Hi,
I've got one more segfault with ion3.
gdb says
#0 0x401a4f37 in mallopt () from /lib/libc.so.6
#1 0x401a3ef3 in malloc () from /lib/libc.so.6
#2 0x401a4140 in realloc () from /lib/libc.so.6
#3 0x080819d4 in luaM_realloc ()
#4 0x08080887 in luaF_newCclosure ()
#5 0x0807df5c in f_Ccall ()
#6 0x0807f638 in luaD_rawrunprotected ()
#7 0x0808027e in luaD_pcall ()
#8 0x0807e07f in lua_cpcall ()
#9 0x08075e75 in extl_cpcall (st=0x80a3b18,
fn=0x80783d0 <extl_do_call_vararg>, ptr=0x19) at luaextl.c:134
#10 0x08077954 in extl_call_vararg (fnref=402,
spec=0x19 <Address 0x19 out of bounds>,
rspec=0x19 <Address 0x19 out of bounds>, args=0x19) at luaextl.c:1374
#11 0x080779cc in extl_call (fnref=25, spec=0x19 <Address 0x19 out of bounds>,
rspec=0x19 <Address 0x19 out of bounds>) at luaextl.c:1425
#12 0x080701be in dispatch_binding (binding_owner=0x8128fb0,
grab_reg=0x8128fb0, binding=0x813a1c0, ev=0x19) at key.c:84
#13 0x08070530 in ioncore_do_handle_keypress (ev=0xbffff520) at key.c:293
#14 0x0805ddaf in ioncore_handle_event (ev=0x80eb3f8) at eventh.c:81
#15 0x0806a52c in hook_call_alt (hk=0x19, p=0xbffff520,
m=0x806a460 <marshall_alt_p>, em=0) at hooks.c:366
#16 0x0806a648 in hook_call_alt_p (hk=0x19, p=0x19, em=0x19) at hooks.c:411
#17 0x08057e5a in ioncore_x_connection_handler (conn=7, unused=0x0)
#18 0x08057eae in ioncore_mainloop () at event.c:232
#19 0x080577f3 in main (argc=0, argv=0x80937a1) at ion.c:286
valgrind says (for another execution, so, I'm not sure the problem is
the same).
==28140== Syscall param write(buf) contains uninitialised or unaddressable
byte(s)
==28140== at 0x1BAF6BC8: write (in /lib/libc-2.3.2.so)
==28140== by 0x1B9809FE: _X11TransWrite (in /usr/X11R6/lib/libX11.so.6.2)
==28140== by 0x1B960261: (within /usr/X11R6/lib/libX11.so.6.2)
==28140== by 0x1B96190C: _XReply (in /usr/X11R6/lib/libX11.so.6.2)
==28140== Address 0x1BB935AE is 14 bytes inside a block of size 2048 alloc'd
==28140== at 0x1B907901: calloc (vg_replace_malloc.c:176)
==28140== by 0x1B95209C: XOpenDisplay (in /usr/X11R6/lib/libX11.so.6.2)
==28140== by 0x8058BE5: ioncore_startup (ioncore.c:382)
==28140== by 0x805777C: main (ion.c:244)
==28140==
==28140== Invalid read of size 4
==28140== at 0x8064840: llist_link_after (mplex.c:131)
==28140== by 0x806635F: mplex_do_attach_after (mplex.c:895)
==28140== by 0x806B4A2: mplexpholder_do_attach (mplexpholder.c:207)
==28140== by 0x806AB22: pholder_do_attach (pholder.c:35)
==28140== Address 0x1C0EB5C8 is 0 bytes inside a block of size 20 free'd
==28140== at 0x1B907460: free (vg_replace_malloc.c:153)
==28140== by 0x8065D4C: mplex_managed_remove (mplex.c:1166)
==28140== by 0x805CA7D: region_managed_remove (region.c:222)
==28140== by 0x805D0BE: region_detach_manager (region.c:495)
==28140==
==28140== Invalid write of size 4
==28140== at 0x8064844: llist_link_after (mplex.c:131)
==28140== by 0x806635F: mplex_do_attach_after (mplex.c:895)
==28140== by 0x806B4A2: mplexpholder_do_attach (mplexpholder.c:207)
==28140== by 0x806AB22: pholder_do_attach (pholder.c:35)
==28140== Address 0x1C0EB5C8 is 0 bytes inside a block of size 20 free'd
==28140== at 0x1B907460: free (vg_replace_malloc.c:153)
==28140== by 0x8065D4C: mplex_managed_remove (mplex.c:1166)
==28140== by 0x805CA7D: region_managed_remove (region.c:222)
==28140== by 0x805D0BE: region_detach_manager (region.c:495)
This happened while returning from fullscreen mode (Mod+Return). I
could reproduce it several times, but I can't reproduce it anymore
now.
--
Matthieu
