Hello, this re-land attempt is still crashing Gecko in over 300+ UI tests for Fenix/Focus/GeckoView Example tests on Firebase Test Lab https://treeherder.mozilla.org/jobs?repo=autoland&searchStr=ui-&revision=198df8d7a5a47e7a97d4fc4f4eca81b9c6e900f3 Example APK: https://firefox-ci-tc.services.mozilla.com/api/queue/v1/task/GYsWIHRvSDGj6mvVTETJOg/artifacts/public/build/target.arm64-v8a.apk
Bug 1899960 Comment 16 Edit History
Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.
Hello, this re-land attempt is still crashing Gecko in over 300+ UI tests for Fenix/Focus/GeckoView Example tests on Firebase Test Lab https://treeherder.mozilla.org/jobs?repo=autoland&searchStr=ui-&revision=198df8d7a5a47e7a97d4fc4f4eca81b9c6e900f3 Example APK: https://firefox-ci-tc.services.mozilla.com/api/queue/v1/task/GYsWIHRvSDGj6mvVTETJOg/artifacts/public/build/target.arm64-v8a.apk ``` Operating system: Android 0.0.0 Linux 6.1.23-android14-4-00257-g7e35917775b8-ab9964412 #1 SMP PREEMPT Mon Apr 17 20:50:58 UTC 2023 aarch64 CPU: arm64 4 CPUs Crash reason: SIGSEGV / SEGV_MAPERR Crash address: 0x0000000000007230 Process uptime: not available Linux memory map count: 4810 Thread 0 AndroidUI (crashed) - tid: 9531 0 libxul.so!mozilla::CycleCollectedJSContext::Context() const [CycleCollectedJSContext.h:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 188] Found by: inlining 1 libxul.so!mozilla::dom::danger::GetJSContext() [ScriptSettings.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 263 + 0x0] x0 = 0x0000000000000000 x1 = 0x0000007ac105f680 x2 = 0x0000000000000000 x3 = 0x0000007ad0e57fa4 x4 = 0x0000007fe7e47c70 x5 = 0x00000000656c646e x6 = 0x00000000656c646e x7 = 0x0000007ad9d11e4f x8 = 0x0000007e2862f300 x9 = 0x0000007e2862f040 x10 = 0x0000000000000001 x11 = 0x0000000000000000 x12 = 0x0000000000000100 x13 = 0x0000007ac8ae6708 x14 = 0x000000008d44e65a x15 = 0x00000000ebad6a89 x16 = 0x0000007ac8c60b50 x17 = 0x0000007e2372b280 x18 = 0x0000000000000000 x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e471f0 lr = 0x0000007ac5b1652c sp = 0x0000007fe7e471f0 pc = 0x0000007ac5b1652c Found by: given as instruction pointer in context 2 libxul.so!mozilla::dom::CustomElementRegistry::CallGetCustomInterface(mozilla::dom::Element*, nsID const&) [CustomElementRegistry.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 1419 + 0x0] x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e472b0 sp = 0x0000007fe7e47200 pc = 0x0000007ac3b44c44 Found by: call frame info 3 libxul.so!mozilla::dom::Element::GetCustomInterface<nsIDOMXULControlElement>(nsGetterAddRefs<nsIDOMXULControlElement>) [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4745] Found by: inlining 4 libxul.so!mozilla::dom::Element::AsXULControl() [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4920 + 0x10] x19 = 0x00000079dc8878c0 x20 = 0x0000007e2862f000 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e47300 sp = 0x0000007fe7e472f0 ```
Hello, this re-land attempt is still crashing Gecko in over 300+ UI tests for Fenix/Focus/GeckoView Example tests on Firebase Test Lab https://treeherder.mozilla.org/jobs?repo=autoland&searchStr=ui-&revision=198df8d7a5a47e7a97d4fc4f4eca81b9c6e900f3 Example APK: https://firefox-ci-tc.services.mozilla.com/api/queue/v1/task/GYsWIHRvSDGj6mvVTETJOg/artifacts/public/build/target.arm64-v8a.apk ``` Operating system: Android 0.0.0 Linux 6.1.23-android14-4-00257-g7e35917775b8-ab9964412 #1 SMP PREEMPT Mon Apr 17 20:50:58 UTC 2023 aarch64 CPU: arm64 4 CPUs Crash reason: SIGSEGV / SEGV_MAPERR Crash address: 0x0000000000007230 Process uptime: not available Linux memory map count: 4810 Thread 0 AndroidUI (crashed) - tid: 9531 0 libxul.so!mozilla::CycleCollectedJSContext::Context() const [CycleCollectedJSContext.h:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 188] Found by: inlining 1 libxul.so!mozilla::dom::danger::GetJSContext() [ScriptSettings.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 263 + 0x0] x0 = 0x0000000000000000 x1 = 0x0000007ac105f680 x2 = 0x0000000000000000 x3 = 0x0000007ad0e57fa4 x4 = 0x0000007fe7e47c70 x5 = 0x00000000656c646e x6 = 0x00000000656c646e x7 = 0x0000007ad9d11e4f x8 = 0x0000007e2862f300 x9 = 0x0000007e2862f040 x10 = 0x0000000000000001 x11 = 0x0000000000000000 x12 = 0x0000000000000100 x13 = 0x0000007ac8ae6708 x14 = 0x000000008d44e65a x15 = 0x00000000ebad6a89 x16 = 0x0000007ac8c60b50 x17 = 0x0000007e2372b280 x18 = 0x0000000000000000 x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e471f0 lr = 0x0000007ac5b1652c sp = 0x0000007fe7e471f0 pc = 0x0000007ac5b1652c Found by: given as instruction pointer in context 2 libxul.so!mozilla::dom::CustomElementRegistry::CallGetCustomInterface(mozilla::dom::Element*, nsID const&) [CustomElementRegistry.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 1419 + 0x0] x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e472b0 sp = 0x0000007fe7e47200 pc = 0x0000007ac3b44c44 Found by: call frame info 3 libxul.so!mozilla::dom::Element::GetCustomInterface<nsIDOMXULControlElement>(nsGetterAddRefs<nsIDOMXULControlElement>) [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4745] Found by: inlining 4 libxul.so!mozilla::dom::Element::AsXULControl() [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4920 + 0x10] x19 = 0x00000079dc8878c0 x20 = 0x0000007e2862f000 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e47300 sp = 0x0000007fe7e472f0 ``` Null defer at ``` Thread 0 AndroidUI (crashed) libxul.so!mozilla::CycleCollectedJSContext::Context() const [CycleCollectedJSContext.h:188] libxul.so!mozilla::dom::danger::GetJSContext() [ScriptSettings.cpp:263] ``` From ``` mozilla::a11y::SessionAccessibility::GetNodeInfo(...) ```
Hello, this re-land attempt is still crashing Gecko in over 300+ UI tests for Fenix/Focus/GeckoView Example tests on Firebase Test Lab https://treeherder.mozilla.org/jobs?repo=autoland&searchStr=ui-&revision=198df8d7a5a47e7a97d4fc4f4eca81b9c6e900f3 Example APK: https://firefox-ci-tc.services.mozilla.com/api/queue/v1/task/GYsWIHRvSDGj6mvVTETJOg/artifacts/public/build/target.arm64-v8a.apk ``` Operating system: Android 0.0.0 Linux 6.1.23-android14-4-00257-g7e35917775b8-ab9964412 #1 SMP PREEMPT Mon Apr 17 20:50:58 UTC 2023 aarch64 CPU: arm64 4 CPUs Crash reason: SIGSEGV / SEGV_MAPERR Crash address: 0x0000000000007230 Process uptime: not available Linux memory map count: 4810 Thread 0 AndroidUI (crashed) - tid: 9531 0 libxul.so!mozilla::CycleCollectedJSContext::Context() const [CycleCollectedJSContext.h:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 188] Found by: inlining 1 libxul.so!mozilla::dom::danger::GetJSContext() [ScriptSettings.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 263 + 0x0] x0 = 0x0000000000000000 x1 = 0x0000007ac105f680 x2 = 0x0000000000000000 x3 = 0x0000007ad0e57fa4 x4 = 0x0000007fe7e47c70 x5 = 0x00000000656c646e x6 = 0x00000000656c646e x7 = 0x0000007ad9d11e4f x8 = 0x0000007e2862f300 x9 = 0x0000007e2862f040 x10 = 0x0000000000000001 x11 = 0x0000000000000000 x12 = 0x0000000000000100 x13 = 0x0000007ac8ae6708 x14 = 0x000000008d44e65a x15 = 0x00000000ebad6a89 x16 = 0x0000007ac8c60b50 x17 = 0x0000007e2372b280 x18 = 0x0000000000000000 x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e471f0 lr = 0x0000007ac5b1652c sp = 0x0000007fe7e471f0 pc = 0x0000007ac5b1652c Found by: given as instruction pointer in context 2 libxul.so!mozilla::dom::CustomElementRegistry::CallGetCustomInterface(mozilla::dom::Element*, nsID const&) [CustomElementRegistry.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 1419 + 0x0] x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e472b0 sp = 0x0000007fe7e47200 pc = 0x0000007ac3b44c44 Found by: call frame info 3 libxul.so!mozilla::dom::Element::GetCustomInterface<nsIDOMXULControlElement>(nsGetterAddRefs<nsIDOMXULControlElement>) [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4745] Found by: inlining 4 libxul.so!mozilla::dom::Element::AsXULControl() [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4920 + 0x10] x19 = 0x00000079dc8878c0 x20 = 0x0000007e2862f000 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e47300 sp = 0x0000007fe7e472f0 ``` Null deref at ``` Thread 0 AndroidUI (crashed) libxul.so!mozilla::CycleCollectedJSContext::Context() const [CycleCollectedJSContext.h:188] libxul.so!mozilla::dom::danger::GetJSContext() [ScriptSettings.cpp:263] ``` From ``` mozilla::a11y::SessionAccessibility::GetNodeInfo(...) ```
Hello, this re-land attempt is still crashing Gecko in over 300+ UI tests for Fenix/Focus/GeckoView Example tests on Firebase Test Lab https://treeherder.mozilla.org/jobs?repo=autoland&searchStr=ui-&revision=198df8d7a5a47e7a97d4fc4f4eca81b9c6e900f3 Example APK: https://firefox-ci-tc.services.mozilla.com/api/queue/v1/task/GYsWIHRvSDGj6mvVTETJOg/artifacts/public/build/target.arm64-v8a.apk ``` Operating system: Android 0.0.0 Linux 6.1.23-android14-4-00257-g7e35917775b8-ab9964412 #1 SMP PREEMPT Mon Apr 17 20:50:58 UTC 2023 aarch64 CPU: arm64 4 CPUs Crash reason: SIGSEGV / SEGV_MAPERR Crash address: 0x0000000000007230 Process uptime: not available Linux memory map count: 4810 Thread 0 AndroidUI (crashed) - tid: 9531 0 libxul.so!mozilla::CycleCollectedJSContext::Context() const [CycleCollectedJSContext.h:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 188] Found by: inlining 1 libxul.so!mozilla::dom::danger::GetJSContext() [ScriptSettings.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 263 + 0x0] x0 = 0x0000000000000000 x1 = 0x0000007ac105f680 x2 = 0x0000000000000000 x3 = 0x0000007ad0e57fa4 x4 = 0x0000007fe7e47c70 x5 = 0x00000000656c646e x6 = 0x00000000656c646e x7 = 0x0000007ad9d11e4f x8 = 0x0000007e2862f300 x9 = 0x0000007e2862f040 x10 = 0x0000000000000001 x11 = 0x0000000000000000 x12 = 0x0000000000000100 x13 = 0x0000007ac8ae6708 x14 = 0x000000008d44e65a x15 = 0x00000000ebad6a89 x16 = 0x0000007ac8c60b50 x17 = 0x0000007e2372b280 x18 = 0x0000000000000000 x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e471f0 lr = 0x0000007ac5b1652c sp = 0x0000007fe7e471f0 pc = 0x0000007ac5b1652c Found by: given as instruction pointer in context 2 libxul.so!mozilla::dom::CustomElementRegistry::CallGetCustomInterface(mozilla::dom::Element*, nsID const&) [CustomElementRegistry.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 1419 + 0x0] x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e472b0 sp = 0x0000007fe7e47200 pc = 0x0000007ac3b44c44 Found by: call frame info 3 libxul.so!mozilla::dom::Element::GetCustomInterface<nsIDOMXULControlElement>(nsGetterAddRefs<nsIDOMXULControlElement>) [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4745] Found by: inlining 4 libxul.so!mozilla::dom::Element::AsXULControl() [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4920 + 0x10] x19 = 0x00000079dc8878c0 x20 = 0x0000007e2862f000 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e47300 sp = 0x0000007fe7e472f0 ``` (Full trace in attachment) Null deref at ``` Thread 0 AndroidUI (crashed) libxul.so!mozilla::CycleCollectedJSContext::Context() const [CycleCollectedJSContext.h:188] libxul.so!mozilla::dom::danger::GetJSContext() [ScriptSettings.cpp:263] ``` From ``` mozilla::a11y::SessionAccessibility::GetNodeInfo(...) ```
Hello, this re-land attempt is still crashing Geckoview in over 300+ UI tests for Fenix/Focus/GeckoView Example tests on Firebase Test Lab on CI https://treeherder.mozilla.org/jobs?repo=autoland&searchStr=ui-&revision=198df8d7a5a47e7a97d4fc4f4eca81b9c6e900f3 Example APK: https://firefox-ci-tc.services.mozilla.com/api/queue/v1/task/GYsWIHRvSDGj6mvVTETJOg/artifacts/public/build/target.arm64-v8a.apk ``` Operating system: Android 0.0.0 Linux 6.1.23-android14-4-00257-g7e35917775b8-ab9964412 #1 SMP PREEMPT Mon Apr 17 20:50:58 UTC 2023 aarch64 CPU: arm64 4 CPUs Crash reason: SIGSEGV / SEGV_MAPERR Crash address: 0x0000000000007230 Process uptime: not available Linux memory map count: 4810 Thread 0 AndroidUI (crashed) - tid: 9531 0 libxul.so!mozilla::CycleCollectedJSContext::Context() const [CycleCollectedJSContext.h:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 188] Found by: inlining 1 libxul.so!mozilla::dom::danger::GetJSContext() [ScriptSettings.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 263 + 0x0] x0 = 0x0000000000000000 x1 = 0x0000007ac105f680 x2 = 0x0000000000000000 x3 = 0x0000007ad0e57fa4 x4 = 0x0000007fe7e47c70 x5 = 0x00000000656c646e x6 = 0x00000000656c646e x7 = 0x0000007ad9d11e4f x8 = 0x0000007e2862f300 x9 = 0x0000007e2862f040 x10 = 0x0000000000000001 x11 = 0x0000000000000000 x12 = 0x0000000000000100 x13 = 0x0000007ac8ae6708 x14 = 0x000000008d44e65a x15 = 0x00000000ebad6a89 x16 = 0x0000007ac8c60b50 x17 = 0x0000007e2372b280 x18 = 0x0000000000000000 x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e471f0 lr = 0x0000007ac5b1652c sp = 0x0000007fe7e471f0 pc = 0x0000007ac5b1652c Found by: given as instruction pointer in context 2 libxul.so!mozilla::dom::CustomElementRegistry::CallGetCustomInterface(mozilla::dom::Element*, nsID const&) [CustomElementRegistry.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 1419 + 0x0] x19 = 0x0000007ac105f680 x20 = 0x0000007b4105fd80 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e472b0 sp = 0x0000007fe7e47200 pc = 0x0000007ac3b44c44 Found by: call frame info 3 libxul.so!mozilla::dom::Element::GetCustomInterface<nsIDOMXULControlElement>(nsGetterAddRefs<nsIDOMXULControlElement>) [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4745] Found by: inlining 4 libxul.so!mozilla::dom::Element::AsXULControl() [Element.cpp:e22c6ee37f2a9a8dac1fe933a0035bc887c788eb : 4920 + 0x10] x19 = 0x00000079dc8878c0 x20 = 0x0000007e2862f000 x21 = 0x00000079d8e0d0e0 x22 = 0x0000007e2862f000 x23 = 0x0000000000000000 x24 = 0x0000007e2862f000 x25 = 0x0003001100000000 x26 = 0x000000000000003f x27 = 0x0000007b42fe7b78 x28 = 0x0000007fe7e47d80 fp = 0x0000007fe7e47300 sp = 0x0000007fe7e472f0 ``` (Full trace in attachment) Null deref at ``` Thread 0 AndroidUI (crashed) libxul.so!mozilla::CycleCollectedJSContext::Context() const [CycleCollectedJSContext.h:188] libxul.so!mozilla::dom::danger::GetJSContext() [ScriptSettings.cpp:263] ``` From ``` mozilla::a11y::SessionAccessibility::GetNodeInfo(...) ```