Segfault within ATI fglrx driver

It seems like the Cg error is unrelated. It's always displayed when exiting ember, even if I leave before joining a game.

Yes, the Cg error is completely unrelated. It's because Cg 2.0 will for some idiotic reason reroute the signal handlers. Cg 2.1 fixes that.

I can't see any cause in the log file, so I need a bt.

Ok, seems to be the bug we saw on the mentor summit again, attaching backtrace.

Ok, this is either a bug in the ATI drivers, or it's getting fed incorrect data from Ogre (which in turn might get incorrect data from Ember).
In the bt, could you inspect frame 7 and make sure that the "rend" variable isn't bogus?
Could you also inspect frame 6 and check that any of the variables being sent in the call to glDrawElements aren't bogus either (or the "op")?
Also, could you see what kind of object rend is (i.e. the actual subclass of Renderable)?

This backtrace is almost the same as in bug on Intel cards: https://bugs.launchpad.net/ember/+bug/298504
May be, disabling CgPluginManager that was suggested there is worth trying too?

How do I disable that thing?

In your ember.conf file, add these two lines (unless you already have an "ogre" section, then add just the second line to that):
[ogre]
plugins="RenderSystem_GL,Plugin_ParticleFX"

I'm however more interested in getting some better data on the crash bt since it looks like this is something Ember causes (as it's appearing on both ati and intel cards).

Adding that line to my ember.conf doesn't seem to help.

Frame #6 of the backtrace of the current crash:
#6 0xb5abfc27 in Ogre::GLRenderSystem::_render (this=0x86f99d8, op=@0xb73b5724) at OgreGLRenderSystem.cpp:2724
2724 glDrawElements(primType, op.indexData->indexCount, indexType, pBufferData);
(gdb) print primType
$1 = 4
(gdb) print op.indexData->indexCount
$2 = 96
(gdb) print indexType
$3 = 206878976
(gdb) print pBufferData
$4 = (void *) 0x0

Not sure if the indexType is valid, or if pBufferData is supposed to be NULL.

Frame #7 looks like this:
#7 0xb71aaab3 in Ogre::SceneManager::renderSingleObject (this=0x9beb630, rend=0xce916b8, pass=0xc654370, lightScissoringClipping=true, doLightIteration=true, manualLightList=0x0) at OgreSceneManager.cpp:3206
3206 mDestRenderSystem->_render(ro);
(gdb) print rend
$5 = (class Ogre::Renderable *) 0xce916b8

I'm thinking that pBufferData being a null pointer is the culprint. It should be the indices data buffer according to the docs: http://www.opengl.org/documentation/specs/man_pages/hardcopy/GL/html/gl/drawelements.html

My guess is that the nvidia code does an extra check for a null buffer pointer, and aborts, while the mesa code doesn't, resulting in a segfault later on. I'll see if I can catch it on my own rig. Unfortunately it has a NVIDIA card.

Have you tried building Ember from source against a later version of Ogre (i.e. 1.6.1)?

Similar crash to the one described, except running on nvidia-glx. Also on 64-bit computer, but Ember stopped complaining when I installed the 32-bit libmng.so.1. I get to loading the textures and it crashes; the sky and character will load but ground never seems to make it and will remain black.

I've attained an ATI card and can confirm that this crash happens.

Marek:

The issue you describe is different. I'm pretty sure that it's something which is fixed in Ember trunk. There were some issues with the glsl shaders on ATI cards.

The issue was an OpenGL extension for hardware mipmapping which managed to perform random memory corruption within the OpenGL stack. It's now disabled for all ATI cards.

Alright, I'll wait until the next version is released and post a new bug if I still encounter the error. Thanks.