Segmentation fault in Valkyria Chronicles 2

[i30817]

I used gdb:
GNU gdb (GDB) 7.5.91.20130417-cvs-ubuntu
Copyright (C) 2013 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later http://gnu.org/licenses/gpl.html
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law. Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
For bug reporting instructions, please see:
http://www.gnu.org/software/gdb/bugs/...
Reading symbols from /home/i30817/Documents/Netbeans_projects/ppsspp/PPSSPPSDL...done.
(gdb) continue
The program is not being run.
(gdb) run
Starting program: /home/i30817/Documents/Netbeans_projects/ppsspp/PPSSPPSDL
warning: no loadable sections found in added symbol-file system-supplied DSO at 0x7ffff7ffa000
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
[New Thread 0x7fffec762700 (LWP 28753)]
[Thread 0x7fffec762700 (LWP 28753) exited]
[New Thread 0x7fffec762700 (LWP 28754)]
OpenGL 2.0 or higher.
D: /home/i30817/Documents/Netbeans_projects/ppsspp/native/file/zip_read.cpp:302: D: Registered VFS for prefix : /home/i30817/Documents/Netbeans_projects/ppsspp/assets/
D: /home/i30817/Documents/Netbeans_projects/ppsspp/native/file/zip_read.cpp:302: D: Registered VFS for prefix : /home/i30817/Documents/Netbeans_projects/ppsspp/
D: /home/i30817/Documents/Netbeans_projects/ppsspp/native/file/zip_read.cpp:302: D: Registered VFS for prefix : /home/i30817/
[New Thread 0x7fffed53c700 (LWP 28755)]
Pixels: 960 x 544
Virtual pixels: 960 x 544
I: /home/i30817/Documents/Netbeans_projects/ppsspp/native/gfx_es2/gl_state.cpp:127: I: GPU Vendor : X.Org ; GL version str: 3.0 Mesa 9.1.7
I: /home/i30817/Documents/Netbeans_projects/ppsspp/native/gfx/texture.cpp:283: I: ZIM loaded: 1 levels
I: /home/i30817/Documents/Netbeans_projects/ppsspp/native/gfx/texture.cpp:314: I: Gen-binding texture
[New Thread 0x7fffebf61700 (LWP 28756)]
[New Thread 0x7fffeb760700 (LWP 28757)]
[New Thread 0x7fffe885f700 (LWP 28758)]

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7fffeb760700 (LWP 28757)]
0x0000000040259197 in ?? ()
(gdb) backtrace
#0 0x0000000040259197 in ?? ()
#1 0x0000000000001000 in ?? ()
#2 0x0000000000001000 in ?? ()
#3 0x00007ffff7bce740 in ?? ()

from /lib/x86_64-linux-gnu/libpthread.so.0
#4 0x00007ffff7ffd060 in ?? () from /lib64/ld-linux-x86-64.so.2
#5 0x0000000000000001 in ?? ()
#6 0x00007fffeb75fc90 in ?? ()
#7 0x0000000001f63370 in ?? ()
#8 0x00000000008092a3 in MIPSComp::Jit::RunLoopUntil(unsigned long long) ()

Backtrace stopped: previous frame inner to this frame (corrupt stack?)
(gdb)

I tried the voodoo in this stackoverflow link first answer: http://stackoverflow.com/questions/9809810/gdb-corrupted-stack-frame-how-to-debug

(gdb) set $pc = (void *)$rsp
(gdb) set $rsp = $rsp + 8
(gdb) backtrace
#0 0x0000000000001000 in ?? ()
#1 0x0000000000001000 in ?? ()
#2 0x00007ffff7bce740 in ?? ()

from /lib/x86_64-linux-gnu/libpthread.so.0
#3 0x00007ffff7ffd060 in ?? () from /lib64/ld-linux-x86-64.so.2
#4 0x0000000000000001 in ?? ()
#5 0x00007fffeb75fc90 in ?? ()
#6 0x0000000001f63370 in ?? ()
#7 0x00000000008092a3 in MIPSComp::Jit::RunLoopUntil(unsigned long long) ()

Backtrace stopped: previous frame inner to this frame (corrupt stack?)

But as you can see it didn't work. Maybe i will try valgrind too.

[i30817]

This is fairly repeatable on my end, but not so much that a savestate would guarantee crashing for you. Any suggestions for debugging and giving you info?

The function called is:
void Jit::RunLoopUntil(u64 globalticks)
{
((void (*)())asm_.enterCode)();
}

Which is pretty unhelpful i feel.

[unknownbrackets]

This is a segfault in jit somewhere. A savestate before it could be helpful, savedata would be a lot better.

Seeing the assembly around the crash might help but I'm sure it's just a memory access so probably not much...

I also recommend trying:

• Turning off fast memory, which may prevent the crash (it will log it instead.)
• Using a 32 bit build (or 64 if this is a 32 bit build.)
• Trying the same thing on an ARM device, if available (it has its own jit.)
• See if you can reproduce this for example in WINE under a Windows build (it could be a calling convention issue on Linux, there have been a few such.)

-[Unknown]

[i30817]

Unfortunately, VC2 doesn't have a in-mission save.
By save state wrangling i managed to create one which will segfault within a second. i'm worried that it is already corrupted in the savestate and not a stateless bug, but the animations still play for a bit.

Fast memory disabling does indeed 'stop' it crashing. The log says:
20:53:133 Odin_Main W[SCEGE]: GLES/Framebuffer.cpp:805 FBO reusing depthbuffer, 00090000/00088000 and 00044000/00088000
20:53:133 Odin_Main W[SCEGE]: GLES/Framebuffer.cpp:799 FBO using existing buffer as depthbuffer, 00090000/00088000 and 00088000/00088000
20:53:133 Odin_Main I[SCEGE]: GLES/Framebuffer.cpp:785 Creating FBO for 001e6000 : 128 x 64 x 3
20:53:133 Odin_Main W[SCEGE]: GLES/Framebuffer.cpp:805 FBO reusing depthbuffer, 001e6000/00088000 and 00044000/00088000
20:53:133 Odin_Main W[SCEGE]: GLES/Framebuffer.cpp:799 FBO using existing buffer as depthbuffer, 001e6000/00088000 and 00088000/00088000
20:53:396 Odin_Main I[SCEGE]: GLES/Framebuffer.cpp:785 Creating FBO for 00000000 : 480 x 272 x 1
20:54:295 Odin_Main W[MM]: Core/MemMapFunctions.cpp:94 ReadFromHardware: Invalid address 24dd97ac
[the last warning continues forever when loading the savestate at slightly different adresses]

the savestate (just wait for the hang) https://drive.google.com/file/d/0BzxkBmaf1EiWcURrN2NCU1RDZE0/edit?usp=sharing

[i30817]

Eh, in wine 32 bits trying to load that gives me 'Error: After "MetaFileSystem", found 1701996868 (0x65726944) instead of save marker 66 (0x42). Aborting savestate load...'

Seems like savestates are not very compatible between platforms (wine 64 bits didn't even start ppsspp).

[unknownbrackets]

Hmm. They used to be, must be a recent bug, darn...

-[Unknown]

[unknownbrackets]

Hmm, unfortunately I don't have the Europe version to test the savestate...

For the savestate thing, are you sure that they are both exactly the same version of PPSSPP? Savestates are not backwards compatible.

-[Unknown]

[i30817]

No. I just used the last stable version at first. But later i tried git, it went down in flames too in wine 32 bits version (with a different error). Though maybe, that was just the segmentation fault manifesting. 64 bits kept not working on wine64

[unknownbrackets]

Has this improved at all in the latest build? We've fixed some things this could be caused by for sure.

Also, I think I fixed some cross platform issues with savestates.

-[Unknown]

[i30817]

Nope. Last few lines of all debug log:
17:15:719 idle0 I[FileSys]: FileSystems/DirectoryFileSystem.cpp:814 Got VFS file info: size = 883164
17:15:719 idle0 I[FONT]: HLE/sceFont.cpp:526 Loading font flash0:/font/kr0.pgf (883164 bytes)
17:15:720 idle0 I[FileSys]: FileSystems/DirectoryFileSystem.cpp:806 Getting VFS file info flash0/font/kr0.pgf (/font/kr0.pgf)
17:15:720 idle0 I[FileSys]: FileSystems/DirectoryFileSystem.cpp:814 Got VFS file info: size = 883164
17:15:720 idle0 I[FileSys]: FileSystems/DirectoryFileSystem.cpp:843 VFSFileSystem::ReadFile 0000001d 0x417d420 883164
17:15:721 idle0 I[FONT]: Font/PGF.cpp:180 Reading 392 bytes of PGF header
17:15:730 idle0 I[COMMON]: Common/ChunkFile.h:607 ChunkReader: Done loading /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_1.ppst
17:15:736 CRI ADX Audi E[ME]: HLE/sceAtrac.cpp:621 WARNING: Remaining data in packet - we currently only decode one frame/packet
17:15:751 idle0 I[SCEGE]: GLES/Framebuffer.cpp:811 Creating FBO for 00044000 : 480 x 272 x 1
17:15:853 idle0 I[SCEGE]: GLES/Framebuffer.cpp:811 Creating FBO for 00088000 : 128 x 64 x 3
17:15:853 idle0 I[SCEGE]: GLES/Framebuffer.cpp:811 Creating FBO for 00090000 : 128 x 64 x 3
17:15:853 idle0 W[SCEGE]: GLES/Framebuffer.cpp:831 FBO reusing depthbuffer, 00090000/00088000 and 00044000/00088000
17:15:853 idle0 W[SCEGE]: GLES/Framebuffer.cpp:825 FBO using existing buffer as depthbuffer, 00090000/00088000 and 00088000/00088000
17:15:859 idle0 I[SCEGE]: GLES/Framebuffer.cpp:811 Creating FBO for 001e6000 : 128 x 64 x 3
17:15:859 idle0 W[SCEGE]: GLES/Framebuffer.cpp:831 FBO reusing depthbuffer, 001e6000/00088000 and 00044000/00088000
17:15:859 idle0 W[SCEGE]: GLES/Framebuffer.cpp:825 FBO using existing buffer as depthbuffer, 001e6000/00088000 and 00088000/00088000
17:16:117 idle0 I[SCEGE]: GLES/Framebuffer.cpp:811 Creating FBO for 00000000 : 480 x 272 x 1
Segmentation fault (core dumped)

Only one error as you can see. Haven't tried wine. As usual, disabling fast memory fixes this.

[unknownbrackets]

Oh, okay. If you have fast memory disabled, it should log something like "invalid getpointer" or "invalid address". Seeing that part of the log would help.

Also, if you could savestate again with the latest version and upload that, I can try and see if it works in Windows now.

-[Unknown]

[i30817]

https://gist.github.com/i30817/9032649

It starts with that
CRI ADX Audi E[ME]: HLE/sceAtrac.cpp:621
for reference.

I will upload a new savestate to google drive soon.

[i30817]

Here: https://drive.google.com/file/d/0BzxkBmaf1EiWS3loX21BZlZtam8/edit?usp=sharing

[unknownbrackets]

Just to be sure, if you set "PSPModel" to "PSP-1000" and make sure that hacks (such as the timer hack, locked cpu speed, and Read Framebuffers to Memory) are all disabled, this still happens, right?

-[Unknown]

[i30817]

Yeah. I tried software mode too.

[unknownbrackets]

Does this still happen? If you disable fast memory, and disable "ignore illegal memory reads" (not sure the name of the setting currently, it's under Debug on Windows), does the log show anything interesting, or does it still hard crash?

If it does still hard crash, can you get a gdb trace with symbols at all?

-[Unknown]

[i30817]

The setting is
IgnoreBadMemAccess = False
on the config file ? (i'm not on windows)

[unknownbrackets]

Correct. What that will do is make the emulation halt when a bad memory access occurs (fast mem must be off.) The PSP would crash in this situation so it's technically more correct.

Then the log will end with information about the bad access.

-[Unknown]

[i30817]

With those settings PPSSPP doesn't crash but still blackscreens and the game is stuck. The debug log doesn't show anything interesting i think:

./PPSSPPSDL 
OpenGL 2.0 or higher.
Pixels: 960 x 544
Virtual pixels: 960 x 544
I: /home/i30817/Documents/projects/ppsspp/native/gfx_es2/gl_state.cpp:133: I: GPU Vendor : X.Org ; renderer: Gallium 0.4 on AMD RV710 version str: 3.0 Mesa 10.3.0 ; GLSL version str: 1.30
I: /home/i30817/Documents/projects/ppsspp/native/gfx_es2/gpu_features.cpp:20: I: Checking for GL driver bugs... vendor=0 model='Gallium 0.4 on AMD RV710'
E: /home/i30817/Documents/projects/ppsspp/native/base/PCMain.cpp:628: E: Output audio samples: 1024 (requested: 2048)
W: /home/i30817/Documents/projects/ppsspp/native/file/file_util.cpp:215: W: IsDirectory: stat failed on 
i30817@AIVAS:~/Documents/projects/ppsspp$ ./PPSSPPSDL 
OpenGL 2.0 or higher.
Pixels: 960 x 544
Virtual pixels: 960 x 544
I: /home/i30817/Documents/projects/ppsspp/native/gfx_es2/gl_state.cpp:133: I: GPU Vendor : X.Org ; renderer: Gallium 0.4 on AMD RV710 version str: 3.0 Mesa 10.3.0 ; GLSL version str: 1.30
I: /home/i30817/Documents/projects/ppsspp/native/gfx_es2/gpu_features.cpp:20: I: Checking for GL driver bugs... vendor=0 model='Gallium 0.4 on AMD RV710'
E: /home/i30817/Documents/projects/ppsspp/native/base/PCMain.cpp:628: E: Output audio samples: 1024 (requested: 2048)
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_0.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_1.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_2.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_3.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_4.jpg . Reading local file.
W: /home/i30817/Documents/projects/ppsspp/native/file/file_util.cpp:215: W: IsDirectory: stat failed on /home/i30817/Documents/projects/ppsspp/assets/flash0/font/zh_gb.pgf
W: /home/i30817/Documents/projects/ppsspp/native/file/file_util.cpp:215: W: IsDirectory: stat failed on /home/i30817/Documents/projects/ppsspp/flash0/font/zh_gb.pgf
W: /home/i30817/Documents/projects/ppsspp/native/file/file_util.cpp:215: W: IsDirectory: stat failed on /usr/share/ppsspp/assets/flash0/font/zh_gb.pgf
W: /home/i30817/Documents/projects/ppsspp/native/file/file_util.cpp:215: W: IsDirectory: stat failed on /home/i30817/flash0/font/zh_gb.pgf

With fast memory off and IgnoreBadMemAccess=True again
It doesn't crash in game, but... if you press ESC to the PPSSPP sdl menu and click Exit to menu it segfaults (with no different log).

With fast memory on and IgnoreBadMemAccess=True it cores dump right away as usual.
Git master as ususal

[i30817]

Some progress? The shutdown segfault from the 'Exit to menu' gave this backtrace in gdb

i30817@AIVAS:~/Documents/projects/ppsspp$ gdb ./PPSSPPSDL 
GNU gdb (Ubuntu 7.8-1ubuntu4) 7.8.0.20141001-cvs
Copyright (C) 2014 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.  Type "show copying"
and "show warranty" for details.
This GDB was configured as "x86_64-linux-gnu".
Type "show configuration" for configuration details.
For bug reporting instructions, please see:
<http://www.gnu.org/software/gdb/bugs/>.
Find the GDB manual and other documentation resources online at:
<http://www.gnu.org/software/gdb/documentation/>.
For help, type "help".
Type "apropos word" to search for commands related to "word"...
Reading symbols from ./PPSSPPSDL...done.
(gdb) run
Starting program: /home/i30817/Documents/projects/ppsspp/PPSSPPSDL 
[Thread debugging using libthread_db enabled]
Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1".
[New Thread 0x7fffec337700 (LWP 9102)]
[New Thread 0x7fffe78fd700 (LWP 9103)]
[Thread 0x7fffe78fd700 (LWP 9103) exited]
OpenGL 2.0 or higher.
[New Thread 0x7fffe78fd700 (LWP 9104)]
Pixels: 960 x 544
Virtual pixels: 960 x 544
I: /home/i30817/Documents/projects/ppsspp/native/gfx_es2/gl_state.cpp:133: I: GPU Vendor : X.Org ; renderer: Gallium 0.4 on AMD RV710 version str: 3.0 Mesa 10.3.0 ; GLSL version str: 1.30
I: /home/i30817/Documents/projects/ppsspp/native/gfx_es2/gpu_features.cpp:20: I: Checking for GL driver bugs... vendor=0 model='Gallium 0.4 on AMD RV710'
[New Thread 0x7fffeb8fe700 (LWP 9105)]
E: /home/i30817/Documents/projects/ppsspp/native/base/PCMain.cpp:628: E: Output audio samples: 1024 (requested: 2048)
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_0.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_1.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_2.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_3.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_4.jpg . Reading local file.
W: /home/i30817/Documents/projects/ppsspp/native/file/file_util.cpp:215: W: IsDirectory: stat failed on /home/i30817/Documents/projects/ppsspp/assets/flash0/font/zh_gb.pgf
W: /home/i30817/Documents/projects/ppsspp/native/file/file_util.cpp:215: W: IsDirectory: stat failed on /home/i30817/Documents/projects/ppsspp/flash0/font/zh_gb.pgf
W: /home/i30817/Documents/projects/ppsspp/native/file/file_util.cpp:215: W: IsDirectory: stat failed on /usr/share/ppsspp/assets/flash0/font/zh_gb.pgf
W: /home/i30817/Documents/projects/ppsspp/native/file/file_util.cpp:215: W: IsDirectory: stat failed on /home/i30817/flash0/font/zh_gb.pgf
bt
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_0.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_1.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_2.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_3.jpg . Reading local file.
I: /home/i30817/Documents/projects/ppsspp/native/file/zip_read.cpp:326: I: Not a VFS path: /home/i30817/.config/ppsspp/PSP/PPSSPP_STATE/ULES01417_1.00_4.jpg . Reading local file.

Program received signal SIGSEGV, Segmentation fault.
0x000000000075bbdd in __FontShutdown() ()
(gdb) bt
#0  0x000000000075bbdd in __FontShutdown() ()
#1  0x00000000005eaaa1 in __KernelShutdown() ()
#2  0x00000000006a07b0 in CPU_Shutdown() ()
#3  0x00000000006a1080 in PSP_Shutdown() ()
#4  0x000000000053ffe5 in EmuScreen::~EmuScreen() ()
#5  0x0000000000a6475a in ScreenManager::update(InputState&) ()
#6  0x00000000005316b2 in NativeUpdate(InputState&) ()
#7  0x00000000005bc4cd in UpdateRunLoop() ()
#8  0x000000000052bec5 in main ()
(gdb) 

[unknownbrackets]

Hmm. Maybe font related then? Pretty sure this game does use sceFont.

Does this happen even with official PSP fonts? Maybe we can try commenting out the sceKernel line that registers the sceFont functions.

-[Unknown]

[i30817]

the backtrace of the ingame segfault with fast memory off (with IgnoreBadMemAccess or not) is still useless,

Program received signal SIGSEGV, Segmentation fault.
0x00000000213d60d8 in ?? ()
(gdb) bt
#0  0x00000000213d60d8 in ?? ()
#1  0x0000000000000000 in ?? ()

[i30817]

Thing is, i am using the official fonts. If i delete them from the PPSSPP flash0 dir the savestate segfaults right away in __FontShutdown. Maybe i'm missing a few and the game freaks out, there was a warning about those. Or maybe the segfaults are for different things.
edit: yeah, i dont' have zh_gb.pgf font it's complaining about, let see.
edit2: isn't that the chinese font? Why would it crash on that on a EU game!?

[unknownbrackets]

The reason the backtrace is useless is that it's in jit. You can try turning jit off but it will probably still not mean much since it will be from interp most likely...

zh_gb.pgf isn't a real font that should be there, don't worry about that.

What if you comment out this line?

ppsspp/Core/HLE/sceFont.cpp

Line 1389 in 0a8e6c2

RegisterModule("sceLibFont", ARRAY_SIZE(sceLibFont), sceLibFont);

This will prevent sceFont from running at all, but it will also break savestates. Hmm.

I wonder if it's some struct alignment issue affecting only Linux. This hmm:

ppsspp/Core/Font/PGF.h

Line 131 in 0a8e6c2

#pragma pack(push,1)

What if you put __attribute__(packed) or whatever it is on each of those structs?

-[Unknown]

[i30817]

what in every single attribute of the all the structs in that file? Or just the last?

[i30817]

oh wait, the syntax is after struct not before, let me try it

[i30817]

Didn't help the Exit to menu crash (or the others).

[i30817]

doh, i should have just compiled with Debug for line numbers, wait a moment for that backtraceable segfault

[i30817]

well, debug compiling breaks very spectacularly so no line numbers.
https://gist.github.com/i30817/c192f0175e65bcd6d30c

[Bigpet]

@i30817 just comment out this one line: https://github.com/hrydgard/ppsspp/blob/master/ext/xbrz/xbrz.cpp#L621 I doubt it will matter to your issue

[i30817]

thanks

Program received signal SIGSEGV, Segmentation fault.
0x0000000000b71155 in LoadedFont::GetFontLib (this=0x2553350)
    at /home/i30817/Documents/projects/ppsspp/Core/HLE/sceFont.cpp:283
283     FontLib *GetFontLib() { return fontLibList[fontLibID_]; }
(gdb) bt
#0  0x0000000000b71155 in LoadedFont::GetFontLib (this=0x2553350)
    at /home/i30817/Documents/projects/ppsspp/Core/HLE/sceFont.cpp:283
#1  0x0000000000b6c5f2 in __FontShutdown ()
    at /home/i30817/Documents/projects/ppsspp/Core/HLE/sceFont.cpp:697
#2  0x0000000000980bdb in __KernelShutdown ()
    at /home/i30817/Documents/projects/ppsspp/Core/HLE/sceKernel.cpp:171
#3  0x0000000000a91e76 in CPU_Shutdown ()
    at /home/i30817/Documents/projects/ppsspp/Core/System.cpp:246
#4  0x0000000000a925bc in PSP_Shutdown ()
    at /home/i30817/Documents/projects/ppsspp/Core/System.cpp:442
#5  0x00000000008b46a1 in EmuScreen::~EmuScreen (this=0x2419240, 
    __in_chrg=<optimized out>)
    at /home/i30817/Documents/projects/ppsspp/UI/EmuScreen.cpp:165
#6  0x00000000008b471c in EmuScreen::~EmuScreen (this=0x2419240, 
    __in_chrg=<optimized out>)
    at /home/i30817/Documents/projects/ppsspp/UI/EmuScreen.cpp:167
#7  0x0000000000ea23d2 in ScreenManager::switchToNext (this=0x20205f0)
    at /home/i30817/Documents/projects/ppsspp/native/ui/screen.cpp:61
#8  0x0000000000ea2269 in ScreenManager::update (this=0x20205f0, input=...)
    at /home/i30817/Documents/projects/ppsspp/native/ui/screen.cpp:40
#9  0x000000000089cbef in NativeUpdate (input=...)
    at /home/i30817/Documents/projects/ppsspp/UI/NativeApp.cpp:756
#10 0x0000000000932018 in UpdateRunLoop ()
    at /home/i30817/Documents/projects/ppsspp/Core/Core.cpp:149
#11 0x0000000000e61ac6 in main (argc=1, argv=0x7fffffffdff8)
    at /home/i30817/Documents/projects/ppsspp/native/base/PCMain.cpp:831
(gdb) 

[unknownbrackets]

Does this still happen?

-[Unknown]

[unknownbrackets]

This issue is being closed because it hasn't been updated with feedback.

It's hard to tell when fixes in PPSSPP might fix other games, and sometimes certain settings or cheats may cause bugs that can't be fixed.

If you have more information or can confirm it still happens in the latest git builds, please reply to this issue and it'll be reopened. If you have a new issue with the same game, just create a new issue instead.

-[Unknown]