Closed Bug 622518 Opened 14 years ago Closed 8 years ago

startup crash [@ nsScriptSecurityManager::Init()]

Tracking

()

Status:

RESOLVED INCOMPLETE

People

(Reporter: wsmwk, Unassigned)

Details

(Keywords: crash, Whiteboard: [rare][startupcrash])

Crash Data

Wayne Mery (:wsmwk)

Reporter

Description

•

14 years ago

startup crash [@ nsScriptSecurityManager::Init()]

bp-a6eddbe0-3205-437b-970a-80e112110101  trunk 
0		@0x0	
1	xul.dll	nsScriptSecurityManager::Init	caps/src/nsScriptSecurityManager.cpp:3365
2	xul.dll	nsScriptSecurityManager::GetScriptSecurityManager	caps/src/nsScriptSecurityManager.cpp:3458
3	xul.dll	nsContentUtils::Init	content/base/src/nsContentUtils.cpp:448
4	xul.dll	nsLayoutStatics::Initialize	layout/build/nsLayoutStatics.cpp:164
5	xul.dll	Initialize	layout/build/nsLayoutModule.cpp:402
6	xul.dll	nsComponentManagerImpl::KnownModule::Load	xpcom/components/nsComponentManager.cpp:973
7	xul.dll	nsFactoryEntry::GetFactory	xpcom/components/nsComponentManager.cpp:1948
8	xul.dll	xul.dll@0xc37d5f	
9	xul.dll	nsComponentManagerImpl::CreateInstanceByContractID	xpcom/components/nsComponentManager.cpp:1311
10	xul.dll	nsComponentManagerImpl::GetServiceByContractID	xpcom/components/nsComponentManager.cpp:1676
11	xul.dll	nsCOMPtr_base::assign_from_gs_contractid	obj-firefox/xpcom/build/nsCOMPtr.cpp:132
12	xul.dll	nsChromeRegistryChrome::ManifestContent	chrome/src/nsChromeRegistryChrome.cpp:897
13	xul.dll	ParseManifestCommon	xpcom/components/ManifestParser.cpp:622
14	xul.dll	ParseManifest	xpcom/components/ManifestParser.cpp:660
15	xul.dll	nsComponentManagerImpl::RegisterJarManifest	xpcom/components/nsComponentManager.cpp:597-80e112110101


bp-7e1234a7-90f9-419a-bc39-1502e2101230 3.6.13
EXCEPTION_ACCESS_VIOLATION_WRITE
0x72f54a
0	xul.dll	nsScriptSecurityManager::Init	caps/src/nsScriptSecurityManager.cpp:3367
1	xul.dll	nsScriptSecurityManager::GetScriptSecurityManager	caps/src/nsScriptSecurityManager.cpp:3454
2	xul.dll	Construct_nsIScriptSecurityManager	caps/src/nsSecurityManagerFactory.cpp:362
3	xul.dll	nsGenericFactory::CreateInstance	obj-firefox/xpcom/build/nsGenericFactory.cpp:80
4	xul.dll	nsComponentManagerImpl::CreateInstanceByContractID	xpcom/components/nsComponentManager.cpp:1685
5	nspr4.dll	PR_ExitMonitor	nsprpub/pr/src/threads/prmon.c:132
6	xul.dll	nsComponentManagerImpl::GetServiceByContractID	xpcom/components/nsComponentManager.cpp:2252
7	xul.dll	CallGetService	obj-firefox/xpcom/build/nsComponentManagerUtils.cpp:94
8	xul.dll	nsCOMPtr_base::assign_from_gs_contractid	obj-firefox/xpcom/build/nsCOMPtr.cpp:132
9	xul.dll	nsCOMPtr<nsIScriptSecurityManager>::nsCOMPtr<nsIScriptSecurityManager>	obj-firefox/dist/include/nsCOMPtr.h:604
10	xul.dll	mozJSComponentLoader::ReallyInit	js/src/xpconnect/loader/mozJSComponentLoader.cpp:616
11	xul.dll	nsDependentCSubstring::Rebind	xpcom/string/src/nsTDependentSubstring.cpp:53
12	xul.dll	mozJSComponentLoader::LoadModule	js/src/xpconnect/loader/mozJSComponentLoader.cpp:804
13	xul.dll	mozJSComponentLoader::LoadModule	js/src/xpconnect/loader/mozJSComponentLoader.cpp:672
14	xul.dll	mozJSComponentLoaderConstructor	js/src/xpconnect/loader/mozJSLoaderConstructors.h:97
15	xul.dll	nsGenericFactory::CreateInstance	obj-firefox/xpcom/build/nsGenericFactory.cpp:80

same signature, different stack...
bp-614c21e7-ccd7-459e-81e4-3d0112101231 trunk
EXCEPTION_PRIV_INSTRUCTION
0x102506ff
0	xul.dll	nsScriptSecurityManager::Init	caps/src/nsScriptSecurityManager.cpp:3363
1	xul.dll	nsStyleContext::DoGetStyleTableBorder	layout/style/nsStyleStructList.h:123
2	xul.dll	nsStyleContext::CalcStyleDifference	
3	xul.dll	nsFrameManager::ReResolveStyleContext	layout/base/nsFrameManager.cpp:1240
4	xul.dll	nsFrameManager::ReResolveStyleContext	layout/base/nsFrameManager.cpp:1517
5	xul.dll	nsFrameManager::ReResolveStyleContext	
6	xul.dll	nsFrameManager::ReResolveStyleContext	layout/base/nsFrameManager.cpp:1517
7	xul.dll	nsFrameManager::ReResolveStyleContext	layout/base/nsFrameManager.cpp:1517
8	xul.dll	nsFrameManager::ReResolveStyleContext	layout/base/nsFrameManager.cpp:1517
9	xul.dll	nsFrameManager::ComputeStyleChangeFor	layout/base/nsFrameManager.cpp:1604
10	xul.dll	mozilla::css::RestyleTracker::ProcessRestyles	layout/base/RestyleTracker.cpp:240
11	xul.dll	nsCSSFrameConstructor::ProcessPendingRestyles	layout/base/nsCSSFrameConstructor.cpp:11652
12	xul.dll	PresShell::FlushPendingNotifications	layout/base/nsPresShell.cpp:4853
13	xul.dll	nsRefreshDriver::Notify	layout/base/nsRefreshDriver.cpp:299
14	xul.dll	nsTimerImpl::Fire	xpcom/threads/nsTimerImpl.cpp:428

timeless

Comment 1

•

14 years ago

wierd. i've grabbed a dump for the 0x0 one.

3356 nsresult nsScriptSecurityManager::Init()
3357 {
3358   nsXPConnect* xpconnect = nsXPConnect::GetXPConnect();
3359   if (!xpconnect) <- guard for null here
3360     return NS_ERROR_FAILURE;
3361
3362   NS_ADDREF(sXPConnect = xpconnect); <- this line can probably be run after the next one
3363   NS_ADDREF(sJSContextStack = xpconnect); <- trunk report here
3364
3365   JSContext* cx = GetSafeJSContext(); <- trunk report here
3366   if (!cx) return NS_ERROR_FAILURE; // this can happen of xpt loading fails
3367
3368   ::JS_BeginRequest(cx);
3369   if (sEnabledID == JSID_VOID)
3370     sEnabledID = INTERNED_STRING_TO_JSID(::JS_InternString(cx, "enabled")); <- 3.6.13 crash is here (small drift)
3371   ::JS_EndRequest(cx);

timeless

Comment 2

•

14 years ago

so, the 0x0 crash in windbg yields a lame stack trace. i don't understand why, afaict i have symbols for everthing. i can't find any locals in the caller frame which would be helpful.

Nobody; OK to take it and work on it

Assignee

Updated

•

13 years ago

Crash Signature: [@ nsScriptSecurityManager::Init()]

Wayne Mery (:wsmwk)

Reporter

Comment 3

•

11 years ago

bp-3e7538eb-a28d-4b7e-bb16-0ae782130124 FF18
bp-cfa00be6-eeb0-4984-a4de-1b6912130124
0	xul.dll	nsScriptSecurityManager::Init	caps/src/nsScriptSecurityManager.cpp:2569
1	xul.dll	nsScriptSecurityManager::GetScriptSecurityManager	caps/src/nsScriptSecurityManager.cpp:2642
2	xul.dll	nsContentUtils::Init	content/base/src/nsContentUtils.cpp:362
3	xul.dll	nsLayoutStatics::Initialize	layout/build/nsLayoutStatics.cpp:152
4	xul.dll	Initialize	layout/build/nsLayoutModule.cpp:393
5	xul.dll	nsComponentManagerImpl::KnownModule::Load	xpcom/components/nsComponentManager.cpp:708
6	xul.dll	nsFactoryEntry::GetFactory	xpcom/components/nsComponentManager.cpp:1749
7	xul.dll	nsComponentManagerImpl::CreateInstanceByContractID	xpcom/components/nsComponentManager.cpp:1031
8	xul.dll	nsComponentManagerImpl::GetServiceByContractID	xpcom/components/nsComponentManager.cpp:1427 

TB17 bp-1fc228b5-d743-4cc4-b099-3c2512130121

Whiteboard: [rare][startupcrash]

BMO Automation

Updated

•

9 years ago

Crash Signature: [@ nsScriptSecurityManager::Init()] → [@ nsScriptSecurityManager::Init()] [@ nsScriptSecurityManager::Init]

Wayne Mery (:wsmwk)

Reporter

Comment 4

•

8 years ago

with no testcases, etc, doesn't seem worth keeping open

Status: NEW → RESOLVED

Closed: 8 years ago

Resolution: --- → INCOMPLETE

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Quick Search

startup crash [@ nsScriptSecurityManager::Init()]

Categories

(Core :: Security, defect)

Tracking

()

People

(Reporter: wsmwk, Unassigned)

References

Details

(Keywords: crash, Whiteboard: [rare][startupcrash])

Crash Data

Security

(public)

User Story

Description

Comment 1

Comment 2

Updated

Comment 3

Updated

Comment 4