09014: jaguar [ruinerp]: crash at exit

ID	Category [?]	Severity [?]	Reproducibility	Date Submitted	Last Update
09014	Crash/Freeze	Critical (emulator)	Sometimes	Dec 12, 2024, 09:43	28 days ago

Tester	Robbbert	View Status	Public	Platform	MAME (Self-compiled)
Assigned To		Resolution	Open	OS	Windows 10/11 (64-bit)
Status [?]	Confirmed			Driver	atari/jaguar.cpp
Version	0.272	Fixed in Version		Build	64-bit
		Fixed in Git Commit		Github Pull Request #

Summary	09014: jaguar [ruinerp]: crash at exit
Description	This can crash at exit, or do other unexpected things.
Steps To Reproduce	>mame jaguar ruinerp Wait for the screen to flash a bit (this item has never worked in MAME). Exit the emulation, and you might get a crash dump.
Additional Information	C:\MAME>mame jaguar ruinerp Average speed: 54.02% (9 seconds) ----------------------------------------------------- Exception at EIP=00007ffd0c4f5bb6 (__cxa_throw_bad_array_new_length+0xe375bc6): ACCESS VIOLATION While attempting to read memory at 000000410080303f ----------------------------------------------------- RAX=00007ff70135f040 RBX=000002b7f3440000 RCX=000002b7f3440000 RDX=0000004100803040 RSI=000002b7f3440000 RDI=0000000000000000 RBP=0000000000000000 RSP=000000e3fb2f95e0 R8=0000000000000000 R9=0000000000000000 R10=0000000000008000 R11=000000e3fb2f96f0 R12=0000000000000000 R13=0000004100803040 R14=0000004100803030 R15=000000e3fb2f9810 ----------------------------------------------------- Stack crawl: 000000e3fb2f9690: 00007ffd0c4f5bb6 (RtlGetCurrentServiceSessionId+0x1366) 000000e3fb2f96d0: 00007ffd0c4f47b1 (RtlFreeHeap+0x0051) 000000e3fb2f9700: 00007ffd0ac99c9c (free+0x001c) 000000e3fb2f9730: 00007ff6f38409ee (bitmap_t::~bitmap_t()+0x003e) 000000e3fb2f9780: 00007ff6ef873932 (jaguar_state::~jaguar_state()+0x0092) 000000e3fb2feda0: 00007ff6f6306069 (mame_machine_manager::execute()+0x0179) 000000e3fb2ff190: 00007ff6fa02964a (cli_frontend::start_execution(mame_machine_manager*, std::vector<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >, std::allocator<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > > > const&)+0x03ea) 000000e3fb2ff4a0: 00007ff6fa029c7a (cli_frontend::execute(std::vector<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >, std::allocator<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > > >&)+0x007a) 000000e3fb2ff500: 00007ff6f6300ee7 (emulator_info::start_frontend(emu_options&, osd_interface&, std::vector<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> >, std::allocator<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char> > > >&)+0x0027) 000000e3fb2ff8d0: 00007ff6fbcbfc81 (luaopen_lfs+0xc5f531) 000000e3fb2ff920: 00007ff6ef4112ee (__tmainCRTStartup+0x016e) 000000e3fb2ff950: 00007ff6ef411406 (mainCRTStartup+0x0016) 000000e3fb2ff980: 00007ffd0ba87374 (BaseThreadInitThunk+0x0014) 000000e3fb2ffa00: 00007ffd0c51cc91 (RtlUserThreadStart+0x0021)
Github Commit

Flags
Regression Version
Affected Sets / Systems	jaguar [ruinerp]

Attached Files

No.22581 Osso Moderator Dec 13, 2024, 10:42	In GDB it shows warning: :dsp: inflight PC write 00f1b128 before crashing
No.23100 Firewave Senior Tester 28 days ago	Running 0.275 on Linux: ==55107==ERROR: AddressSanitizer: SEGV on unknown address 0x0041008047f0 (pc 0x5ebb9c08b3da bp 0x7fff39c50550 sp 0x7fff39c504e0 T0) ==55107==The signal is caused by a WRITE memory access. #0 0x5ebb9c08b3da in __asan::asan_delete(void, unsigned long, unsigned long, __sanitizer::BufferedStackTrace, __asan::AllocType) (/home/user/CLionProjects/mame/mame-asan+0x10b203da) (BuildId: 54dfcfa006cf3d70783a4aced53f1e126ecd9740) #1 0x5ebb9c1c38eb in operator delete[](void) (/home/user/CLionProjects/mame/mame-asan+0x10c588eb) (BuildId: 54dfcfa006cf3d70783a4aced53f1e126ecd9740) #2 0x5ebbbb04d8c3 in operator()<unsigned char> /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:134:4 #3 0x5ebbbb04d8c3 in reset /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:205:4 #4 0x5ebbbb04d8c3 in reset<unsigned char , void> /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:783:14 #5 0x5ebbbb04d8c3 in reset /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:787:9 #6 0x5ebbbb04d8c3 in reset /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/lib/util/bitmap.cpp:324:10 #7 0x5ebbbb04d8c3 in bitmap_t::~bitmap_t() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/lib/util/bitmap.cpp:195:2 #8 0x5ebba0412db5 in jaguar_state::~jaguar_state() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/mame/atari/jaguar.h:39:7 #9 0x5ebba0412f0d in jaguar_state::~jaguar_state() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/mame/atari/jaguar.h:39:7 #10 0x5ebbb97c6033 in operator() /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:93:2 #11 0x5ebbb97c6033 in ~unique_ptr /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:399:4 #12 0x5ebbb97c6033 in machine_config::~machine_config() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/emu/mconfig.cpp:119:1 #13 0x5ebbb52e12fd in mame_machine_manager::execute() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/frontend/mame/mame.cpp:312:2 #14 0x5ebbb604f73e in cli_frontend::start_execution(mame_machine_manager, std::vector<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>, std::allocator<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>>> const&) /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/frontend/mame/clifront.cpp:277:22 #15 0x5ebbb60521a4 in cli_frontend::execute(std::vector<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>, std::allocator<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>>>&) /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/frontend/mame/clifront.cpp:293:3 #16 0x5ebbb52e3a3d in emulator_info::start_frontend(emu_options&, osd_interface&, std::vector<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>, std::allocator<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>>>&) /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/frontend/mame/mame.cpp:453:18 #17 0x5ebbb99f8365 in main /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/osd/sdl/sdlmain.cpp:100:9 #18 0x7dfc5f235487 (/usr/lib/libc.so.6+0x27487) (BuildId: 695cfc6aac7d0f77bb7caba0ef01b2e868762b02) #19 0x7dfc5f23554b in __libc_start_main (/usr/lib/libc.so.6+0x2754b) (BuildId: 695cfc6aac7d0f77bb7caba0ef01b2e868762b02) #20 0x5ebb9c084124 in _start (/home/user/CLionProjects/mame/mame-asan+0x10b19124) (BuildId: 54dfcfa006cf3d70783a4aced53f1e126ecd9740) ==55107==Register values: rax = 0x0000000000000002 rbx = 0x0000004100804800 rcx = 0x00007fff39c50550 rdx = 0x0000000000000003 rdi = 0x0000004100804800 rsi = 0x0000000000000000 rbp = 0x00007fff39c50550 rsp = 0x00007fff39c504e0 r8 = 0x0000000000000003 r9 = 0x000000000000001e r10 = 0x0000000000000000 r11 = 0x00007dfc61047000 r12 = 0x00000041008047f0 r13 = 0x0000000000000000 r14 = 0x0000000000000000 r15 = 0x0000000000000003 AddressSanitizer can not provide additional info. SUMMARY: AddressSanitizer: SEGV (/home/user/CLionProjects/mame/mame-asan+0x10b203da) (BuildId: 54dfcfa006cf3d70783a4aced53f1e126ecd9740) in __asan::asan_delete(void, unsigned long, unsigned long, __sanitizer::BufferedStackTrace*, __asan::AllocType)

No.22581

Osso

Moderator

Dec 13, 2024, 10:42

In GDB it shows
warning: :dsp: inflight PC write 00f1b128
before crashing

No.23100

Firewave

Senior Tester

28 days ago

Running 0.275 on Linux:

==55107==ERROR: AddressSanitizer: SEGV on unknown address 0x0041008047f0 (pc 0x5ebb9c08b3da bp 0x7fff39c50550 sp 0x7fff39c504e0 T0)
==55107==The signal is caused by a WRITE memory access.
    #0 0x5ebb9c08b3da in __asan::asan_delete(void*, unsigned long, unsigned long, __sanitizer::BufferedStackTrace*, __asan::AllocType) (/home/user/CLionProjects/mame/mame-asan+0x10b203da) (BuildId: 54dfcfa006cf3d70783a4aced53f1e126ecd9740)
    #1 0x5ebb9c1c38eb in operator delete[](void*) (/home/user/CLionProjects/mame/mame-asan+0x10c588eb) (BuildId: 54dfcfa006cf3d70783a4aced53f1e126ecd9740)
    #2 0x5ebbbb04d8c3 in operator()<unsigned char> /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:134:4
    #3 0x5ebbbb04d8c3 in reset /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:205:4
    #4 0x5ebbbb04d8c3 in reset<unsigned char *, void> /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:783:14
    #5 0x5ebbbb04d8c3 in reset /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:787:9
    #6 0x5ebbbb04d8c3 in reset /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/lib/util/bitmap.cpp:324:10
    #7 0x5ebbbb04d8c3 in bitmap_t::~bitmap_t() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/lib/util/bitmap.cpp:195:2
    #8 0x5ebba0412db5 in jaguar_state::~jaguar_state() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/mame/atari/jaguar.h:39:7
    #9 0x5ebba0412f0d in jaguar_state::~jaguar_state() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/mame/atari/jaguar.h:39:7
    #10 0x5ebbb97c6033 in operator() /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:93:2
    #11 0x5ebbb97c6033 in ~unique_ptr /usr/bin/../lib64/gcc/x86_64-pc-linux-gnu/14.2.1/../../../../include/c++/14.2.1/bits/unique_ptr.h:399:4
    #12 0x5ebbb97c6033 in machine_config::~machine_config() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/emu/mconfig.cpp:119:1
    #13 0x5ebbb52e12fd in mame_machine_manager::execute() /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/frontend/mame/mame.cpp:312:2
    #14 0x5ebbb604f73e in cli_frontend::start_execution(mame_machine_manager*, std::vector<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>, std::allocator<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>>> const&) /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/frontend/mame/clifront.cpp:277:22
    #15 0x5ebbb60521a4 in cli_frontend::execute(std::vector<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>, std::allocator<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>>>&) /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/frontend/mame/clifront.cpp:293:3
    #16 0x5ebbb52e3a3d in emulator_info::start_frontend(emu_options&, osd_interface&, std::vector<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>, std::allocator<std::__cxx11::basic_string<char, std::char_traits<char>, std::allocator<char>>>>&) /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/frontend/mame/mame.cpp:453:18
    #17 0x5ebbb99f8365 in main /home/user/CLionProjects/mame/build/projects/sdl/mame/gmake-linux-clang/../../../../../src/osd/sdl/sdlmain.cpp:100:9
    #18 0x7dfc5f235487  (/usr/lib/libc.so.6+0x27487) (BuildId: 695cfc6aac7d0f77bb7caba0ef01b2e868762b02)
    #19 0x7dfc5f23554b in __libc_start_main (/usr/lib/libc.so.6+0x2754b) (BuildId: 695cfc6aac7d0f77bb7caba0ef01b2e868762b02)
    #20 0x5ebb9c084124 in _start (/home/user/CLionProjects/mame/mame-asan+0x10b19124) (BuildId: 54dfcfa006cf3d70783a4aced53f1e126ecd9740)

==55107==Register values:
rax = 0x0000000000000002  rbx = 0x0000004100804800  rcx = 0x00007fff39c50550  rdx = 0x0000000000000003  
rdi = 0x0000004100804800  rsi = 0x0000000000000000  rbp = 0x00007fff39c50550  rsp = 0x00007fff39c504e0  
 r8 = 0x0000000000000003   r9 = 0x000000000000001e  r10 = 0x0000000000000000  r11 = 0x00007dfc61047000  
r12 = 0x00000041008047f0  r13 = 0x0000000000000000  r14 = 0x0000000000000000  r15 = 0x0000000000000003  
AddressSanitizer can not provide additional info.
SUMMARY: AddressSanitizer: SEGV (/home/user/CLionProjects/mame/mame-asan+0x10b203da) (BuildId: 54dfcfa006cf3d70783a4aced53f1e126ecd9740) in __asan::asan_delete(void*, unsigned long, unsigned long, __sanitizer::BufferedStackTrace*, __asan::AllocType)