Open Bug 1711185 Opened 4 months ago Updated 4 months ago

Crash in [@ @0x0 | cso_destroy_context]

Categories

(Core :: Graphics, defect, P3)

Desktop
Linux
defect

Tracking

()

People

(Reporter: gsvelto, Unassigned)

References

(Blocks 1 open bug)

Details

(Keywords: crash)

Crash Data

Crash report: https://crash-stats.mozilla.org/report/index/74687757-59ee-4ad5-bbd2-f8c560210513

Reason: SIGSEGV /SEGV_MAPERR

Top 10 frames of crashing thread:

0  @0x0 
1 libgallium_dri.so cso_destroy_context src/gallium/auxiliary/cso_cache/cso_context.c:416
2 libgallium_dri.so st_destroy_context_priv src/mesa/state_tracker/st_context.c:469
3 libgallium_dri.so st_destroy_context src/mesa/state_tracker/st_context.c:1119
4 libgallium_dri.so dri_destroy_context 
5 libgallium_dri.so driDestroyContext src/mesa/drivers/dri/common/dri_util.c:528
6 libGLX_mesa.so.0 dri2_destroy_context src/glx/dri2_glx.c:123
7 libGLX_mesa.so.0 glXDestroyContext src/glx/glxcmds.c:492
8 libxul.so mozilla::gl::GLContextGLX::~GLContextGLX /build/firefox-g99BAt/firefox-88.0.1+build1/gfx/gl/GLContextProviderGLX.cpp:572
9 libxul.so mozilla::gl::GLContextGLX::~GLContextGLX /build/firefox-g99BAt/firefox-88.0.1+build1/gfx/gl/GLContextProviderGLX.cpp:555

Mesa seems to be jumping into a NULL pointer deep into the gallium code while destroying a context. This is most likely a flaw in Mesa but given the volume is non trivial it might be worth keeping an eye on it.

Note: it seems to affect only older AMD integrated graphics and people using Mesa's software rendering back-end.

OS: Unspecified → Linux
Hardware: Unspecified → Desktop
Severity: -- → S3
Priority: -- → P3
You need to log in before you can comment on or make changes to this bug.