Fedora 32 Crash in [@ <name omitted> | moz_container_get_wl_surface]
Categories
(Core :: Widget: Gtk, defect, P3)
Tracking
()
| Tracking | Status | |
|---|---|---|
| firefox-esr68 | --- | unaffected |
| firefox74 | --- | wontfix |
| firefox75 | --- | fixed |
| firefox76 | --- | fixed |
People
(Reporter: gsvelto, Assigned: stransky)
References
(Blocks 1 open bug)
Details
(Keywords: crash, regression)
Crash Data
Attachments
(1 file)
|
(deleted),
text/x-phabricator-request
|
jcristau
:
approval-mozilla-release+
|
Details |
This bug is for crash report bp-535f302e-b58a-4783-99de-6fb8b0200324.
Top 10 frames of crashing thread:
0 libwayland-client.so.0.3.0 <name omitted> src/wayland-client.c:793
1 libxul.so moz_container_get_wl_surface /builddir/build/BUILD/firefox-74.0/widget/gtk/mozcontainer.cpp:620
2 libxul.so nsWindow::GetWaylandSurface /builddir/build/BUILD/firefox-74.0/widget/gtk/nsWindow.cpp:7512
3 libxul.so mozilla::widget::WindowSurfaceWayland::CommitWaylandBuffer /builddir/build/BUILD/firefox-74.0/widget/gtk/WindowSurfaceWayland.cpp:1067
4 libxul.so mozilla::layers::BasicCompositor::EndRemoteDrawing /builddir/build/BUILD/firefox-74.0/gfx/layers/basic/BasicCompositor.cpp:1167
5 libxul.so mozilla::layers::BasicCompositor::EndFrame /builddir/build/BUILD/firefox-74.0/gfx/layers/basic/BasicCompositor.cpp:1100
6 libxul.so mozilla::layers::LayerManagerComposite::Render /builddir/build/BUILD/firefox-74.0/gfx/layers/composite/LayerManagerComposite.cpp:1302
7 libxul.so mozilla::layers::LayerManagerComposite::UpdateAndRender /builddir/build/BUILD/firefox-74.0/gfx/layers/composite/LayerManagerComposite.cpp:645
8 libxul.so mozilla::layers::LayerManagerComposite::EndTransaction /builddir/build/BUILD/firefox-74.0/gfx/layers/composite/LayerManagerComposite.cpp:534
9 libxul.so mozilla::layers::CompositorBridgeParent::CompositeToTarget /builddir/build/BUILD/firefox-74.0/gfx/layers/ipc/CompositorBridgeParent.cpp:1047
Looks like a NULL-pointer dereference in Wayland code. This is a crash specific to Fedora 32.
|
Assignee | |
Updated•5 years ago
|
|
|
Assignee | |
Comment 1•5 years ago
|
||
Seems to be here:
container->subsurface = wl_subcompositor_get_subsurface(
waylandDisplay->GetSubcompositor(), container->surface, parent_surface);
GdkWindow* window = gtk_widget_get_window(GTK_WIDGET(container));
gint x, y;
gdk_window_get_position(window, &x, &y);
moz_container_move(container, x, y);
wl_subsurface_set_desync(container->subsurface); <<<<<<
so perhaps wl_subcompositor_get_subsurface() returns null.
|
|
Assignee | |
Updated•5 years ago
|
|
|
Assignee | |
Comment 2•5 years ago
|
||
|
||
Updated•5 years ago
|
|
|
Assignee | |
Comment 3•5 years ago
|
||
|
||
Comment 5•5 years ago
|
||
| bugherder | ||
|
||
Comment 6•5 years ago
|
||
Does this need a Beta approval request?
|
|
Assignee | |
Comment 8•5 years ago
|
||
Comment on attachment 9135619 [details]
Bug 1624745 [Wayland] Handle error states when wayland surfaces are created, r?jhorak
Beta/Release Uplift Approval Request
- User impact if declined: May cause browser crash on Wayland when compositor fails to create a subsurface - perhaps it's called too early.
- Is this code covered by automated tests?: No
- Has the fix been verified in Nightly?: No
- Needs manual test from QE?: No
- If yes, steps to reproduce:
- List of other uplifts needed: None
- Risk to taking this patch: Low
- Why is the change risky/not risky? (and alternatives if risky): Linux/Wayland only.
- String changes made/needed: none
|
||
Comment 9•5 years ago
|
||
Please don't use "linix/wayland only" as justification for how low the risk is. If the benefit is linux/wayland only, then the risk being linux/wayland only doesn't offset anything, IMO.
|
|
||
Comment 10•5 years ago
|
||
Comment on attachment 9135619 [details]
Bug 1624745 [Wayland] Handle error states when wayland surfaces are created, r?jhorak
approved for 75rc1
|
|
||
Updated•5 years ago
|
|
||
Comment 11•5 years ago
|
||
(In reply to Julien Cristau [:jcristau] from comment #9)
Please don't use "linix/wayland only" as justification for how low the risk is. If the benefit is linux/wayland only, then the risk being linux/wayland only doesn't offset anything, IMO.
Wayland backend is opt-in by env var MOZ_ENABLE_WAYLAND=1 or GDK_BACKEND=wayland (bug 1543600), otherwise X11 (XWayland) is used on Wayland. The risk of using Firefox' Wayland backend is higher than getting any fixes for it. On KDE, for example, Wayland backend often completely freezes Firefox which is getting fixed in KDE Plasma (bug 1609115).
|
|
||
Comment 12•5 years ago
|
||
| bugherder uplift | ||
|
||
Comment 13•5 years ago
|
||
Bugbug thinks this bug is a regression, but please revert this change in case of error.
|
Reporter | |
Comment 16•5 years ago
|
||
We're still seeing crashes with a similar stack in recent builds, this one is from Debian:
https://crash-stats.mozilla.org/report/index/1bbc19f2-b9c2-4dc0-ab64-9d7860200425
And this one from Arch:
https://crash-stats.mozilla.org/report/index/640ada62-36ce-41f2-be23-5fcbc0200426
Does this look like a different issue?
|
|
Assignee | |
Comment 17•5 years ago
|
||
(In reply to Gabriele Svelto [:gsvelto] from comment #16)
We're still seeing crashes with a similar stack in recent builds, this one is from Debian:
https://crash-stats.mozilla.org/report/index/1bbc19f2-b9c2-4dc0-ab64-9d7860200425
And this one from Arch:
https://crash-stats.mozilla.org/report/index/640ada62-36ce-41f2-be23-5fcbc0200426
Does this look like a different issue?
It looks like Bug 1628583 which was fixed a week ago. I checked the symbols and the don't use the "_locked" methods so they're pre Bug 1628583 builds.
Description
•