Closed Bug 1623770 Opened 5 years ago Closed 5 years ago

Crash in [@ __memcpy_sse2_unaligned_erms | ChunkedJSONWriteFunc::CopyDataIntoLazilyAllocatedBuffer]

Tracking

()

Status:

RESOLVED FIXED

Milestone:

mozilla77

Tracking Flags:

Tracking

Status

firefox-esr68

---

unaffected

firefox75

---

unaffected

firefox76

---

wontfix

firefox77

---

fixed

People

(Reporter: mccr8, Assigned: canova)

Details

(Keywords: crash)

Crash Data

Attachments

(1 file)

Bug 1623770 - Return early if failed to allocate a memory in CopyDataIntoLazilyAllocatedBuffer. r?gerald 5 years ago Nazım Can Altınova [:canova][:canaltinova on phabricator] 47 bytes, text/x-phabricator-request		Details \| Review

Andrew McCreight [:mccr8]

Reporter

Description

•

5 years ago

This bug is for crash report bp-689ca3f6-aa1f-423c-967f-a2b680200319.

Top 10 frames of crashing thread:

0 libc-2.27.so __memcpy_sse2_unaligned_erms 
1 libxul.so ChunkedJSONWriteFunc::CopyDataIntoLazilyAllocatedBuffer const tools/profiler/core/ProfileJSONWriter.cpp:54
2 libxul.so profiler_get_profile_json_into_lazily_allocated_buffer tools/profiler/core/platform.cpp:3825
3 libxul.so mozilla::ProfilerChild::RecvGatherProfile tools/profiler/gecko/ProfilerChild.cpp:89
4 libxul.so mozilla::PProfilerChild::OnMessageReceived ipc/ipdl/PProfilerChild.cpp:252
5 libxul.so mozilla::ipc::MessageChannel::DispatchMessage ipc/glue/MessageChannel.cpp:2187
6 libxul.so mozilla::ipc::MessageChannel::MessageTask::Run ipc/glue/MessageChannel.cpp:1990
7 libxul.so nsThread::ProcessNextEvent xpcom/threads/nsThread.cpp:1220
8 libxul.so mozilla::ipc::MessagePumpForNonMainThreads::Run ipc/glue/MessagePump.cpp:332
9 libxul.so MessageLoop::Run ipc/chromium/src/base/message_loop.cc:290

Gerald Squelart (he/him) (not at Mozilla since 2022-09-15)

Updated

•

5 years ago

Priority: -- → P1

Gerald Squelart (he/him) (not at Mozilla since 2022-09-15)

Comment 1

•

5 years ago

https://searchfox.org/mozilla-central/rev/d2cec90777d573585f8477d5170892e5dcdfb0ab/tools/profiler/core/ProfileJSONWriter.cpp#51,54
I'm suspecting that ptr is null (probable OOM), we should check it before using it.

I have the odd feeling that I recently reviewed code that did just that! Nazim, was that yours?

Flags: needinfo?(canaltinova)

Nazım Can Altınova [:canova][:canaltinova on phabricator]

Assignee

Comment 2

•

5 years ago

Yeah it looks like we failed to allocate a memory there. I don't remember having a patch, but I can write a quick fix.

Flags: needinfo?(canaltinova)

Nazım Can Altınova [:canova][:canaltinova on phabricator]

Assignee

Comment 3

•

5 years ago

Attached file Bug 1623770 - Return early if failed to allocate a memory in CopyDataIntoLazilyAllocatedBuffer. r?gerald — Details

Phabricator Automation

Updated

•

5 years ago

Assignee: nobody → canaltinova

Status: NEW → ASSIGNED

Pulsebot

Comment 4

•

5 years ago

Pushed by canaltinova@gmail.com: https://hg.mozilla.org/integration/autoland/rev/3c419a37f51b Return early if failed to allocate a memory in CopyDataIntoLazilyAllocatedBuffer. r=gerald

Cristian Brindusan [:cbrindusan]

Comment 5

•

5 years ago

bugherder

https://hg.mozilla.org/mozilla-central/rev/3c419a37f51b

Status: ASSIGNED → RESOLVED

Closed: 5 years ago

status-firefox77: --- → fixed

Resolution: --- → FIXED

Target Milestone: --- → mozilla77

Ryan VanderMeulen [:RyanVM]

Updated

•

5 years ago

status-firefox75: --- → unaffected

status-firefox76: --- → wontfix

status-firefox-esr68: --- → unaffected

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Crash in [@ __memcpy_sse2_unaligned_erms | ChunkedJSONWriteFunc::CopyDataIntoLazilyAllocatedBuffer]

Categories

(Core :: Gecko Profiler, defect, P1)

Tracking

()

People

(Reporter: mccr8, Assigned: canova)

References

Details

(Keywords: crash)

Crash Data

Security

(public)

User Story

Attachments

(1 file)

Description

Updated

Comment 1

Comment 2

Comment 3

Updated

Comment 4

Comment 5

Updated

Attachment

General

Description

File Name

Content Type