GNU bug report logs - #71073
Emacs segfaults if corfu is asked to autocomplete something while the LSP server providing completions is still starting/indexing

Previous Next

Package: emacs;

Reported by: alexis purslane <alexispurslane <at> pm.me>

Date: Sun, 19 May 2024 21:08:02 UTC

Severity: normal

Tags: moreinfo, unreproducible

Done: Eli Zaretskii <eliz <at> gnu.org>

Bug is archived. No further changes may be made.

To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 71073 in the body.
You can then email your comments to 71073 AT debbugs.gnu.org in the normal way.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox


Report forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Sun, 19 May 2024 21:08:02 GMT) Full text and rfc822 format available.

Acknowledgement sent to alexis purslane <alexispurslane <at> pm.me>:
New bug report received and forwarded. Copy sent to bug-gnu-emacs <at> gnu.org. (Sun, 19 May 2024 21:08:02 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: alexis purslane <alexispurslane <at> pm.me>
To: "bug-gnu-emacs <at> gnu.org" <bug-gnu-emacs <at> gnu.org>
Subject: Emacs segfaults if corfu is asked to autocomplete something while the
 LSP server providing completions is still starting/indexing
Date: Sun, 19 May 2024 19:58:23 +0000
[Message part 1 (text/plain, inline)]
## Description

If corfu is prompted to start autocompletion (by typing the first 3
letters of a word in my case) while an eglot LSP server is still
starting up, but after eglot has connected to that server, you get a
segmentation fault.

## Steps to reproduce

1. Open a file with a mode associated with it that has a language server
2. {M-x eglot}
3. Before the server has finished indexing and can provide completions,
   but after it has connected, prompt corfu to do an autocompletion
4. Enjoy your segfault salad

## Debug information

Here's the backtrace from the core dump:

```
Fatal error 11: Segmentation fault
Backtrace:
emacs(emacs_backtrace+0x5a)[0x595c1a]
emacs(terminate_due_to_signal+0x9f)[0x467885]
emacs[0x468623]
emacs[0x70bae4]
/lib64/libc.so.6(+0x40750)[0x7f153d9e3750]
emacs(parse_modifiers+0x12c)[0x57a06c]
emacs[0x590ad8]
emacs(read_char+0x212a)[0x57f7ea]
emacs[0x648f3a]
/usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/subr-13adf6a6-bfb9f448.eln(F7369742d666f72_sit_for_0+0x19f)[0x7f1536c1b2ff]
emacs(Ffuncall+0xfd)[0x62148d]
/usr/lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/jsonrpc-e62a9c36-62ae7160.eln(F6a736f6e7270632d72657175657374_jsonrpc_request_0+0xa14)[0x7f152409e2c4]
emacs(Ffuncall+0xfd)[0x62148d]
emacs(Fapply+0x1b0)[0x621b90]
emacs(exec_byte_code+0x54c)[0x66b8bc]
emacs(Ffuncall+0xfd)[0x62148d]
emacs(Fall_completions+0x372)[0x5b6122]
/usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln(F636f6d706c6574696f6e2d70636d2d2d616c6c2d636f6d706c6574696f6e73_completion_pcm__all_completions_0+0x1a7)[0x7f1536bbda67]
emacs(Ffuncall+0xfd)[0x62148d]
/usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln(F636f6d706c6574696f6e2d737562737472696e672d2d616c6c2d636f6d706c6574696f6e73_completion_substring__all_completions_0+0x1d6)[0x7f1536bc0f86]
emacs(Ffuncall+0xfd)[0x62148d]
/usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln(F636f6d706c6574696f6e2d666c65782d616c6c2d636f6d706c6574696f6e73_completion_flex_all_completions_0+0xb6)[0x7f1536bc1a16]
emacs(Ffuncall+0xfd)[0x62148d]
emacs(Fapply+0x1b0)[0x621b90]
emacs(exec_byte_code+0x54c)[0x66b8bc]
emacs(Ffuncall+0xfd)[0x62148d]
/usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln(F636f6d706c6574696f6e2d2d736f6d65_completion__some_0+0x1e2)[0x7f1536baa852]
emacs(Ffuncall+0xfd)[0x62148d]
/usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln(F636f6d706c6574696f6e2d2d6e74682d636f6d706c6574696f6e_completion__nth_completion_0+0x2d4)[0x7f1536baf914]
emacs(Ffuncall+0xfd)[0x62148d]
/usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln(F636f6d706c6574696f6e2d616c6c2d636f6d706c6574696f6e73_completion_all_completions_0+0x50)[0x7f1536bafcd0]
emacs(Ffuncall+0xfd)[0x62148d]
emacs(Fapply+0x1b0)[0x621b90]
emacs(exec_byte_code+0x54c)[0x66b8bc]
emacs(Ffuncall+0xfd)[0x62148d]
emacs(Fapply+0x1b0)[0x621b90]
/var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln(F636f7266752d2d66696c7465722d636f6d706c6574696f6e73_corfu__filter_completions_0+0x199)[0x7f1524616be9]
emacs(Ffuncall+0xfd)[0x62148d]
/var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln(F636f7266752d2d7265636f6d70757465_corfu__recompute_0+0x29e)[0x7f1524617b9e]
emacs(Ffuncall+0xfd)[0x62148d]
/var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln(F636f7266752d2d757064617465_corfu__update_0+0x755)[0x7f1524618e25]
...
Segmentation fault: oops, process 'emacs' core dumped
```

## Recipe

I was able to repro this bug with just this in my config (running with
emacs --init-directory set to a separate dummy directory with this in my
init.el):

```lisp
(use-package corfu
    :ensure t
    ;; Optional customizations
    :custom
    (corfu-cycle t)                ;; Enable cycling for `corfu-next/previous'
    (corfu-auto t)                 ;; Enable auto completion
    (corfu-separator ?\s)          ;; Orderless field separator
    (corfu-quit-no-match 'separator)
    (corfu-auto-delay 0.12)
    (corfu-auto-prefix 3)
    (corfu-popupinfo-delay 0.22)
    (corfu-popupinfo-direction 'right)
    :config
    (global-corfu-mode)
    (defun corfu-enable-in-minibuffer ()
        "Enable Corfu in the minibuffer."
        (when (local-variable-p 'completion-at-point-functions)
            (setq-local corfu-echo-delay nil ;; Disable automatic echo and popup
                        corfu-popupinfo-delay nil)
            (corfu-mode 1)))
    (add-hook 'minibuffer-setup-hook #'corfu-enable-in-minibuffer)

    (defun corfu-popupinfo-start ()
        (require 'corfu-popupinfo)
        (set-face-attribute 'corfu-popupinfo nil :inherit 'variable-pitch)
        (corfu-popupinfo-mode))
    (add-hook 'corfu-mode-hook #'corfu-popupinfo-start))
```

## Config

Here's my full corfu and orderless configuration:

```lisp
;; Optionally use the `orderless' completion style for proper fuzzy searching
;; in vertico
(use-package orderless
    :after vertico
    :init
(setq completion-styles '(orderless basic)
      completion-category-defaults nil
          completion-category-overrides '((file (styles partial-completion)))))

(use-package corfu
    ;; Optional customizations
    :custom
    (corfu-cycle t)                ;; Enable cycling for `corfu-next/previous'
    (corfu-auto t)                 ;; Enable auto completion
    (corfu-separator ?\s)          ;; Orderless field separator
    (corfu-quit-no-match 'separator)
    (corfu-auto-delay 0.12)
    (corfu-auto-prefix 3)
    (corfu-popupinfo-delay 0.22)
    (corfu-popupinfo-direction 'right)
    :config
    (global-corfu-mode)
    (defun corfu-enable-in-minibuffer ()
        "Enable Corfu in the minibuffer."
        (when (local-variable-p 'completion-at-point-functions)
            (setq-local corfu-echo-delay nil ;; Disable automatic echo and popup
                        corfu-popupinfo-delay nil)
            (corfu-mode 1)))
    (add-hook 'minibuffer-setup-hook #'corfu-enable-in-minibuffer)

    (defun corfu-popupinfo-start ()
        (require 'corfu-popupinfo)
        (set-face-attribute 'corfu-popupinfo nil :inherit 'variable-pitch)
        (corfu-popupinfo-mode))
    (add-hook 'corfu-mode-hook #'corfu-popupinfo-start))

(use-package nerd-icons
    :if (display-graphic-p)
    :custom (nerd-icons-font-family "Symbols Nerd Font Mono"))

;; Integrate them with corfu
(use-package nerd-icons-corfu
    :after (corfu nerd-icons)
    :config (add-to-list 'corfu-margin-formatters #'nerd-icons-corfu-formatter))
```


In GNU Emacs 29.3 (build 1, x86_64-redhat-linux-gnu, GTK+ Version
 3.24.41, cairo version 1.18.0) of 2024-04-18 built on
 f79e87ffac024d38993f848c551f45fc
System Description: Fedora Linux 41 (Container Image Prerelease)

Configured using:
 'configure --build=x86_64-redhat-linux-gnu
 --host=x86_64-redhat-linux-gnu --program-prefix=
 --disable-dependency-tracking --prefix=/usr --exec-prefix=/usr
 --bindir=/usr/bin --sbindir=/usr/sbin --sysconfdir=/etc
 --datadir=/usr/share --includedir=/usr/include --libdir=/usr/lib64
 --libexecdir=/usr/libexec --localstatedir=/var --runstatedir=/run
 --sharedstatedir=/var/lib --mandir=/usr/share/man
 --infodir=/usr/share/info --with-cairo --with-dbus --with-gif
 --with-gpm=no --with-harfbuzz --with-jpeg --with-json --with-modules
 --with-native-compilation=aot --with-pgtk --with-png --with-rsvg
 --with-sqlite3 --with-tiff --with-tree-sitter --with-webp --with-xpm
 --with-xwidgets build_alias=x86_64-redhat-linux-gnu
 host_alias=x86_64-redhat-linux-gnu CC=gcc 'CFLAGS=-DMAIL_USE_LOCKF -O2
 -flto=auto -ffat-lto-objects -fexceptions -g -grecord-gcc-switches
 -pipe -Wall -Werror=format-security
 -Wp,-U_FORTIFY_SOURCE,-D_FORTIFY_SOURCE=3 -Wp,-D_GLIBCXX_ASSERTIONS
 -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong
 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -march=x86-64
 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection
 -fcf-protection -mtls-dialect=gnu2 -fno-omit-frame-pointer
 -mno-omit-leaf-frame-pointer ' LDFLAGS=-Wl,-z,relro
 PKG_CONFIG_PATH=:/usr/lib64/pkgconfig:/usr/share/pkgconfig CXX=g++
 'CXXFLAGS=-O2 -flto=auto -ffat-lto-objects -fexceptions -g
 -grecord-gcc-switches -pipe -Wall -Werror=format-security
 -Wp,-U_FORTIFY_SOURCE,-D_FORTIFY_SOURCE=3 -Wp,-D_GLIBCXX_ASSERTIONS
 -specs=/usr/lib/rpm/redhat/redhat-hardened-cc1 -fstack-protector-strong
 -specs=/usr/lib/rpm/redhat/redhat-annobin-cc1 -m64 -march=x86-64
 -mtune=generic -fasynchronous-unwind-tables -fstack-clash-protection
 -fcf-protection -mtls-dialect=gnu2 -fno-omit-frame-pointer
 -mno-omit-leaf-frame-pointer ''

Configured features:
ACL CAIRO DBUS FREETYPE GIF GLIB GMP GNUTLS GSETTINGS HARFBUZZ JPEG JSON
LIBOTF LIBSELINUX LIBSYSTEMD LIBXML2 MODULES NATIVE_COMP NOTIFY INOTIFY
PDUMPER PGTK PNG RSVG SECCOMP SOUND SQLITE3 THREADS TIFF
TOOLKIT_SCROLL_BARS TREE_SITTER WEBP XIM XWIDGETS GTK3 ZLIB

Important settings:
  value of $LANG: en_US.UTF-8
  value of $XMODIFIERS: @im=ibus
  locale-coding-system: utf-8-unix

Major mode: ELisp/l

Minor modes in effect:
  elisp-def-mode: t
  highlight-defined-mode: t
  electric-pair-mode: t
  hl-line-mode: t
  display-line-numbers-mode: t
  corfu-popupinfo-mode: t
  corfu-mode: t
  eldoc-box-hover-at-point-mode: t
  yas-minor-mode: t
  hl-todo-mode: t
  ligature-mode: t
  nerd-icons-completion-mode: t
  mood-line-mode: t
  spacious-padding-mode: t
  global-treesit-auto-mode: t
  global-evil-collection-unimpaired-mode: t
  evil-collection-unimpaired-mode: t
  marginalia-mode: t
  vertico-mode: t
  which-key-mode: t
  general-override-mode: t
  evil-mode: t
  evil-local-mode: t
  override-global-mode: t
  recentf-mode: t
  winner-mode: t
  pixel-scroll-precision-mode: t
  delete-selection-mode: t
  cua-mode: t
  apheleia-mode: t
  tooltip-mode: t
  global-eldoc-mode: t
  eldoc-mode: t
  show-paren-mode: t
  electric-indent-mode: t
  mouse-wheel-mode: t
  file-name-shadow-mode: t
  global-font-lock-mode: t
  font-lock-mode: t
  blink-cursor-mode: t
  column-number-mode: t
  line-number-mode: t
  indent-tabs-mode: t
  transient-mark-mode: t
  auto-composition-mode: t
  auto-encryption-mode: t
  auto-compression-mode: t

Load-path shadows:
/var/home/alexispurslane/.emacs.d/elpa/transient-20240509.1849/transient hides /usr/share/emacs/29.3/lisp/transient

Features:
(shadow sort mail-extr emacsbug message yank-media puny
evil-collection-dired dired dired-loaddefs rfc822 mml mml-sec
evil-collection-epa epa derived epg rfc6068 epg-config gnus-util
mm-decode mm-bodies mm-encode mail-parse rfc2231 mailabbrev gmm-utils
mailheader sendmail rfc2047 rfc2045 ietf-drums mm-util mail-prsvr
mail-utils vertico-directory mule-util time-date evil-collection-vc-git
vc-git evil-collection-diff-mode diff-mode vc-dispatcher
mood-line-segment-vc elisp-def evil-collection-ert ert ewoc
evil-collection-debug debug backtrace evil-collection-xref xref
find-func f s dash highlight-defined elec-pair hl-line
display-line-numbers corfu-popupinfo yasnippet-capf nerd-icons-corfu
evil-collection-corfu corfu mood-line-segment-modal yasnippet eldoc-box
hl-todo ligature time evil-collection-flymake flymake-proc flymake
project evil-collection-compile compile evil-collection-comint comint
ansi-osc ansi-color nerd-icons-completion evil-collection-dashboard
dashboard dashboard-widgets nerd-icons nerd-icons-faces nerd-icons-data
nerd-icons-data-mdicon nerd-icons-data-flicon nerd-icons-data-codicon
nerd-icons-data-devicon nerd-icons-data-sucicon nerd-icons-data-wicon
nerd-icons-data-faicon nerd-icons-data-powerline nerd-icons-data-octicon
nerd-icons-data-pomicon nerd-icons-data-ipsicon ffap mood-line
spacious-padding doom-gruvbox-theme doom-themes doom-themes-base
treesit-auto evil-textobj-tree-sitter
evil-textobj-tree-sitter-thing-at-point evil-collection-unimpaired
evil-collection-which-key evil-collection-vertico
evil-collection-tabulated-list evil-collection-tab-bar
evil-collection-simple evil-collection-replace
evil-collection-process-menu evil-collection-package-menu
evil-collection-info evil-collection-indent evil-collection-help
evil-collection-elisp-mode evil-collection-eldoc evil-collection-custom
evil-collection-consult evil-collection-buff-menu
evil-collection-bookmark evil-collection annalist consult bookmark
text-property-search orderless marginalia vertico compat which-key
general evil-textobj-tree-sitter-core evil evil-keybindings
evil-integration evil-maps evil-commands reveal evil-jumps
evil-command-window evil-types evil-search evil-ex evil-macros
evil-repeat evil-states evil-core comp comp-cstr warnings rx advice
evil-common thingatpt rect evil-vars treesit edmacro kmacro
use-package-bind-key bind-key use-package-diminish recentf tree-widget
winner pixel-scroll ring delsel cua-base cus-edit pp cus-load icons
wid-edit cl-extra help-mode use-package-ensure use-package-core
clang-rename clang-include-fixer let-alist clang-format xml
apheleia-autoloads easy-mmode breadcrumb-autoloads
centaur-tabs-autoloads consult-notes-autoloads consult-autoloads
corfu-autoloads darkroom-autoloads dashboard-autoloads denote-autoloads
doom-themes-autoloads eldoc-box-autoloads elisp-def-autoloads
elisp-demos-autoloads emojify-autoloads evil-collection-autoloads
annalist-autoloads evil-textobj-tree-sitter-autoloads general-autoloads
helpful-autoloads elisp-refs-autoloads f-autoloads
highlight-defined-autoloads hl-todo-autoloads hyperbole-autoloads
kotl-autoloads hact set hhist latex-preview-pane-autoloads
ligature-autoloads magit-autoloads pcase git-commit-autoloads
magit-section-autoloads marginalia-autoloads markdown-mode-autoloads
markdown-ts-mode-autoloads mood-line-autoloads
nerd-icons-completion-autoloads nerd-icons-corfu-autoloads
nerd-icons-dired-autoloads nerd-icons-autoloads orderless-autoloads
powerline-autoloads rainbow-delimiters-autoloads
spacious-padding-autoloads transient-autoloads treemacs-evil-autoloads
treemacs-autoloads cfrs-autoloads posframe-autoloads ht-autoloads
hydra-autoloads lv-autoloads pfuture-autoloads ace-window-autoloads
avy-autoloads s-autoloads dash-autoloads evil-autoloads
goto-chg-autoloads treesit-auto-autoloads vertico-autoloads
visual-fill-column-autoloads which-key-autoloads with-editor-autoloads
info compat-autoloads yasnippet-capf-autoloads yasnippet-autoloads
package browse-url url url-proxy url-privacy url-expand url-methods
url-history url-cookie generate-lisp-file url-domsuf url-util mailcap
url-handlers url-parse auth-source cl-seq eieio eieio-core cl-macs
password-cache json subr-x map byte-opt gv bytecomp byte-compile
url-vars cl-loaddefs cl-lib rmc iso-transl tooltip cconv eldoc paren
electric uniquify ediff-hook vc-hooks lisp-float-type elisp-mode mwheel
term/pgtk-win pgtk-win term/common-win pgtk-dnd tool-bar dnd fontset
image regexp-opt fringe tabulated-list replace newcomment text-mode
lisp-mode prog-mode register page tab-bar menu-bar rfn-eshadow isearch
easymenu timer select scroll-bar mouse jit-lock font-lock syntax
font-core term/tty-colors frame minibuffer nadvice seq simple cl-generic
indonesian philippine cham georgian utf-8-lang misc-lang vietnamese
tibetan thai tai-viet lao korean japanese eucjp-ms cp51932 hebrew greek
romanian slovak czech european ethiopic indian cyrillic chinese
composite emoji-zwj charscript charprop case-table epa-hook
jka-cmpr-hook help abbrev obarray oclosure cl-preloaded button loaddefs
theme-loaddefs faces cus-face macroexp files window text-properties
overlay sha1 md5 base64 format env code-pages mule custom widget keymap
hashtable-print-readable backquote threads xwidget-internal dbusbind
inotify dynamic-setting system-font-setting font-render-setting cairo
gtk pgtk multi-tty make-network-process native-compile emacs)

Memory information:
((conses 16 398743 161667)
 (symbols 48 23840 0)
 (strings 32 98289 5189)
 (string-bytes 1 3584246)
 (vectors 16 46773)
 (vector-slots 8 943753 143975)
 (floats 8 528 347)
 (intervals 56 1561 0)
 (buffers 984 20))

[signature.asc (application/pgp-signature, attachment)]

Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Mon, 20 May 2024 11:03:02 GMT) Full text and rfc822 format available.

Message #8 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: Eli Zaretskii <eliz <at> gnu.org>
To: alexis purslane <alexispurslane <at> pm.me>
Cc: 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Mon, 20 May 2024 14:02:12 +0300
> Date: Sun, 19 May 2024 19:58:23 +0000
> From:  alexis purslane via "Bug reports for GNU Emacs,
>  the Swiss army knife of text editors" <bug-gnu-emacs <at> gnu.org>
> 
> If corfu is prompted to start autocompletion (by typing the first 3
> letters of a word in my case) while an eglot LSP server is still
> starting up, but after eglot has connected to that server, you get a
> segmentation fault.
> 
> ## Steps to reproduce
> 
> 1. Open a file with a mode associated with it that has a language server
> 2. {M-x eglot}
> 3. Before the server has finished indexing and can provide completions,
>    but after it has connected, prompt corfu to do an autocompletion
> 4. Enjoy your segfault salad
> 
> ## Debug information
> 
> Here's the backtrace from the core dump:

Thanks, but this backtrace is less useful than it could be.  If you
can run Emacs from GDB, please do that, and when it segfaults and GDB
shows its prompt, type

  (gdb) thread apply all bt

and post here everything GDB produces as result.




Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Tue, 21 May 2024 18:22:01 GMT) Full text and rfc822 format available.

Message #11 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: Eli Zaretskii <eliz <at> gnu.org>
To: alexis purslane <alexispurslane <at> pm.me>
Cc: 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Tue, 21 May 2024 21:21:22 +0300
[Please use Reply All to reply, so as to keep the bug tracker CC'ed.]

> Date: Tue, 21 May 2024 16:32:13 +0000
> From: alexis purslane <alexispurslane <at> pm.me>
> 
> Okay, I tried to reproduce this in gdb, but it wouldn't do it? I was using
> the exact same configuration file, LSP server executable, test file, everything.
> The only differences were I had to run it with sudo because of the security
> settings of my OS, so I made it use the same config and everything by
> manually setting $HOME, and that when run with GDB for some reason Emacs
> ran under XWayland instead of Wayland. Maybe it's the latter that makes the
> difference?

I don't know.  But we must have more detailed and more accurate
backtrace to make any progress here.

Can someone please reproduce these crashes under GDB and post a
complete backtrace?




Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Tue, 21 May 2024 18:49:02 GMT) Full text and rfc822 format available.

Message #14 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: Eli Zaretskii <eliz <at> gnu.org>
To: alexis purslane <alexispurslane <at> pm.me>,
 Po Lu <luangruo <at> yahoo.com>
Cc: 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Tue, 21 May 2024 21:47:44 +0300
[You are again replying only to me.  Please use Reply All.]

> Date: Tue, 21 May 2024 18:26:54 +0000
> From: alexis purslane <alexispurslane <at> pm.me>
> 
> Wait wait! No need, I got it to happen. As it turns out, the timing is a bit narrower
> than I thought. Attached is the full backtrace for all threads as requested. 
> 
> 
> 
> On Tuesday, May 21st, 2024 at 6:21 PM, Eli Zaretskii <eliz <at> gnu.org> wrote:
> 
> > [Please use Reply All to reply, so as to keep the bug tracker CC'ed.]
> > 
> 
> > > Date: Tue, 21 May 2024 16:32:13 +0000
> > > From: alexis purslane alexispurslane <at> pm.me
> > > 
> 
> > > Okay, I tried to reproduce this in gdb, but it wouldn't do it? I was using
> > > the exact same configuration file, LSP server executable, test file, everything.
> > > The only differences were I had to run it with sudo because of the security
> > > settings of my OS, so I made it use the same config and everything by
> > > manually setting $HOME, and that when run with GDB for some reason Emacs
> > > ran under XWayland instead of Wayland. Maybe it's the latter that makes the
> > > difference?
> > 
> 
> > 
> 
> > I don't know. But we must have more detailed and more accurate
> > backtrace to make any progress here.
> > 
> 
> > Can someone please reproduce these crashes under GDB and post a
> > complete backtrace?
> 
> 
> Thread 10 (Thread 0x7fffd2b8f6c0 (LWP 57508) "dconf worker"):
> #0  0x00000000005811a0 in deliver_input_available_signal ()
> #1  0x00007fffee9af750 in <signal handler called> () at /lib64/libc.so.6
> #2  0x00007fffeea797ed in poll () at /lib64/libc.so.6
> #3  0x00007ffff710b724 in g_main_context_iterate_unlocked.isra () at /lib64/libglib-2.0.so.0
> #4  0x00007ffff70abb03 in g_main_context_iteration () at /lib64/libglib-2.0.so.0
> #5  0x00007fffd867d705 in dconf_gdbus_worker_thread () at /usr/lib64/gio/modules/libdconfsettings.so

This does not seem to be a segfault, this is SIGIO that gets delivered
to one of the Glib threads.  While the main thread seems to just be
going about its business:

> Thread 1 (Thread 0x7fffe8df3280 (LWP 56994) "emacs-29.3"):
> #0  0x0000000000625768 in plist_get ()
> #1  0x0000000000579f81 in parse_modifiers ()
> #2  0x0000000000590ad8 in access_keymap_1.lto_priv ()
> #3  0x000000000057f7ea in read_char ()
> #4  0x0000000000648f3a in read_filtered_event.lto_priv ()
> #5  0x00007fffe7bd92ff in F7369742d666f72_sit_for_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/subr-13adf6a6-bfb9f448.eln

Nothing here that is not normal, I think.  Did GDB say "thread 1 got
SIGSEGV"?

Po Lu, do you see anything problematic?

And why does GDB kick in when we get SIGIO?

But if this _is_ a segfault, then what could cause it?  The plist_get
call seems to be from Fget:

  Lisp_Object propval = plist_get (CDR (Fassq (symbol,
					       Voverriding_plist_environment)),
				   propname);

in which case the problem is with overriding-plist-environment or
something?  Or maybe it's the second call to plist_get:

  return plist_get (XSYMBOL (symbol)->u.s.plist, propname);

Here's the full backtrace, for those who didn't get the original
message (everyone but me):

  Thread 10 (Thread 0x7fffd2b8f6c0 (LWP 57508) "dconf worker"):
  #0  0x00000000005811a0 in deliver_input_available_signal ()
  #1  0x00007fffee9af750 in <signal handler called> () at /lib64/libc.so.6
  #2  0x00007fffeea797ed in poll () at /lib64/libc.so.6
  #3  0x00007ffff710b724 in g_main_context_iterate_unlocked.isra () at /lib64/libglib-2.0.so.0
  #4  0x00007ffff70abb03 in g_main_context_iteration () at /lib64/libglib-2.0.so.0
  #5  0x00007fffd867d705 in dconf_gdbus_worker_thread () at /usr/lib64/gio/modules/libdconfsettings.so
  #6  0x00007ffff70da8a3 in g_thread_proxy () at /lib64/libglib-2.0.so.0
  #7  0x00007fffeea051f7 in start_thread () at /lib64/libc.so.6
  #8  0x00007fffeea8742c in clone3 () at /lib64/libc.so.6

  Thread 9 (Thread 0x7fffd358f6c0 (LWP 57507) "gmain"):
  #0  0x00007fffeea797ed in poll () at /lib64/libc.so.6
  #1  0x00007ffff710b724 in g_main_context_iterate_unlocked.isra () at /lib64/libglib-2.0.so.0
  #2  0x00007ffff70abb03 in g_main_context_iteration () at /lib64/libglib-2.0.so.0
  #3  0x00007ffff70abb59 in glib_worker_main () at /lib64/libglib-2.0.so.0
  #4  0x00007ffff70da8a3 in g_thread_proxy () at /lib64/libglib-2.0.so.0
  #5  0x00007fffeea051f7 in start_thread () at /lib64/libc.so.6
  #6  0x00007fffeea8742c in clone3 () at /lib64/libc.so.6

  Thread 8 (Thread 0x7fffd3f8f6c0 (LWP 57506) "pool-spawner"):
  #0  0x00000000005811a0 in deliver_input_available_signal ()
  #1  0x00007fffee9af750 in <signal handler called> () at /lib64/libc.so.6
  #2  0x00007fffeea8521d in syscall () at /lib64/libc.so.6
  #3  0x00007ffff710883d in g_cond_wait () at /lib64/libglib-2.0.so.0
  #4  0x00007ffff707558b in g_async_queue_pop_intern_unlocked () at /lib64/libglib-2.0.so.0
  #5  0x00007ffff70dba93 in g_thread_pool_spawn_thread () at /lib64/libglib-2.0.so.0
  #6  0x00007ffff70da8a3 in g_thread_proxy () at /lib64/libglib-2.0.so.0
  #7  0x00007fffeea051f7 in start_thread () at /lib64/libc.so.6
  #8  0x00007fffeea8742c in clone3 () at /lib64/libc.so.6

  Thread 7 (Thread 0x7fffd918f6c0 (LWP 57505) "emacs-29.3"):
  #0  0x00007fffeea8521d in syscall () at /lib64/libc.so.6
  #1  0x00007ffff710883d in g_cond_wait () at /lib64/libglib-2.0.so.0
  #2  0x00007ffff707558b in g_async_queue_pop_intern_unlocked () at /lib64/libglib-2.0.so.0
  #3  0x00007ffff70755ec in g_async_queue_pop () at /lib64/libglib-2.0.so.0
  #4  0x00007fffee9600a9 in fc_thread_func () at /lib64/libpangoft2-1.0.so.0
  #5  0x00007ffff70da8a3 in g_thread_proxy () at /lib64/libglib-2.0.so.0
  #6  0x00007fffeea051f7 in start_thread () at /lib64/libc.so.6
  #7  0x00007fffeea8742c in clone3 () at /lib64/libc.so.6

  Thread 1 (Thread 0x7fffe8df3280 (LWP 56994) "emacs-29.3"):
  #0  0x0000000000625768 in plist_get ()
  #1  0x0000000000579f81 in parse_modifiers ()
  #2  0x0000000000590ad8 in access_keymap_1.lto_priv ()
  #3  0x000000000057f7ea in read_char ()
  #4  0x0000000000648f3a in read_filtered_event.lto_priv ()
  #5  0x00007fffe7bd92ff in F7369742d666f72_sit_for_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/subr-13adf6a6-bfb9f448.eln
  #6  0x000000000062148d in Ffuncall ()
  #7  0x00007fffd139a2c4 in F6a736f6e7270632d72657175657374_jsonrpc_request_0 () at /usr/lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/jsonrpc-e62a9c36-62ae7160.eln
  #8  0x000000000062148d in Ffuncall ()
  #9  0x0000000000621b90 in Fapply ()
  #10 0x000000000066b8bc in exec_byte_code ()
  #11 0x000000000062148d in Ffuncall ()
  #12 0x00000000005b6122 in Fall_completions ()
  #13 0x00007fffe7b7ba67 in F636f6d706c6574696f6e2d70636d2d2d616c6c2d636f6d706c6574696f6e73_completion_pcm__all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #14 0x000000000062148d in Ffuncall ()
  #15 0x00007fffe7b7ef86 in F636f6d706c6574696f6e2d737562737472696e672d2d616c6c2d636f6d706c6574696f6e73_completion_substring__all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #16 0x000000000062148d in Ffuncall ()
  #17 0x00007fffe7b7fa16 in F636f6d706c6574696f6e2d666c65782d616c6c2d636f6d706c6574696f6e73_completion_flex_all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #18 0x000000000062148d in Ffuncall ()
  #19 0x0000000000621b90 in Fapply ()
  #20 0x000000000066b8bc in exec_byte_code ()
  #21 0x000000000062148d in Ffuncall ()
  #22 0x00007fffe7b68852 in F636f6d706c6574696f6e2d2d736f6d65_completion__some_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #23 0x000000000062148d in Ffuncall ()
  #24 0x00007fffe7b6d914 in F636f6d706c6574696f6e2d2d6e74682d636f6d706c6574696f6e_completion__nth_completion_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #25 0x000000000062148d in Ffuncall ()
  #26 0x00007fffe7b6dcd0 in F636f6d706c6574696f6e2d616c6c2d636f6d706c6574696f6e73_completion_all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #27 0x000000000062148d in Ffuncall ()
  #28 0x0000000000621b90 in Fapply ()
  #29 0x000000000066b8bc in exec_byte_code ()
  #30 0x000000000062148d in Ffuncall ()
  #31 0x0000000000621b90 in Fapply ()
  #32 0x00007fffd1515be9 in F636f7266752d2d66696c7465722d636f6d706c6574696f6e73_corfu__filter_completions_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
  #33 0x000000000062148d in Ffuncall ()
  #34 0x00007fffd1516b9e in F636f7266752d2d7265636f6d70757465_corfu__recompute_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
  #35 0x000000000062148d in Ffuncall ()
  #36 0x00007fffd1517e25 in F636f7266752d2d757064617465_corfu__update_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
  #37 0x000000000066b8bc in exec_byte_code ()
  #38 0x000000000062148d in Ffuncall ()
  #39 0x0000000000621e82 in Fapply ()
  #40 0x000000000066b8bc in exec_byte_code ()
  #41 0x000000000062148d in Ffuncall ()
  #42 0x0000000000621e82 in Fapply ()
  #43 0x000000000066b8bc in exec_byte_code ()
  #44 0x000000000062148d in Ffuncall ()
  #45 0x00007fffd151b4c7 in F636f7266752d2d6175746f2d636f6d706c6574652d6465666572726564_corfu__auto_complete_deferred_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
  #46 0x000000000062148d in Ffuncall ()
  #47 0x0000000000621e82 in Fapply ()
  #48 0x000000000062148d in Ffuncall ()
  #49 0x00007fffe7813f60 in F74696d65722d6576656e742d68616e646c6572_timer_event_handler_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/timer-3ee7cfd9-226b3dc9.eln
  #50 0x000000000062148d in Ffuncall ()
  #51 0x0000000000577d55 in timer_check ()
  #52 0x00000000005782fd in readable_events.lto_priv ()
  #53 0x0000000000582a80 in get_input_pending.lto_priv ()
  #54 0x000000000068591f in wait_reading_process_output ()
  #55 0x000000000057c62c in kbd_buffer_get_event ()
  #56 0x000000000057e886 in read_char ()
  #57 0x0000000000587743 in read_key_sequence.lto_priv ()
  #58 0x0000000000573f75 in command_loop_1.lto_priv ()
  #59 0x000000000060fa9e in internal_condition_case ()
  #60 0x00000000005734d6 in command_loop_2 ()
  #61 0x000000000060f9f7 in internal_catch ()
  #62 0x0000000000573933 in command_loop ()
  #63 0x0000000000573a2f in recursive_edit_1 ()
  #64 0x0000000000573c1d in Frecursive_edit ()
  #65 0x0000000000479569 in main ()
  #0  0x0000000000625768 in plist_get ()
  #1  0x0000000000579f81 in parse_modifiers ()
  #2  0x0000000000590ad8 in access_keymap_1.lto_priv ()
  #3  0x000000000057f7ea in read_char ()
  #4  0x0000000000648f3a in read_filtered_event.lto_priv ()
  #5  0x00007fffe7bd92ff in F7369742d666f72_sit_for_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/subr-13adf6a6-bfb9f448.eln
  #6  0x000000000062148d in Ffuncall ()
  #7  0x00007fffd139a2c4 in F6a736f6e7270632d72657175657374_jsonrpc_request_0 () at /usr/lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/jsonrpc-e62a9c36-62ae7160.eln
  #8  0x000000000062148d in Ffuncall ()
  #9  0x0000000000621b90 in Fapply ()
  #10 0x000000000066b8bc in exec_byte_code ()
  #11 0x000000000062148d in Ffuncall ()
  #12 0x00000000005b6122 in Fall_completions ()
  #13 0x00007fffe7b7ba67 in F636f6d706c6574696f6e2d70636d2d2d616c6c2d636f6d706c6574696f6e73_completion_pcm__all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #14 0x000000000062148d in Ffuncall ()
  #15 0x00007fffe7b7ef86 in F636f6d706c6574696f6e2d737562737472696e672d2d616c6c2d636f6d706c6574696f6e73_completion_substring__all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #16 0x000000000062148d in Ffuncall ()
  #17 0x00007fffe7b7fa16 in F636f6d706c6574696f6e2d666c65782d616c6c2d636f6d706c6574696f6e73_completion_flex_all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #18 0x000000000062148d in Ffuncall ()
  #19 0x0000000000621b90 in Fapply ()
  #20 0x000000000066b8bc in exec_byte_code ()
  #21 0x000000000062148d in Ffuncall ()
  #22 0x00007fffe7b68852 in F636f6d706c6574696f6e2d2d736f6d65_completion__some_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #23 0x000000000062148d in Ffuncall ()
  #24 0x00007fffe7b6d914 in F636f6d706c6574696f6e2d2d6e74682d636f6d706c6574696f6e_completion__nth_completion_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #25 0x000000000062148d in Ffuncall ()
  #26 0x00007fffe7b6dcd0 in F636f6d706c6574696f6e2d616c6c2d636f6d706c6574696f6e73_completion_all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
  #27 0x000000000062148d in Ffuncall ()
  #28 0x0000000000621b90 in Fapply ()
  #29 0x000000000066b8bc in exec_byte_code ()
  #30 0x000000000062148d in Ffuncall ()
  #31 0x0000000000621b90 in Fapply ()
  #32 0x00007fffd1515be9 in F636f7266752d2d66696c7465722d636f6d706c6574696f6e73_corfu__filter_completions_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
  #33 0x000000000062148d in Ffuncall ()
  #34 0x00007fffd1516b9e in F636f7266752d2d7265636f6d70757465_corfu__recompute_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
  #35 0x000000000062148d in Ffuncall ()
  #36 0x00007fffd1517e25 in F636f7266752d2d757064617465_corfu__update_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
  #37 0x000000000066b8bc in exec_byte_code ()
  #38 0x000000000062148d in Ffuncall ()
  #39 0x0000000000621e82 in Fapply ()
  #40 0x000000000066b8bc in exec_byte_code ()
  #41 0x000000000062148d in Ffuncall ()
  #42 0x0000000000621e82 in Fapply ()
  #43 0x000000000066b8bc in exec_byte_code ()
  #44 0x000000000062148d in Ffuncall ()
  #45 0x00007fffd151b4c7 in F636f7266752d2d6175746f2d636f6d706c6574652d6465666572726564_corfu__auto_complete_deferred_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
  #46 0x000000000062148d in Ffuncall ()
  #47 0x0000000000621e82 in Fapply ()
  #48 0x000000000062148d in Ffuncall ()
  #49 0x00007fffe7813f60 in F74696d65722d6576656e742d68616e646c6572_timer_event_handler_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/timer-3ee7cfd9-226b3dc9.eln
  #50 0x000000000062148d in Ffuncall ()
  #51 0x0000000000577d55 in timer_check ()
  #52 0x00000000005782fd in readable_events.lto_priv ()
  #53 0x0000000000582a80 in get_input_pending.lto_priv ()
  #54 0x000000000068591f in wait_reading_process_output ()
  #55 0x000000000057c62c in kbd_buffer_get_event ()
  #56 0x000000000057e886 in read_char ()
  #57 0x0000000000587743 in read_key_sequence.lto_priv ()
  #58 0x0000000000573f75 in command_loop_1.lto_priv ()
  #59 0x000000000060fa9e in internal_condition_case ()
  #60 0x00000000005734d6 in command_loop_2 ()
  #61 0x000000000060f9f7 in internal_catch ()
  #62 0x0000000000573933 in command_loop ()
  #63 0x0000000000573a2f in recursive_edit_1 ()
  #64 0x0000000000573c1d in Frecursive_edit ()
  #65 0x0000000000479569 in main ()




Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Tue, 21 May 2024 18:55:02 GMT) Full text and rfc822 format available.

Message #17 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: alexis purslane <alexispurslane <at> pm.me>
To: Eli Zaretskii <eliz <at> gnu.org>
Cc: Po Lu <luangruo <at> yahoo.com>, 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Tue, 21 May 2024 18:54:09 +0000
[Message part 1 (text/plain, inline)]
> Nothing here that is not normal, I think.  Did GDB say "thread 1 got
SIGSEGV"?

It did. Just reproduced it again to make sure, and this is what it says:

> Thread 1 "emacs-29.3" received signal SIGSEGV, Segmentation fault.
> 0x000000000057a044 in parse_modifiers ()
> Missing separate debuginfos, use: dnf debuginfo-install emacs-29.3-6.fc41.x86_64

I've attached the subsequent backtrace file in case it shows anything different
this time around. Apologies for the runaround, I'm new at this, trying to learn! :P

On Tuesday, May 21st, 2024 at 6:47 PM, Eli Zaretskii <eliz <at> gnu.org> wrote:

> [You are again replying only to me. Please use Reply All.]
> 

> > Date: Tue, 21 May 2024 18:26:54 +0000
> > From: alexis purslane alexispurslane <at> pm.me
> > 

> > Wait wait! No need, I got it to happen. As it turns out, the timing is a bit narrower
> > than I thought. Attached is the full backtrace for all threads as requested.
> > 

> > On Tuesday, May 21st, 2024 at 6:21 PM, Eli Zaretskii eliz <at> gnu.org wrote:
> > 

> > > [Please use Reply All to reply, so as to keep the bug tracker CC'ed.]
> > 

> > > > Date: Tue, 21 May 2024 16:32:13 +0000
> > > > From: alexis purslane alexispurslane <at> pm.me
> > 

> > > > Okay, I tried to reproduce this in gdb, but it wouldn't do it? I was using
> > > > the exact same configuration file, LSP server executable, test file, everything.
> > > > The only differences were I had to run it with sudo because of the security
> > > > settings of my OS, so I made it use the same config and everything by
> > > > manually setting $HOME, and that when run with GDB for some reason Emacs
> > > > ran under XWayland instead of Wayland. Maybe it's the latter that makes the
> > > > difference?
> > 

> > > I don't know. But we must have more detailed and more accurate
> > > backtrace to make any progress here.
> > 

> > > Can someone please reproduce these crashes under GDB and post a
> > > complete backtrace?
> > 

> > Thread 10 (Thread 0x7fffd2b8f6c0 (LWP 57508) "dconf worker"):
> > #0 0x00000000005811a0 in deliver_input_available_signal ()
> > #1 0x00007fffee9af750 in <signal handler called> () at /lib64/libc.so.6
> > #2 0x00007fffeea797ed in poll () at /lib64/libc.so.6
> > #3 0x00007ffff710b724 in g_main_context_iterate_unlocked.isra () at /lib64/libglib-2.0.so.0
> > #4 0x00007ffff70abb03 in g_main_context_iteration () at /lib64/libglib-2.0.so.0
> > #5 0x00007fffd867d705 in dconf_gdbus_worker_thread () at /usr/lib64/gio/modules/libdconfsettings.so
> 

> 

> This does not seem to be a segfault, this is SIGIO that gets delivered
> to one of the Glib threads. While the main thread seems to just be
> going about its business:
> 

> > Thread 1 (Thread 0x7fffe8df3280 (LWP 56994) "emacs-29.3"):
> > #0 0x0000000000625768 in plist_get ()
> > #1 0x0000000000579f81 in parse_modifiers ()
> > #2 0x0000000000590ad8 in access_keymap_1.lto_priv ()
> > #3 0x000000000057f7ea in read_char ()
> > #4 0x0000000000648f3a in read_filtered_event.lto_priv ()
> > #5 0x00007fffe7bd92ff in F7369742d666f72_sit_for_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/subr-13adf6a6-bfb9f448.eln
> 

> 

> Nothing here that is not normal, I think. Did GDB say "thread 1 got
> SIGSEGV"?
> 

> Po Lu, do you see anything problematic?
> 

> And why does GDB kick in when we get SIGIO?
> 

> But if this is a segfault, then what could cause it? The plist_get
> call seems to be from Fget:
> 

> Lisp_Object propval = plist_get (CDR (Fassq (symbol,
> Voverriding_plist_environment)),
> propname);
> 

> in which case the problem is with overriding-plist-environment or
> something? Or maybe it's the second call to plist_get:
> 

> return plist_get (XSYMBOL (symbol)->u.s.plist, propname);
> 

> 

> Here's the full backtrace, for those who didn't get the original
> message (everyone but me):
> 

> Thread 10 (Thread 0x7fffd2b8f6c0 (LWP 57508) "dconf worker"):
> #0 0x00000000005811a0 in deliver_input_available_signal ()
> #1 0x00007fffee9af750 in <signal handler called> () at /lib64/libc.so.6
> 

> #2 0x00007fffeea797ed in poll () at /lib64/libc.so.6
> #3 0x00007ffff710b724 in g_main_context_iterate_unlocked.isra () at /lib64/libglib-2.0.so.0
> #4 0x00007ffff70abb03 in g_main_context_iteration () at /lib64/libglib-2.0.so.0
> #5 0x00007fffd867d705 in dconf_gdbus_worker_thread () at /usr/lib64/gio/modules/libdconfsettings.so
> #6 0x00007ffff70da8a3 in g_thread_proxy () at /lib64/libglib-2.0.so.0
> #7 0x00007fffeea051f7 in start_thread () at /lib64/libc.so.6
> #8 0x00007fffeea8742c in clone3 () at /lib64/libc.so.6
> 

> Thread 9 (Thread 0x7fffd358f6c0 (LWP 57507) "gmain"):
> #0 0x00007fffeea797ed in poll () at /lib64/libc.so.6
> #1 0x00007ffff710b724 in g_main_context_iterate_unlocked.isra () at /lib64/libglib-2.0.so.0
> #2 0x00007ffff70abb03 in g_main_context_iteration () at /lib64/libglib-2.0.so.0
> #3 0x00007ffff70abb59 in glib_worker_main () at /lib64/libglib-2.0.so.0
> #4 0x00007ffff70da8a3 in g_thread_proxy () at /lib64/libglib-2.0.so.0
> #5 0x00007fffeea051f7 in start_thread () at /lib64/libc.so.6
> #6 0x00007fffeea8742c in clone3 () at /lib64/libc.so.6
> 

> Thread 8 (Thread 0x7fffd3f8f6c0 (LWP 57506) "pool-spawner"):
> #0 0x00000000005811a0 in deliver_input_available_signal ()
> #1 0x00007fffee9af750 in <signal handler called> () at /lib64/libc.so.6
> 

> #2 0x00007fffeea8521d in syscall () at /lib64/libc.so.6
> #3 0x00007ffff710883d in g_cond_wait () at /lib64/libglib-2.0.so.0
> #4 0x00007ffff707558b in g_async_queue_pop_intern_unlocked () at /lib64/libglib-2.0.so.0
> #5 0x00007ffff70dba93 in g_thread_pool_spawn_thread () at /lib64/libglib-2.0.so.0
> #6 0x00007ffff70da8a3 in g_thread_proxy () at /lib64/libglib-2.0.so.0
> #7 0x00007fffeea051f7 in start_thread () at /lib64/libc.so.6
> #8 0x00007fffeea8742c in clone3 () at /lib64/libc.so.6
> 

> Thread 7 (Thread 0x7fffd918f6c0 (LWP 57505) "emacs-29.3"):
> #0 0x00007fffeea8521d in syscall () at /lib64/libc.so.6
> #1 0x00007ffff710883d in g_cond_wait () at /lib64/libglib-2.0.so.0
> #2 0x00007ffff707558b in g_async_queue_pop_intern_unlocked () at /lib64/libglib-2.0.so.0
> #3 0x00007ffff70755ec in g_async_queue_pop () at /lib64/libglib-2.0.so.0
> #4 0x00007fffee9600a9 in fc_thread_func () at /lib64/libpangoft2-1.0.so.0
> #5 0x00007ffff70da8a3 in g_thread_proxy () at /lib64/libglib-2.0.so.0
> #6 0x00007fffeea051f7 in start_thread () at /lib64/libc.so.6
> #7 0x00007fffeea8742c in clone3 () at /lib64/libc.so.6
> 

> Thread 1 (Thread 0x7fffe8df3280 (LWP 56994) "emacs-29.3"):
> #0 0x0000000000625768 in plist_get ()
> #1 0x0000000000579f81 in parse_modifiers ()
> #2 0x0000000000590ad8 in access_keymap_1.lto_priv ()
> #3 0x000000000057f7ea in read_char ()
> #4 0x0000000000648f3a in read_filtered_event.lto_priv ()
> #5 0x00007fffe7bd92ff in F7369742d666f72_sit_for_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/subr-13adf6a6-bfb9f448.eln
> #6 0x000000000062148d in Ffuncall ()
> #7 0x00007fffd139a2c4 in F6a736f6e7270632d72657175657374_jsonrpc_request_0 () at /usr/lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/jsonrpc-e62a9c36-62ae7160.eln
> #8 0x000000000062148d in Ffuncall ()
> #9 0x0000000000621b90 in Fapply ()
> #10 0x000000000066b8bc in exec_byte_code ()
> #11 0x000000000062148d in Ffuncall ()
> #12 0x00000000005b6122 in Fall_completions ()
> #13 0x00007fffe7b7ba67 in F636f6d706c6574696f6e2d70636d2d2d616c6c2d636f6d706c6574696f6e73_completion_pcm__all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #14 0x000000000062148d in Ffuncall ()
> #15 0x00007fffe7b7ef86 in F636f6d706c6574696f6e2d737562737472696e672d2d616c6c2d636f6d706c6574696f6e73_completion_substring__all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #16 0x000000000062148d in Ffuncall ()
> #17 0x00007fffe7b7fa16 in F636f6d706c6574696f6e2d666c65782d616c6c2d636f6d706c6574696f6e73_completion_flex_all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #18 0x000000000062148d in Ffuncall ()
> #19 0x0000000000621b90 in Fapply ()
> #20 0x000000000066b8bc in exec_byte_code ()
> #21 0x000000000062148d in Ffuncall ()
> #22 0x00007fffe7b68852 in F636f6d706c6574696f6e2d2d736f6d65_completion__some_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #23 0x000000000062148d in Ffuncall ()
> #24 0x00007fffe7b6d914 in F636f6d706c6574696f6e2d2d6e74682d636f6d706c6574696f6e_completion__nth_completion_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #25 0x000000000062148d in Ffuncall ()
> #26 0x00007fffe7b6dcd0 in F636f6d706c6574696f6e2d616c6c2d636f6d706c6574696f6e73_completion_all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #27 0x000000000062148d in Ffuncall ()
> #28 0x0000000000621b90 in Fapply ()
> #29 0x000000000066b8bc in exec_byte_code ()
> #30 0x000000000062148d in Ffuncall ()
> #31 0x0000000000621b90 in Fapply ()
> #32 0x00007fffd1515be9 in F636f7266752d2d66696c7465722d636f6d706c6574696f6e73_corfu__filter_completions_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
> #33 0x000000000062148d in Ffuncall ()
> #34 0x00007fffd1516b9e in F636f7266752d2d7265636f6d70757465_corfu__recompute_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
> #35 0x000000000062148d in Ffuncall ()
> #36 0x00007fffd1517e25 in F636f7266752d2d757064617465_corfu__update_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
> #37 0x000000000066b8bc in exec_byte_code ()
> #38 0x000000000062148d in Ffuncall ()
> #39 0x0000000000621e82 in Fapply ()
> #40 0x000000000066b8bc in exec_byte_code ()
> #41 0x000000000062148d in Ffuncall ()
> #42 0x0000000000621e82 in Fapply ()
> #43 0x000000000066b8bc in exec_byte_code ()
> #44 0x000000000062148d in Ffuncall ()
> #45 0x00007fffd151b4c7 in F636f7266752d2d6175746f2d636f6d706c6574652d6465666572726564_corfu__auto_complete_deferred_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
> #46 0x000000000062148d in Ffuncall ()
> #47 0x0000000000621e82 in Fapply ()
> #48 0x000000000062148d in Ffuncall ()
> #49 0x00007fffe7813f60 in F74696d65722d6576656e742d68616e646c6572_timer_event_handler_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/timer-3ee7cfd9-226b3dc9.eln
> #50 0x000000000062148d in Ffuncall ()
> #51 0x0000000000577d55 in timer_check ()
> #52 0x00000000005782fd in readable_events.lto_priv ()
> #53 0x0000000000582a80 in get_input_pending.lto_priv ()
> #54 0x000000000068591f in wait_reading_process_output ()
> #55 0x000000000057c62c in kbd_buffer_get_event ()
> #56 0x000000000057e886 in read_char ()
> #57 0x0000000000587743 in read_key_sequence.lto_priv ()
> #58 0x0000000000573f75 in command_loop_1.lto_priv ()
> #59 0x000000000060fa9e in internal_condition_case ()
> #60 0x00000000005734d6 in command_loop_2 ()
> #61 0x000000000060f9f7 in internal_catch ()
> #62 0x0000000000573933 in command_loop ()
> #63 0x0000000000573a2f in recursive_edit_1 ()
> #64 0x0000000000573c1d in Frecursive_edit ()
> #65 0x0000000000479569 in main ()
> #0 0x0000000000625768 in plist_get ()
> #1 0x0000000000579f81 in parse_modifiers ()
> #2 0x0000000000590ad8 in access_keymap_1.lto_priv ()
> #3 0x000000000057f7ea in read_char ()
> #4 0x0000000000648f3a in read_filtered_event.lto_priv ()
> #5 0x00007fffe7bd92ff in F7369742d666f72_sit_for_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/subr-13adf6a6-bfb9f448.eln
> #6 0x000000000062148d in Ffuncall ()
> #7 0x00007fffd139a2c4 in F6a736f6e7270632d72657175657374_jsonrpc_request_0 () at /usr/lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/jsonrpc-e62a9c36-62ae7160.eln
> #8 0x000000000062148d in Ffuncall ()
> #9 0x0000000000621b90 in Fapply ()
> #10 0x000000000066b8bc in exec_byte_code ()
> #11 0x000000000062148d in Ffuncall ()
> #12 0x00000000005b6122 in Fall_completions ()
> #13 0x00007fffe7b7ba67 in F636f6d706c6574696f6e2d70636d2d2d616c6c2d636f6d706c6574696f6e73_completion_pcm__all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #14 0x000000000062148d in Ffuncall ()
> #15 0x00007fffe7b7ef86 in F636f6d706c6574696f6e2d737562737472696e672d2d616c6c2d636f6d706c6574696f6e73_completion_substring__all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #16 0x000000000062148d in Ffuncall ()
> #17 0x00007fffe7b7fa16 in F636f6d706c6574696f6e2d666c65782d616c6c2d636f6d706c6574696f6e73_completion_flex_all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #18 0x000000000062148d in Ffuncall ()
> #19 0x0000000000621b90 in Fapply ()
> #20 0x000000000066b8bc in exec_byte_code ()
> #21 0x000000000062148d in Ffuncall ()
> #22 0x00007fffe7b68852 in F636f6d706c6574696f6e2d2d736f6d65_completion__some_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #23 0x000000000062148d in Ffuncall ()
> #24 0x00007fffe7b6d914 in F636f6d706c6574696f6e2d2d6e74682d636f6d706c6574696f6e_completion__nth_completion_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #25 0x000000000062148d in Ffuncall ()
> #26 0x00007fffe7b6dcd0 in F636f6d706c6574696f6e2d616c6c2d636f6d706c6574696f6e73_completion_all_completions_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/minibuffer-1b0f548b-25462d74.eln
> #27 0x000000000062148d in Ffuncall ()
> #28 0x0000000000621b90 in Fapply ()
> #29 0x000000000066b8bc in exec_byte_code ()
> #30 0x000000000062148d in Ffuncall ()
> #31 0x0000000000621b90 in Fapply ()
> #32 0x00007fffd1515be9 in F636f7266752d2d66696c7465722d636f6d706c6574696f6e73_corfu__filter_completions_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
> #33 0x000000000062148d in Ffuncall ()
> #34 0x00007fffd1516b9e in F636f7266752d2d7265636f6d70757465_corfu__recompute_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
> #35 0x000000000062148d in Ffuncall ()
> #36 0x00007fffd1517e25 in F636f7266752d2d757064617465_corfu__update_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
> #37 0x000000000066b8bc in exec_byte_code ()
> #38 0x000000000062148d in Ffuncall ()
> #39 0x0000000000621e82 in Fapply ()
> #40 0x000000000066b8bc in exec_byte_code ()
> #41 0x000000000062148d in Ffuncall ()
> #42 0x0000000000621e82 in Fapply ()
> #43 0x000000000066b8bc in exec_byte_code ()
> #44 0x000000000062148d in Ffuncall ()
> #45 0x00007fffd151b4c7 in F636f7266752d2d6175746f2d636f6d706c6574652d6465666572726564_corfu__auto_complete_deferred_0 () at /var/home/alexispurslane/.emacs.d/eln-cache/29.3-f9fbfec9/corfu-4ecf6dfc-d30fc894.eln
> #46 0x000000000062148d in Ffuncall ()
> #47 0x0000000000621e82 in Fapply ()
> #48 0x000000000062148d in Ffuncall ()
> #49 0x00007fffe7813f60 in F74696d65722d6576656e742d68616e646c6572_timer_event_handler_0 () at /usr/bin/../lib64/emacs/29.3/native-lisp/29.3-f9fbfec9/preloaded/timer-3ee7cfd9-226b3dc9.eln
> #50 0x000000000062148d in Ffuncall ()
> #51 0x0000000000577d55 in timer_check ()
> #52 0x00000000005782fd in readable_events.lto_priv ()
> #53 0x0000000000582a80 in get_input_pending.lto_priv ()
> #54 0x000000000068591f in wait_reading_process_output ()
> #55 0x000000000057c62c in kbd_buffer_get_event ()
> #56 0x000000000057e886 in read_char ()
> #57 0x0000000000587743 in read_key_sequence.lto_priv ()
> #58 0x0000000000573f75 in command_loop_1.lto_priv ()
> #59 0x000000000060fa9e in internal_condition_case ()
> #60 0x00000000005734d6 in command_loop_2 ()
> #61 0x000000000060f9f7 in internal_catch ()
> #62 0x0000000000573933 in command_loop ()
> #63 0x0000000000573a2f in recursive_edit_1 ()
> #64 0x0000000000573c1d in Frecursive_edit ()
> #65 0x0000000000479569 in main ()
[gdb.txt (text/plain, attachment)]
[publickey - alexispurslane@pm.me - 0x41E61568.asc (application/pgp-keys, attachment)]
[signature.asc (application/pgp-signature, attachment)]

Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Wed, 22 May 2024 11:04:01 GMT) Full text and rfc822 format available.

Message #20 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: alexis purslane <alexispurslane <at> pm.me>
To: Eli Zaretskii <eliz <at> gnu.org>
Cc: luangruo <at> yahoo.com, 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Wed, 22 May 2024 11:03:16 +0000
[Message part 1 (text/plain, inline)]
I saw that and attempted to install them, but got this:

> Could not find debuginfo package for the following installed packages: emacs-1:29.3-6.fc41.x86_64
> Could not find debugsource package for the following installed packages: emacs-1:29.3-6.fc41.x86_64

Tried doing it for just 'emacs-29.3' and 'emacs-29' but no luck.

On Wednesday, May 22nd, 2024 at 11:01 AM, Eli Zaretskii <eliz <at> gnu.org> wrote:

> > Date: Tue, 21 May 2024 18:54:09 +0000
> > From: alexis purslane alexispurslane <at> pm.me
> > Cc: Po Lu luangruo <at> yahoo.com, 71073 <at> debbugs.gnu.org
> > 

> > > Nothing here that is not normal, I think. Did GDB say "thread 1 got
> > > SIGSEGV"?
> > 

> > It did. Just reproduced it again to make sure, and this is what it says:
> > 

> > > Thread 1 "emacs-29.3" received signal SIGSEGV, Segmentation fault.
> > > 0x000000000057a044 in parse_modifiers ()
> > > Missing separate debuginfos, use: dnf debuginfo-install emacs-29.3-6.fc41.x86_64
> > 

> > I've attached the subsequent backtrace file in case it shows anything different
> > this time around.
> 

> 

> Is this before or after you installed the separate debuginfos, as GDB
> suggested above?
[publickey - alexispurslane@pm.me - 0x41E61568.asc (application/pgp-keys, attachment)]
[signature.asc (application/pgp-signature, attachment)]

Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Wed, 22 May 2024 11:04:02 GMT) Full text and rfc822 format available.

Message #23 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: Eli Zaretskii <eliz <at> gnu.org>
To: alexis purslane <alexispurslane <at> pm.me>
Cc: luangruo <at> yahoo.com, 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Wed, 22 May 2024 14:01:13 +0300
> Date: Tue, 21 May 2024 18:54:09 +0000
> From: alexis purslane <alexispurslane <at> pm.me>
> Cc: Po Lu <luangruo <at> yahoo.com>, 71073 <at> debbugs.gnu.org
> 
> > Nothing here that is not normal, I think.  Did GDB say "thread 1 got
> SIGSEGV"?
> 
> It did. Just reproduced it again to make sure, and this is what it says:
> 
> > Thread 1 "emacs-29.3" received signal SIGSEGV, Segmentation fault.
> > 0x000000000057a044 in parse_modifiers ()
> > Missing separate debuginfos, use: dnf debuginfo-install emacs-29.3-6.fc41.x86_64
> 
> I've attached the subsequent backtrace file in case it shows anything different
> this time around.

Is this before or after you installed the separate debuginfos, as GDB
suggested above?




Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Wed, 22 May 2024 11:37:02 GMT) Full text and rfc822 format available.

Message #26 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: Po Lu <luangruo <at> yahoo.com>
To: Eli Zaretskii <eliz <at> gnu.org>
Cc: alexis purslane <alexispurslane <at> pm.me>, 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Wed, 22 May 2024 19:36:25 +0800
Eli Zaretskii <eliz <at> gnu.org> writes:

> Po Lu, do you see anything problematic?

Nothing, I'm afraid, though I can barely claim to understand the code
involved.




Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Sat, 25 May 2024 09:09:02 GMT) Full text and rfc822 format available.

Message #29 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: Eli Zaretskii <eliz <at> gnu.org>
To: Po Lu <luangruo <at> yahoo.com>
Cc: alexispurslane <at> pm.me, 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Sat, 25 May 2024 12:08:01 +0300
> From: Po Lu <luangruo <at> yahoo.com>
> Cc: alexis purslane <alexispurslane <at> pm.me>,  71073 <at> debbugs.gnu.org
> Date: Wed, 22 May 2024 19:36:25 +0800
> 
> Eli Zaretskii <eliz <at> gnu.org> writes:
> 
> > Po Lu, do you see anything problematic?
> 
> Nothing, I'm afraid, though I can barely claim to understand the code
> involved.

Neither do I.

I guess we will need more details about what happens inside
parse_modifiers to make some progress here.  Which line of the code of
that function causes the segfault, and what data is invalid which
triggers that?




Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Sat, 25 May 2024 23:58:02 GMT) Full text and rfc822 format available.

Message #32 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: alexis purslane <alexispurslane <at> pm.me>
To: Eli Zaretskii <eliz <at> gnu.org>
Cc: Po Lu <luangruo <at> yahoo.com>, 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Sat, 25 May 2024 23:57:05 +0000
[Message part 1 (text/plain, inline)]
I've since reinstalled Emacs (but kept the same config) and have been completely
unable to reproduce this bug so far despite multiple tries. I'll update y'all if
I find anything

On Saturday, May 25th, 2024 at 9:08 AM, Eli Zaretskii <eliz <at> gnu.org> wrote:

> > From: Po Lu luangruo <at> yahoo.com
> > Cc: alexis purslane alexispurslane <at> pm.me, 71073 <at> debbugs.gnu.org
> > Date: Wed, 22 May 2024 19:36:25 +0800
> > 

> > Eli Zaretskii eliz <at> gnu.org writes:
> > 

> > > Po Lu, do you see anything problematic?
> > 

> > Nothing, I'm afraid, though I can barely claim to understand the code
> > involved.
> 

> 

> Neither do I.
> 

> I guess we will need more details about what happens inside
> parse_modifiers to make some progress here. Which line of the code of
> that function causes the segfault, and what data is invalid which
> triggers that?
[publickey - alexispurslane@pm.me - 0x41E61568.asc (application/pgp-keys, attachment)]
[signature.asc (application/pgp-signature, attachment)]

Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Sun, 26 May 2024 08:58:02 GMT) Full text and rfc822 format available.

Message #35 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: Stefan Kangas <stefankangas <at> gmail.com>
To: alexis purslane <alexispurslane <at> pm.me>, Eli Zaretskii <eliz <at> gnu.org>
Cc: Po Lu <luangruo <at> yahoo.com>, 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Sun, 26 May 2024 01:56:12 -0700
tags 71073 + unreproducible moreinfo
thanks

alexis purslane via "Bug reports for GNU Emacs, the Swiss army knife of
text editors" <bug-gnu-emacs <at> gnu.org> writes:

> I've since reinstalled Emacs (but kept the same config) and have been completely
> unable to reproduce this bug so far despite multiple tries. I'll update y'all if
> I find anything

Thanks, so I'm tagging this bug as unreproducible for now.

Please report back if you find out more.




Added tag(s) moreinfo and unreproducible. Request was from Stefan Kangas <stefankangas <at> gmail.com> to control <at> debbugs.gnu.org. (Sun, 26 May 2024 08:58:02 GMT) Full text and rfc822 format available.

Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Tue, 02 Jul 2024 13:50:02 GMT) Full text and rfc822 format available.

Message #40 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: Eli Zaretskii <eliz <at> gnu.org>
To: Vladislav Yegorov <vlad <at> yegorov.org>
Cc: luangruo <at> yahoo.com, stefankangas <at> gmail.com, 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Tue, 02 Jul 2024 16:49:09 +0300
> From: Vladislav Yegorov <vlad <at> yegorov.org>
> Cc: Eli Zaretskii <eliz <at> gnu.org>,  Po Lu <luangruo <at> yahoo.com>,
>   71073 <at> debbugs.gnu.org
> Date: Tue, 02 Jul 2024 15:36:15 +0200
> 
> I tried to compile my own version of Emacs and it /appears/ that this
> one is fine despite using the same source as the fedora provided
> version.  I also tried to package/compile my own version for fedora
> using the rpm build system and surprisingly enough this one also
> crashed.  The issue might be related to something fedora does but this
> is just a guess.  Some user-submitted crash reports on fedora seem to
> report a very similar issue[1].

Thanks.  Given what you tell, I think this should be reported to the
Fedora downstream maintainers of the Emacs distros.  They know how
they build Emacs, and they might be able to find what non-default
build option causes this.  It could be anything, from a buggy GCC
version to using some GCC option that is buggy or incompatible with
Emacs to maybe some library problem.

If the Fedora folks find the root cause and can explain why it is an
Emacs bug, they are invited to come back with the information, and we
can then continue discussing this.




Information forwarded to bug-gnu-emacs <at> gnu.org:
bug#71073; Package emacs. (Tue, 02 Jul 2024 14:26:02 GMT) Full text and rfc822 format available.

Message #43 received at 71073 <at> debbugs.gnu.org (full text, mbox):

From: Vladislav Yegorov <vlad <at> yegorov.org>
To: Stefan Kangas <stefankangas <at> gmail.com>
Cc: Po Lu <luangruo <at> yahoo.com>, Eli Zaretskii <eliz <at> gnu.org>,
 71073 <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Tue, 02 Jul 2024 15:36:15 +0200
Hello,

While I am not the original reporter I was able to reproduce this issue
using the config Alexis has provided.  I'm not able to reproduce it
consistently but it happens after some time, usually less then a hour.
The backtrace is not always exactly the same but the root-cause seems to
be related.  Sometimes it's the SREF macro, sometimes it's the SBYTES
macro which is causing the segmentation fault.

Here is my debugging session with gdb:

Thread 1 "emacs" received signal SIGSEGV, Segmentation fault.
0x000000000057c314 in parse_modifiers_uncached (symbol=XIL(0x149fc50), modifier_end=<synthetic pointer>)
    at ../../src/keyboard.c:6707
6707	      switch (SREF (name, i))

(gdb) p name
$1 = XIL(0x7fffe7362030)
(gdb) xtype name
Lisp_Symbol
(gdb) xsymbol name
$2 = (struct Lisp_Symbol *) 0x7fffe7f89470
"face-attribute-merged-with"
(gdb) bt
#0  0x000000000057c314 in parse_modifiers_uncached (symbol=XIL(0x149fc50), modifier_end=<synthetic pointer>)
    at ../../src/keyboard.c:6707
#1  parse_modifiers (symbol=XIL(0x149fc50)) at ../../src/keyboard.c:6903
#2  parse_modifiers (symbol=XIL(0x149fc50)) at ../../src/keyboard.c:6888
#3  0x00000000005930c8 in reorder_modifiers (symbol=<optimized out>) at ../../src/keyboard.c:7028
#4  access_keymap_1 (map=XIL(0x7fffe854d20b), idx=<optimized out>, t_ok=false, noinherit=false, autoload=true)
    at ../../src/keymap.c:342
#5  0x0000000000581b7a in access_keymap (map=<optimized out>, idx=<optimized out>, t_ok=false, noinherit=false, 
    autoload=true) at ../../src/keymap.c:499
#6  read_char (commandflag=0, map=XIL(0), prev_event=XIL(0), used_mouse_menu=0x0, end_time=0x7fffffffb700)
    at ../../src/keyboard.c:3018
#7  0x000000000064d282 in read_filtered_event (no_switch_frame=false, ascii_required=false, error_nonascii=false, 
    input_method=<optimized out>, seconds=make_fixnum(30)) at ../../src/lread.c:702
#8  0x00007fffe8b9b3af in F7369742d666f72_sit_for_0 ()
   from /usr/bin/../lib64/emacs/29.4/native-lisp/29.4-95d1479c/preloaded/subr-13adf6a6-bfb9f448.eln
#9  0x0000000000624ead in Ffuncall (nargs=2, args=0x7fffffffb858) at ../../src/eval.c:2999
#10 0x00007fffd42972d4 in F6a736f6e7270632d72657175657374_jsonrpc_request_0 ()
   from /usr/lib64/emacs/29.4/native-lisp/29.4-95d1479c/jsonrpc-e62a9c36-62ae7160.eln
#11 0x0000000000624ead in Ffuncall (nargs=nargs <at> entry=8, args=0x7fffffffb930) at ../../src/eval.c:2999
#12 0x00000000006255c0 in Fapply (nargs=2, args=0x7fffd94002a8) at ../../src/eval.c:2670
#13 0x00000000006701bc in exec_byte_code (fun=XIL(0xb785e102ffff), args_template=201785633603584, nargs=2, 
    args=0x7fffd94002a8) at ../../src/bytecode.c:809
#14 0x0000000000624ead in Ffuncall (nargs=4, args=0x7fffffffbb30) at ../../src/eval.c:2999
#15 0x00000000005b8c42 in call3 (fn=XIL(0x3e25e35), arg1=XIL(0x7fffe855531c), arg2=XIL(0), arg3=XIL(0x30))
    at ../../src/lisp.h:3262
#16 Fall_completions (string=XIL(0x7fffe855531c), collection=XIL(0x3e25e35), predicate=XIL(0), hide_spaces=XIL(0))
    at ../../src/minibuf.c:1869
#17 0x00007fffe7bceaa7 in F636f6d706c6574696f6e2d70636d2d2d616c6c2d636f6d706c6574696f6e73_completion_pcm__all_completions_0 () from /usr/bin/../lib64/emacs/29.4/native-lisp/29.4-95d1479c/preloaded/minibuffer-1b0f548b-25462d74.eln
#18 0x0000000000624ead in Ffuncall (nargs=5, args=0x7fffffffbd00) at ../../src/eval.c:2999
#19 0x00007fffe7bd1ff6 in F636f6d706c6574696f6e2d737562737472696e672d2d616c6c2d636f6d706c6574696f6e73_completion_substring__all_completions_0 ()
   from /usr/bin/../lib64/emacs/29.4/native-lisp/29.4-95d1479c/preloaded/minibuffer-1b0f548b-25462d74.eln
#20 0x0000000000624ead in Ffuncall (nargs=6, args=0x7fffffffbe20) at ../../src/eval.c:2999
#21 0x00007fffe7bd2a86 in F636f6d706c6574696f6e2d666c65782d616c6c2d636f6d706c6574696f6e73_completion_flex_all_completions_0 () from /usr/bin/../lib64/emacs/29.4/native-lisp/29.4-95d1479c/preloaded/minibuffer-1b0f548b-25462d74.eln
#22 0x0000000000624ead in Ffuncall (nargs=nargs <at> entry=5, args=0x7fffffffbeb0) at ../../src/eval.c:2999
#23 0x00000000006255c0 in Fapply (nargs=2, args=0x7fffd9400190) at ../../src/eval.c:2670
#24 0x00000000006701bc in exec_byte_code (fun=XIL(0xb785e102ffff), args_template=201785633603584, nargs=2, 
    args=0x7fffd9400190) at ../../src/bytecode.c:809
#25 0x0000000000624ead in Ffuncall (nargs=2, args=0x7fffffffc090) at ../../src/eval.c:2999
--Type <RET> for more, q to quit, c to continue without paging--c
#26 0x00007fffe7bbb852 in F636f6d706c6574696f6e2d2d736f6d65_completion__some_0 ()
   from /usr/bin/../lib64/emacs/29.4/native-lisp/29.4-95d1479c/preloaded/minibuffer-1b0f548b-25462d74.eln
#27 0x0000000000624ead in Ffuncall (nargs=3, args=0x7fffffffc190) at ../../src/eval.c:2999
#28 0x00007fffe7bc0914 in F636f6d706c6574696f6e2d2d6e74682d636f6d706c6574696f6e_completion__nth_completion_0 ()
   from /usr/bin/../lib64/emacs/29.4/native-lisp/29.4-95d1479c/preloaded/minibuffer-1b0f548b-25462d74.eln
#29 0x0000000000624ead in Ffuncall (nargs=7, args=0x7fffffffc2b0) at ../../src/eval.c:2999
#30 0x00007fffe7bc0cd0 in F636f6d706c6574696f6e2d616c6c2d636f6d706c6574696f6e73_completion_all_completions_0 ()
   from /usr/bin/../lib64/emacs/29.4/native-lisp/29.4-95d1479c/preloaded/minibuffer-1b0f548b-25462d74.eln
#31 0x0000000000624ead in Ffuncall (nargs=nargs <at> entry=6, args=0x7fffffffc330) at ../../src/eval.c:2999
#32 0x00000000006255c0 in Fapply (nargs=2, args=0x7fffd94000f8) at ../../src/eval.c:2670
#33 0x00000000006701bc in exec_byte_code (fun=XIL(0xb785e102ffff), args_template=201785633603584, nargs=2, 
    args=0x7fffd94000f8) at ../../src/bytecode.c:809
#34 0x0000000000624ead in Ffuncall (nargs=nargs <at> entry=6, args=0x7fffffffc4e0) at ../../src/eval.c:2999
#35 0x00000000006255c0 in Fapply (nargs=2, args=0x7fffffffc5d0) at ../../src/eval.c:2670
#36 0x00007fffd4194be9 in F636f7266752d2d66696c7465722d636f6d706c6574696f6e73_corfu__filter_completions_0 ()
   from /home/user/.emacs.d/eln-cache/29.4-95d1479c/corfu-b328809c-d9314140.eln
#37 0x0000000000624ead in Ffuncall (nargs=6, args=0x7fffffffc6b8) at ../../src/eval.c:2999
#38 0x00007fffd4195bae in F636f7266752d2d7265636f6d70757465_corfu__recompute_0 ()
   from /home/user/.emacs.d/eln-cache/29.4-95d1479c/corfu-b328809c-d9314140.eln
#39 0x0000000000624ead in Ffuncall (nargs=5, args=0x7fffffffc818) at ../../src/eval.c:2999
#40 0x00007fffd4196e35 in F636f7266752d2d757064617465_corfu__update_0 ()
   from /home/user/.emacs.d/eln-cache/29.4-95d1479c/corfu-b328809c-d9314140.eln
#41 0x00000000006701bc in exec_byte_code (fun=XIL(0xb785e102ffff), args_template=201785633603584, nargs=1, 
    args=0x7fffd9400048) at ../../src/bytecode.c:809
#42 0x0000000000624ead in Ffuncall (nargs=2, args=0x7fffffffc9c0) at ../../src/eval.c:2999
#43 0x00007fffd419a4d7 in F636f7266752d2d6175746f2d636f6d706c6574652d6465666572726564_corfu__auto_complete_deferred_0 () from /home/user/.emacs.d/eln-cache/29.4-95d1479c/corfu-b328809c-d9314140.eln
#44 0x0000000000624ead in Ffuncall (nargs=nargs <at> entry=2, args=args <at> entry=0x7fffffffcb30) at ../../src/eval.c:2999
#45 0x00000000006258b2 in Fapply (nargs=2, args=0x7fffffffcb30) at ../../src/eval.c:2627
#46 0x0000000000624ead in Ffuncall (nargs=3, args=0x7fffffffcb28) at ../../src/eval.c:2999
#47 0x00007fffe78bff60 in F74696d65722d6576656e742d68616e646c6572_timer_event_handler_0 ()
   from /usr/bin/../lib64/emacs/29.4/native-lisp/29.4-95d1479c/preloaded/timer-3ee7cfd9-226b3dc9.eln
#48 0x0000000000624ead in Ffuncall (nargs=2, args=0x7fffffffcc40) at ../../src/eval.c:2999
#49 0x0000000000579f85 in call1 (fn=XIL(0xf990), arg1=<optimized out>) at ../../src/lisp.h:3248
#50 timer_check_2 (timers=<optimized out>, idle_timers=<optimized out>) at ../../src/keyboard.c:4690
#51 timer_check () at ../../src/keyboard.c:4756
#52 0x000000000057a56d in readable_events (flags=1) at ../../src/keyboard.c:3533
#53 0x0000000000584ea0 in get_input_pending (flags=1) at ../../src/keyboard.c:7377
#54 0x000000000068a50f in detect_input_pending_run_timers (do_display=<optimized out>)
    at ../../src/keyboard.c:10907
#55 wait_reading_process_output (time_limit=<optimized out>, nsecs=<optimized out>, read_kbd=<optimized out>, 
    do_display=<optimized out>, wait_for_cell=<optimized out>, wait_proc=<optimized out>, 
    just_wait_proc=<optimized out>) at ../../src/process.c:5786
#56 0x000000000048569e in sit_for (timeout=<optimized out>, reading=<optimized out>, display_option=1)
    at ../../src/dispnew.c:6264
#57 0x0000000000582913 in read_char (commandflag=1, map=XIL(0x3c18873), prev_event=XIL(0), 
    used_mouse_menu=0x7fffffffd8fb, end_time=0x0) at ../../src/keyboard.c:2881
#58 0x0000000000589c03 in read_key_sequence (keybuf=0x7fffffffda70, prompt=XIL(0), dont_downcase_last=false, 
    can_return_switch_frame=true, fix_current_buffer=true, prevent_redisplay=false) at ../../src/keyboard.c:10084
#59 0x0000000000576135 in command_loop_1 () at ../../src/keyboard.c:1384
#60 0x00000000006131ce in internal_condition_case (bfun=0x575f70 <command_loop_1>, handlers=<optimized out>, 
    hfun=0x575420 <cmd_error>) at ../../src/eval.c:1474
#61 0x000000000057569e in command_loop_2 (handlers=handlers <at> entry=XIL(0x90)) at ../../src/keyboard.c:1133
#62 0x0000000000613127 in internal_catch (tag=<optimized out>, func=0x575660 <command_loop_2>, arg=XIL(0x90))
    at ../../src/eval.c:1197
#63 0x0000000000575af3 in command_loop () at ../../src/keyboard.c:1111
#64 0x0000000000575bef in recursive_edit_1 () at ../../src/keyboard.c:720
#65 0x0000000000575ddd in Frecursive_edit () at ../../src/keyboard.c:803
#66 0x00000000004795a9 in main (argc=<optimized out>, argv=0x7fffffffdf58) at ../../src/emacs.c:2521

Lisp Backtrace:
"sit-for" (0xffffb860)
0x2aea4e8 PVEC_SUBR
"apply" (0xd94002a8)
"jsonrpc-request" (0xd9400240)
0x3e248a0 PVEC_COMPILED
0x3e25e30 PVEC_COMPILED
"completion-pcm--all-completions" (0xffffbd08)
"completion-substring--all-completions" (0xffffbe28)
0xe7f6ea60 PVEC_SUBR
"apply" (0xd9400190)
"completion-flex-all-completions" (0xd9400138)
0x3df14c8 PVEC_COMPILED
"completion--some" (0xffffc198)
"completion--nth-completion" (0xffffc2b8)
0xe80b4af8 PVEC_SUBR
"apply" (0xd94000f8)
"completion-all-completions" (0xffffc4e8)
"corfu--filter-completions" (0xffffc6c0)
"corfu--recompute" (0xffffc820)
"corfu--update" (0xd9400048)
"corfu--exhibit" (0xffffc9c8)
"corfu--auto-complete-deferred" (0xffffcb38)
"apply" (0xffffcb30)
"timer-event-handler" (0xffffcc48)

It looks like this `parse_modifiers_uncached' method gets a seemingly
random argument.  When trying to debug this issue I've noticed many
different arguments for the `name' variable, some include:

(gdb) p name
$1 = XIL(0)
(gdb) xtype name
Lisp_Symbol
(gdb) xsymbol name
$2 = (struct Lisp_Symbol *) 0xc27440 <lispsym>
"nil"

(gdb) p name
$1 = XIL(0x1e4c253)
(gdb) xtype
Lisp_Cons
(gdb) xcons
$3 = (struct Lisp_Cons *) 0x2a73690
{
  u = {
    s = {
      car = XIL(0),
      u = {
        cdr = XIL(0),
        chain = 0x0
      }
    },
    gcaligned = 0x0
  }
}

I also had a lisp float as the argument once but it appears that I've
lost this specific session.

I tried to compile my own version of Emacs and it /appears/ that this
one is fine despite using the same source as the fedora provided
version.  I also tried to package/compile my own version for fedora
using the rpm build system and surprisingly enough this one also
crashed.  The issue might be related to something fedora does but this
is just a guess.  Some user-submitted crash reports on fedora seem to
report a very similar issue[1].

If you have any pointers and or want me to test something please let me
know.

1: https://retrace.fedoraproject.org/faf/problems/675750/




Reply sent to Eli Zaretskii <eliz <at> gnu.org>:
You have taken responsibility. (Sat, 20 Jul 2024 10:10:01 GMT) Full text and rfc822 format available.

Notification sent to alexis purslane <alexispurslane <at> pm.me>:
bug acknowledged by developer. (Sat, 20 Jul 2024 10:10:02 GMT) Full text and rfc822 format available.

Message #48 received at 71073-done <at> debbugs.gnu.org (full text, mbox):

From: Eli Zaretskii <eliz <at> gnu.org>
To: vlad <at> yegorov.org
Cc: luangruo <at> yahoo.com, stefankangas <at> gmail.com, 71073-done <at> debbugs.gnu.org
Subject: Re: bug#71073: Emacs segfaults if corfu is asked to autocomplete
 something while the LSP server providing completions is still
 starting/indexing
Date: Sat, 20 Jul 2024 13:08:58 +0300
> Cc: luangruo <at> yahoo.com, stefankangas <at> gmail.com, 71073 <at> debbugs.gnu.org
> Date: Tue, 02 Jul 2024 16:49:09 +0300
> From: Eli Zaretskii <eliz <at> gnu.org>
> 
> > From: Vladislav Yegorov <vlad <at> yegorov.org>
> > Cc: Eli Zaretskii <eliz <at> gnu.org>,  Po Lu <luangruo <at> yahoo.com>,
> >   71073 <at> debbugs.gnu.org
> > Date: Tue, 02 Jul 2024 15:36:15 +0200
> > 
> > I tried to compile my own version of Emacs and it /appears/ that this
> > one is fine despite using the same source as the fedora provided
> > version.  I also tried to package/compile my own version for fedora
> > using the rpm build system and surprisingly enough this one also
> > crashed.  The issue might be related to something fedora does but this
> > is just a guess.  Some user-submitted crash reports on fedora seem to
> > report a very similar issue[1].
> 
> Thanks.  Given what you tell, I think this should be reported to the
> Fedora downstream maintainers of the Emacs distros.  They know how
> they build Emacs, and they might be able to find what non-default
> build option causes this.  It could be anything, from a buggy GCC
> version to using some GCC option that is buggy or incompatible with
> Emacs to maybe some library problem.
> 
> If the Fedora folks find the root cause and can explain why it is an
> Emacs bug, they are invited to come back with the information, and we
> can then continue discussing this.

No further comments in more than 2 weeks, so I'm now closing this bug.
If and when new information arrives, we can reopen if needed.




bug archived. Request was from Debbugs Internal Request <help-debbugs <at> gnu.org> to internal_control <at> debbugs.gnu.org. (Sat, 17 Aug 2024 11:24:13 GMT) Full text and rfc822 format available.

This bug report was last modified 153 days ago.

Previous Next


GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.