Bug 617807 - /usr/lib/xulrunner-1.9.2/plugin-container
/usr/lib/xulrunner-1.9.2/plugin-container
Status: CLOSED CANTFIX
Product: Fedora
Classification: Fedora
Component: xulrunner (Show other bugs)
13
All Linux
low Severity medium
: ---
: ---
Assigned To: Gecko Maintainer
Fedora Extras Quality Assurance
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2010-07-24 01:01 EDT by Jeff
Modified: 2010-07-24 01:31 EDT (History)
5 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2010-07-24 01:31:19 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Jeff 2010-07-24 01:01:55 EDT
Description of problem:
Process /usr/lib/xulrunner-1.9.2/plugin-container was killed by signal 11 (SIGSEGV)

Version-Release number of selected component (if applicable):
Fedora release 13 (Goddard)
2.6.33.6-147.fc13.i686.PAE
xulrunner-1.9.2.7-1.fc13

How reproducible:
/usr/lib/xulrunner-1.9.2/plugin-container /home/dude/.mozilla/plugins/libflashplayer.so 3633 plugin

Steps to Reproduce:
1.any page with flash in firefox
2.
3.
  
Actual results:

warning: core file may not match specified executable file.
[New Thread 3846]
[New Thread 3847]
[New Thread 3845]
Core was generated by `/usr/lib/xulrunner-1.9.2/plugin-container /home/dude/.mozilla/plugins/libflashp'.
Program terminated with signal 11, Segmentation fault.
#0  __pthread_mutex_lock (mutex=0xb5a07024) at pthread_mutex_lock.c:50
50	  unsigned int type = PTHREAD_MUTEX_TYPE (mutex);

Thread 3 (Thread 3845):
#0  0x00247416 in __kernel_vsyscall ()
No symbol table info available.
#1  0x00599187 in syscall () at ../sysdeps/unix/sysv/linux/i386/syscall.S:30
No locals.
#2  0x019d6085 in epoll_wait (epfd=4, events=0x88544e8, maxevents=1023, 
    timeout=-1) at src/third_party/libevent/epoll_sub.c:51
No locals.
#3  0x019d5c36 in epoll_dispatch (base=0x8854130, arg=0x8851798, tv=0x0)
    at src/third_party/libevent/epoll.c:208
        epollop = 0x8851798
        events = 0x88544e8
        evep = <value optimized out>
        i = <value optimized out>
        res = <value optimized out>
        timeout = <value optimized out>
#4  0x019cfc8f in event_base_loop (base=0x8854130, flags=1)
    at src/third_party/libevent/event.c:513
        evsel = 0x23bfd70
        evbase = 0x8851798
        tv = {tv_sec = -1078501772, tv_usec = -1078502072}
        tv_p = 0x0
        res = <value optimized out>
#5  0x01a025de in base::MessagePumpLibevent::Run (this=0x8852a90, delegate=
    0xbfb75e74) at src/base/message_pump_libevent.cc:338
        poll_tv = {tv_sec = 15496824, tv_usec = 37423144}
        delay = {delta_ = -4632129836201582988}
        did_work = <value optimized out>
        old_in_run = false
#6  0x019e21f8 in MessageLoop::RunInternal (this=0xbfb75e74)
    at src/base/message_loop.cc:216
No locals.
#7  0x019e221d in MessageLoop::RunHandler (this=0xbfb75e74)
    at src/base/message_loop.cc:199
No locals.
#8  0x019e22aa in MessageLoop::Run (this=0xbfb75e74)
    at src/base/message_loop.cc:173
        save_state = {<MessageLoop::RunState> = {run_depth = 1, 
            quit_received = false}, loop_ = 0xbfb75e74, previous_state_ = 0x0}
#9  0x01095bc1 in XRE_InitChildProcess (aArgc=<value optimized out>, aArgv=
    0xbfb76094, aProcess=GeckoProcessType_Plugin) at nsEmbedFunctions.cpp:359
        mainThread = 0x88594e0
        process = {_vptr.ChildProcess = 0x23a9348, child_thread_ = {ptr_ = 
    0x88594e0}, ref_count_ = 0, shutdown_event_ = {kernel_ = {ptr_ = 
    0x8853ae8}}, static child_process_ = 0xbfb75e5c}
        end = 0xbfb77567 ""
        parentPID = <value optimized out>
        parentHandle = 3633
        exitManager = {lock_ = {lock_ = {os_lock_ = {__data = {__lock = 0, 
                  __count = 0, __owner = 0, __kind = 0, __nusers = 0, {
                    __spins = 0, __list = {__next = 0x0}}}, __size = 
    '\000' <repeats 23 times>, __align = 0}}}, 
          stack_ = std::stack wrapping: std::deque with 3 elements = {{
              func_ = 
    0x19e543f <base::DefaultLazyInstanceTraits<base::ThreadLocalPointer<MessageLoop> >::Delete(void*)>, param_ = 0x23d4410}, {func_ = 0x19ef7d8
     <base::DefaultLazyInstanceTraits<base::ThreadLocalBoolean>::Delete(void*)>, param_ = 0x23d442c}, {func_ = 0x1a09e8f
     <Singleton<IPC::<unnamed>::PipeMap, DefaultSingletonTraits<IPC::<unnamed>::PipeMap>, IPC::<unnamed>::PipeMap>::OnExit(void *)>, param_ = 0x0}}, 
          next_manager_ = 0x0}
        rv = <value optimized out>
        parentPIDString = <value optimized out>
        mainMessageLoop = {<MessageLoop> = {<base::MessagePump::Delegate> = {
              _vptr.Delegate = 0x22eba40}, static event_descriptions_ = {{
                sample = 1, description = 0x1c0f1e3 "kTaskRunEvent"}, {
                sample = 2, description = 0x1c0f1f1 "kTimerEvent"}, {sample = 
    -1, description = 0x0}}, static enable_histogrammer_ = false, type_ = 
    MessageLoop::TYPE_IO, 
            work_queue_ = std::queue wrapping: std::deque with 0 elements, 
            delayed_work_queue_ = std::priority_queue wrapping: std::vector of length 0, capacity 0, 
            deferred_non_nestable_work_queue_ = std::queue wrapping: std::deque with 0 elements, pump_ = {ptr_ = 0x8852a90}, destruction_observers_ = {
              observers_ = std::vector of length 0, capacity 0, 
              notify_depth_ = 0, type_ = 
    ObserverList<MessageLoop::DestructionObserver, false>::NOTIFY_ALL}, 
            nestable_tasks_allowed_ = true, exception_restoration_ = false, 
            thread_name_ = "", message_histogram_ = {ptr_ = 0x0}, 
            incoming_queue_ = std::queue wrapping: std::deque with 0 elements, incoming_queue_lock_ = {lock_ = {os_lock_ = {__data = {__lock = 0, __count = 
    0, __owner = 0, __kind = 0, __nusers = 0, {__spins = 0, __list = {
                        __next = 0x0}}}, __size = '\000' <repeats 23 times>, 
                  __align = 0}}}, state_ = 0xbfb75e00, next_sequence_num_ = 
    0}, <No data fields>}
#10 0x0804861d in main (argc=1, argv=0x88574f8) at MozillaRuntimeMain.cpp:87
        proctype = <value optimized out>
        rv = <value optimized out>

Thread 2 (Thread 3847):
#0  0x00247416 in __kernel_vsyscall ()
No symbol table info available.
#1  0x006e1685 in sem_wait@@GLIBC_2.1 ()
    at ../nptl/sysdeps/unix/sysv/linux/i386/i486/sem_wait.S:80
No locals.
#2  0x029383c8 in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#3  0x006db919 in start_thread (arg=0xb59ffb70) at pthread_create.c:301
        __res = <value optimized out>
        __ignore1 = 128
        __ignore2 = 0
        pd = 0xb59ffb70
        now = <value optimized out>
        unwind_buf = {cancel_jmp_buf = {{jmp_buf = {7262196, 0, 4001536, 
    -1247808776, 1251974697, -1375056574}, mask_was_saved = 0}}, priv = {
            pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, 
              canceltype = 0}}}
        not_first_call = <value optimized out>
        pagesize_m1 = <value optimized out>
        sp = <value optimized out>
        freesize = <value optimized out>
#4  0x0059ccbe in clone () at ../sysdeps/unix/sysv/linux/i386/clone.S:133
No locals.

Thread 1 (Thread 3846):
#0  __pthread_mutex_lock (mutex=0xb5a07024) at pthread_mutex_lock.c:50
        type = <value optimized out>
        id = <value optimized out>
#1  0x02a23858 in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#2  0x02a70982 in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#3  0x0292ba8d in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#4  0x0288e138 in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#5  0x0288a020 in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#6  0x02e306da in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#7  0x00e9f3ce in _dl_fini () at dl-fini.c:248
        nmaps = 68
        nloaded = <value optimized out>
        i = <value optimized out>
        l = <value optimized out>
        ns = <value optimized out>
        maps = 0xb7761220
        maps_size = 272
        do_audit = 0
#8  0x004ed42f in __run_exit_handlers (status=1) at exit.c:78
        atfct = <value optimized out>
        onfct = <value optimized out>
        cxafct = <value optimized out>
        f = <value optimized out>
#9  exit (status=1) at exit.c:100
No locals.
#10 0x00c2e6fb in _XtDefaultError (message=<value optimized out>)
    at Error.c:492
No locals.
#11 0x00c2e3ad in XtError (message=<value optimized out>) at Error.c:507
No locals.
#12 0x00c2ea68 in DefaultMsg (name=<value optimized out>, 
    type=<value optimized out>, class=<value optimized out>, 
    defaultp=<value optimized out>, params=<value optimized out>, 
    num_params=<value optimized out>, error=<value optimized out>, 
    fn=<value optimized out>) at Error.c:271
        buffer = 
    "Couldn't find per display information\000\240\265\\\025v\267\225+#\025\330\026v\267g\000\000\000\224\026v\267\337\275\343\002p\025v\267\316\003\000\000d\235\351\000\326\377R\000,Q\355\002\325\275\343\002\\\025v\267x\027v\267\200\362\240\265\\\027v\267\344\300\255\002\000P\240\265\n\000\000\000\304\357\352\001\031\000\000\000\000P\240\265\001\000\000\000\001\000\000\001 \000\000\000P\261\303\266\020\000\300\266\001\000\000\000\364od\000\070\261\303\266H\260\303\266\204\025v\267P-S\000\001\000\000\000G\000e\000t\000S\000\020\000\300\266\035\000\000\000\035\000\000\000\360\260\303\266\005\000\000\000\364od\000@\261\303\266\070\261\303\266\310\025v\267l/S\000\030\000\000\000 \000\000\000\000\000\000\000\320P\244\265 \000\000\000\001\000\000\000\340\213\303\266\000\224\251\265\000\000\000\000\030\000\000\000\030\000\000\000\020\000\300\266P\305\313\000\001\000\000\000@\261"...
        message = <value optimized out>
#13 0x00c2e070 in XtErrorMsg (name=<value optimized out>, 
    type=<value optimized out>, class=<value optimized out>, 
    defaultp=<value optimized out>, params=<value optimized out>, 
    num_params=<value optimized out>) at Error.c:350
No locals.
#14 0x00c2cada in _XtSortPerDisplayList (dpy=<value optimized out>)
    at Display.c:566
        pd = <value optimized out>
        opd = <value optimized out>
#15 0x00c2cbdd in _XtGetPerDisplay (display=<value optimized out>)
    at Display.c:734
        retval = <value optimized out>
#16 0x00c2ccde in XtDisplayToApplicationContext (dpy=<value optimized out>)
    at Display.c:586
No locals.
#17 0x02895457 in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#18 0x0288def3 in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#19 0x02892532 in ?? () from /home/dude/.mozilla/plugins/libflashplayer.so
No symbol table info available.
#20 0x0197616a in mozilla::(anonymous namespace)::PluginInstanceChild::AnswerNPP_SetWindow (this=0xb6c38a98, aWindow=...) at PluginInstanceChild.cpp:610
        __PRETTY_FUNCTION__ = 
    "virtual bool mozilla::plugins::PluginInstanceChild::AnswerNPP_SetWindow(const mozilla::plugins::NPRemoteWindow&)"
#21 0x019b06d9 in mozilla::(anonymous namespace)::PPluginInstanceChild::OnCallReceived (this=0xb6c38a98, msg=..., reply=@0xb7761ccc)
    at PPluginInstanceChild.cpp:1042
        window = {window = 90177544, x = 1, y = 1, width = 1, height = 1, 
          clipRect = {top = 0, left = 0, bottom = 1, right = 1}, type = 
    NPWindowTypeWindow, visualID = 33, colormap = 32}
        __readok = true
        __id = 2
#22 0x019ad13a in mozilla::(anonymous namespace)::PPluginModuleChild::OnCallReceived (this=0x8859540, msg=..., reply=@0xb7761ccc)
    at PPluginModuleChild.cpp:408
        __routed = <value optimized out>
        __route = <value optimized out>
#23 0x01985e10 in mozilla::ipc::RPCChannel::DispatchIncall (this=0x8859548, 
    call=...) at RPCChannel.cpp:510
        reply = 0x0
        rv = <value optimized out>
#24 0x01986c32 in mozilla::ipc::RPCChannel::OnMaybeDequeueOne (this=0x8859548)
    at RPCChannel.cpp:434
        recvd = {<Pickle> = {static kPayloadUnit = 64, header_ = 0xb6c38908, 
            header_size_ = 28, capacity_ = 128, variable_buffer_offset_ = 0}, 
          _vptr.Message = 0x23a9590, file_descriptor_set_ = {ptr_ = 0x0}, 
          name_ = 0x1c0a0c0 "PPluginInstance::Msg_NPP_SetWindow"}
        f = {mThat = @0x8859548}
#25 0x019873eb in DispatchToMethod<mozilla::ipc::RPCChannel, bool (mozilla::ipc::RPCChannel::*)()> (this=0x8853840)
    at ../../ipc/chromium/src/base/tuple.h:383
No locals.
#26 RunnableMethod<mozilla::ipc::RPCChannel, bool (mozilla::ipc::RPCChannel::*)(), Tuple0>::Run (this=0x8853840) at ../../ipc/chromium/src/base/task.h:307
No locals.
#27 0x01987389 in Run (this=0x8859c08)
    at ../../dist/include/mozilla/ipc/RPCChannel.h:448
No locals.
#28 mozilla::ipc::RPCChannel::DequeueTask::Run (this=0x8859c08)
    at ../../dist/include/mozilla/ipc/RPCChannel.h:473
No locals.
#29 0x019e1fd0 in MessageLoop::RunTask (this=0xb77620e8, task=0x8859c08)
    at src/base/message_loop.cc:336
No locals.
#30 0x019e24b6 in MessageLoop::DeferOrRunPendingTask (this=0xb77620e8, 
    pending_task=...) at src/base/message_loop.cc:344
No locals.
#31 0x019e282f in MessageLoop::DoWork (this=0xb77620e8)
    at src/base/message_loop.cc:444
        pending_task = {task = 0x8859c08, delayed_run_time = {
            static kMillisecondsPerSecond = <optimized out>, 
            static kMicrosecondsPerMillisecond = <optimized out>, 
            static kMicrosecondsPerSecond = <optimized out>, 
            static kMicrosecondsPerMinute = <optimized out>, 
            static kMicrosecondsPerHour = <optimized out>, 
            static kMicrosecondsPerDay = <optimized out>, 
            static kMicrosecondsPerWeek = <optimized out>, 
            static kNanosecondsPerMicrosecond = <optimized out>, 
            static kNanosecondsPerSecond = <optimized out>, 
            static kTimeTToMicrosecondsOffset = 0, us_ = 0}, sequence_num = 
    0, nestable = true}
#32 0x01a0e76d in base::MessagePumpForUI::HandleDispatch (this=0xb6c00490)
    at src/base/message_pump_glib.cc:264
No locals.
#33 0x01a0e7b8 in (anonymous namespace)::WorkSourceDispatch (source=
    0xb6c00600, unused_func=0, unused_data=0x0)
    at src/base/message_pump_glib.cc:109
No locals.
#34 0x082fc525 in g_main_dispatch (context=0xb6c004d0) at gmain.c:1960
        dispatch = 
    0x1a0e79a <(anonymous namespace)::WorkSourceDispatch(GSource*, GSourceFunc, gpointer)>
        was_in_call = 0
        user_data = 0x0
        callback = 0
        cb_funcs = 0x0
        cb_data = 0x0
        current_source_link = {data = 0xb6c00600, next = 0x0}
        need_destroy = <value optimized out>
        source = 0xb6c00600
        current = 0xb6c01fd8
        i = <value optimized out>
#35 IA__g_main_context_dispatch (context=0xb6c004d0) at gmain.c:2513
No locals.
#36 0x08300268 in g_main_context_iterate (context=0x6de490, block=1, dispatch=
    1, self=0xb6c03a90) at gmain.c:2591
        max_priority = 2147483647
        timeout = -1
        some_ready = 1
        nfds = <value optimized out>
        allocated_nfds = <value optimized out>
        fds = 0xb6c03a70
        __PRETTY_FUNCTION__ = "g_main_context_iterate"
#37 0x08300449 in IA__g_main_context_iteration (context=0xb6c004d0, may_block=
    1) at gmain.c:2654
        retval = <value optimized out>
#38 0x01a0edbc in base::MessagePumpForUI::RunWithDispatcher (this=0xb6c00490, 
    delegate=0xb77620e8, dispatcher=0x0) at src/base/message_pump_glib.cc:195
        block = <value optimized out>
        state = {delegate = 0xb77620e8, dispatcher = 0x0, should_quit = 
    false, run_depth = 1, has_work = false}
        previous_state = 0x0
        more_work_is_plausible = <value optimized out>
#39 0x01a0f0b3 in base::MessagePumpForUI::Run (this=0xb6c00490, delegate=
    0xb77620e8) at ../../ipc/chromium/src/base/message_pump_glib.h:59
No locals.
#40 0x019e21f8 in MessageLoop::RunInternal (this=0xb77620e8)
    at src/base/message_loop.cc:216
No locals.
#41 0x019e221d in MessageLoop::RunHandler (this=0xb77620e8)
    at src/base/message_loop.cc:199
No locals.
#42 0x019e22aa in MessageLoop::Run (this=0xb77620e8)
    at src/base/message_loop.cc:173
        save_state = {<MessageLoop::RunState> = {run_depth = 1, 
            quit_received = false}, loop_ = 0xb77620e8, previous_state_ = 0x0}
#43 0x019ef390 in base::Thread::ThreadMain (this=0x88594e8)
    at src/base/thread.cc:165
        message_loop = {<base::MessagePump::Delegate> = {_vptr.Delegate = 
    0x23a91b8}, static event_descriptions_ = {{sample = 1, description = 
    0x1c0f1e3 "kTaskRunEvent"}, {sample = 2, description = 
    0x1c0f1f1 "kTimerEvent"}, {sample = -1, description = 0x0}}, 
          static enable_histogrammer_ = false, type_ = MessageLoop::TYPE_UI, 
          work_queue_ = std::queue wrapping: std::deque with 0 elements, 
          delayed_work_queue_ = std::priority_queue wrapping: std::vector of length 0, capacity 0, 
          deferred_non_nestable_work_queue_ = std::queue wrapping: std::deque with 0 elements, pump_ = {ptr_ = 0xb6c00490}, destruction_observers_ = {
            observers_ = std::vector of length 0, capacity 0, notify_depth_ = 
    0, type_ = 
    ObserverList<MessageLoop::DestructionObserver, false>::NOTIFY_ALL}, 
          nestable_tasks_allowed_ = false, exception_restoration_ = true, 
          thread_name_ = "Chrome_ChildThread", message_histogram_ = {ptr_ = 
    0x0}, incoming_queue_ = std::queue wrapping: std::deque with 0 elements, 
          incoming_queue_lock_ = {lock_ = {os_lock_ = {__data = {__lock = 0, 
                  __count = 0, __owner = 0, __kind = 0, __nusers = 0, {
                    __spins = 0, __list = {__next = 0x0}}}, __size = 
    '\000' <repeats 23 times>, __align = 0}}}, state_ = 0xb7762090, 
          next_sequence_num_ = 0}
        wait_for_init = false
#44 0x01a02cf4 in ThreadFunc (closure=0x88594e8)
    at src/base/platform_thread_posix.cc:26
        delegate = 0x88594e8
#45 0x006db919 in start_thread (arg=0xb7762b70) at pthread_create.c:301
        __res = <value optimized out>
        __ignore1 = 0
        __ignore2 = 49397600
        pd = 0xb7762b70
        now = <value optimized out>
        unwind_buf = {cancel_jmp_buf = {{jmp_buf = {7262196, 0, 4001536, 
    -1216994568, -1723883988, -1375056574}, mask_was_saved = 0}}, priv = {
            pad = {0x0, 0x0, 0x0, 0x0}, data = {prev = 0x0, cleanup = 0x0, 
              canceltype = 0}}}
        not_first_call = <value optimized out>
        pagesize_m1 = <value optimized out>
        sp = <value optimized out>
        freesize = <value optimized out>
#46 0x0059ccbe in clone () at ../sysdeps/unix/sysv/linux/i386/clone.S:133
No locals.
From        To          Syms Read   Shared Object Library
0x006d95e0  0x006e5558  Yes         /lib/libpthread-2.12.so
0x0090fcf0  0x009105f8  Yes         /usr/lib/xulrunner-1.9.2/libxpcom.so
0x01080420  0x01aa6b18  Yes         /usr/lib/xulrunner-1.9.2/libxul.so
0x00223a90  0x00224a18  Yes         /lib/libplds4.so
0x00a33e50  0x00a35828  Yes         /lib/libplc4.so
0x00c8a820  0x00cae468  Yes         /lib/libnspr4.so
0x0035da60  0x0035ea88  Yes         /lib/libdl-2.12.so
0x0012de00  0x001c01d8  Yes         /lib/libasound.so.2.0.0
0x0028aeb0  0x002fd938  Yes         /usr/lib/libstdc++.so.6.0.13
0x00498470  0x004b2968  Yes         /lib/libm-2.12.so
0x007cdfa0  0x007e6438  Yes         /lib/libgcc_s-4.4.4-20100630.so.1
0x004d5aa0  0x005f51f4  Yes         /lib/libc-2.12.so
0x00e90830  0x00ea83bf  Yes         /lib/ld-2.12.so
0x00366e00  0x003d8cf8  Yes         /usr/lib/libsqlite3.so.0.8.6
0x044d52d0  0x044ef6b8  Yes         /usr/lib/libjpeg.so.62.0.0
0x00a47380  0x00b78cd8  Yes         /usr/lib/xulrunner-1.9.2/libmozjs.so
0x003f70b0  0x0041c528  Yes         /usr/lib/libssl3.so
0x0074bbb0  0x007653b8  Yes         /usr/lib/libsmime3.so
0x00cd0060  0x00db9a08  Yes         /usr/lib/libnss3.so
0x001ffb90  0x0020bad8  Yes         /usr/lib/libnssutil3.so
0x00836210  0x00890688  Yes         /usr/lib/libcairo.so.2.10800.10
0x0042ab40  0x00482a68  Yes         /usr/lib/libpixman-1.so.0.18.0
0x0091a3c0  0x009836e8  Yes         /usr/lib/libfreetype.so.6.3.22
0x0064ef60  0x0066acc8  Yes         /usr/lib/libfontconfig.so.1.4.4
0x002162c0  0x0021c178  Yes         /usr/lib/libXrender.so.1.3.0
0x05dfb370  0x05e8c908  Yes         /usr/lib/libX11.so.6.3.0
0x00c04620  0x00c0f8e8  Yes         /lib/libz.so.1.2.3
0x00686e20  0x006af0d8  Yes         /usr/lib/libhunspell-1.2.so.0.0.0
0x003396e0  0x0034b2a8  Yes         /usr/lib/libdbus-glib-1.so.2.1.0
0x009b4220  0x009e0578  Yes         /lib/libdbus-1.so.3.4.0
0x006f67d0  0x007226f8  Yes         /lib/libgobject-2.0.so.0.2400.1
0x00e5ff40  0x00e616b8  Yes         /lib/libgthread-2.0.so.0.2400.1
0x00228880  0x0022c6b8  Yes         /lib/librt-2.12.so
0x082d4590  0x08360478  Yes         /lib/libglib-2.0.so.0.2400.1
0x00232720  0x0023cff8  Yes         /usr/lib/libXext.so.6.4.0
0x00773510  0x0078e918  Yes         /usr/lib/libpangoft2-1.0.so.0.2800.0
0x008b9210  0x008db3e8  Yes         /usr/lib/libpango-1.0.so.0.2800.0
0x0021ec30  0x0021fd88  Yes         /lib/libgmodule-2.0.so.0.2400.1
0x07747810  0x07a26788  Yes         /usr/lib/libgtk-x11-2.0.so.0.2000.1
0x0079e480  0x007abad8  Yes         /usr/lib/libatk-1.0.so.0.3009.1
0x0643a8d0  0x064abc68  Yes         /lib/libgio-2.0.so.0.2400.1
0x075104f0  0x075766c8  Yes         /usr/lib/libgdk-x11-2.0.so.0.2000.1
0x007ee2e0  0x00800e18  Yes         /usr/lib/libgdk_pixbuf-2.0.so.0.2000.1
0x006c8440  0x006cd558  Yes         /usr/lib/libpangocairo-1.0.so.0.2800.0
0x00c21960  0x00c5e808  Yes         /usr/lib/libXt.so.6.0.0
0x00737620  0x0073b5a8  Yes         /usr/lib/libstartup-notification-1.so.0.0.0
0x009f96f0  0x00a156d8  Yes         /usr/lib/libpng12.so.0
0x00bb4040  0x00bccef8  Yes         /lib/libexpat.so.1
0x0080fe80  0x0081e608  Yes         /usr/lib/libxcb.so.1
0x00241e70  0x002443a8  Yes         /usr/lib/libXfixes.so.3
0x00bdc650  0x00beaf68  Yes         /lib/libresolv-2.12.so
0x00dfb190  0x00e0c3b8  Yes         /lib/libselinux.so.1
0x00354780  0x00355258  Yes         /usr/lib/libXinerama.so.1
0x007b8740  0x007c24b8  Yes         /usr/lib/libXi.so.6
0x00828150  0x0082cc38  Yes         /usr/lib/libXrandr.so.2
0x008f9e40  0x008ff448  Yes         /usr/lib/libXcursor.so.1
0x00357890  0x00358488  Yes         /usr/lib/libXcomposite.so.1
0x00e1b7c0  0x00e1c248  Yes         /usr/lib/libXdamage.so.1
0x00903380  0x00907d28  Yes         /usr/lib/libSM.so.6
0x00e21530  0x00e311f8  Yes         /usr/lib/libICE.so.6
0x0035ad60  0x0035bae8  Yes         /usr/lib/libxcb-aux.so.0
0x03102c00  0x03103078  Yes         /usr/lib/libxcb-event.so.1
0x031081f0  0x03108908  Yes         /usr/lib/libxcb-atom.so.1
0x00490a00  0x004917f8  Yes         /usr/lib/libXau.so.6
0x0073ff00  0x00741b48  Yes         /lib/libuuid.so.1
0x02889fb0  0x02e306c4  Yes (*)     /home/dude/.mozilla/plugins/libflashplayer.so
(*): Shared library is missing debugging information.
$1 = 0x0
$2 = 0x0
eax            0xb5a07020	-1247776736
ecx            0x0	0
edx            0x2f1bf60	49397600
ebx            0x6ecff4	7262196
esp            0xb7761114	0xb7761114
ebp            0xb7761128	0xb7761128
esi            0xb5a07024	-1247776732
edi            0xb5a07024	-1247776732
eip            0x6dd1cd	0x6dd1cd <__pthread_mutex_lock+29>
eflags         0x210212	[ AF IF RF ID ]
cs             0x73	115
ss             0x7b	123
ds             0x7b	123
es             0x7b	123
fs             0x0	0
gs             0x33	51
Dump of assembler code for function __pthread_mutex_lock:
   0x006dd1b0 <+0>:	push   %ebp
   0x006dd1b1 <+1>:	mov    %esp,%ebp
   0x006dd1b3 <+3>:	sub    $0x14,%esp
   0x006dd1b6 <+6>:	mov    %esi,-0x8(%ebp)
   0x006dd1b9 <+9>:	mov    0x8(%ebp),%esi
   0x006dd1bc <+12>:	mov    %ebx,-0xc(%ebp)
   0x006dd1bf <+15>:	mov    %edi,-0x4(%ebp)
   0x006dd1c2 <+18>:	call   0x6d95e0 <__i686.get_pc_thunk.bx>
   0x006dd1c7 <+23>:	add    $0xfe2d,%ebx
=> 0x006dd1cd <+29>:	mov    0xc(%esi),%edi
   0x006dd1d0 <+32>:	mov    %edi,%ecx
   0x006dd1d2 <+34>:	mov    %edi,%eax
   0x006dd1d4 <+36>:	and    $0x7f,%ecx
   0x006dd1d7 <+39>:	and    $0x7c,%eax
   0x006dd1da <+42>:	jne    0x6dd21a <__pthread_mutex_lock+106>
   0x006dd1dc <+44>:	mov    %gs:0x68,%edx
   0x006dd1e3 <+51>:	test   %ecx,%ecx
   0x006dd1e5 <+53>:	mov    %edx,-0x10(%ebp)
   0x006dd1e8 <+56>:	jne    0x6dd22d <__pthread_mutex_lock+125>
   0x006dd1ea <+58>:	and    $0x80,%edi
   0x006dd1f0 <+64>:	mov    $0x1,%ecx
   0x006dd1f5 <+69>:	xor    %eax,%eax
   0x006dd1f7 <+71>:	lock cmpxchg %ecx,(%esi)
   0x006dd1fb <+75>:	jne    0x6dd327 <_L_lock_697>
   0x006dd201 <+81>:	mov    -0x10(%ebp),%eax
   0x006dd204 <+84>:	addl   $0x1,0x10(%esi)
   0x006dd208 <+88>:	mov    %eax,0x8(%esi)
   0x006dd20b <+91>:	xor    %eax,%eax
   0x006dd20d <+93>:	mov    -0xc(%ebp),%ebx
   0x006dd210 <+96>:	mov    -0x8(%ebp),%esi
   0x006dd213 <+99>:	mov    -0x4(%ebp),%edi
   0x006dd216 <+102>:	mov    %ebp,%esp
   0x006dd218 <+104>:	pop    %ebp
   0x006dd219 <+105>:	ret    
   0x006dd21a <+106>:	mov    -0xc(%ebp),%ebx
   0x006dd21d <+109>:	mov    %esi,%eax
   0x006dd21f <+111>:	mov    -0x4(%ebp),%edi
   0x006dd222 <+114>:	mov    -0x8(%ebp),%esi
   0x006dd225 <+117>:	mov    %ebp,%esp
   0x006dd227 <+119>:	pop    %ebp
   0x006dd228 <+120>:	jmp    0x6dcd40 <__pthread_mutex_lock_full>
   0x006dd22d <+125>:	cmp    $0x1,%ecx
   0x006dd230 <+128>:	jne    0x6dd26a <__pthread_mutex_lock+186>
   0x006dd232 <+130>:	mov    -0x10(%ebp),%edx
   0x006dd235 <+133>:	cmp    0x8(%esi),%edx
   0x006dd238 <+136>:	je     0x6dd253 <__pthread_mutex_lock+163>
   0x006dd23a <+138>:	and    $0x80,%edi
   0x006dd240 <+144>:	lock cmpxchg %ecx,(%esi)
   0x006dd244 <+148>:	jne    0x6dd335 <_L_lock_751>
   0x006dd24a <+154>:	movl   $0x1,0x4(%esi)
   0x006dd251 <+161>:	jmp    0x6dd201 <__pthread_mutex_lock+81>
   0x006dd253 <+163>:	mov    0x4(%esi),%edx
   0x006dd256 <+166>:	mov    $0xb,%eax
   0x006dd25b <+171>:	cmp    $0xffffffff,%edx
   0x006dd25e <+174>:	je     0x6dd20d <__pthread_mutex_lock+93>
   0x006dd260 <+176>:	add    $0x1,%edx
   0x006dd263 <+179>:	xor    %al,%al
   0x006dd265 <+181>:	mov    %edx,0x4(%esi)
   0x006dd268 <+184>:	jmp    0x6dd20d <__pthread_mutex_lock+93>
   0x006dd26a <+186>:	cmp    $0x3,%ecx
   0x006dd26d <+189>:	jne    0x6dd2d5 <__pthread_mutex_lock+293>
   0x006dd26f <+191>:	cmpl   $0x0,0x21c4(%ebx)
   0x006dd276 <+198>:	je     0x6dd1ea <__pthread_mutex_lock+58>
   0x006dd27c <+204>:	mov    $0x1,%edx
   0x006dd281 <+209>:	lock cmpxchg %edx,(%esi)
   0x006dd285 <+213>:	test   %eax,%eax
   0x006dd287 <+215>:	je     0x6dd201 <__pthread_mutex_lock+81>
   0x006dd28d <+221>:	mov    0x14(%esi),%eax
   0x006dd290 <+224>:	mov    $0x1,%cl
   0x006dd292 <+226>:	lea    0xa(%eax,%eax,1),%edx
   0x006dd296 <+230>:	mov    $0x64,%eax
   0x006dd29b <+235>:	cmp    $0x64,%edx
   0x006dd29e <+238>:	cmovg  %eax,%edx
   0x006dd2a1 <+241>:	xor    %edi,%edi
   0x006dd2a3 <+243>:	add    $0x1,%edi
   0x006dd2a6 <+246>:	lea    -0x1(%edi),%eax
   0x006dd2a9 <+249>:	cmp    %edx,%eax
   0x006dd2ab <+251>:	jge    0x6dd2eb <__pthread_mutex_lock+315>
   0x006dd2ad <+253>:	pause  
   0x006dd2af <+255>:	xor    %eax,%eax
   0x006dd2b1 <+257>:	lock cmpxchg %ecx,(%esi)
   0x006dd2b5 <+261>:	test   %eax,%eax
   0x006dd2b7 <+263>:	jne    0x6dd2a3 <__pthread_mutex_lock+243>
   0x006dd2b9 <+265>:	mov    %edi,%edx
   0x006dd2bb <+267>:	mov    $0x8,%ecx
   0x006dd2c0 <+272>:	sub    0x14(%esi),%edx
   0x006dd2c3 <+275>:	mov    %edx,%eax
   0x006dd2c5 <+277>:	sar    $0x1f,%edx
   0x006dd2c8 <+280>:	idiv   %ecx
   0x006dd2ca <+282>:	add    0x14(%esi),%eax
   0x006dd2cd <+285>:	mov    %eax,0x14(%esi)
   0x006dd2d0 <+288>:	jmp    0x6dd201 <__pthread_mutex_lock+81>
   0x006dd2d5 <+293>:	mov    -0x10(%ebp),%edx
   0x006dd2d8 <+296>:	mov    $0x23,%eax
   0x006dd2dd <+301>:	cmp    0x8(%esi),%edx
   0x006dd2e0 <+304>:	jne    0x6dd1ea <__pthread_mutex_lock+58>
   0x006dd2e6 <+310>:	jmp    0x6dd20d <__pthread_mutex_lock+93>
   0x006dd2eb <+315>:	mov    0xc(%esi),%eax
   0x006dd2ee <+318>:	mov    $0x1,%ecx
   0x006dd2f3 <+323>:	and    $0x80,%eax
   0x006dd2f8 <+328>:	mov    %eax,-0x14(%ebp)
   0x006dd2fb <+331>:	xor    %eax,%eax
   0x006dd2fd <+333>:	lock cmpxchg %ecx,(%esi)
   0x006dd301 <+337>:	jne    0x6dd343 <_L_lock_865>
   0x006dd303 <+339>:	jmp    0x6dd2b9 <__pthread_mutex_lock+265>
End of assembler dump.

Expected results:


Additional info:
Comment 1 Martin Stransky 2010-07-24 01:31:19 EDT
Flash plugin crash => CANTFIX.

Note You need to log in before you can comment on or make changes to this bug.