74 in set_iterator_to_next (it=0x7fff2ab33b18, reseat_p=) at xdisp.c:7279 #7 0x00000000004315df in display_line (it=0x7fff2ab33b18) at xdisp.c:19790 #8 0x0000000000431008 in try_window (window=, flags=1, pos=...) at xdisp.c:16300 #9 0x000000000044ce04 in redisplay_window (window=161353781, just_this_one_p=0) at xdisp.c:15826 #10 0x0000000000452ba3 in redisplay_window_0 (window=28326) at xdisp.c:13894 #11 0x0000000000541aeb in internal_condition_case_1 (bfun=0x452b80 , arg=161353781, handlers=10062150, hfun=) at eval.c:1326 #12 0x0000000000449b2f in redisplay_windows (window=) at xdisp.c:13874 #13 0x000000000042e39b in redisplay_internal () at xdisp.c:13453 #14 0x00000000004308c4 in redisplay_preserve_echo_area (from_where=28326) at xdisp.c:13710 #15 0x00000000004d9105 in detect_input_pending_run_timers (do_display=) at keyboard.c:10276 #16 0x000000000057bce3 in wait_reading_process_output (time_limit=, nsecs=, read_kbd=-1, do_display=true, wait_for_cell=9858002, wait_proc=0x0, just_wait_proc=) at process.c:4749 #17 0x00000000004d7d30 in kbd_buffer_get_event (end_time=, kbp=, used_mouse_menu=0x7fff2ab3cac7) at keyboard.c:3802 #18 read_char (commandflag=, nmaps=8, maps=0x7fff2ab3c930, prev_event=9858002, used_mouse_menu=0x7fff2ab3cac7, end_time=) at keyboard.c:2768 #19 0x00000000004d423d in read_key_sequence (bufsize=30, keybuf=, prompt=, dont_downcase_last=, can_return_switch_frame=, fix_current_buffer=) at keyboard.c:9230 #20 0x00000000004d381a in command_loop_1 () at keyboard.c:1458 #21 0x00000000005419b1 in internal_condition_case (bfun=0x4d2590 , handlers=9909682, hfun=) at eval.c:1288 #22 0x00000000004e2946 in command_loop_2 (ignore=) at keyboard.c:1167 #23 0x0000000000541486 in internal_catch (tag=, func=0x4e2920 , arg=9858002) at eval.c:1059 #24 0x00000000004d1d09 in command_loop () at keyboard.c:1146 #25 recursive_edit_1 () at keyboard.c:778 #26 0x00000000004d1e26 in Frecursive_edit () at keyboard.c:842 #27 0x00000000004d0d69 in main (argc=, argv=) at emacs.c:1552 Frame #3 aborted b/c bidi_cache_sp is 0. Frame #4 has: (gdb) p it->current $2 = { pos = { charpos = 99256, bytepos = 99256 }, overlay_string_index = 0, string_pos = { charpos = -1, bytepos = -1 }, dpvec_index = -1 } (gdb) p current_buffer->name_ $3 = 65944961 (gdb) pp current_buffer->name_ Cannot access memory at address 0x8ce6b8 (gdb) p current_buffer->text->beg[99256]@100 $5 = ' ' , "],\n", ' ' , "}],\n", ' ' , "],\n", ' ' , "'tar" which tells me this is common.gypi, running in gyp-mode (as opposed to the previous report which was in cc-mode). Let me know if you think this is worth debugging further or if I should first sync & rebuild before a further crash will be interesting. --f46d043d67e905bd7f04cf2f3bb5 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable
This morning I had the first crash since updating to d7ef9678754509d42= 6df5f6f2086ca03f7d68b1c on trunk (which doesn't include 110767's fi= x to init_from_display_pos), in an emacs that's been running for 10 day= s.

#0 =A00x00007f958a006b7b in raise (sig=3D<optim= ized out>) at ../nptl/sysdeps/unix/sysv/linux/pt-raise.c:42
#1= =A00x00000000004cf767 in terminate_due_to_signal (sig=3D6, backtrace_limit= =3D<optimized out>) at emacs.c:344
#2 =A00x00000000004e98c0 in emacs_abort () at sysdep.c:2061
= #3 =A00x0000000000492515 in bidi_pop_it (bidi_it=3D<optimized out>) a= t bidi.c:638
#4 =A00x00000000004492a1 in pop_it (it=3D0x7fff2ab33= b18) at xdisp.c:5860
#5 =A00x0000000000453558 in next_overlay_string (it=3D0x7fff2ab33b18) = at xdisp.c:5309
#6 =A00x0000000000427a74 in set_iterator_to_next = (it=3D0x7fff2ab33b18, reseat_p=3D<optimized out>) at xdisp.c:7279
#7 =A00x00000000004315df in display_line (it=3D0x7fff2ab33b18) at xdisp.c:1= 9790
#8 =A00x0000000000431008 in try_window (window=3D<optimiz= ed out>, flags=3D1, pos=3D...) at xdisp.c:16300
#9 =A00x000000= 000044ce04 in redisplay_window (window=3D161353781, just_this_one_p=3D0) at= xdisp.c:15826
#10 0x0000000000452ba3 in redisplay_window_0 (window=3D28326) at xdisp= .c:13894
#11 0x0000000000541aeb in internal_condition_case_1 (bfu= n=3D0x452b80 <redisplay_window_0>, arg=3D161353781, handlers=3D100621= 50, hfun=3D<optimized out>) at eval.c:1326
#12 0x0000000000449b2f in redisplay_windows (window=3D<optimized ou= t>) at xdisp.c:13874
#13 0x000000000042e39b in redisplay_inter= nal () at xdisp.c:13453
#14 0x00000000004308c4 in redisplay_prese= rve_echo_area (from_where=3D28326) at xdisp.c:13710
#15 0x00000000004d9105 in detect_input_pending_run_timers (do_display= =3D<optimized out>) at keyboard.c:10276
#16 0x000000000057b= ce3 in wait_reading_process_output (time_limit=3D<optimized out>, nse= cs=3D<optimized out>, read_kbd=3D-1, do_display=3Dtrue, wait_for_cell= =3D9858002, wait_proc=3D0x0,=A0
=A0 =A0 just_wait_proc=3D<optimized out>) at process.c:4749
#17 0x00000000004d7d30 in kbd_buffer_get_event (end_time=3D<optimi= zed out>, kbp=3D<optimized out>, used_mouse_menu=3D0x7fff2ab3cac7)= at keyboard.c:3802
#18 read_char (commandflag=3D<optimized out>, nmaps=3D8, maps=3D= 0x7fff2ab3c930, prev_event=3D9858002, used_mouse_menu=3D0x7fff2ab3cac7, end= _time=3D<optimized out>) at keyboard.c:2768
#19 0x000000000= 04d423d in read_key_sequence (bufsize=3D30, keybuf=3D<optimized out>,= prompt=3D<optimized out>, dont_downcase_last=3D<optimized out>= , can_return_switch_frame=3D<optimized out>,=A0
=A0 =A0 fix_current_buffer=3D<optimized out>) at keyboard.c:9230=
#20 0x00000000004d381a in command_loop_1 () at keyboard.c:1458
#21 0x00000000005419b1 in internal_condition_case (bfun=3D0x4d2590= <command_loop_1>, handlers=3D9909682, hfun=3D<optimized out>) = at eval.c:1288
#22 0x00000000004e2946 in command_loop_2 (ignore=3D<optimized out&g= t;) at keyboard.c:1167
#23 0x0000000000541486 in internal_catch (= tag=3D<optimized out>, func=3D0x4e2920 <command_loop_2>, arg=3D= 9858002) at eval.c:1059
#24 0x00000000004d1d09 in command_loop () at keyboard.c:1146
#25 recursive_edit_1 () at keyboard.c:778
#26 0x00000000004d1e26= in Frecursive_edit () at keyboard.c:842
#27 0x00000000004d0d69 i= n main (argc=3D<error reading variable: Cannot access memory at address = 0x0>, argv=3D<optimized out>) at emacs.c:1552


Frame #3 aborted b/c bidi_cache_sp= is 0.
Frame #4 has:
(gdb) p it->current
<= div>$2 =3D {
=A0 pos =3D {
=A0 =A0 charpos =3D 99256,= =A0
=A0 =A0 bytepos =3D 99256
=A0 },=A0
=A0 overlay_string_= index =3D 0,=A0
=A0 string_pos =3D {
=A0 =A0 charpos = =3D -1,=A0
=A0 =A0 bytepos =3D -1
=A0 },=A0
= =A0 dpvec_index =3D -1
}

(gdb) p current_buffer->name_
$3 =3D 65944= 961
(gdb) pp current_buffer->name_
Cannot access mem= ory at address 0x8ce6b8

(gdb) p current_buffe= r->text->beg[99256]@100
$5 =3D ' ' <repeats 24 times>, "],\n", ' &= #39; <repeats 22 times>, "}],\n", ' ' <repeats 2= 0 times>, "],\n", ' ' <repeats 20 times>, "= 'tar"

which tells me this is=A0common.gypi, running in gyp-mode (as opposed to the previou= s report which was in cc-mode).

Let me know if you think this is worth debugging furthe= r or if I should first sync & rebuild before a further crash will be in= teresting.

--f46d043d67e905bd7f04cf2f3bb5--