Created attachment 2578 [details]
backtrace for a crash at botlib/be_aas_route.c:1860

I can't make much sense out of the backtraces, I'm afraid.

Created attachment 2580 [details]
maybe fix for crash

I don't know anything about the code, I can only see from the backtraces where it must have crashed. Please try attached patch and tell me whether it prevents the crash.

Simon, please test the attached patch so I can get rid of the bug or not.

That's a bit difficult since I've never seen this crash myself (running the same configuration as the bug reporter for a while seemed to work fine), but I'll apply it in Debian experimental and ask the bug reporter to try it out...

I can't reproduce the crash with the OpenArena version 0.95 that is downloadable from openarena.ws, and I had a server running that map for 2 days with 4 bots. The information is very sparse, I know not what ARCH this is running on, gametype, what compiler flags does noopt/nostrip in DEB_BUILD_OPTIONS enable? etc...

The bug must also lie somewhere else than the displayed codelines, without access to a gdb where this crash bug appeared I cannot help you.

Please note that the patch is buggy and will probably break bot navigation, so I would advise against applying it to debian. Also, the patch is only a workaround for an issue that lies somewhere else in the code. And I'm not going to apply an ugly workaround to svn.

This is the pak file where my oa_dm1.aas resides:

/opt/quake3/baseoa/pak6-misc.pk3
md5sum:
431a43978abaa529335d0cf4e44d0b50  /opt/quake3/baseoa/pak6-misc.pk3

I'll close this bug as WORKSFORME. If you can talk the reporter into providing a shell for me where I can investigate with gdb, by all means, reopen this here.

Hello, i have discovered the same issues with Ioquake3 and OpenArena version 0.8.5 in Debian Squeeze and OpenArena 0.8.8 in Debian Wheezy running Ioquake 3 svn2287. I therefore would like to reopen this bug report. 

This is Debian bug http://bugs.debian.org/664637 and it is most likely a duplicate of #607178.

The segfaults are triggered by bots and there is a higher probability on oa_dm1 and oa_dm7 that you will be affected by them. The occurrences of this bug have become quite rare after i have switched to the latest version in Wheezy.

I have attached two backtraces and a core file. I hope they are helpful. The first segfault happened on oa_dm7. I was running a 64 bit Debian Squeeze system, OpenArena 0.8.8 and Ioquake3+svn2287.

I could reproduce this on a Pentium II notebook, i386 architecture, which is running Wheezy. There is no reliable way to reproduce this bug. You simply need to be patient and it will crash after two days or maybe two weeks. 

aptitude install openarena-server ioquake3-dbg openarena-dbg, a standard configuration, 4 bots playing only oa_dm7 and oa_dm1 in a deathmatch environment should be sufficient to be successful.

Created attachment 3254 [details]
Core file of a crash at botlib/be_aas_route.c:1864: debian wheezy i386

Created attachment 3255 [details]
backtrace for a crash at botlib/be_aas_route.c:1864: debian wheezy i386

Created attachment 3256 [details]
backtrace for a crash at botlib/be_aas_route.c:1864: debian wheezy amd64

I think this may have been fixed by r2385. It fixed AAS_PredictRoute getting bad arguments in some cases. Could you test git master?

Thanks for working on this. Would it be possible to provide a patch against r2287, the revision Debian uses at the moment? If not it will take a little longer to report back, but i will do it .

Created attachment 3328 [details]
Patch to add r2385 to ioq3 r2287.

I have been testing your patch for a week 24/7 but unfortunately the server crashed twice, one time on oasago2 and also on oa_dm1. I'll continue watching the issue.

It's been two years since the last comment, is this issue still present or can this bug be closed?

Yes, this is still an issue with the version of OpenArena and ioquake3 in Debian Jessie.