Closed Bug 700311 Opened 13 years ago Closed 13 years ago

trunk crashes in msvcr80.dll@0x14500 or msvcr90.dll@0x1e8e1 coming from JSD code

Categories

(Core :: JavaScript Engine, defect)

x86
Windows 7
defect
Not set
critical

Tracking

()

RESOLVED DUPLICATE of bug 700302
Tracking Status
firefox10 - ---
firefox11 - ---

People

(Reporter: kairo, Unassigned)

References

Details

(Keywords: crash, reproducible, stackwanted, Whiteboard: [firebug-p1][STR in comment 1])

Crash Data

This bug was filed from the Socorro interface and is 
report bp-212a8fe2-ad64-4be0-aa64-1200e2111107 .
============================================================= 

There's different stacks leading up to those, but the top frames on the msvcr80.dll (32bit) ones are always:
0 	msvcr80.dll 	msvcr80.dll@0x14500 	
1 	xul.dll 	jsds_ExecutionHookProc 	js/jsd/jsd_xpc.cpp:684
2 	xul.dll 	jsd_CallExecutionHook 	js/jsd/jsd_hook.c:177
3 	xul.dll 	jsd_ThrowHandler 	js/jsd/jsd_hook.c:149
4 	mozjs.dll 	js::Interpret 	js/src/jsinterp.cpp:5950

More such reports are to be found at https://crash-stats.mozilla.com/report/list?signature=msvcr80.dll%400x14500

The msvcr90.dll (64bit) ones, e.g. bp-9cdfdfbe-0bb4-4bbb-9883-f533f2111107 have the following top frames:
0 	msvcr90.dll 	msvcr90.dll@0x1e8e1 	
1 	xul.dll 	jsds_FilterHook 	js/jsd/jsd_xpc.cpp:381
2 	mozutils.dll 	je_malloc 	memory/jemalloc/jemalloc.c:6220
3 	nspr4.dll 	MD_CURRENT_THREAD 	nsprpub/pr/src/md/windows/w95thred.c:308
4 	xul.dll 	jsdValue::jsdValue 	js/jsd/jsd_xpc.cpp:2157
5 	nspr4.dll 	PR_Unlock 	nsprpub/pr/src/threads/combined/prulock.c:347
6 	xul.dll 	jsdValue::FromPtr 	js/jsd/jsd_xpc.cpp:2147
7 	xul.dll 	jsds_ExecutionHookProc 	js/jsd/jsd_xpc.cpp:684
8 	xul.dll 	jsd_NewThreadState 	js/jsd/jsd_stak.c:169
9 	xul.dll 	xul.dll@0x8d6d63 	
10 	xul.dll 	xul.dll@0x8d6d63 	
11 	xul.dll 	xul.dll@0x8d6d63 	
12 	xul.dll 	jsd_CallExecutionHook 	js/jsd/jsd_hook.c:177
13 	xul.dll 	jsd_ThrowHandler 	js/jsd/jsd_hook.c:149
14 	xul.dll 	xul.dll@0x8d6d63 	
15 	xul.dll 	js::Interpret 	js/src/jsinterp.cpp:5950

More such reports can be found at https://crash-stats.mozilla.com/report/list?signature=msvcr90.dll%400x1e8e1

Those are new crashes appearing since the 2011-11-05 Nightly build and as JSD is involved, it looks like those people have Firebug installed (also from inspecting the reports).
Given the regression range and JSD involvement, bug 700302 might be related.
Crash Signature: [@ msvcr80.dll@0x14500] → [@ msvcr80.dll@0x14500] [@ msvcr90.dll@0x1e8e1 ]
OS: Linux → Windows 7
Hardware: x86_64 → x86
My STR:

1) Install Firebug from here: 
http://getfirebug.com/releases/firebug/1.9/firebug-1.9.0a5.xpi
2) Restart Firefox, load www.google.com, open Firebug and enable the Script panel
(I also set www.google.com as the home page)
3) Restart, Firebug should be enabled by default -> Crash
(You might need to restart several times to repro the crash)

Sometimes the crash happens when shutdowning Firefox, sometimes when it's starting.

Honza
Whiteboard: [firebug-p1]
Steve, do you have an idea what could be wrong here?
Honza
Keywords: reproducible
Whiteboard: [firebug-p1] → [firebug-p1][STR in comment 1]
I'm getting this crash on every exit with my existing Nightly profile on the 10 November build -- start, do nothing, exit, crash.

Looking back I saw this crash twice on the 8 November build, but today it's happening on every exit (and I didn't see it on 9 November).

My app tab also vanished. It was present after I updated, but every time I've restarted after that initial start there was no app tab. That is probably bug 701481 and I have no reason to believe the two situations are related.
Could someone please use the symbol server to get a proper stack trace?
Keywords: stackwanted
It's #3 top crasher in 10.0a2 and #4 in 11.0a1.
The msvcr90.dll ones from comment 0 are almost certainly bug 700302 and should go away with that fix.

The msvcr80.dll ones probably are too, though I don't know why it's not showing the jsds_FilterHook frame. Then again, the msvcr90.dll stacks seem a bit mangled too, since js/jsd/jsd_xpc.cpp:684 does not call jsdValue::FromPtr.
Status: NEW → RESOLVED
Closed: 13 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.