Closed Bug 1540938 Opened 6 years ago Closed 6 years ago

Intermittent AddressSanitizer: SEGV /builds/worker/workspace/build/src/obj-firefox/dist/include/mozilla/Assertions.h:314:3 in MOZ_Crash(char const*, int, char const*)

Categories

(Core :: DOM: Web Authentication, defect)

defect
Not set
normal

Tracking

()

RESOLVED DUPLICATE of bug 1540658

People

(Reporter: NarcisB, Unassigned)

References

Details

[task 2019-03-30T22:52:26.186Z] 22:52:26 INFO - TEST-START | dom/webauthn/tests/browser/browser_fido_appid_extension.js
[task 2019-03-30T22:52:26.205Z] 22:52:26 INFO - GECKO(4087) | AddressSanitizer:DEADLYSIGNAL
[task 2019-03-30T22:52:26.206Z] 22:52:26 INFO - GECKO(4087) | =================================================================
[task 2019-03-30T22:52:26.207Z] 22:52:26 ERROR - GECKO(4087) | ==4087==ERROR: AddressSanitizer: SEGV on unknown address 0x000000000001 (pc 0x7fc319501e7c bp 0x7fc30a6bb050 sp 0x7fc30a6bb050 T21)
[task 2019-03-30T22:52:26.208Z] 22:52:26 INFO - GECKO(4087) | ==4087==The signal is caused by a WRITE memory access.
[task 2019-03-30T22:52:26.210Z] 22:52:26 INFO - GECKO(4087) | ==4087==Hint: address points to the zero page.
[task 2019-03-30T22:52:26.211Z] 22:52:26 INFO - GECKO(4087) | JavaScript error: , line 0: TypeError: can't access dead object
[task 2019-03-30T22:52:27.206Z] 22:52:27 INFO - GECKO(4087) | #0 0x7fc319501e7b in MOZ_Crash(char const*, int, char const*) /builds/worker/workspace/build/src/obj-firefox/dist/include/mozilla/Assertions.h:314:3
[task 2019-03-30T22:52:27.208Z] 22:52:27 INFO - GECKO(4087) | #1 0x7fc31950943a in mozilla::ipc::LogicError(char const*) /builds/worker/workspace/build/src/ipc/glue/ProtocolUtils.cpp:269:37
[task 2019-03-30T22:52:27.215Z] 22:52:27 INFO - GECKO(4087) | #2 0x7fc319c73c78 in mozilla::dom::PWebAuthnTransactionParent::SendAbort(unsigned long const&, nsresult const&) /builds/worker/workspace/build/src/obj-firefox/ipc/ipdl/PWebAuthnTransactionParent.cpp:145:9
[task 2019-03-30T22:52:27.235Z] 22:52:27 INFO - GECKO(4087) | #3 0x7fc3200f5581 in mozilla::dom::U2FTokenManager::ClearTransaction() /builds/worker/workspace/build/src/dom/webauthn/U2FTokenManager.cpp:183:35
[task 2019-03-30T22:52:27.236Z] 22:52:27 INFO - GECKO(4087) | #4 0x7fc319c72b01 in DestroySubtree /builds/worker/workspace/build/src/obj-firefox/ipc/ipdl/PWebAuthnTransactionParent.cpp:338:5
[task 2019-03-30T22:52:27.236Z] 22:52:27 INFO - GECKO(4087) | #5 0x7fc319c72b01 in mozilla::dom::PWebAuthnTransactionParent::Send__delete__(mozilla::dom::PWebAuthnTransactionParent*) /builds/worker/workspace/build/src/obj-firefox/ipc/ipdl/PWebAuthnTransactionParent.cpp:62
[task 2019-03-30T22:52:27.237Z] 22:52:27 INFO - GECKO(4087) | #6 0x7fc320115629 in mozilla::dom::WebAuthnTransactionParent::RecvDestroyMe() /builds/worker/workspace/build/src/dom/webauthn/WebAuthnTransactionParent.cpp:92:8
[task 2019-03-30T22:52:27.238Z] 22:52:27 INFO - GECKO(4087) | #7 0x7fc319c74dda in mozilla::dom::PWebAuthnTransactionParent::OnMessageReceived(IPC::Message const&) /builds/worker/workspace/build/src/obj-firefox/ipc/ipdl/PWebAuthnTransactionParent.cpp:290:69
[task 2019-03-30T22:52:27.255Z] 22:52:27 INFO - GECKO(4087) | #8 0x7fc319d3955c in mozilla::ipc::PBackgroundParent::OnMessageReceived(IPC::Message const&) /builds/worker/workspace/build/src/obj-firefox/ipc/ipdl/PBackgroundParent.cpp:2665:28
[task 2019-03-30T22:52:27.255Z] 22:52:27 INFO - GECKO(4087) | #9 0x7fc3194fe159 in mozilla::ipc::MessageChannel::DispatchAsyncMessage(IPC::Message const&) /builds/worker/workspace/build/src/ipc/glue/MessageChannel.cpp:2151:21
[task 2019-03-30T22:52:27.255Z] 22:52:27 INFO - GECKO(4087) | #10 0x7fc3194fb24c in mozilla::ipc::MessageChannel::DispatchMessage(IPC::Message&&) /builds/worker/workspace/build/src/ipc/glue/MessageChannel.cpp:2078:9
[task 2019-03-30T22:52:27.255Z] 22:52:27 INFO - GECKO(4087) | #11 0x7fc3194fcbcb in mozilla::ipc::MessageChannel::RunMessage(mozilla::ipc::MessageChannel::MessageTask&) /builds/worker/workspace/build/src/ipc/glue/MessageChannel.cpp:1937:3
[task 2019-03-30T22:52:27.255Z] 22:52:27 INFO - GECKO(4087) | #12 0x7fc3194fd137 in mozilla::ipc::MessageChannel::MessageTask::Run() /builds/worker/workspace/build/src/ipc/glue/MessageChannel.cpp:1968:13
[task 2019-03-30T22:52:27.272Z] 22:52:27 INFO - GECKO(4087) | #13 0x7fc31852f929 in nsThread::ProcessNextEvent(bool, bool*) /builds/worker/workspace/build/src/xpcom/threads/nsThread.cpp:1180:14
[task 2019-03-30T22:52:27.272Z] 22:52:27 INFO - GECKO(4087) | #14 0x7fc318535a18 in NS_ProcessNextEvent(nsIThread*, bool) /builds/worker/workspace/build/src/xpcom/threads/nsThreadUtils.cpp:482:10
[task 2019-03-30T22:52:27.272Z] 22:52:27 INFO - GECKO(4087) | #15 0x7fc3195066a0 in mozilla::ipc::MessagePumpForNonMainThreads::Run(base::MessagePump::Delegate*) /builds/worker/workspace/build/src/ipc/glue/MessagePump.cpp:333:5
[task 2019-03-30T22:52:27.272Z] 22:52:27 INFO - GECKO(4087) | #16 0x7fc3194380df in RunInternal /builds/worker/workspace/build/src/ipc/chromium/src/base/message_loop.cc:315:10
[task 2019-03-30T22:52:27.273Z] 22:52:27 INFO - GECKO(4087) | #17 0x7fc3194380df in RunHandler /builds/worker/workspace/build/src/ipc/chromium/src/base/message_loop.cc:308
[task 2019-03-30T22:52:27.273Z] 22:52:27 INFO - GECKO(4087) | #18 0x7fc3194380df in MessageLoop::Run() /builds/worker/workspace/build/src/ipc/chromium/src/base/message_loop.cc:290
[task 2019-03-30T22:52:27.274Z] 22:52:27 INFO - GECKO(4087) | #19 0x7fc3185298fa in nsThread::ThreadFunc(void*) /builds/worker/workspace/build/src/xpcom/threads/nsThread.cpp:454:11
[task 2019-03-30T22:52:27.275Z] 22:52:27 INFO - GECKO(4087) | #20 0x7fc335ad55ad in _pt_root /builds/worker/workspace/build/src/nsprpub/pr/src/pthreads/ptthread.c:201:5
[task 2019-03-30T22:52:27.276Z] 22:52:27 INFO - GECKO(4087) | #21 0x7fc3398156b9 in start_thread (/lib/x86_64-linux-gnu/libpthread.so.0+0x76b9)
[task 2019-03-30T22:52:27.354Z] 22:52:27 INFO - GECKO(4087) | #22 0x7fc33889e41c in clone /build/glibc-LK5gWL/glibc-2.23/misc/../sysdeps/unix/sysv/linux/x86_64/clone.S:109
[task 2019-03-30T22:52:27.356Z] 22:52:27 INFO - GECKO(4087) | AddressSanitizer can not provide additional info.
[task 2019-03-30T22:52:27.358Z] 22:52:27 INFO - GECKO(4087) | SUMMARY: AddressSanitizer: SEGV /builds/worker/workspace/build/src/obj-firefox/dist/include/mozilla/Assertions.h:314:3 in MOZ_Crash(char const*, int, char const*)
[task 2019-03-30T22:52:27.359Z] 22:52:27 INFO - GECKO(4087) | Thread T21 (IPDL Background) created by T0 here:
[task 2019-03-30T22:52:27.376Z] 22:52:27 INFO - GECKO(4087) | #0 0x56008ce5429d in pthread_create /builds/worker/workspace/moz-toolchain/src/llvm/projects/compiler-rt/lib/asan/asan_interceptors.cc:210:3
[task 2019-03-30T22:52:27.377Z] 22:52:27 INFO - GECKO(4087) | #1 0x7fc335ac7613 in _PR_CreateThread /builds/worker/workspace/build/src/nsprpub/pr/src/pthreads/ptthread.c:433:14
[task 2019-03-30T22:52:27.379Z] 22:52:27 INFO - GECKO(4087) | #2 0x7fc335ab109e in PR_CreateThread /builds/worker/workspace/build/src/nsprpub/pr/src/pthreads/ptthread.c:518:12
[task 2019-03-30T22:52:27.381Z] 22:52:27 INFO - GECKO(4087) | #3 0x7fc31852bc19 in nsThread::Init(nsTSubstring<char> const&) /builds/worker/workspace/build/src/xpcom/threads/nsThread.cpp:661:8
[task 2019-03-30T22:52:27.382Z] 22:52:27 INFO - GECKO(4087) | #4 0x7fc318534b60 in nsThreadManager::NewNamedThread(nsTSubstring<char> const&, unsigned int, nsIThread**) /builds/worker/workspace/build/src/xpcom/threads/nsThreadManager.cpp:416:12
[task 2019-03-30T22:52:27.382Z] 22:52:27 INFO - GECKO(4087) | #5 0x7fc3185388b9 in NS_NewNamedThread(nsTSubstring<char> const&, nsIThread**, nsIRunnable*, unsigned int) /builds/worker/workspace/build/src/xpcom/threads/nsThreadUtils.cpp:135:57
[task 2019-03-30T22:52:27.386Z] 22:52:27 INFO - GECKO(4087) | #6 0x7fc3194c57a9 in NS_NewNamedThread<16> /builds/worker/workspace/build/src/obj-firefox/dist/include/nsThreadUtils.h:71:10
[task 2019-03-30T22:52:27.389Z] 22:52:27 INFO - GECKO(4087) | #7 0x7fc3194c57a9 in (anonymous namespace)::ParentImpl::CreateBackgroundThread() /builds/worker/workspace/build/src/ipc/glue/BackgroundImpl.cpp:944
[task 2019-03-30T22:52:27.390Z] 22:52:27 INFO - GECKO(4087) | #8 0x7fc3194cac99 in RunOnMainThread /builds/worker/workspace/build/src/ipc/glue/BackgroundImpl.cpp:1244:30
[task 2019-03-30T22:52:27.392Z] 22:52:27 INFO - GECKO(4087) | #9 0x7fc3194cac99 in (anonymous namespace)::ParentImpl::CreateActorHelper::Run() /builds/worker/workspace/build/src/ipc/glue/BackgroundImpl.cpp:1263
[task 2019-03-30T22:52:27.393Z] 22:52:27 INFO - GECKO(4087) | #10 0x7fc31852f929 in nsThread::ProcessNextEvent(bool, bool*) /builds/worker/workspace/build/src/xpcom/threads/nsThread.cpp:1180:14
[task 2019-03-30T22:52:27.394Z] 22:52:27 INFO - GECKO(4087) | #11 0x7fc318535a18 in NS_ProcessNextEvent(nsIThread*, bool) /builds/worker/workspace/build/src/xpcom/threads/nsThreadUtils.cpp:482:10
[task 2019-03-30T22:52:27.395Z] 22:52:27 INFO - GECKO(4087) | #12 0x7fc31852dcfc in SpinEventLoopUntil<mozilla::ProcessFailureBehavior::ReportToCaller, (lambda at /builds/worker/workspace/build/src/xpcom/threads/nsThread.cpp:881:22)> /builds/worker/workspace/build/src/obj-firefox/dist/include/nsThreadUtils.h:348:25
[task 2019-03-30T22:52:27.396Z] 22:52:27 INFO - GECKO(4087) | #13 0x7fc31852dcfc in nsThread::Shutdown() /builds/worker/workspace/build/src/xpcom/threads/nsThread.cpp:881
[task 2019-03-30T22:52:27.405Z] 22:52:27 INFO - GECKO(4087) | #14 0x7fc319f69474 in applyImpl<nsIThread, nsresult (nsIThread::)()> /builds/worker/workspace/build/src/obj-firefox/dist/include/nsThreadUtils.h:1122:12
[task 2019-03-30T22:52:27.406Z] 22:52:27 INFO - GECKO(4087) | #15 0x7fc319f69474 in apply<nsIThread, nsresult (nsIThread::
)()> /builds/worker/workspace/build/src/obj-firefox/dist/include/nsThreadUtils.h:1128
[task 2019-03-30T22:52:27.407Z] 22:52:27 INFO - GECKO(4087) | #16 0x7fc319f69474 in mozilla::detail::RunnableMethodImpl<RefPtr<nsIThread>, nsresult (nsIThread::)(), true, (mozilla::RunnableKind)0>::Run() /builds/worker/workspace/build/src/obj-firefox/dist/include/nsThreadUtils.h:1174
[task 2019-03-30T22:52:27.408Z] 22:52:27 INFO - GECKO(4087) | #17 0x7fc31852f929 in nsThread::ProcessNextEvent(bool, bool
) /builds/worker/workspace/build/src/xpcom/threads/nsThread.cpp:1180:14
[task 2019-03-30T22:52:27.409Z] 22:52:27 INFO - GECKO(4087) | #18 0x7fc318535a18 in NS_ProcessNextEvent(nsIThread*, bool) /builds/worker/workspace/build/src/xpcom/threads/nsThreadUtils.cpp:482:10
[task 2019-03-30T22:52:27.410Z] 22:52:27 INFO - GECKO(4087) | #19 0x7fc318535280 in SpinEventLoopUntil<mozilla::ProcessFailureBehavior::ReportToCaller, (lambda at /builds/worker/workspace/build/src/xpcom/threads/nsThreadManager.cpp:489:36)> /builds/worker/workspace/build/src/obj-firefox/dist/include/nsThreadUtils.h:348:25
[task 2019-03-30T22:52:27.412Z] 22:52:27 INFO - GECKO(4087) | #20 0x7fc318535280 in nsThreadManager::SpinEventLoopUntilInternal(nsINestedEventLoopCondition*, bool) /builds/worker/workspace/build/src/xpcom/threads/nsThreadManager.cpp:489
[task 2019-03-30T22:52:27.418Z] 22:52:27 INFO - GECKO(4087) | #21 0x7fc31855a401 in NS_InvokeByIndex /builds/worker/workspace/build/src/xpcom/reflect/xptcall/md/unix/xptcinvoke_asm_x86_64_unix.S:106
[task 2019-03-30T22:52:27.436Z] 22:52:27 INFO - GECKO(4087) | #22 0x7fc31a039cf0 in Invoke /builds/worker/workspace/build/src/js/xpconnect/src/XPCWrappedNative.cpp:1630:10
[task 2019-03-30T22:52:27.436Z] 22:52:27 INFO - GECKO(4087) | #23 0x7fc31a039cf0 in Call /builds/worker/workspace/build/src/js/xpconnect/src/XPCWrappedNative.cpp:1178
[task 2019-03-30T22:52:27.436Z] 22:52:27 INFO - GECKO(4087) | #24 0x7fc31a039cf0 in XPCWrappedNative::CallMethod(XPCCallContext&, XPCWrappedNative::CallMode) /builds/worker/workspace/build/src/js/xpconnect/src/XPCWrappedNative.cpp:1144

Component: DOM: Security → DOM: Web Authentication
Flags: needinfo?(jjones)
See Also: → 1540378
Flags: needinfo?(jjones)
See Also: 15403781540658

This isn't released anywhere, and has a patch in bug 1540658. I don't think there's any need for this to be marked as a security bug.

Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → DUPLICATE
Group: core-security
You need to log in before you can comment on or make changes to this bug.