Crash in [@ mozilla::jni::detail::Accessor<T>::Accessor]
Categories
(GeckoView :: General, defect, P2)
Tracking
(Not tracked)
People
(Reporter: amejia, Unassigned)
References
Details
(Keywords: crash, topcrash)
Crash Data
Crash report: https://crash-stats.mozilla.org/report/index/a61c1a02-0e94-44f4-8236-3efda0230120
Reason: SIGSEGV / SEGV_MAPERR
Top 10 frames of crashing thread:
0 libxul.so RefPtr<mozilla::jni::detail::NativeWeakPtrControlBlock<mozilla::a11y::SessionAccessibility> >::RefPtr mfbt/RefPtr.h:93
0 libxul.so mozilla::jni::detail::Accessor<mozilla::a11y::SessionAccessibility>::Accessor widget/android/jni/Natives.h:743
0 libxul.so mozilla::jni::NativeWeakPtr<mozilla::a11y::SessionAccessibility>::Access const widget/android/jni/Natives.h:789
0 libxul.so mozilla::jni::detail::NativePtrTraits<mozilla::a11y::SessionAccessibility, widget/android/jni/Natives.h:1006
0 libxul.so mozilla::jni::NativeStub<mozilla::java::SessionAccessibility::NativeProvider::IsCacheEnabled_t, mozilla::a11y::SessionAccessibility, mozilla::jni::Args<> >::Wrap<&mozilla::a11y::SessionAccessibility widget/android/jni/Natives.h:1398
1 base.odex base.odex@0x2a9794
2 base.art] base.art]@0x3622bc
3 base.odex base.odex@0xd15c74
4 base.art] base.art]@0x30742c
5 memfd:jit-cache (deleted) memfd:jit-cache @0x201c174
Reporter | ||
Updated•2 years ago
|
Comment 1•2 years ago
|
||
This appears to have spiked in the 106 timeframe, which would correlate to when CtW was enabled by default for Android. Any thoughts, Jamie?
Updated•2 years ago
|
Comment 2•2 years ago
|
||
Redirecting to Eitan. Perhaps we cleared the SessionAccessibility pointer without calling setAttached somehow?
Comment 3•2 years ago
|
||
This has to do with the conversion to weak references in bug 1651705, I think. When we shut down in the gecko thread we queue a message to the UI thread saying we are detached, but perhaps the UI thread runnable isn't run until after the fatal JNI call. I am not familiar enough with GeckoView JNI object lifecycle to confidently say what will fix this. But I could say that caching the caching-enabled boolean on the Java side seems trivial and might remedy this specific JNI call failure.
Comment 4•2 years ago
|
||
The bug is linked to a topcrash signature, which matches the following criterion:
- Top 10 AArch64 and ARM crashes on release
:Jamie, could you consider increasing the severity of this top-crash bug?
For more information, please visit auto_nag documentation.
Updated•2 years ago
|
Comment 5•2 years ago
|
||
The bug is linked to a topcrash signature, which matches the following criterion:
- Top 10 AArch64 and ARM crashes on release (startup)
For more information, please visit auto_nag documentation.
Comment 6•2 years ago
|
||
I'm truly stumped by this. Since this is in the android widget code I'm going to move this to the GV component so it gets visibility there.
Bryan, is there someone in the GeckoView team who is familiar with the intricacies of our JNI code that can advise on this?
Updated•2 years ago
|
Comment 7•2 years ago
|
||
Based on the topcrash criteria, the crash signature linked to this bug is not a topcrash signature anymore.
For more information, please visit auto_nag documentation.
Comment 8•2 years ago
|
||
dup to old bug
Updated•2 years ago
|
Updated•4 months ago
|
Description
•