Closed Bug 785009 Opened 12 years ago Closed 11 years ago

crash in JSC::ExecutableAllocator::sizeOfCode

Categories

(Core :: JavaScript Engine, defect)

Product:
Core
Component:
JavaScript Engine
Version:
15 Branch
Platform:
x86
Windows NT
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: sbadau, Assigned: n.nethercote)

Details

(Keywords: crash, Whiteboard: [js:inv])

Crash Data

Assignee: general → n.nethercote
Whiteboard: [js:inv]
AFAICT there have been 14 crashes with this signature in the past four weeks.  11 of those are in FF13 and earlier, which pre-date the fix in bug 710922.  I.e. we have three unexplained crashes.  (But you've listed five crashes in comment 0, so maybe I'm reading that incorrectly.)

Also, of those five crashes, two of them have nonsensical stack traces -- the functions supposedly calling sizeOfCode() do not call it (and inlining wouldn't explain it).  That makes me wonder if there is some other memory corruption happening.
Are these crashes still occurring?
I don't see any crash reports for the latest released versions (Firefox 20.0RC, Firefox 21 Beta 2, Aurora 22.0a2 and Nightly 23.0a1).

All the crashes that happened in the last 4 weeks are for Firefox 12 and Firefox 13.
https://crash-stats.mozilla.com/report/list?query_search=signature&query_type=contains&reason_type=contains&range_value=4&range_unit=weeks&hang_type=any&process_type=any&signature=JSC%3A%3AExecutableAllocator%3A%3AsizeOfCode%28unsigned%20int%2A%2C%20unsigned%20int%2A%2C%20unsigned%20int%2A%29

Setting the status of this bug to Resolved Worksforme.
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.