Closed Bug 193357 Opened 23 years ago Closed 22 years ago

Crash during loading of web page

Categories

(Core :: Layout, defect, P2)

Product:
Core
Component:
Layout
Platform:
x86
Linux
Type:
defect

Tracking

()

Status:
RESOLVED DUPLICATE of bug 180309

People

(Reporter: rahul, Unassigned)

References

(
URL
)

Details

(Keywords: crash)

User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20030207 Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.2.1) Gecko/20030207 When visiting http://i2cs.cs.uiuc.edu/, Mozilla crashes after the page has been partially loaded. I have reproduced this with 1.3a as well. The crash does not occur with Mozilla 1.2.1/1.3x on Windows. Reproducible: Always Steps to Reproduce: 1.Visit http://i2cs.cs.uiuc.edu/ Actual Results: Mozilla crashes Expected Results: Should have displayed the web page Gentoo Linux, gcc 3.2.1, glibc 2.3.1
page seems to load with Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.3b) Gecko/20030214
wfm 2003021008/linux
Just wanted to add that I am using an GTK2 XFT build, which might be a factor.
Keywords: crash
WFM with linux trunk 20030214 and CVS gtk2/xft could you grab a stacktrace with gdb?
Hope this is what you are looking for. Program received signal SIGSEGV, Segmentation fault. 0x41dadb54 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so
A more complete trace: #0 0x41dadb54 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #1 0x41da42a9 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #2 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #3 0x41d51d5e in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #4 0x41d65410 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #5 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #6 0x41d51d5e in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #7 0x41d65410 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #8 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #9 0x41d51d5e in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #10 0x41d65410 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #11 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #12 0x41d4a3bd in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #13 0x41d4a18a in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #14 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #15 0x41d51d5e in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #16 0x41e0faa6 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #17 0x41e298a9 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #18 0x41e2972f in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #19 0x41e2c434 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #20 0x41e2c2d3 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #21 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #22 0x41d51d5e in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #23 0x41e16152 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #24 0x41e16306 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #25 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #26 0x41e24af4 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #27 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #28 0x41d4a3bd in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #29 0x41d4a18a in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #30 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #31 0x41d4a3bd in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #32 0x41d4a18a in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #33 0x41d51eab in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #34 0x41d51d5e in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #35 0x41d65410 in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #36 0x41d6648c in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #37 0x41d99b9f in NSGetModule () from /usr/lib/mozilla/components/libgklayout.so #38 0x41f1926e in NSGetModule () from /usr/lib/mozilla/components/libgkview.so #39 0x41f232e6 in NSGetModule () from /usr/lib/mozilla/components/libgkview.so #40 0x41f2310f in NSGetModule () from /usr/lib/mozilla/components/libgkview.so #41 0x41f21d1a in NSGetModule () from /usr/lib/mozilla/components/libgkview.so #42 0x41f24558 in NSGetModule () from /usr/lib/mozilla/components/libgkview.so #43 0x41f18aaa in NSGetModule () from /usr/lib/mozilla/components/libgkview.so #44 0x409da9a0 in nsCommonWidget::DispatchEvent(nsGUIEvent*, nsEventStatus&) () from /usr/lib/mozilla/components/libwidget_gtk2.so #45 0x409d1f3b in nsWindow::OnExposeEvent(_GtkWidget*, _GdkEventExpose*) () from /usr/lib/mozilla/components/libwidget_gtk2.so #46 0x409d58cf in nsWindow::SetPluginType(int) () from /usr/lib/mozilla/components/libwidget_gtk2.so #47 0x40ba5f5f in _gtk_marshal_BOOLEAN__BOXED () from /usr/lib/libgtk-x11-2.0.so.0 #48 0x40e28eb7 in g_closure_invoke () from /usr/lib/libgobject-2.0.so.0 #49 0x40e3b794 in signal_emit_unlocked_R () from /usr/lib/libgobject-2.0.so.0 #50 0x40e3a517 in g_signal_emit_valist () from /usr/lib/libgobject-2.0.so.0 #51 0x40e3a9f4 in g_signal_emit () from /usr/lib/libgobject-2.0.so.0 #52 0x40c8cc0e in gtk_widget_event_internal () from /usr/lib/libgtk-x11-2.0.so.0 #53 0x40ba49e9 in gtk_main_do_event () from /usr/lib/libgtk-x11-2.0.so.0 #54 0x40d538ac in gdk_window_process_updates_internal () from /usr/lib/libgdk-x11-2.0.so.0 #55 0x40d53a6a in gdk_window_process_all_updates () from /usr/lib/libgdk-x11-2.0.so.0 #56 0x40d53ad1 in gdk_window_update_idle () from /usr/lib/libgdk-x11-2.0.so.0 #57 0x40e80553 in g_idle_dispatch () from /usr/lib/libglib-2.0.so.0 #58 0x40e80845 in g_main_dispatch () from /usr/lib/libglib-2.0.so.0 #59 0x40e7ebf8 in g_main_context_dispatch () from /usr/lib/libglib-2.0.so.0 #60 0x40e80ceb in g_main_context_iterate () from /usr/lib/libglib-2.0.so.0 #61 0x40e7f1df in g_main_loop_run () from /usr/lib/libglib-2.0.so.0 #62 0x40ba426f in gtk_main () from /usr/lib/libgtk-x11-2.0.so.0 #63 0x409d8c44 in nsAppShell::Run() () from /usr/lib/mozilla/components/libwidget_gtk2.so #64 0x409a9f24 in NSGetModule () from /usr/lib/mozilla/components/libnsappshell.so #65 0x080514dd in nsAString::do_AssignFromReadable(nsAString const&) () #66 0x0804c535 in nsAString::do_AssignFromReadable(nsAString const&) () #67 0x4037ee54 in __libc_start_main () from /lib/libc.so.6
==> layout but to get something more useful you need to recompile (layout at least) without --enable-strip
Assignee: asa → other
Component: Browser-General → Layout
QA Contact: asa → ian
Okay, this crash is reproducible with "-03 -pipe", "-O2 pipe" and "-Os -pipe". Will compile without --enable-strip and capture trace.
Here is a stacktrace from a debug build. Interestingly, I could not trigger the crash using http://i2cs.cs.uiuc.edu/. My other test case http://forums.gentoo.org yielded this trace. #0 0x40cfd4cb in nsTextFrame::TextStyle::TextStyle(nsIPresContext*, nsIRenderingContext&, nsIStyleContext*) () from /usr/lib/mozilla/components/libgklayout.so #1 0x40cf043b in nsTextFrame::Paint(nsIPresContext*, nsIRenderingContext&, nsRect const&, nsFramePaintLayer, unsigned) () from /usr/lib/mozilla/components/libgklayout.so #2 0x40c5b7fc in nsContainerFrame::PaintChild(nsIPresContext*, nsIRenderingContext&, nsRect const&, nsIFrame*, nsFramePaintLayer, unsigned) () from /usr/lib/mozilla/components/libgklayout.so #3 0x40c4abcf in nsBlockFrame::PaintChildren(nsIPresContext*, nsIRenderingContext&, nsRect const&, nsFramePaintLayer, unsigned) () from /usr/lib/mozilla/components/libgklayout.so #4 0x40c836ac in nsHTMLContainerFrame::PaintDecorationsAndChildren(nsIPresContext*, nsIRenderingContext&, nsRect const&, nsFramePaintLayer, int, unsigned) () from /usr/lib/mozilla/components/libgklayout.so #5 0x40c4a6e9 in nsBlockFrame::Paint(nsIPresContext*, nsIRenderingContext&, nsRect const&, nsFramePaintLayer, unsigned) () from /usr/lib/mozilla/components/libgklayout.so #6 0x40c5b7fc in nsContainerFrame::PaintChild(nsIPresContext*, nsIRenderingContext&, nsRect const&, nsIFrame*, nsFramePaintLayer, unsigned) () from /usr/lib/mozilla/components/libgklayout.so #7 0x40c5b682 in nsContainerFrame::PaintChildren(nsIPresContext*, nsIRenderingContext&, nsRect const&, nsFramePaintLayer, unsigned) () from /usr/lib/mozilla/components/libgklayout.so #8 0x40d88072 in nsTableCellFrame::Paint(nsIPresContext*, nsIRenderingContext&, nsRect const&, nsFramePaintLayer, unsigned) () from /usr/lib/mozilla/components/libgklayout.so
Priority: -- → P2
I was able to reporduce the bug with a minimal test case that involved specifying the font "MS Sans Serif" for some text. After removing this and some other invalid fonts from my directory, the crashes stopped happening. Not sure if this is an Xft bug, but perhaps the handling of unexpected results from Xft should be improved. WORKAROUND: Remove offending fonts from font directory
WFM! Gentoo Linux, Mozilla 2003030703, gcc 3.2.2, glibc unknown.
ok, it sounds like you're seeing bug 180309. were the invalid fonts ".fon" fonts?
Yes, *.fon files indeed. Please mark this bug as duplicate.
*** This bug has been marked as a duplicate of 180309 ***
Status: UNCONFIRMED → RESOLVED
Closed: 22 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.