Upon upgrading to stable tree firefox-3.5*, I have consistently been receiving random segfaults when browsing youtube. Seems related to flash objects, although not always the case: in one instance, merely pressing the "Search" button on youtube resulted in a segfault. No apparent isolable cause. Reproducible: Always Steps to Reproduce: 1.Open Firefox 2.Go to Youtube 3.Browse around, open various videos, and seek to different points in the video. Actual Results: Program crashes, Console output: Segmentation Fault Expected Results: The software should have been stable, as it was with firefox-3.0. Portage 2.1.6.13 (default/linux/amd64/10.0/desktop, gcc-3.4.6, glibc-2.9_p20081201-r2, 2.6.26-gentoo-r4 x86_64) ================================================================= System uname: Linux-2.6.26-gentoo-r4-x86_64-AMD_Athlon-tm-_64_Processor_3000+-with-gentoo-1.12.11.1 Timestamp of tree: Thu, 12 Nov 2009 08:00:01 +0000 app-shells/bash: 4.0_p28 dev-java/java-config: 2.1.9-r1 dev-lang/python: 2.4.4-r13, 2.5.4-r3, 2.6.2-r1 dev-python/pycrypto: 2.0.1-r8 sys-apps/baselayout: 1.12.11.1 sys-apps/sandbox: 1.6-r2 sys-devel/autoconf: 2.13, 2.63-r1 sys-devel/automake: 1.4_p6, 1.5, 1.6.3, 1.7.9-r1, 1.8.5-r3, 1.9.6-r2, 1.10.2 sys-devel/binutils: 2.18-r3 sys-devel/gcc-config: 1.4.1 sys-devel/libtool: 2.2.6a virtual/os-headers: 2.6.27-r2 ACCEPT_KEYWORDS="amd64" CBUILD="x86_64-pc-linux-gnu" CFLAGS="-march=athlon64 -O2 -pipe" CHOST="x86_64-pc-linux-gnu" CONFIG_PROTECT="/etc /usr/kde/3.5/env /usr/kde/3.5/share/config /usr/kde/3.5/shutdown /usr/share/config" CONFIG_PROTECT_MASK="/etc/ca-certificates.conf /etc/env.d /etc/env.d/java/ /etc/fonts/fonts.conf /etc/gconf /etc/revdep-rebuild /etc/sandbox.d /etc/terminfo /etc/udev/rules.d" CXXFLAGS="-march=athlon64 -O2 -pipe" DISTDIR="/usr/portage/distfiles" FEATURES="distlocks fixpackages parallel-fetch protect-owned sandbox sfperms strict unmerge-orphans userfetch" GENTOO_MIRRORS="http://distfiles.gentoo.org http://distro.ibiblio.org/pub/linux/distributions/gentoo" LANG="en_US.UTF-8" LDFLAGS="-Wl,-O1" MAKEOPTS="-j2" PKGDIR="/usr/portage/packages" PORTAGE_CONFIGROOT="/" PORTAGE_RSYNC_OPTS="--recursive --links --safe-links --perms --times --compress --force --whole-file --delete --stats --timeout=180 --exclude=/distfiles --exclude=/local --exclude=/packages" PORTAGE_TMPDIR="/var/tmp" PORTDIR="/usr/portage" PORTDIR_OVERLAY="/usr/portage/local/layman/armagetron /usr/portage/local/layman/sunrise /usr/overlays/unstable" SYNC="rsync://rsync.gentoo.org/gentoo-portage" USE="X a52 aac acl acpi alsa amd64 berkdb bluetooth branding bzip2 cairo cdr cjk cli consolekit cracklib crypt cups dbus dri dts dvd dvdr eds emboss encode evo fam firefox flac fortran gdbm gif gpm gstreamer gtk hal iconv immqt-bc ipv6 jpeg libnotify mad mikmod mmx modules mp3 mp4 mpeg mudflap multilib ncurses nls nptl nptlonly ogg opengl openmp pam pcre pdf perl png ppds pppd python qt3support qt4 quicktime readline reflection sdl session spell spl sse sse2 ssl startup-notification svg sysfs tcpd thunar tiff truetype unicode usb vorbis x264 xml xorg xulrunner xv xvid zlib" ALSA_CARDS="intel8x0 ca0106" ALSA_PCM_PLUGINS="adpcm alaw asym copy dmix dshare dsnoop empty extplug file hooks iec958 ioplug ladspa lfloat linear meter mmap_emul mulaw multi null plug rate route share shm softvol" APACHE2_MODULES="actions alias auth_basic authn_alias authn_anon authn_dbm authn_default authn_file authz_dbm authz_default authz_groupfile authz_host authz_owner authz_user autoindex cache dav dav_fs dav_lock deflate dir disk_cache env expires ext_filter file_cache filter headers include info log_config logio mem_cache mime mime_magic negotiation rewrite setenvif speling status unique_id userdir usertrack vhost_alias" ELIBC="glibc" INPUT_DEVICES="keyboard mouse" KERNEL="linux" LCD_DEVICES="bayrad cfontz cfontz633 glk hd44780 lb216 lcdm001 mtxorb ncurses text" USERLAND="GNU" VIDEO_CARDS="nvidia vesa fbdev" Unset: CPPFLAGS, CTARGET, EMERGE_DEFAULT_OPTS, FFLAGS, INSTALL_MASK, LC_ALL, LINGUAS, PORTAGE_COMPRESS, PORTAGE_COMPRESS_FLAGS, PORTAGE_RSYNC_EXTRA_OPTS
Created attachment 210039 [details] bt.log GDB backtrace.
Some further information: 1. This also happens in safe-mode. 2. [ebuild R ] www-client/mozilla-firefox-3.5.4 USE="alsa dbus java startup-notification -bindist -custom-optimization -gnome -iceweasel -mozdevelop -restrict-javascript -sqlite" LINGUAS="-af -ar -as -be -bg -bn -bn_BD -bn_IN -ca -cs -cy -da -de -el -en -en_GB -en_US -eo -es -es_AR -es_CL -es_ES -es_MX -et -eu -fa -fi -fr -fy -fy_NL -ga -ga_IE -gl -gu -gu_IN -he -hi -hi_IN -hr -hu -id -is -it -ja -ka -kk -kn -ko -ku -lt -lv -mk -ml -mn -mr -nb -nb_NO -nl -nn -nn_NO -oc -or -pa -pa_IN -pl -pt -pt_BR -pt_PT -rm -ro -ru -si -sk -sl -sq -sr -sv -sv_SE -ta -ta_LK -te -th -tr -uk -vi -zh_CN -zh_TW" 0 kB Total: 1 package (1 reinstall), Size of downloads: 0 kB (In reply to comment #1) > Created an attachment (id=210039) [details] > bt.log > > GDB backtrace. >
I'd like to know why this version went stable, when there has been made 3.5.5 been available, because of stability issues. Version 3.0.15 didn't even enter the tree, even though a much better candidate to quickly stabilize in responsive to vulnerabilities...
(In reply to comment #3) > I'd like to know why this version went stable, when there has been made 3.5.5 > been available, because of stability issues. Version 3.0.15 didn't even enter > the tree, even though a much better candidate to quickly stabilize in > responsive to vulnerabilities... > This was what the herd decided on. (In reply to comment #1) > Created an attachment (id=210039) [details] > bt.log > > GDB backtrace. > update your toolchain properly to stable, your using an old and buggy gcc.
Created attachment 210482 [details] New emerge info I upgraded gcc and every package on my system, followed by revdep-rebuild. Firefox still crashes in the same way.
Possibly this could be related to bug #291727. If you start firefox from a terminal do you see XID collision messages before the crash?
(In reply to comment #6) > Possibly this could be related to bug #291727. If you start firefox from a > terminal do you see XID collision messages before the crash? > I do see a number of warning messages before the crash but not that particular message. Here is the output from my most recently reproduced crash: $ firefox (firefox:19989): GLib-GObject-WARNING **: gsignal.c:2387: instance `0x7fb34ed08f80' has no handler with id `1068' (firefox:19989): GLib-GObject-WARNING **: gsignal.c:2387: instance `0x7fb34cba9de0' has no handler with id `1152' (firefox:19989): GLib-GObject-WARNING **: gsignal.c:2387: instance `0x7fb34cba9de0' has no handler with id `1243' (firefox:19989): GLib-GObject-WARNING **: invalid unclassed pointer in cast to `GtkObject' (firefox:19989): GLib-GObject-WARNING **: instance with invalid (NULL) class pointer (firefox:19989): GLib-GObject-CRITICAL **: g_signal_handler_disconnect: assertion `G_TYPE_CHECK_INSTANCE (instance)' failed (firefox:19989): GLib-GObject-WARNING **: instance with invalid (NULL) class pointer (firefox:19989): GLib-GObject-CRITICAL **: g_signal_handler_disconnect: assertion `G_TYPE_CHECK_INSTANCE (instance)' failed (firefox:19989): GLib-GObject-WARNING **: gsignal.c:2387: instance `0x7fb34d1750e0' has no handler with id `1341' Segmentation fault
(In reply to comment #6) > Possibly this could be related to bug #291727. If you start firefox from a > terminal do you see XID collision messages before the crash? > Update: On my most recent crash, where I was browsing bn.com, firefox crashed with the XID collision messages: (firefox:20102): Gdk-WARNING **: XID collision, trouble ahead Segmentation fault
Please reopen if you can still produce with an updated backtrace.
