Ubuntu
firefox package

MASTER Firefox Crash [@js_FinalizeStringRT][@js_atom_uninterner]

Bug #71702 reported by Ivaylo Ivanov on 2006-11-13

148

Affects		Status	Importance	Assigned to	Milestone
	Mozilla Firefox	Invalid	Critical	mozilla-bugs #267063
	firefox (Ubuntu)	Fix Released	High	Mozilla Bugs

Bug Description

I should make several attempts to start firefox on Edgy.From 2 attempts 1 success.

DistroRelease: Ubuntu 6.10
Package: firefox 2.0+0dfsg-0ubuntu3

Stacktrace:
Using host libthread_db library "/lib/tls/i686/cmov/libthread_db.so.1".
Core was generated by `/usr/lib/firefox/firefox-bin'.
Program terminated with signal 11, Segmentation fault.
#0 0xffffe410 in __kernel_vsyscall ()
#0 0xffffe410 in __kernel_vsyscall ()
No symbol table info available.
#1 0xb7dac651 in raise () from /lib/tls/i686/cmov/libpthread.so.0
No symbol table info available.
#2 0x08057556 in nsProfileLock::FatalSignalHandler (signo=-1210384396)
     at nsProfileLock.cpp:206
  unblock_sigs = {__val = {1024, 0 <repeats 31 times>}}
  oldact = <value optimized out>
#3 <signal handler called>
No symbol table info available.
#4 0xb7755a2e in free () from /lib/tls/i686/cmov/libc.so.6
No symbol table info available.
#5 0xb7f27e1f in js_FinalizeStringRT (rt=0x810db68, str=0x1a00)
     at jsstr.c:2632

See original description

Revision history for this message

In Mozilla Bugzilla #267063, Darin-moz (darin-moz) wrote on 2004-10-31:

Created attachment 164123
stack trace

This stack trace was taken with a CVS trunk build (up-to-date as of today) of
Firefox on Linux. I didn't do much more than run the browser and then close
it.

Revision history for this message

In Mozilla Bugzilla #267063, Darin-moz (darin-moz) wrote on 2004-10-31:

Created attachment 164124
another stack

here's another stack. in this case, i just loaded firefox w/ default homepage,
and then pressed the close button.

this stack seems to implicate JS_GC ...

Revision history for this message

In Mozilla Bugzilla #267063, Darin-moz (darin-moz) wrote on 2004-10-31:

Interestingly enough, I cannot reproduce this crash when running under valgrind :(

Revision history for this message

In Mozilla Bugzilla #267063, Darin-moz (darin-moz) wrote on 2004-11-05:

This crash, or at least one with a similar JS_GC stack, is still happening with
CVS trunk as of 11/5 on Linux. Again, I cannot catch it in valgrind.

Revision history for this message

In Mozilla Bugzilla #267063, Antoine-mechelynck-gmail (antoine-mechelynck-gmail) wrote on 2006-11-08:

Created attachment 244978
TB25676224W

TB25676224W : similar stack trace, but on BonEcho 2.0 (mozilla1.8 branch)

Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1) Gecko/20061106 BonEcho/2.0
Build ID: 2006110604

Revision history for this message

In Mozilla Bugzilla #267063, Antoine-mechelynck-gmail (antoine-mechelynck-gmail) wrote on 2006-11-08:

This is a crash: please raise severity to "critical" and add "crash" keyword.
Maybe also mention "1.8 Branch" in Version.

Revision history for this message

Ivaylo Ivanov (icefox) wrote on 2006-11-13: Firefox crash

I should make several attempts to start firefox on Edgy.From 2 attempts 1 success.

Revision history for this message

Ivaylo Ivanov (icefox) wrote on 2006-11-13:

crash report Edit (9.3 MiB, text/plain)

David Farning (dfarning) on 2006-12-04

description:

updated

David Farning (dfarning) on 2006-12-09

description:	updated
Changed in firefox:
status:	Unconfirmed → Confirmed

David Farning (dfarning) on 2007-01-31

Changed in firefox:
assignee:	nobody → mozillateam
importance:	Undecided → Medium

David Farning (dfarning) on 2007-02-24

Changed in firefox:
assignee:	mozillateam → mozilla-bugs

Revision history for this message

Hilario J. Montoliu (hjmf) (hmontoliu) wrote on 2007-03-14: Re: Crash nsProfileLock::FatalSignalHandler

Retraced Stacktrace Edit (13.9 KiB, text/plain)

Extracted already retraced stacktrace form original report.

Revision history for this message

Hilario J. Montoliu (hjmf) (hmontoliu) wrote on 2007-03-29:

#10

Maybe related to https://bugzilla.mozilla.org/show_bug.cgi?id=322131

Revision history for this message

Alexander Sack (asac) wrote on 2007-03-31:

#11

Ivailo, when did this crash happen? e.g. what did you do when ffox crashed?

Revision history for this message

Hilario J. Montoliu (hjmf) (hmontoliu) wrote on 2007-03-31: Retraced Stacktrace

#12

Retraced Stacktrace Edit (6.2 KiB, text/plain)

Retrace done:
...
#3 <signal handler called>
#4 0xb7755a2e in free () from /lib/tls/i686/cmov/libc.so.6
#5 0xb7f27e1f in js_FinalizeStringRT (rt=0x810db68, str=0x8aff2e0) at jsstr.c:2632

#6 0xb7ebc706 in js_atom_uninterner (he=0x8b45188, i=) at jsatom.c:391

#7 0xb7ee0379 in JS_HashTableEnumerateEntries (ht=0x8158da8, f=0xb7ebc6c0 <js_atom_uninterner>, arg=0xbfdf6078) at jshash.c:366
he = (JSHashEntry *) 0x8b45188
hep = (JSHashEntry **) 0x87d0f48
bucket = (JSHashEntry **) 0x8888988
nlimit = 2816
n = 2133
nbuckets = <value optimized out>
newlog2 = <value optimized out>
rv = 0
#8 0xb7ebc7b9 in js_FinishAtomState (state=0x810dc4c) at jsatom.c:406
...

I'm uploading again the retraced stacktrace to include the retraced StackTrace too.

Revision history for this message

Hilario J. Montoliu (hjmf) (hmontoliu) wrote on 2007-03-31: Retraced Thread Stacktrace

#13

Retraced ThreadStacktrace Edit (6.2 KiB, text/plain)

Retraced Thread Stacktrace

Revision history for this message

Hilario J. Montoliu (hjmf) (hmontoliu) wrote on 2007-04-04:

#14

Same stacktrace that the one reported in https://bugzilla.mozilla.org/show_bug.cgi?id=267063 Shutdown crash in ~nsJSRuntimeServiceImpl [@ free - js_FinalizeStringRT]

Hilario J. Montoliu (hjmf) (hmontoliu) on 2007-04-04

Changed in firefox:
status:	Unconfirmed → Rejected

Revision history for this message

Hilario J. Montoliu (hjmf) (hmontoliu) wrote on 2007-04-09:

#15

Same stacktrace that TB25676224W on https://bugzilla.mozilla.org/show_bug.cgi?id=267063

Changed in firefox:
importance:	Undecided → Unknown
status:	Rejected → Unknown

Bug Watch Updater (bug-watch-updater) on 2007-04-10

Changed in firefox:
status:	Unknown → Confirmed

Hilario J. Montoliu (hjmf) (hmontoliu) on 2007-04-24

Changed in firefox:
importance:	Medium → High

Christian Reis (kiko) on 2007-05-08

Changed in firefox:
status:	Confirmed → In Progress

Revision history for this message

Alexander Sack (asac) wrote on 2008-04-21:

#16

we haven't received any dupes of this for a while. So this appears to be fixed.

Changed in firefox:
status:	In Progress → Fix Released

Bug Watch Updater (bug-watch-updater) on 2010-09-18

Changed in firefox:
importance:	Unknown → Critical

Revision history for this message

In Mozilla Bugzilla #267063, Ms2ger (ms2ger) wrote on 2011-12-24:

#17

Code is gone.

Bug Watch Updater (bug-watch-updater) on 2011-12-24

Changed in firefox:
status:	Confirmed → Invalid

Report a bug

This report contains Public information

Everyone can see this information.

Duplicates of this bug

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

Add attachment

Remote bug watches

mozilla-bugs #267063
[RESOLVED WORKSFORME] Edit

Bug watches keep track of this bug in other bug trackers.

Ubuntufirefox package

MASTER Firefox Crash [@js_FinalizeStringRT][@js_atom_uninterner]

Bug Description

Duplicates of this bug

Other bug subscribers

Bug attachments

Remote bug watches

Ubuntu
firefox package