Closed
Bug 780392
Opened 12 years ago
Closed 12 years ago
crash in _moz_cairo_set_scaled_font
Categories
(Core :: Graphics, defect)
Tracking
()
RESOLVED
FIXED
mozilla17
People
(Reporter: alice0775, Assigned: nrc)
References
Details
(Keywords: crash, regression, topcrash)
Crash Data
Attachments
(2 files)
7.73 KB,
patch
|
bas.schouten
:
review+
|
Details | Diff | Splinter Review |
1.01 KB,
patch
|
bas.schouten
:
review+
|
Details | Diff | Splinter Review |
This bug was filed from the Socorro interface and is
report bp-012d1313-00e3-4f66-9292-fa2c92120804 .
=============================================================
Build Identifier:
http://hg.mozilla.org/mozilla-central/rev/20fc34efd733
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0 ID:20120804030551
Crash when I Zoom in Google Maps with MapsGL enabled
Steps to Reproduce:
1. Create clean profile
2. Open http://maps.google.com
3. Enable MapsGL
4. Zoom in with mouse wheel and repeat Step 4
Actual Results:
Browser crashes.
Expected Results:
No crash
Regression window(m-c)
Good:
http://hg.mozilla.org/mozilla-central/rev/73b3b3f828b0
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0 ID:20120803042624
Bad:
http://hg.mozilla.org/mozilla-central/rev/62d4f0efe485
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0 ID:20120803073024
Pushlog:
http://hg.mozilla.org/mozilla-central/pushloghtml?fromchange=73b3b3f828b0&tochange=62d4f0efe485
Regression window(m-c)
Good:
http://hg.mozilla.org/integration/mozilla-inbound/rev/3a17236e9084
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0 ID:20120802142137
Bad:
http://hg.mozilla.org/integration/mozilla-inbound/rev/032ba64ab1f1
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0 ID:20120802150336
Pushlog:
http://hg.mozilla.org/integration/mozilla-inbound/pushloghtml?fromchange=3a17236e9084&tochange=032ba64ab1f1
Suspected: 032ba64ab1f1 Nicholas Cameron — Bug 773460. Pref on Azure/Cairo for Windows. r=roc
Graphics
Adapter Description : ATI Radeon HD 4300/4500 Series
Vendor ID: 0x1002
Device ID: 0x954f
Adapter RAM: 512
Adapter Drivers: aticfx64 aticfx64 aticfx32 aticfx32 atiumd64 atidxx64 atiumdag atidxx32 atiumdva atiumd6a atitmm64
Driver Version: 8.970.100.3000
Driver Date: 7-3-2012
Direct2D Enabled: true
DirectWrite Enabled: true (6.1.7601.17789)
ClearType Parameters: Gamma: 2200 Pixel Structure: RGB ClearType Level: 50 Enhanced Contrast: 50
WebGL Renderer: Google Inc. -- ANGLE (ATI Radeon HD 4300/4500 Series) -- OpenGL ES 2.0 (ANGLE 1.0.0.1041)
GPU Accelerated Windows: 1/1 Direct3D 10
AzureBackend: direct2d
Reporter | ||
Comment 1•12 years ago
|
||
Regression window with force set gfx.canvas.azure.backends to "direct2d,cairo".
Regression window(m-c)
Good:
http://hg.mozilla.org/mozilla-central/rev/8b96a33ecbd2
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0 ID:20120726215017
Bad:
http://hg.mozilla.org/mozilla-central/rev/399aff2fb74f
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0 ID:20120727015618
Pushlog:
http://hg.mozilla.org/mozilla-central/pushloghtml?fromchange=8b96a33ecbd2&tochange=399aff2fb74f
Regression window(m-i)
Good:
http://hg.mozilla.org/integration/mozilla-inbound/rev/992e4d25689a
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0 ID:20120726113920
Bad:
http://hg.mozilla.org/integration/mozilla-inbound/rev/c5125dde4bbf
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0 ID:20120726115658
Pushlog:
http://hg.mozilla.org/integration/mozilla-inbound/pushloghtml?fromchange=992e4d25689a&tochange=c5125dde4bbf
Updated•12 years ago
|
Crash Signature: [@ _moz_cairo_set_scaled_font] → [@ _moz_cairo_set_scaled_font]
[@ moz_cairo_set_scaled_font]
Hardware: x86 → All
Comment 3•12 years ago
|
||
It's #9 top browser crasher over the last 3 days.
tracking-firefox17:
--- → ?
Keywords: topcrash
Assignee | ||
Comment 4•12 years ago
|
||
First go at debugging this, I didn't get to the reported crash, just turning MapsGL on caused a crash deep in the stack, our last call was GLContext::raw_fDrawArrays. This happened with all the Azure backends and the Thebes canvas (not surprising that that doesn't make any difference since MapsGL uses WebGL canvas). Will see if I can get further.
Assignee: nobody → ncameron
Assignee | ||
Comment 5•12 years ago
|
||
When following the STR, I crash mostly in TypeObject::maybeGetProperty and sometimes in _cairo_gstate_save. If the latter then there are Azure/Cairo text rendering calls further up the callstack, so it might be a variation on this crash. The former gives me a suspicious stack, so I think that may be incorrectly reported. In both cases the crash is caused by "Access violation reading location 0x41300004".
Assignee | ||
Comment 6•12 years ago
|
||
Found it: bad cast in DrawTargetCairo, it's non-trivial to fix, but hopefully not too bad.
Assignee | ||
Comment 7•12 years ago
|
||
Attachment #649835 -
Flags: review?(bas.schouten)
Assignee | ||
Comment 8•12 years ago
|
||
Attachment #649836 -
Flags: review?(bas.schouten)
Updated•12 years ago
|
Attachment #649835 -
Flags: review?(bas.schouten) → review+
Updated•12 years ago
|
Attachment #649836 -
Flags: review?(bas.schouten) → review+
Assignee | ||
Comment 9•12 years ago
|
||
Updated•12 years ago
|
status-firefox17:
--- → affected
Assignee | ||
Comment 10•12 years ago
|
||
Comment 11•12 years ago
|
||
https://hg.mozilla.org/mozilla-central/rev/8a736f13c5f8
https://hg.mozilla.org/mozilla-central/rev/bedac566fd5a
Status: NEW → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla17
Updated•12 years ago
|
Comment 12•12 years ago
|
||
I'm getting this:
c:\t1\hg\comm-central\mozilla\gfx\2d\ScaledFontDWrite.h(36) : error C2065: 'nullptr' : undeclared identifier
Hg Blame points me to:
https://hg.mozilla.org/mozilla-central/rev/bedac566fd5a#l5.42
Assignee | ||
Comment 13•12 years ago
|
||
Hi Philip, I assume you are trying to build using a compiler that does not support C++11 nullptr? gfx::2d does not include many of the standard Mozilla headers, so is missing our macros to support nullptr as a macro. I have filed a bug to fix this (bug 781943). You could also fix this for yourself by upgrading your compiler (probably).
Comment 14•12 years ago
|
||
Hi Nick I'm using Visual Studio 2008 SP1, thanks for the update.
Comment 15•12 years ago
|
||
There are no crashes associated to this bug on builds post-fix:
https://crash-stats.mozilla.com/report/list?product=Firefox&query_search=signature&query_type=contains&query=moz_cairo_set_scaled_font&reason_type=contains&date=10%2F17%2F2012%2012%3A51%3A30&range_value=4&range_unit=weeks&hang_type=any&process_type=any&do_query=1&signature=moz_cairo_set_scaled_font
https://crash-stats.mozilla.com/report/list?product=Firefox&query_search=signature&query_type=contains&query=moz_cairo_set_scaled_font&reason_type=contains&date=10%2F17%2F2012%2012%3A51%3A30&range_value=4&range_unit=weeks&hang_type=any&process_type=any&do_query=1&signature=_moz_cairo_set_scaled_font
The test for this bug passes on all OSs (content/canvas/crashtests/780392-1.html ):
https://tbpl.mozilla.org/php/getParsedLog.php?id=16181686&full=1&branch=mozilla-beta
https://tbpl.mozilla.org/php/getParsedLog.php?id=16188063&full=1&branch=mozilla-beta
https://tbpl.mozilla.org/php/getParsedLog.php?id=16176393&full=1&branch=mozilla-beta
https://tbpl.mozilla.org/php/getParsedLog.php?id=16181686&full=1&branch=mozilla-beta
Updated•12 years ago
|
QA Contact: ioana.budnar
You need to log in
before you can comment on or make changes to this bug.
Description
•