Open
Bug 963976
Opened 10 years ago
Updated 2 years ago
Faulty crash: "ABORT: Inserting duplicate item" under PCompositorParent::RegisterID
Categories
(Core :: IPC, defect)
Tracking
()
NEW
People
(Reporter: bjacob, Unassigned)
References
(Depends on 1 open bug, Blocks 1 open bug)
Details
Attachments
(1 file)
|
7.08 KB,
text/plain
|
Details |
Found by Christoph Diehl's "Faulty" fuzzer, see bug 777067
This is going to end up in IPC code I believe.
Component: Graphics → IPC
|
Reporter | |
Comment 2•10 years ago
|
||
The problem is at:
#6 0x00007fffefa9ae27 in IDMap<mozilla::ipc::IProtocol>::AddWithID (this=0x7fffcd892260, data=0x7fffc9e3bb80,
id=-2) at /hack/mozilla-central/ipc/chromium/src/base/id_map.h:58
58 DCHECK(data_.find(id) == data_.end()) << "Inserting duplicate item";
Since this is generic IPC code that is used, in particular, in the parent process, the problem is a generic "IPC code should not crash parent process on bad pickles" similar to bug 963978.|
|
Reporter | |
Comment 3•10 years ago
|
||
Classification: PCompositor, generic "IPC code aborting in DEBUG builds on bad pickles" bug, easy.
|
|
Reporter | |
Comment 4•10 years ago
|
||
This should be fixed by whatever global solution we can agree on in bug 963978
Depends on: picky-with-pickles
|
||
Updated•2 years ago
|
Severity: normal → S3
You need to log in
before you can comment on or make changes to this bug.
Description
•