Closed Bug 1764340 Opened 3 years ago Closed 3 years ago

firefox crashes on planet.gnome.org

Categories

(Core :: Widget: Gtk, defect)

Product:
Core
Component:
Widget: Gtk
Version:
Firefox 99
Type:
defect

Tracking

()

Status:
RESOLVED INVALID

People

(Reporter: adjam, Unassigned)

References

Details

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Firefox/91.0

Steps to reproduce:

firefox (on my linux box) crashes while loading planet.gnome.org site. The same does NOT happen on Windows.

Actual results:

tab crashes

Expected results:

tab loads the site

The Bugbug bot thinks this bug should belong to the 'Core::Widget: Gtk' component, and is moving the bug to that component. Please correct in case you think the bot is wrong.

Component: Untriaged → Widget: Gtk
Product: Firefox → Core

Can't repro, can you paste a crash report URI from about:crashes?

Flags: needinfo?(adjam)

It seems it's a null pointer deref deep inside freetype, but we have no useful stack there

Can you use an official build downloaded from either https://nightly.mozilla.org or https://www.mozilla.org/en-US/firefox/ and report if it crashes (and if so paste the link since it most likely will have more useful crash information)?

Thanks.

I downloaded firefox form https://nightly.mozilla.org/, launched it, left open just one tab, launched planet.gnome.org. And it crashes as usual.
Here is the backtrace: https://crash-stats.mozilla.org/report/index/a15d0445-ef34-4cb9-945c-daf5c0220418

Ugh, it seems something is borked in your freetype install, what freetype version do you have?

freetype 2.12.0. Defaults from Arch Linux repo

Jonathan, any idea? Seems hard to diagnose without FreeType symbols...

Flags: needinfo?(jfkthame)

My guess -- though without freetype symbols, it's hard to confirm exactly what's happening -- is that it's triggered by the site's use of the Source Code Pro font, which includes an 'SVG' table for certain symbol/emoji glyphs.

Note that the News & Updates at http://freetype.org/, dated 2022-03-31, says that:

The main new feature of this release is support for OpenType fonts with an ‘SVG’ table....

So I suspect there's a problem with that code, or with how it's configured.

(Also, I'm aware that RyanVM started to look in to updating our in-tree freetype (used on Android) to 2.12.0, and ran into problems related to the SVG glyph support.)

Flags: needinfo?(jfkthame)

Ok, I think I should have a system with a new enough version of Freetype at home, so would be able to test this evening or tomorrow.

Flags: needinfo?(emilio)

So I locally built freetype and confirmed that Firefox is using it, but I couldn't repro still.

https://gitlab.freedesktop.org/freetype/freetype/-/commit/978eefee5401abee6bf702c6bcde9afb47893145 looks somewhat related tho, and was fixed yesterday.

I couldn't repro even reverting it. Reporter, does updating Freetype to current trunk fix the issue with you? You can do this with:

$ git clone https://gitlab.freedesktop.org/freetype/freetype.git
$ cd freetype
$ meson build
$ cd build
$ ninja
$ LD_LIBRARY_PATH=$(pwd) firefox https://planet.gnome.org
Flags: needinfo?(emilio) → needinfo?(adjam)

I can confirm that following your procedure firefox doesn't crash. I just noticed it takes a plain minute to fully load the site, while it usually needed a couple of seconds. But it doesn't crashes.
Guess you can close this, while I have to fill a bug in arch bugzilla.
Thank you very much for your time and your suggestions :)

Flags: needinfo?(adjam)

No problem! Glad we got to the bottom of this.

Status: UNCONFIRMED → RESOLVED
Closed: 3 years ago
Resolution: --- → INVALID
See Also: → 1764883
You need to log in before you can comment on or make changes to this bug.