Bug 437132 - Firefox crashes in gtk dialog
Summary: Firefox crashes in gtk dialog
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Enterprise Linux 5
Classification: Red Hat
Component: gtk+
Version: 5.1
Hardware: i386
OS: Linux
high
high
Target Milestone: rc
: ---
Assignee: Matthias Clasen
QA Contact: desktop-bugs@redhat.com
URL:
Whiteboard:
Depends On: 433823
Blocks: 441780
TreeView+ depends on / blocked
 
Reported: 2008-03-12 15:47 UTC by Martin Stransky
Modified: 2008-05-29 13:32 UTC (History)
12 users (show)

Fixed In Version: RHEL-5.2
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2008-05-29 13:32:55 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)
backtrace (61.35 KB, text/plain)
2008-03-12 15:49 UTC, Martin Stransky
no flags Details
bt2 (9.97 KB, text/plain)
2008-03-12 15:52 UTC, Martin Stransky
no flags Details
bt3 (7.40 KB, text/plain)
2008-03-12 15:52 UTC, Martin Stransky
no flags Details
possible patch for crash in comment 2 (734 bytes, patch)
2008-03-12 19:31 UTC, Jonathan Peatfield
no flags Details | Diff

Description Martin Stransky 2008-03-12 15:47:24 UTC
Firefox crashes when it tries to open a new GTK dialog. The crash is inside GTK.

Comment 1 Martin Stransky 2008-03-12 15:49:17 UTC
Created attachment 297790 [details]
backtrace

Comment 2 Martin Stransky 2008-03-12 15:52:02 UTC
Created attachment 297793 [details]
bt2

Comment 3 Martin Stransky 2008-03-12 15:52:34 UTC
Created attachment 297794 [details]
bt3

Comment 4 Jonathan Peatfield 2008-03-12 16:28:20 UTC
The crash in the bt for comment #2 seems likely to be the null callback_data in
a call to moz_container_forall() as mentioned in
http://bugs.activestate.com/show_bug.cgi?id=64037

That suggested patch just adds a trivial check on callback_data before
attempting to walk the moz_container->children calling their widget callbacks...



Comment 6 Jonathan Peatfield 2008-03-12 19:31:22 UTC
Created attachment 297832 [details]
possible patch for crash in comment 2

From the http://bugs.activestate.com/show_bug.cgi?id=64037 just so a copy is
here too.  Adding that to firefox-1.5.0.12-11 (and it applies to thunderbird
too!) certainly seems to help reduce a number of crashes here...

I've not yet tested it with the other patches added in firefox-1.5.0.12-13

(personally I don't use firefox but many of our users here seem to...)

Comment 7 Jonathan Peatfield 2008-03-14 19:54:26 UTC
I'm currently rebuilding our test version of ffox to include the extra two
patches from your firefox-1.5.0.12-13 srpm as well as the gtk fix above.  If all
goes well I plan to push that out to about ~400 machines here in the next few
days.  I'll let you know how that goes.

The tests with just adding the gtk-fix seem to have reduced the number of
crashes quite a lot and the remaining ones *mostly* seem to be related to sites
using lots of annoying flash animations (like 6 adverts on one page all
competing for your attention...)

Long (long*) ago the flash plugin was so buggy that we didn't enable it by
default, and had to provide a wrapper which allowed people to turn it on for
sites which needed it.  I hope we don't need to go back to that... :-(

 -- Jon


Comment 8 Jonathan Peatfield 2008-04-01 01:52:13 UTC
Well as promised I'm including an update.

I'd like to confirm that the extra patch seems to help though we were still
getting a few crashes.  As of friday we are using a version based on the new
security update firefox-1.5.0.12-14 with this (and the empty-doc) patch with no
obvious ill effects.

Most of the remaining crashes *seem* to be inside the flash plugin, though
obviously we havn't been running the new version for long enough to be really sure.

 -- Jon


Comment 9 Christopher Aillon 2008-04-10 03:26:01 UTC
Though the fix isn't a good fix, as admitted in the activestate bug...
http://bugs.activestate.com/show_bug.cgi?id=64037#c23

It defeats legitimate callbacks, so we need to find a better fix here.

Comment 10 Martin Stransky 2008-04-11 09:19:04 UTC
The bug is in GTK and a fix is available (see
http://bugzilla.gnome.org/show_bug.cgi?id=467698).

So it should be fixed in GTK.

Comment 11 Jonathan Peatfield 2008-04-11 20:25:48 UTC
That is certainly *a* bug in GTK with a fix available - which should obviously
be fixed in GTK.

Since the discussion in there seems to be related to problems with re-parenting
an object when it is dragged in a notebook it isn't entirely obvious that this
is the bug which is causing ffox (and tbird etc) to crash - or at least not
obviously the *only* bug...


Comment 12 Matthias Clasen 2008-04-11 20:32:29 UTC
The cited GTK+ change can _not_ fix any firefox crash in RHEL5 - for the simple
reason that there is not notebook tab DND in the GTK+ thats shipped with RHEL5.

Comment 13 Martin Stransky 2008-05-29 13:32:55 UTC
Hopefully fixed by the RHEL-5.2 update. Please reopen if not.


Note You need to log in before you can comment on or make changes to this bug.