1316926 - firefox: /home/worker/workspace/build/src/gfx/angle/src/compiler/translator/ParseContext.cpp:526: bool TParseContext::checkConstructorArguments(const TSourceLoc &, TIntermNode *, const TFunction &, TOperator, const TType &): Assertion `!type.isUnsizedArra

Status: RESOLVED FIXED

(Core :: Graphics: CanvasWebGL, defect)

Description

[Raymond Forbes[:rforbes]]

The following testcase crashes on mozilla-central revision 20161108-783356f1476e:

See attachment.


Backtrace:

Launch command: /home/ubuntu/firefox/firefox -no-remote -profile /tmp/ffprof_M74Eg7 http://127.0.0.1:8357

[13554] WARNING: NS_ENSURE_SUCCESS(rv, rv) failed with result 0x80520012: file /home/worker/workspace/build/src/extensions/cookie/nsPermissionManager.cpp, line 2622
ATTENTION: default value of option force_s3tc_enable overridden by environment.
[13554] WARNING: GLX_swap_control unsupported, ASAP mode may still block on buffer swaps.: file /home/worker/workspace/build/src/gfx/gl/GLContextProviderGLX.cpp, line 273
[13554] WARNING: SGI_video_sync unsupported. Falling back to software vsync.: file /home/worker/workspace/build/src/gfx/thebes/gfxPlatformGtk.cpp, line 894
++DOCSHELL 0x61a000170480 == 1 [pid = 13554] [id = 1]
++DOMWINDOW == 1 (0x619000522b80) [pid = 13554] [serial = 1] [outer = (nil)]
++DOMWINDOW == 2 (0x6190004ef780) [pid = 13554] [serial = 2] [outer = 0x619000522b80]
++DOCSHELL 0x61a0001b6680 == 2 [pid = 13554] [id = 2]
++DOMWINDOW == 3 (0x619000696e80) [pid = 13554] [serial = 3] [outer = (nil)]
++DOMWINDOW == 4 (0x619000696980) [pid = 13554] [serial = 4] [outer = 0x619000696e80]
++DOMWINDOW == 5 (0x6190006ce380) [pid = 13554] [serial = 5] [outer = 0x619000522b80]
[13554] WARNING: attempt to modify an immutable nsStandardURL: file /home/worker/workspace/build/src/netwerk/base/nsStandardURL.cpp, line 1566
[13554] WARNING: attempt to modify an immutable nsStandardURL: file /home/worker/workspace/build/src/netwerk/base/nsStandardURL.cpp, line 1566
[13554] WARNING: Failed to retarget HTML data delivery to the parser thread.: file /home/worker/workspace/build/src/parser/html/nsHtml5StreamParser.cpp, line 970
++DOCSHELL 0x61a000202280 == 3 [pid = 13554] [id = 3]
++DOMWINDOW == 6 (0x6190013b0a80) [pid = 13554] [serial = 6] [outer = (nil)]
++DOCSHELL 0x61a000201680 == 4 [pid = 13554] [id = 4]
++DOMWINDOW == 7 (0x6190013ef780) [pid = 13554] [serial = 7] [outer = (nil)]
++DOCSHELL 0x61a00005b880 == 5 [pid = 13554] [id = 5]
++DOMWINDOW == 8 (0x6190006cf780) [pid = 13554] [serial = 8] [outer = (nil)]
JavaScript warning: chrome://domfuzzhelper/content/fuzzPriv.js, line 303: unreachable code after return statement
JavaScript warning: chrome://domfuzzhelper/content/fuzzPriv.js, line 303: unreachable code after return statement
++DOMWINDOW == 9 (0x619000626180) [pid = 13554] [serial = 9] [outer = 0x6190006cf780]
DOMFuzzHelper created
++DOMWINDOW == 10 (0x6190009c0480) [pid = 13554] [serial = 10] [outer = 0x6190013b0a80]
++DOMWINDOW == 11 (0x6190009a0680) [pid = 13554] [serial = 11] [outer = 0x6190013ef780]
++DOMWINDOW == 12 (0x619000949380) [pid = 13554] [serial = 12] [outer = 0x6190006cf780]
DOMFuzzHelper created
[GLX] window 80001e has VisualID 0x18c
[13554] WARNING: Could not get disk status from nsIDiskSpaceWatcher: file /home/worker/workspace/build/src/uriloader/prefetch/nsOfflineCacheUpdateService.cpp, line 283
[13554] WARNING: cannot SetMetaDataElement: 'NS_SUCCEEDED(rv)', file /home/worker/workspace/build/src/dom/html/nsHTMLDocument.cpp, line 749
++DOMWINDOW == 13 (0x619001ba7180) [pid = 13554] [serial = 13] [outer = 0x6190006cf780]
[13554] WARNING: NS_ENSURE_SUCCESS(rv, rv) failed with result 0x804B0051: file /home/worker/workspace/build/src/dom/storage/DOMStorageManager.cpp, line 201
DOMFuzzHelper created
[13554] WARNING: cannot SetMetaDataElement: 'NS_SUCCEEDED(rv)', file /home/worker/workspace/build/src/dom/html/nsHTMLDocument.cpp, line 749
++DOMWINDOW == 14 (0x6190016bc080) [pid = 13554] [serial = 14] [outer = 0x6190006cf780]
DOMFuzzHelper created
[13554] WARNING: NS_ENSURE_TRUE(ParseTypeAttribute(type, &version)) failed: file /home/worker/workspace/build/src/dom/base/nsScriptLoader.cpp, line 1447
[13554] WARNING: NS_ENSURE_TRUE(ParseTypeAttribute(type, &version)) failed: file /home/worker/workspace/build/src/dom/base/nsScriptLoader.cpp, line 1447
err: checkConstructorArguments(526): 	! Assert failed in checkConstructorArguments(526): !type.isUnsizedArray()

firefox: /home/worker/workspace/build/src/gfx/angle/src/compiler/translator/ParseContext.cpp:526: bool TParseContext::checkConstructorArguments(const TSourceLoc &, TIntermNode *, const TFunction &, TOperator, const TType &): Assertion `!type.isUnsizedArray()' failed.
[Exit code: -6]

Comment 1

[Raymond Forbes[:rforbes]]

Attachment: Testcase

Comment 2

[Raymond Forbes[:rforbes]]

Attachment: testcase_reduced.html

Comment 3

[Ryan VanderMeulen [:RyanVM]]

Can we get a sec rating here please?

Comment 4

[Milan Sreckovic [:milan] (needinfo for best results)]

Ethan, can you reproduce this?  What about with the ANGLE update you're looking at?

Comment 5

[Ethan Lin[:ethlin]]

(In reply to Milan Sreckovic [:milan] from comment #4)
> Ethan, can you reproduce this?  What about with the ANGLE update you're
> looking at?

Yes, I can reproduce the problem and it's fixed with the ANGLE update.

Comment 6

[Ethan Lin[:ethlin]]

Bug 1319004 is fixed. I tested with the latest Nightly (2016-11-17) on windows and the crash didn't happen.

Comment 7

[Marcia Knous [:marcia]]

Tracking 53- and updated status flag.

Comment 8

[Ryan VanderMeulen [:RyanVM]]

Bug with known fixes aren't WFM.

Comment 9

[Kelsey Gilbert [:jgilbert]]

With bug 1319004 uplifted to 51, this is fixed there too.