Michiel wrote:
> While searching a highlighted html file for some text gvim dumped a
> core file. The vim version is 7.2.182. I have tried to reproduce it,
> but I can't. Here is the back trace from the core.
>
> Program terminated with signal 11, Segmentation fault.
> [New process 4168]
> #0 0xb7f3d424 in __kernel_vsyscall ()
> (gdb) thread apply all bt full
>
> Thread 1 (process 4168):
> #0 0xb7f3d424 in __kernel_vsyscall ()
> No symbol table info available.
> #1 0xb7289c96 in kill () from /lib/libc.so.6
> No locals.
> #2 0x0814ab5a in may_core_dump () at os_unix.c:3078
> No locals.
> #3 0x0814cc73 in mch_exit (r=1) at os_unix.c:3043
> No locals.
> #4 0x0810ed27 in preserve_exit () at misc1.c:8376
> buf = <value optimized out>
> #5 <signal handler called>
> No symbol table info available.
> #6 in_id_list (cur_si=0x945d4e8, list=0x3, ssp=0x944a224,
> contained=1) at syntax.c:5880
> retval = 0
> scl_list = <value optimized out>
> item = <value optimized out>
> id = 84
> r = <value optimized out>
> depth = 0
> #7 0x08197d91 in syn_current_attr (syncing=0, displaying=0,
> can_spell=0x0, keep_state=0) at syntax.c:1975
> syn_id = <value optimized out>
> endpos = {lnum = 19, col = 4}
> hl_startpos = {lnum = 19, col = 1}
> hl_endpos = {lnum = 19, col = 4}
> eos_pos = {lnum = 19, col = 4}
> eoe_pos = {lnum = 0, col = 0}
> end_idx = 0
> idx = 12
> spp = (synpat_T *) 0x944a220
> cur_si = (stateitem_T *) 0x945d4e8
> sip = <value optimized out>
> startcol = 8
> endcol = <value optimized out>
> flags = 0
> next_list = <value optimized out>
> found_match = <value optimized out>
> do_keywords = 1
> regmatch = {regprog = 0x92f6080, startpos = {{lnum = -1, col = -1},
> {lnum = -1, col = -1}, {lnum = -1, col = -1}, {lnum = -1,
> col = -1}, {lnum = -1, col = -1}, {lnum = -1, col = -1}, {lnum =
> -1, col = -1}, {lnum = -1, col = -1}, {lnum = -1, col = -1}, {
> lnum = -1, col = -1}}, endpos = {{lnum = -1, col = -1}, {lnum =
> -1, col = -1}, {lnum = -1, col = -1}, {lnum = -1, col = -1}, {
> lnum = -1, col = -1}, {lnum = -1, col = -1}, {lnum = -1, col =
> -1}, {lnum = -1, col = -1}, {lnum = -1, col = -1}, {lnum = -1,
> col = -1}}, rmm_ic = 1, rmm_maxcol = 3000}
> pos = {lnum = 19, col = 8}
> lc_col = <value optimized out>
> cur_extmatch = (reg_extmatch_T *) 0x0
> line = <value optimized out>
> zero_width_next_list = 0
> zero_width_next_ga = {ga_len = 0, ga_maxlen = 0, ga_itemsize = 4,
> ga_growsize = 10, ga_data = 0x0}
> try_next_column = 0
> #8 0x081984a0 in syn_finish_line (syncing=0) at syntax.c:1693
> prev_current_col = 19
> #9 0x08198f42 in syntax_start (wp=0x916cef0, lnum=28) at syntax.c:564
> p = <value optimized out>
> last_valid = (synstate_T *) 0x9445f14
> last_min_valid = <value optimized out>
> sp = (synstate_T *) 0x916de80
> prev = (synstate_T *) 0x0
> parsed_lnum = <value optimized out>
> first_stored = 19
> dist = 1
> changedtick = 3
> #10 0x08165c45 in win_line (wp=0x916cef0, lnum=28, startrow=0,
> endrow=29, nochange=1) at screen.c:2726
> col = <value optimized out>
> off = <value optimized out>
> c = 0
> vcol = <value optimized out>
> vcol_prev = <value optimized out>
> line = <value optimized out>
> ptr = <value optimized out>
> row = <value optimized out>
> screen_row = <value optimized out>
> extra = "\000\000\034\000\000\000\022\000\000\000è«Ü¿È,\016\b"
> n_extra = <value optimized out>
> p_extra = (char_u *) 0x0
> c_extra = <value optimized out>
> extra_attr = <value optimized out>
> lcs_eol_one = 36
> lcs_prec_todo = 0
> saved_n_extra = <value optimized out>
> saved_p_extra = <value optimized out>
> saved_c_extra = <value optimized out>
> saved_char_attr = <value optimized out>
> n_attr = <value optimized out>
> saved_attr2 = <value optimized out>
> n_attr3 = <value optimized out>
> saved_attr3 = <value optimized out>
> n_skip = <value optimized out>
> fromcol = <value optimized out>
> tocol = <value optimized out>
> fromcol_prev = <value optimized out>
> noinvcur = <value optimized out>
> top = <value optimized out>
> bot = <value optimized out>
> lnum_in_visual_area = <value optimized out>
> pos = {lnum = 152489712, col = 28, coladd = 0}
> v = <value optimized out>
> char_attr = <value optimized out>
> attr_pri = <value optimized out>
> area_highlighting = <value optimized out>
> attr = <value optimized out>
> area_attr = <value optimized out>
> search_attr = <value optimized out>
> vcol_save_attr = <value optimized out>
> syntax_attr = <value optimized out>
> has_syntax = <value optimized out>
> save_did_emsg = 0
> eol_hl_off = <value optimized out>
> has_spell = <value optimized out>
> nextline = "\200Ã<·\001\000\000\...@\031\030\thªÜ¿dž5·l\031\030\tô¯à¶
> \204Â߶L\031\030\tô¯à¶\230ªÜ¿ô¯<·\200Ã<·\230#H\tøªÜ¿Õ'-...@\031\030\tl
> \031\030\tô¯à¶o\204ç¶ô?\a· #H\tøªÜ¿ý\035ý¶\200Ã<·Ä&
> \000\000\000\000\000\000\237\016ý¶ô¯<�...@\031\030\t\022\000\000\000o
> \232ç¶\004ž5·\202ž5·ô¯à¶»Â߶ô¯<�...@\031\030\t\020\227£¶øªÜ¿dž5·l
> \031\030\tô¯à¶\204Â߶L\031\030\tôïà¶(«Ü¿o\204�...@\031\030\t
> \000\000\000\000"...
> nextlinecol = <value optimized out>
> nextline_idx = <value optimized out>
> spell_attr = <value optimized out>
> word_end = <value optimized out>
> cur_checked_col = <value optimized out>
> extra_check = 0
> multi_attr = <value optimized out>
> mb_l = <value optimized out>
> mb_c = <value optimized out>
> mb_utf8 = <value optimized out>
> u8cc = {154997736, -1076057176, -1212848486, 0, 0, -1076057160}
> filler_lines = <value optimized out>
> filler_todo = <value optimized out>
> diff_hlf = <value optimized out>
> change_start = 2147483647
> change_end = -1
> trailcol = <value optimized out>
> need_showbreak = <value optimized out>
> line_attr = <value optimized out>
> cur = <value optimized out>
> shl = <value optimized out>
> shl_flag = <value optimized out>
> prevcol_hl_flag = <value optimized out>
> prev_c = <value optimized out>
> prev_c1 = <value optimized out>
> did_line_attr = <value optimized out>
> draw_state = <value optimized out>
> feedback_col = <value optimized out>
> feedback_old_attr = <value optimized out>
> at_end_str = (char_u * const) 0x81ddb80 ""
> checked_lnum = 0
> checked_col = 0
> cap_col = 0
> capcol_lnum = 9
> #11 0x0816a86c in win_update (wp=0x916cef0) at screen.c:1764
> buf = (buf_T *) 0x916de80
> type = 40
> top_end = 0
> mid_start = 0
> mid_end = 29
> bot_start = 999
> scrolled_down = 0
> cur = <value optimized out>
> top_to_mod = 0
> row = 0
> lnum = 28
> idx = 0
> srow = <value optimized out>
> eof = <value optimized out>
> i = -1221774045
> j = <value optimized out>
> old_botline = 19
> fold_count = 0
> did_update = 1
> syntax_last_parsed = 0
> mod_top = 0
> mod_bot = 0
> save_got_int = 0
> recursive = 0
> #12 0x0816cfbc in update_screen (type=0) at screen.c:521
> wp = (win_T *) 0x916cef0
> did_one = 1
> did_intro = 1
> #13 0x081b615a in gui_update_screen () at gui.c:4873
> No locals.
> #14 0x081b634b in gui_do_findrepl (flags=17, find_text=0x946eab8
> "swf", repl_text=0x0, down=1) at gui.c:5076
> ga = {ga_len = 8, ga_maxlen = 100, ga_itemsize = 1, ga_growsize =
> 100, ga_data = 0x945d400}
> i = 0
> type = 1
> p = (char_u *) 0x0
> regmatch = {regprog = 0xb73caff4, startp = {0x9181940 "", 0xbfdcaf30
> "", 0xb7c53fc0 "\201Ã4\200,", 0xb735b804 "\203Ä\004[Ã\215Ž&",
> 0xb735b882 "[\220\215t&", 0xb6e0aff4 "\004\177\001",
> 0xb6dfc2bb "\211Eð\215~0ë\026\213Eì\211D$\004\211<$è\206üÿÿ\213F$
> \205Àt\b\213Eð9F,uâ\203Ä\034[^_]ÃU\211åWVS\201ì\034\001",
> 0xb73caff4 "|í\026", 0xbfdcaf18 "\200¯Ü¿ô?\a·\\°Ü¿À%H\t\001",
> 0x0}, endp = {0xb7c53fc0 "\201Ã4\200,", 0xb735b844 "\203Ä\004[Ã
> \215Ž&",
> 0x918194c "", 0xb6e0aff4 "\004\177\001", 0xb78e2ab7 "\201Ã=%\001",
> 0x918194c "", 0xb6e0aff4 "\004\177\001", 0xbfdcaec8 "ø®Ü",
> 0xb7f1bff4 "|û6", 0x946f000 "\bÆF\t\001"}, rm_ic = 136371488}
> save_did_emsg = 0
> #15 0x081b93a0 in find_replace_cb (widget=0x92ab358, data=0x1) at
> gui_gtk.c:2988
> flags = 17
> find_text = (char_u *) 0x946eab8 "swf"
> repl_text = (char_u *) 0x0
> sfr = (SharedFindReplace *) 0x820dd20
> rc = <value optimized out>
> #16 0xb78d2ce5 in IA__g_cclosure_marshal_VOID__VOID
> (closure=0x9471e10, return_value=0x0, n_param_values=1,
> param_values=0x94825c0,
> invocation_hint=0xbfdcb05c, marshal_data=0x81b92c4) at gmarshal.c:
> 77
> data1 = (gpointer) 0x92ab358
> data2 = (gpointer) 0x945d4e8
> __PRETTY_FUNCTION__ = "IA__g_cclosure_marshal_VOID__VOID"
> #17 0xb78c68e4 in IA__g_closure_invoke (closure=0x9471e10,
> return_value=0x0, n_param_values=1, param_values=0x94825c0,
> invocation_hint=0xbfdcb05c) at gclosure.c:767
> marshal = (GClosureMarshal) 0xb78d2c72
> <IA__g_cclosure_marshal_VOID__VOID>
> marshal_data = (gpointer) 0x0
> __PRETTY_FUNCTION__ = "IA__g_closure_invoke"
> #18 0xb78da547 in signal_emit_unlocked_R (node=0x91a0a80, detail=0,
> instance=0x92ab358, emission_return=0x0,
> instance_and_params=0x94825c0)
> at gsignal.c:3247
> tmp = <value optimized out>
> handler = (Handler *) 0x9462e60
> accumulator = (SignalAccumulator *) 0x0
> emission = {next = 0xbfdcb3d4, instance = 0x92ab358, ihint =
> {signal_id = 98, detail = 0, run_type = G_SIGNAL_RUN_FIRST},
> state = EMISSION_RUN, chain_type = 4}
> class_closure = (GClosure *) 0x91a0a50
> handler_list = (Handler *) 0x9462e60
> return_accu = (GValue *) 0x0
> accu = {g_type = 0, data = {{v_int = 0, v_uint = 0, v_long = 0,
> v_ulong = 0, v_int64 = 0, v_uint64 = 0, v_float = 0, v_double = 0,
> v_pointer = 0x0}, {v_int = 0, v_uint = 0, v_long = 0, v_ulong =
> 0, v_int64 = 0, v_uint64 = 0, v_float = 0, v_double = 0,
> v_pointer = 0x0}}}
> signal_id = 98
> max_sequential_handler_number = 760
> return_value_altered = 1
> #19 0xb78db969 in IA__g_signal_emit_valist (instance=0x92ab358,
> signal_id=98, detail=0,
> var_args=0xbfdcb20c "\035j\216·ôO\217·X³*\t(²Ü¿Ñ4·X³*\t\2204·H²Ü
> ¿å,\215·X³*\t0\220\032\t") at gsignal.c:2980
> signal_return_type = 4
> param_values = (GValue *) 0x94825d4
> node = (SignalNode *) 0x91a0a80
> i = 3079364596
> n_params = 0
> __PRETTY_FUNCTION__ = "IA__g_signal_emit_valist"
> #20 0xb78dbd93 in IA__g_signal_emit (instance=0x92ab358, signal_id=98,
> detail=0) at gsignal.c:3037
> No locals.
> #21 0xb7c22055 in IA__gtk_button_clicked (button=0x92ab358) at
> gtkbutton.c:1106
> __PRETTY_FUNCTION__ = "IA__gtk_button_clicked"
> #22 0xb7c234d1 in gtk_real_button_released (button=0x92ab358) at
> gtkbutton.c:1702
> No locals.
> #23 0xb78d2ce5 in IA__g_cclosure_marshal_VOID__VOID
> (closure=0x91a9338, return_value=0x0, n_param_values=1,
> param_values=0x94825a8,
> invocation_hint=0xbfdcb3dc, marshal_data=0xb7c23490) at gmarshal.c:
> 77
> data1 = (gpointer) 0x92ab358
> data2 = (gpointer) 0x945d4e8
> __PRETTY_FUNCTION__ = "IA__g_cclosure_marshal_VOID__VOID"
> #24 0xb78c51c5 in g_type_class_meta_marshal (closure=0x91a9338,
> return_value=0x0, n_param_values=1, param_values=0x94825a8,
> invocation_hint=0xbfdcb3dc, marshal_data=0x1a4) at gclosure.c:878
> callback = <value optimized out>
> #25 0xb78c68e4 in IA__g_closure_invoke (closure=0x91a9338,
> return_value=0x0, n_param_values=1, param_values=0x94825a8,
> invocation_hint=0xbfdcb3dc) at gclosure.c:767
> marshal = (GClosureMarshal) 0xb78c5180 <g_type_class_meta_marshal>
> marshal_data = (gpointer) 0x1a4
> __PRETTY_FUNCTION__ = "IA__g_closure_invoke"
> #26 0xb78d9dcd in signal_emit_unlocked_R (node=0x91a0ea0, detail=0,
> instance=0x92ab358, emission_return=0x0,
> instance_and_params=0x94825a8)
> at gsignal.c:3177
> accumulator = (SignalAccumulator *) 0x0
> emission = {next = 0xbfdcb754, instance = 0x92ab358, ihint =
> {signal_id = 97, detail = 0, run_type = G_SIGNAL_RUN_FIRST},
> state = EMISSION_RUN, chain_type = 152735792}
> class_closure = (GClosure *) 0x91a9338
> handler_list = (Handler *) 0x0
> return_accu = (GValue *) 0x0
> accu = {g_type = 0, data = {{v_int = 0, v_uint = 0, v_long = 0,
> v_ulong = 0, v_int64 = 0, v_uint64 = 0, v_float = 0, v_double = 0,
> v_pointer = 0x0}, {v_int = 0, v_uint = 0, v_long = 0, v_ulong =
> 0, v_int64 = 0, v_uint64 = 0, v_float = 0, v_double = 0,
> v_pointer = 0x0}}}
> signal_id = 97
> max_sequential_handler_number = 760
> return_value_altered = 0
> #27 0xb78db969 in IA__g_signal_emit_valist (instance=0x92ab358,
> signal_id=97, detail=0,
> var_args=0xbfdcb58c "\035j\216·ô¿ñ·ä ·šµÜ¿\005!·X³*\tä ·ȵÜ
> ¿\"éÌ·X³*\t°8&\t ") at gsignal.c:2980
> signal_return_type = 4
> param_values = (GValue *) 0x94825bc
> node = (SignalNode *) 0x91a0ea0
> i = 65535
> n_params = 0
> __PRETTY_FUNCTION__ = "IA__g_signal_emit_valist"
> #28 0xb78dbd93 in IA__g_signal_emit (instance=0x92ab358, signal_id=97,
> detail=0) at gsignal.c:3037
> No locals.
> #29 0xb7c220dd in IA__gtk_button_released (button=0x92ab358) at
> gtkbutton.c:1098
> __PRETTY_FUNCTION__ = "IA__gtk_button_released"
> #30 0xb7c22105 in gtk_button_button_release (widget=0x92ab358,
> event=0x92638b0) at gtkbutton.c:1594
> No locals.
> #31 0xb7cce922 in _gtk_marshal_BOOLEAN__BOXED (closure=0x9192780,
> return_value=0xbfdcb770, n_param_values=2, param_values=0x941c118,
> invocation_hint=0xbfdcb75c, marshal_data=0xb7c220e4) at
> gtkmarshalers.c:84
> data1 = (gpointer) 0x92ab358
> data2 = <value optimized out>
> v_return = <value optimized out>
> __PRETTY_FUNCTION__ = "_gtk_marshal_BOOLEAN__BOXED"
> #32 0xb78c51c5 in g_type_class_meta_marshal (closure=0x9192780,
> return_value=0xbfdcb770, n_param_values=2, param_values=0x941c118,
> invocation_hint=0xbfdcb75c, marshal_data=0xb4) at gclosure.c:878
> callback = <value optimized out>
> #33 0xb78c68e4 in IA__g_closure_invoke (closure=0x9192780,
> return_value=0xbfdcb770, n_param_values=2, param_values=0x941c118,
> invocation_hint=0xbfdcb75c) at gclosure.c:767
> marshal = (GClosureMarshal) 0xb78c5180 <g_type_class_meta_marshal>
> marshal_data = (gpointer) 0xb4
> __PRETTY_FUNCTION__ = "IA__g_closure_invoke"
> #34 0xb78da1fd in signal_emit_unlocked_R (node=0x9192c58, detail=0,
> instance=0x92ab358, emission_return=0xbfdcb8b8,
> instance_and_params=0x941c118) at gsignal.c:3285
> accumulator = (SignalAccumulator *) 0x91a1c10
> emission = {next = 0x0, instance = 0x92ab358, ihint = {signal_id =
> 31, detail = 0, run_type = G_SIGNAL_RUN_LAST},
> state = EMISSION_RUN, chain_type = 152735792}
> class_closure = (GClosure *) 0x9192780
> handler_list = (Handler *) 0x0
> return_accu = (GValue *) 0xbfdcb770
> accu = {g_type = 20, data = {{v_int = 0, v_uint = 0, v_long = 0,
> v_ulong = 0, v_int64 = 0, v_uint64 = 0, v_float = 0, v_double = 0,
> v_pointer = 0x0}, {v_int = 0, v_uint = 0, v_long = 0, v_ulong =
> 0, v_int64 = 0, v_uint64 = 0, v_float = 0, v_double = 0,
> v_pointer = 0x0}}}
> signal_id = 31
> max_sequential_handler_number = 760
> return_value_altered = 0
> #35 0xb78db7fe in IA__g_signal_emit_valist (instance=0x92ab358,
> signal_id=31, detail=0,
> var_args=0xbfdcb910 "(¹Ü¿°8&\tX³*\t\226\200Ý·X³*\t ") at gsignal.c:
> 2990
> return_value = {g_type = 20, data = {{v_int = 0, v_uint = 0, v_long =
> 0, v_ulong = 0, v_int64 = 0, v_uint64 = 0, v_float = 0,
> v_double = 0, v_pointer = 0x0}, {v_int = 0, v_uint = 0, v_long =
> 0, v_ulong = 0, v_int64 = 0, v_uint64 = 0, v_float = 0,
> v_double = 0, v_pointer = 0x0}}}
> error = <value optimized out>
> signal_return_type = 20
> param_values = (GValue *) 0x941c12c
> node = (SignalNode *) 0x9192c58
> i = 1
> n_params = 1
> __PRETTY_FUNCTION__ = "IA__g_signal_emit_valist"
> #36 0xb78dbd93 in IA__g_signal_emit (instance=0x92ab358, signal_id=31,
> detail=0) at gsignal.c:3037
> No locals.
> #37 0xb7dd2598 in gtk_widget_event_internal (widget=0x92ab358,
> event=0x92638b0) at gtkwidget.c:4761
> signal_num = <value optimized out>
> return_val = 0
> #38 0xb7cc7ffc in IA__gtk_propagate_event (widget=0x92ab358,
> event=0x92638b0) at gtkmain.c:2396
> tmp = (GtkWidget *) 0x93b8140
> handled_event = 153499824
> __PRETTY_FUNCTION__ = "IA__gtk_propagate_event"
> #39 0xb7cc9195 in IA__gtk_main_do_event (event=0x92638b0) at gtkmain.c:
> 1601
> event_widget = (GtkWidget *) 0x92ab358
> grab_widget = (GtkWidget *) 0x92ab358
> window_group = (GtkWindowGroup *) 0x93b8140
> rewritten_event = (GdkEvent *) 0x0
> tmp_list = <value optimized out>
> __PRETTY_FUNCTION__ = "IA__gtk_main_do_event"
> #40 0xb7b6ca81 in gdk_event_dispatch (source=0x9190998, callback=0,
> user_data=0x0) at gdkevents-x11.c:2364
> display = <value optimized out>
> event = (GdkEvent *) 0x92638b0
> #41 0xb781d905 in IA__g_main_context_dispatch (context=0x91909e0) at
> gmain.c:1824
> No locals.
> #42 0xb7820b49 in g_main_context_iterate (context=0x91909e0, block=1,
> dispatch=1, self=0x918fab0) at gmain.c:2455
> max_priority = 2147483647
> timeout = -1
> some_ready = 1
> nfds = 8
> allocated_nfds = <value optimized out>
> fds = (GPollFD *) 0x91acd10
> __PRETTY_FUNCTION__ = "g_main_context_iterate"
> #43 0xb7820fc4 in IA__g_main_loop_run (loop=0x9465930) at gmain.c:2663
> self = (GThread *) 0x918fab0
> __PRETTY_FUNCTION__ = "IA__g_main_loop_run"
> #44 0xb7cc95f4 in IA__gtk_main () at gtkmain.c:1205
> tmp_list = (GList *) 0x0
> functions = (GList *) 0x0
> init = (GtkInitFunction *) 0xffffffff
> loop = (GMainLoop *) 0x9465930
> #45 0x081c2db9 in gui_mch_wait_for_chars (wtime=-1) at gui_gtk_x11.c:
> 6477
> focus = 0
> timer = 0
> timed_out = 0
> #46 0x081b4551 in gui_wait_for_chars (wtime=-1) at gui.c:2710
> retval = 0
> #47 0x081a818c in ui_inchar (buf=0x9405aed "", maxlen=70, wtime=-1,
> tb_change_cnt=22) at ui.c:184
> retval = <value optimized out>
> count = 0
> #48 0x080e5046 in inchar (buf=0x9405aed "", maxlen=212, wait_time=-1,
> tb_change_cnt=22) at getchar.c:2959
> len = 0
> retesc = 0
> script_char = -1
> #49 0x080e6e8b in vgetorpeek (advance=1) at getchar.c:2735
> c = <value optimized out>
> c1 = 0
> keylen = 0
> s = <value optimized out>
> mp = (mapblock_T *) 0x0
> mp2 = (mapblock_T *) 0x0
> mp_match = (mapblock_T *) 0x0
> mp_match_len = 0
> timedout = 0
> mapdepth = 0
> mode_deleted = 0
> local_State = 257
> mlen = <value optimized out>
> max_mlen = 0
> i = 0
> new_wcol = 3
> new_wrow = 0
> idx = <value optimized out>
> shape_changed = 0
> n = <value optimized out>
> nolmaplen = 2
> old_wcol = 112
> old_wrow = 0
> wait_tb_len = 0
> tc = 0
> #50 0x080e7ac8 in vgetc () at getchar.c:1552
> c = 84
> c2 = 0
> n = <value optimized out>
> buf = "\0008ŸÜ¿ú\r\026\bðÎ\026\t\001\000\000\000\000\000\000"
> i = <value optimized out>
> #51 0x080e7fb1 in safe_vgetc () at getchar.c:1757
> c = <value optimized out>
> #52 0x08131bbf in normal_cmd (oap=0xbfdcbe6c, toplevel=1) at normal.c:
> 652
> ca = {oap = 0xbfdcbe6c, prechar = 0, cmdchar = 0, nchar = 0, ncharC1
> = 0, ncharC2 = 0, extra_char = 0, opcount = 0, count0 = 0,
> count1 = 0, arg = 0, retval = 0, searchbuf = 0x0}
> c = <value optimized out>
> ctrl_w = <value optimized out>
> old_col = 0
> need_flushbuf = <value optimized out>
> mapped_len = 0
> idx = <value optimized out>
> set_prevcount = 1
> old_mapped_len = 0
> #53 0x080f5be2 in main_loop (cmdwin=0, noexmode=0) at main.c:1180
> oa = {op_type = 0, regname = 0, motion_type = 0, motion_force = 0,
> use_reg_one = 0, inclusive = 0, end_adjusted = 0, start = {
> lnum = 0, col = 0, coladd = 0}, end = {lnum = 0, col = 0, coladd =
> 0}, cursor_start = {lnum = 0, col = 0, coladd = 0}, line_count = 0,
> empty = 0, is_VIsual = 0, block_mode = 0, start_vcol = 0, end_vcol =
> 0, prev_opcount = 0, prev_count0 = 0}
> previous_got_int = 0
> #54 0x080f8db5 in main (argc=0, argv=0x54) at main.c:939
> fname = <value optimized out>
> params = {argc = 2, argv = 0xbfdcc0c4, evim_mode = 0, use_vimrc =
> 0x0, n_commands = 0, commands = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0,
> 0x0, 0x0, 0x0, 0x0}, cmds_tofree =
> "\000\000\000\000\000\000\000\000\000", n_pre_commands = 0,
> pre_commands = {0x0, 0x0, 0x0, 0x0, 0x0,
> 0x0, 0x0, 0x0, 0x0, 0x0}, edit_type = 1, tagname = 0x0, use_ef =
> 0x0, want_full_screen = 0, stdout_isatty = 0, term = 0x0,
> ask_for_key = 0, no_swap_file = 0, use_debug_break_level = -1,
> window_count = 1, window_layout = 0, serverArg = 0, serverName_arg =
> 0x0,
> serverStr = 0x0, serverStrEnc = 0x0, servername = 0x91720b0 "\215Ê:·
> \027îpN\020", diff_mode = 0}
I see in the stack trace that it crashes here in syntax.c:5880 in in_id_list():
5875 /*
5876 * If the first item is "ALLBUT", return TRUE if "id" is NOT in the
5877 * contains list. We also require that "id" is at the same
":syn include"
5878 * level as the list.
5879 */
5880 item = *list;
5881 if (item >= SYNID_ALLBUT && item < SYNID_CLUSTER)
5882 {
'list' pointer is invalid (0x3). It's the 2nd argument of in_id_list(), which
is called from here:
It's called from here in syntax.c:
1974 spp = &(SYN_ITEMS(syn_buf)[idx]);
1975 if ( spp->sp_syncing == syncing
1976 && (displaying || !(spp->sp_flags & HL_DISPLAY))
1977 && (spp->sp_type == SPTYPE_MATCH
1978 || spp->sp_type == SPTYPE_START)
1979 && (current_next_list != NULL
1980 ? in_id_list(NULL, current_next_list,
1981 &spp->sp_syn, 0)
1982 : (cur_si == NULL
1983 ? !(spp->sp_flags & HL_CONTAINED)
1984 : in_id_list(cur_si,
1985 cur_si->si_cont_list, &spp->sp_syn,
1986 spp->sp_flags & HL_CONTAINED))))
1987 {
So cur_si->si_cont_list is 0x3. It's difficult beyond this to tell
why it happened.
Do you remember what you were searching? What regex?
Perhaps sharing the html file where it happened may help so we
can try to reproduce it too (I realize you can't reproduce it youself
so it may be hard).
It's also worth trying with the latest version (Vim-7.2.234)
since a couple of crash bugs have been fixed since Vim-7.2.182
(nothing that resembles what you describe though).
See: ftp://ftp.vim.org/pub/vim/patches/7.2/README
Regards
-- Dominique
--~--~---------~--~----~------------~-------~--~----~
You received this message from the "vim_dev" maillist.
For more information, visit http://www.vim.org/maillist.php
-~----------~----~----~----~------~----~------~--~---
