Fennec/Android debug build crashes on startup in JEMalloc

RESOLVED WORKSFORME

Status

()

Core
General
RESOLVED WORKSFORME
7 years ago
7 years ago

People

(Reporter: bjacob, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(1 attachment)

Created attachment 527073 [details]
stack

Stack attached.

@ Jason: looking at it, do you think it's a double free()? Or mismatched allocator?
(Reporter)

Comment 1

7 years ago
Blocking bug 607684 because this prevents me from doing further debugging on android.
(Reporter)

Comment 2

7 years ago
This PR_Free() is freeing a pointer that was returned by PR_Malloc. good.

But this PR_Malloc seems to have been using libc's malloc() instead of jemalloc.

Indeed:

#0  0xafd144b4 in malloc () from libc.so
#1  0x80513bf2 in PR_Malloc (size=1947)
    at /home/bjacob/mozilla-central/nsprpub/pr/src/malloc/prmem.c:467
#2  0x80902192 in PL_Base64Decode (
    src=0x491ff008 "iVBORw0KGgoAAAANSUhEUgAAACAAAAAgCAYAAABzenr0AAAABHNCSVQICAgIfAhkiAAAAAlwSFlzAAAN1wAADdcBQiibeAAAABl0RVh0U29mdHdhcmUAd3d3Lmlua3NjYXBlLm9yZ5vuPBoAAAcXSURBVFjDxZdrjF1VFcd/a59z7r1z585M5+10oK19mDbSAoGEUprS"..., srclen=2595, dest=0x0)
    at /home/bjacob/mozilla-central/nsprpub/lib/libc/src/base64.c:427
#3  0x843c28f2 in nsDataChannel::OpenContentStream (this=0x48e4bc00, async=0, 
    result=0x464f9cf8, channel=0x464f9c5c)
    at /home/bjacob/mozilla-central/netwerk/protocol/data/nsDataChannel.cpp:108
#4  0x84312d7a in nsBaseChannel::Open (this=0x48e4bc00, result=0x464f9cf8)
    at /home/bjacob/mozilla-central/netwerk/base/src/nsBaseChannel.cpp:548
#5  0x8535b8b0 in nsFaviconService::SetFaviconDataFromDataURL (this=0x48e4bb60, 
    aFaviconURI=0x4916fb40, aDataURL=..., aExpiration=0)
    at /home/bjacob/mozilla-central/toolkit/components/places/nsFaviconService.cpp:551
#6  0x85645a72 in NS_InvokeByIndex_P (that=0x48e4bb60, methodIndex=6, 
    paramCount=<value optimized out>, params=<value optimized out>)
    at /home/bjacob/mozilla-central/xpcom/reflect/xptcall/src/md/unix/xptcinvoke_arm.cpp:198
#7  0x8505518a in CallMethodHelper::Invoke (this=0x464f9e28)
    at /home/bjacob/mozilla-central/js/src/xpconnect/src/xpcwrappednative.cpp:3141
#8  0x8505385a in CallMethodHelper::Call (this=0x464f9e28)
    at /home/bjacob/mozilla-central/js/src/xpconnect/src/xpcwrappednative.cpp:2407
#9  0x8504fd56 in XPCWrappedNative::CallMethod (ccx=..., mode=XPCWrappedNative::CALL_METHOD)
    at /home/bjacob/mozilla-central/js/src/xpconnect/src/xpcwrappednative.cpp:2371
#10 0x8505d5b6 in XPC_WN_CallMethod (cx=0x463934e0, argc=3, vp=0x47d00420)
    at /home/bjacob/mozilla-central/js/src/xpconnect/src/xpcwrappednativejsops.cpp:1610
#11 0x859ab43c in js::CallJSNative (cx=0x463934e0,

Comment 3

7 years ago
i built debug on Android yesterday and do not crash.  Is this a recent regression?
(Reporter)

Comment 4

7 years ago
I don't know, I've only had a proper debug environment on android since today.
(Reporter)

Comment 5

7 years ago
OK, I seems to have built with --disable-jemalloc earlier in this objdir and the present bug could just be a build system bug, requiring me to blow up my objdir. will confirm.
Passing by... I have a working debug build so I assume it's not an issue anymore? Please reopen if otherwise.
Status: NEW → RESOLVED
Last Resolved: 7 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.