Closed
Bug 830948
Opened 13 years ago
Closed 13 years ago
Crash [@ nsGlobalWindow::GetInnerHeight(int*)] while clicking View -> Zoom -> Zoom In on Firefox Aurora 20
Categories
(Core :: DOM: Core & HTML, defect)
Tracking
()
People
(Reporter: gkw, Assigned: smaug)
Details
(Keywords: crash)
Crash Data
Attachments
(1 file)
1.31 KB,
patch
|
bzbarsky
:
review+
lsblakk
:
approval-mozilla-aurora+
lsblakk
:
approval-mozilla-beta+
lsblakk
:
approval-mozilla-esr17-
jst
:
approval-mozilla-b2g18-
|
Details | Diff | Splinter Review |
Crash signature: bp-9e55cde4-113e-4441-b673-3bcbf2130115
I was using Aurora 20 build ID 20130115042018. In a new private browsing window, I was doing a Google search, opening 4 tabs, and closing 3 after I finished reading them. Using a mouse, I then clicked on View -> Zoom -> Zoom In and it immediately crashed.
The crashing line is at http://hg.mozilla.org/releases/mozilla-aurora/annotate/57fc7a3fcd2b/dom/base/nsGlobalWindow.cpp#l3704
Jesse suggests that something might have messed up mDocShell in line 3704, but we are not entirely sure if EnsureSizeUpToDate() might have been the culprit.
Assignee | ||
Comment 1•13 years ago
|
||
Indeed, EnsureSizeUpToDate flushes, which may cause scripts to run, which may end up
closing the window so mDocShell may be null.
Assignee: nobody → bugs
Assignee | ||
Comment 2•13 years ago
|
||
Attachment #702500 -
Flags: review?(bzbarsky)
![]() |
Reporter | |
Comment 3•13 years ago
|
||
Nominating for tracking, this is easy to hit from the end-user side. I'm not sure how far back this affects though.
status-firefox20:
--- → affected
status-firefox21:
--- → affected
tracking-firefox20:
--- → ?
tracking-firefox21:
--- → ?
Assignee | ||
Comment 4•13 years ago
|
||
(In reply to Olli Pettay [:smaug] from comment #2)
> Created attachment 702500 [details] [diff] [review]
> patch
Note, as far as I see, EnsureSizeUpToDate doesn't actually do anything if there isn't mDocshell.
![]() |
||
Comment 5•13 years ago
|
||
Comment on attachment 702500 [details] [diff] [review]
patch
r=me
Attachment #702500 -
Flags: review?(bzbarsky) → review+
![]() |
Reporter | |
Updated•13 years ago
|
Keywords: checkin-needed
Assignee | ||
Comment 6•13 years ago
|
||
Status: NEW → RESOLVED
Closed: 13 years ago
Resolution: --- → FIXED
![]() |
Reporter | |
Updated•13 years ago
|
Keywords: checkin-needed
Updated•13 years ago
|
Target Milestone: --- → mozilla21
Updated•13 years ago
|
![]() |
Reporter | |
Comment 7•13 years ago
|
||
I poked at the source and it seems that this bug is present across all branches.
status-b2g18:
--- → affected
status-firefox19:
--- → affected
status-firefox-esr17:
--- → affected
tracking-b2g18:
--- → ?
tracking-firefox19:
--- → ?
tracking-firefox-esr17:
--- → ?
Assignee | ||
Comment 8•13 years ago
|
||
Comment on attachment 702500 [details] [diff] [review]
patch
[Approval Request Comment]
Bug caused by (feature/regressing bug #): old stuff
User impact if declined: crashes
Testing completed (on m-c, etc.): landed to m-c yesterday
Risk to taking this patch (and alternatives if risky): null check
String or UUID changes made by this patch: NA
The patch seems to apply cleanly everywhere.
Attachment #702500 -
Flags: approval-mozilla-esr17?
Attachment #702500 -
Flags: approval-mozilla-beta?
Attachment #702500 -
Flags: approval-mozilla-aurora?
Assignee | ||
Updated•13 years ago
|
Attachment #702500 -
Flags: approval-mozilla-b2g18?
![]() |
Reporter | |
Updated•13 years ago
|
Crash Signature: [@ nsGlobalWindow::GetInnerHeight(int*)] → [@ nsGlobalWindow::GetInnerHeight(int*)]
[@ nsGlobalWindow::GetInnerHeight]
[@ nsGlobalWindow::GetInnerWidth(int*)]
[@ nsGlobalWindow::GetInnerWidth]
Comment 9•13 years ago
|
||
This doesn't qualify for esr landing, but will track for 19 and approve for branches.
Updated•13 years ago
|
Attachment #702500 -
Flags: approval-mozilla-esr17?
Attachment #702500 -
Flags: approval-mozilla-esr17-
Attachment #702500 -
Flags: approval-mozilla-beta?
Attachment #702500 -
Flags: approval-mozilla-beta+
Attachment #702500 -
Flags: approval-mozilla-aurora?
Attachment #702500 -
Flags: approval-mozilla-aurora+
![]() |
Reporter | |
Updated•13 years ago
|
Keywords: checkin-needed
Comment 10•13 years ago
|
||
https://hg.mozilla.org/releases/mozilla-beta/rev/c4ed00e2d8bd
This is also in my queue to land on Aurora once it reopens.
Comment 11•13 years ago
|
||
Comment 12•13 years ago
|
||
Comment on attachment 702500 [details] [diff] [review]
patch
This doesn't seem to fix any obvious problems on b2g18, so minus for landing there. If that's not a correct assessment, please re-nominate.
Attachment #702500 -
Flags: approval-mozilla-b2g18? → approval-mozilla-b2g18-
Comment 13•13 years ago
|
||
I couldn't reproduce the issue in comment 0. Checking the crash stats, this looks good in general, but I see 1 crash on FF 19b3 - https://crash-stats.mozilla.com/report/index/5338111a-d778-47d1-a2a4-7e7dc2130129. Any thoughts?
![]() |
Reporter | |
Comment 14•13 years ago
|
||
(In reply to Paul Silaghi [QA] from comment #13)
> I couldn't reproduce the issue in comment 0. Checking the crash stats, this
> looks good in general, but I see 1 crash on FF 19b3 -
> https://crash-stats.mozilla.com/report/index/5338111a-d778-47d1-a2a4-
> 7e7dc2130129. Any thoughts?
That crash crashes at a different line, at http://hg.mozilla.org/releases/mozilla-beta/annotate/8848df2565b6/dom/base/nsGlobalWindow.cpp#l3634 - I've filed bug 838806 for this.
Since crash-stats does not seem to show anymore related crashes -> VERIFIED
Status: RESOLVED → VERIFIED
Updated•13 years ago
|
Comment 15•13 years ago
|
||
Based on comment 14
Updated•12 years ago
|
Keywords: testcase-wanted
Updated•6 years ago
|
Component: DOM → DOM: Core & HTML
You need to log in
before you can comment on or make changes to this bug.
Description
•