The backtrace I get from the packaged binary is useless, and I've removed my source tree of it now after fixing the problem.
But the error is plain to see - look at the source fragments I pointed out. It's writing to element "minus one" of an array. The overwrites space it shouldn't.
I found that rebuilding without the -O3 flag made the bug go away - possibly due to the static memory being spaced out differently, I don't know.
The backtrace I get from the packaged binary is useless, and I've removed my source tree of it now after fixing the problem.
But the error is plain to see - look at the source fragments I pointed out. It's writing to element "minus one" of an array. The overwrites space it shouldn't.
I found that rebuilding without the -O3 flag made the bug go away - possibly due to the static memory being spaced out differently, I don't know.