Closed Bug 1121608 Opened 11 years ago Closed 11 years ago

Firefox 35 segfault: JS::Rooted<JSObject*>::Rooted (this=0x7fffffff57f0, cx=0x7fffffff5860, _notifier=...) at ../../dist/include/js/RootingAPI.h:746

Categories

(Core :: General, defect)

Product:
Core
Component:
General
Version:
35 Branch
Platform:
x86_64
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: u209627, Unassigned)

Details

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:34.0) Gecko/20100101 Firefox/34.0 Build ID: 20141204230807 Steps to reproduce: I compiled Firefox 35.0 with "-march=native -O3" with gcc 4.9.2. When trying to start it, I get: Program received signal SIGSEGV, Segmentation fault. 0x00007ffff25d53b6 in JS::Rooted<JSObject*>::Rooted (this=0x7fffffff57f0, cx=0x7fffffff5860, _notifier=...) at ../../dist/include/js/RootingAPI.h:746 746 MOZ_ASSERT(js::IsInRequest(cx)); (gdb) bt #0 0x00007ffff25d53b6 in JS::Rooted<JSObject*>::Rooted (this=0x7fffffff57f0, cx=0x7fffffff5860, _notifier=...) at ../../dist/include/js/RootingAPI.h:746 #1 0x00007ffff2611eca in nsXPCComponents_Utils::EvalInSandbox (this=<optimized out>, source=..., sandboxVal=..., version=..., filenameArg=..., lineNumber=0, cx=0x7fffffff5860, optionalArgc=128 '\200', retval=$jsval(6.9533334278153851e-310)) at /home/fraga/src/mozilla/js/xpconnect/src/XPCComponents.cpp:2635 #2 0x00007ffff20e8a79 in NS_InvokeByIndex (that=<optimized out>, methodIndex=<optimized out>, paramCount=<optimized out>, params=<optimized out>) at /home/fraga/src/mozilla/xpcom/reflect/xptcall/md/unix/xptcinvoke_x86_64_unix.cpp:164 #3 0x00007ffff265642e in Invoke (this=0x7fffffff5990) at /home/fraga/src/mozilla/js/xpconnect/src/XPCWrappedNative.cpp:2396 #4 CallMethodHelper::Call (this=0x7fffffff5990) at /home/fraga/src/mozilla/js/xpconnect/src/XPCWrappedNative.cpp:1748 #5 0x00007ffff2653c4d in XPCWrappedNative::CallMethod (ccx=..., mode=mode@entry=XPCWrappedNative::CALL_METHOD) at /home/fraga/src/mozilla/js/xpconnect/src/XPCWrappedNative.cpp:1715 #6 0x00007ffff265bb3b in XPC_WN_CallMethod (cx=0x7ffff6a6b690, argc=<optimized out>, vp=0x7fffffff5c90) at /home/fraga/src/mozilla/js/xpconnect/src/XPCWrappedNativeJSOps.cpp:1247 #7 0x00007fffe5555e48 in ?? () #8 0x0000000000000000 in ?? ()
From my amateur triage eyes, reading bug 1111355, this doesn't seem materially different from either that or bug 1117023. Mike probably knows better than I do, though.
Flags: needinfo?(mh+mozilla)
Product: Firefox → Core
They all are likely the same thing, as well as bug 1063307... And since they all involve xptcall, there might be a problem with alignment there, as pointed out in one of the bugs. There is also bug 680547 that likely is the same thing too.
Flags: needinfo?(mh+mozilla)
(In reply to Mike Hommey [:glandium] from comment #2) > They all are likely the same thing, as well as bug 1063307... > And since they all involve xptcall, there might be a problem with alignment > there, as pointed out in one of the bugs. > > There is also bug 680547 that likely is the same thing too. If you need help debugging this, just ask. Although I'm just an user, I can test patches etc. Just give me instructions. Thanks.
I'm marking this as RESOLVED since the following patch fixes the problem: https://hg.mozilla.org/integration/mozilla-inbound/rev/3023f9390942
Status: UNCONFIRMED → RESOLVED
Closed: 11 years ago
Resolution: --- → WORKSFORME
Moving from Core::Untriaged to Core::General https://bugzilla.mozilla.org/show_bug.cgi?id=1407598
Component: Untriaged → General
You need to log in before you can comment on or make changes to this bug.