Closed Bug 522060 Opened 10 years ago Closed 10 years ago

crash @ mozce_shunt.dll!arena_chunk_init

Categories

(Core :: XPCOM, defect, blocker)

ARM
Windows Mobile 6 Professional
defect
Not set
blocker

Tracking

()

RESOLVED FIXED
Tracking Status
status1.9.2 --- beta1-fixed

People

(Reporter: dougt, Assigned: dougt)

Details

(Keywords: crash)

Attachments

(2 files)

the debugger might be lying, but chunk is null and so is the requested size we are trying to calloc.




 	mozce_shunt.dll!arena_chunk_init(arena_s* arena = 0x5e202000, arena_chunk_s* chunk = 0x00000000) Line: 3356, Byte Offsets: 0x30	C
 	mozce_shunt.dll!arena_run_alloc(arena_s* arena = 0x5e202000, arena_bin_s* bin = 0x00000000, unsigned int size = 12, unsigned char large = 0 '', unsigned char zero = 1 '') Line: 3520, Byte Offsets: 0x16c	C
 	mozce_shunt.dll!arena_malloc(arena_s* arena = 0x5e202000, unsigned int size = 0, unsigned char zero = 12 '') Line: 4119, Byte Offsets: 0x58	C
 	mozce_shunt.dll!calloc(unsigned int num = 1579163648, unsigned int size = 0) Line: 6296, Byte Offsets: 0xac	C
>	xul.dll!gfxImageSurface::gfxImageSurface(gfxIntSize& size = {...}, gfxASurface::gfxImageFormat format = 12) Line: 80, Byte Offsets: 0xbc	C++
 	xul.dll!gfxWindowsPlatform::CreateOffscreenSurface(gfxIntSize& size = {...}, gfxASurface::gfxImageFormat imageFormat = 113246208) Line: 193, Byte Offsets: 0xa8	C++
 	xul.dll!nsCanvasRenderingContext2D::SetDimensions(int width = 0, int height = 12) Line: 885, Byte Offsets: 0xd0	C++
 	xul.dll!nsHTMLCanvasElement::UpdateContext(void) Line: 506, Byte Offsets: 0x60	C++
 	xul.dll!nsHTMLCanvasElement::GetContext(nsAString_internal& aContextId = {...}, nsISupports** aContext = 0x0000000c) Line: 479, Byte Offsets: 0x1f0	C++
 	xul.dll!nsIDOMHTMLCanvasElement_GetContext(JSContext* cx = 0x5e202000, unsigned int argc = 0, int* vp = 0x0000000c) Line: 13322, Byte Offsets: 0x1fc	C++
 	js3250.dll!js_Interpret(JSContext* cx = 0x5e202000) Line: 2217, Byte Offsets: 0x5c44	C++
 	js3250.dll!js_Invoke(JSContext* cx = 0x5e202000, unsigned int argc = 0, int* vp = 0x0000000c, unsigned int flags = 113246208) Line: 1368, Byte Offsets: 0x5f8	C++
 	js3250.dll!js_InternalInvoke(JSContext* cx = 0x5e202000, JSObject* obj = 0x00000000, int fval = 12, unsigned int flags = 113246208, unsigned int argc = 2, int* argv = 0x55597c10, int* rval = 0x1babe824) Line: 1423, Byte Offsets: 0x74	C++
 	js3250.dll!JS_CallFunctionValue(JSContext* cx = 0x5e202000, JSObject* obj = 0x00000000, int fval = 12, unsigned int argc = 113246208, int* argv = 0x55597c10, int* rval = 0x1babe824) Line: 5099, Byte Offsets: 0x2c	C++
 	xul.dll!nsJSContext::CallEventHandler(nsISupports* aTarget = 0x00000000, void* aScope = 0x0000000c, void* aHandler = 0x06c00000, nsIArray* aargv = 0x552143a4, nsIVariant** arv = 0x1babe8a0) Line: 2097, Byte Offsets: 0x218	C++
 	xul.dll!nsGlobalWindow::RunTimeout(nsTimeout* aTimeout = 0x00000000) Line: 8034, Byte Offsets: 0x53c	C++
 	xul.dll!nsGlobalWindow::TimerCallback(nsITimer* aTimer = 0x5e202000, void* aClosure = 0x00000000) Line: 8369, Byte Offsets: 0x1c	C++
 	xul.dll!nsTimerImpl::Fire(void) Line: 428, Byte Offsets: 0x154	C++
 	xul.dll!nsTimerEvent::Run(void) Line: 521, Byte Offsets: 0x40	C++
 	xul.dll!nsThread::ProcessNextEvent(int mayWait = 0, int* result = 0x0000000c) Line: 527, Byte Offsets: 0x170	C++
 	xul.dll!NS_ProcessNextEvent_P(nsIThread* thread = 0x5e202000, int mayWait = 0) Line: 230, Byte Offsets: 0x38	C++
 	xul.dll!nsBaseAppShell::Run(void) Line: 170, Byte Offsets: 0x48	C++
 	xul.dll!nsAppStartup::Run(void) Line: 183, Byte Offsets: 0x38	C++
 	xul.dll!XRE_main(int argc = 1579163648, char** argv = 0x00000000, nsXREAppData* aAppData = 0x0000000c) Line: 3481, Byte Offsets: 0x2084	C++
 	0x00011fc4	
 	0x000121a8	
 	0x000126f0	
 	0x03f672ac
Using a build from today's mozilla-1.9.2 branch
This is an OOM.
We increased the size of the tiles from 128x128 to 512x512.  However we didn't decrease the number of tiles that we hold onto. This results in a huge bump in the memory requirement of fennec.

Reducing the capacity to something like 15 still allows enough tiles for laying out news.google.com (and other pages that are that big), and uses around the same amount of memory as we use to.
Assignee: nobody → doug.turner
Attachment #406064 - Flags: review?(mark.finkle)
Attachment #406065 - Flags: review?(bugmail)
Attachment #406064 - Flags: review?(mark.finkle) → review+
Attachment #406065 - Flags: review?(bugmail) → review+
Comment on attachment 406065 [details] [diff] [review]
bump OOM notification

98 seems a bit arbitrary, but dougt tell me that its the highest number that still allows a low memory event to be issued.
Assignee: doug.turner → nobody
tracking-fennec: --- → ?
Component: Windows Mobile → XPCOM
Product: Fennec → Core
QA Contact: mobile-windows → xpcom
Attachment #406065 - Flags: approval1.9.2?
Attachment #406065 - Flags: approval1.9.2? → approval1.9.2+
http://hg.mozilla.org/releases/mozilla-1.9.2/rev/f789bb32468d
Status: NEW → RESOLVED
tracking-fennec: ? → ---
Closed: 10 years ago
Resolution: --- → FIXED
Keywords: crash
Assignee: nobody → doug.turner
You need to log in before you can comment on or make changes to this bug.