Closed Bug 190007 Opened 22 years ago Closed 21 years ago

reproducible flash crash [@ VarHashTable::HashKey ]

Categories

(Core Graveyard :: Plug-ins, defect)

Product:
Core Graveyard
Component:
Plug-ins
Platform:
x86
Linux
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

(Not tracked)

Status:
RESOLVED WORKSFORME

People

(Reporter: jwz, Assigned: peterlubczynski-bugs)

References

(
URL
)

Details

(Keywords: crash, Whiteboard: [Flash issue])

Crash Data

Mozilla 1.2 Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2) Gecko/20021203 Linux 2.4.9-13smp #1 SMP Tue Oct 30 19:06:50 EST 2001 i686 unknown Red Hat Linux release 7.2 (Enigma) Shockwave Flash 6.0 r60 gdb /usr/lib/mozilla-1.2.1/mozilla-bin ... (gdb) r http://www.divstivs.plus.com/iconwar/ Starting program: /usr/lib/mozilla-1.2.1/mozilla-bin http://www.divstivs.plus.com/iconwar/ (no debugging symbols found)...(no debugging symbols found)... (no debugging symbols found)...[New Thread 1024 (LWP 11358)] [New Thread 2049 (LWP 11388)] [New Thread 1026 (LWP 11389)] [New Thread 2051 (LWP 11390)] [New Thread 3076 (LWP 11403)] [New Thread 4101 (LWP 11404)] [New Thread 5126 (LWP 11413)] Program received signal SIGSEGV, Segmentation fault. [Switching to Thread 1024 (LWP 11358)] 0x41df5b0e in VarHashTable::HashKey () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so (gdb) bt #0 0x41df5b0e in VarHashTable::HashKey () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #1 0x41df58f5 in HashTable::LookupItem () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #2 0x41ebc4aa in FontDirectory::Find () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #3 0x41eb8042 in PlatformEDevice::FindFont () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #4 0x41eb87e9 in PlatformEDevice::CreatePlatformFont () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #5 0x41eb93cd in PlatformEDevice::SetCharFormat () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #6 0x41eb9130 in PlatformECharFormat::SetPlatformCharFormat () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #7 0x41e046ed in ECharFormat::CalcMetrics () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #8 0x41e0cf3c in RichEdit::CalcLineMetrics () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #9 0x41e058a1 in RichEdit::CalcMaxVScrollIndex () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #10 0x41e0e910 in RichEdit::NotifyScroller () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #11 0x41e3c0a9 in SObject::Modify () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #12 0x41e623b0 in CorePlayer::UpdateEditText () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #13 0x41e6233b in UpdateEditTextProc () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #14 0x41df56ec in HashTable::ForEach () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #15 0x41e62460 in CorePlayer::UpdateEditText () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #16 0x41e61b33 in CorePlayer::DoActions () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #17 0x41e52a3c in ScriptPlayer::PushDataComplete () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #18 0x41e46c10 in ScriptPlayer::PushImageData () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #19 0x41e6a46c in CorePlayer::UrlStreamWriteNotify () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #20 0x41e6a437 in CorePlayer::UrlStreamWrite () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #21 0x41e74e34 in URLStream::StreamWrite () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #22 0x41ec4b8a in NPP_Write () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #23 0x41ec2dd4 in Private_Write () from /usr/lib/mozilla-1.2.1/plugins/libflashplayer.so #24 0x40eb2c47 in ns4xPluginStreamListener::OnDataAvailable () from /usr/lib/mozilla-1.2.1/components/libgkplugin.so #25 0x40eb8ddb in nsPluginStreamListenerPeer::OnDataAvailable () from /usr/lib/mozilla-1.2.1/components/libgkplugin.so #26 0x407174c2 in nsStreamListenerTee::OnDataAvailable () from /usr/lib/mozilla-1.2.1/components/libnecko.so #27 0x40754341 in nsHttpChannel::OnDataAvailable () from /usr/lib/mozilla-1.2.1/components/libnecko.so #28 0x407167fd in nsOnDataAvailableEvent::HandleEvent () from /usr/lib/mozilla-1.2.1/components/libnecko.so #29 0x4070102b in nsARequestObserverEvent::HandlePLEvent () from /usr/lib/mozilla-1.2.1/components/libnecko.so #30 0x4018541f in PL_HandleEvent () from /usr/lib/libxpcom.so #31 0x4018532d in PL_ProcessPendingEvents () from /usr/lib/libxpcom.so #32 0x4018641f in nsEventQueueImpl::ProcessPendingEvents () from /usr/lib/libxpcom.so #33 0x40b4ee06 in event_processor_callback () from /usr/lib/mozilla-1.2.1/components/libwidget_gtk.so #34 0x40b4eb55 in our_gdk_io_invoke () from /usr/lib/mozilla-1.2.1/components/libwidget_gtk.so #35 0x40395a7a in g_io_unix_dispatch (source_data=0x80ae468, current_time=0xbffff660, user_data=0x8163478) at giounix.c:137 #36 0x40397055 in g_main_dispatch (dispatch_time=0xbffff660) at gmain.c:656 #37 0x40397659 in g_main_iterate (block=1, dispatch=1) at gmain.c:877 #38 0x403977e8 in g_main_run (loop=0x8190830) at gmain.c:935 #39 0x402b3203 in gtk_main () from /usr/lib/libgtk-1.2.so.0 #40 0x40b4f24e in nsAppShell::Run () from /usr/lib/mozilla-1.2.1/components/libwidget_gtk.so #41 0x40b33472 in nsAppShellService::Run () from /usr/lib/mozilla-1.2.1/components/libnsappshell.so #42 0x08053394 in main1 () #43 0x08053ca5 in main () #44 0x40537336 in __libc_start_main (main=0x8053b48 <main>, argc=2, ubp_av=0xbffffa74, init=0x804d130 <_init>, fini=0x8055570 <_fini>, rtld_fini=0x4000d2fc <_dl_fini>, stack_end=0xbffffa6c) at ../sysdeps/generic/libc-start.c:129 (gdb) quit
looks like a crash in the hacky ("we won't use the X font mechanism just because") font code in the plugin itself...
Severity: major → critical
Keywords: crash
fwiw, I don't crash on Win2k using build 20030125 + Flash 6.0r65.
Summary: reproducible flash crash → reproducible flash crash [@ VarHashTable::HashKey ]
Whiteboard: [Flash issue]
Blocks: 211213
do you still crash using Flash 6.0r81 ? I couldn't get FF 20040319 on Linux to crash.
That URL does not crash for me using Flash 6.0 r79 and Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040116 (It also doesn't do anything: the flash plugin is running (right button menu pops up) but the page is blank.)
The Flash URL is a 404, can you try this URL which has the same Flash movie I believe ? http://www.anycities.com/user/volkomen/iconwars.html
URL: http://www.divstivs.plus.com/iconwar/http://www.anycities.com/user/volkome...
That one ran fine.
Marking WFM then.
Status: NEW → RESOLVED
Closed: 21 years ago
Resolution: --- → WORKSFORME
Crash Signature: [@ VarHashTable::HashKey ]
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.