[Mono-bugs] [Bug 368460] Crash on visitmix site.

bugzilla_noreply at novell.com bugzilla_noreply at novell.com
Sun Mar 9 13:27:44 EDT 2008 

https://bugzilla.novell.com/show_bug.cgi?id=368460

User miguel at novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=368460#c1





--- Comment #1 from Miguel de Icaza <miguel at novell.com>  2008-03-09 11:27:43 MST ---
Valgrind output of the crash:

==14048== 
==14048== Invalid read of size 4
==14048==    at 0xE9AE067: EventObjectCreateWrapper(_NPP*, EventObject*)
(plugin-class.cpp:2427)
==14048==    by 0xE9B39B4: MoonlightDependencyObjectObject::Invoke(int, void*,
_NPVariant const*, unsigned, _NPVariant*) (plugin-class.cpp:2265)
==14048==    by 0xE9B44D6: MoonlightImageObject::Invoke(int, void*, _NPVariant
const*, unsigned, _NPVariant*) (plugin-class.cpp:2901)
==14048==    by 0xE9B789F: _invoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (plugin-class.cpp:1325)
==14048==    by 0x823D3B9: CallNPMethod(JSContext*, JSObject*, unsigned, long*,
long*) (nsJSNPRuntime.cpp:1120)
==14048==    by 0x405D709: js_Invoke (jsinterp.c:1375)
==14048==    by 0x4064D4D: js_Interpret (jsinterp.c:3944)
==14048==    by 0x405D771: js_Invoke (jsinterp.c:1394)
==14048==    by 0x405CBD0: js_InternalInvoke (jsinterp.c:1469)
==14048==    by 0x4035189: JS_CallFunctionValue (jsapi.c:4351)
==14048==    by 0x823D637: doInvoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (nsJSNPRuntime.cpp:578)
==14048==    by 0x823D6E5: nsJSObjWrapper::NP_Invoke(NPObject*, void*,
_NPVariant const*, unsigned, _NPVariant*) (nsJSNPRuntime.cpp:603)
==14048==  Address 0x10C881D0 is not stack'd, malloc'd or (recently) free'd
==14048== 
==14048== Invalid read of size 4
==14048==    at 0x4704B99: g_atomic_int_add (in
/usr/lib/libglib-2.0.so.0.1400.1)
==14048==    by 0xE9BAA33: EventObject::ref() (dependencyobject.h:74)
==14048==    by 0xE9ADFDB:
MoonlightEventObjectObject::SetEventObject(EventObject*)
(plugin-class.cpp:2401)
==14048==    by 0xE9AE1CF: EventObjectCreateWrapper(_NPP*, EventObject*)
(plugin-class.cpp:2475)
==14048==    by 0xE9B39B4: MoonlightDependencyObjectObject::Invoke(int, void*,
_NPVariant const*, unsigned, _NPVariant*) (plugin-class.cpp:2265)
==14048==    by 0xE9B44D6: MoonlightImageObject::Invoke(int, void*, _NPVariant
const*, unsigned, _NPVariant*) (plugin-class.cpp:2901)
==14048==    by 0xE9B789F: _invoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (plugin-class.cpp:1325)
==14048==    by 0x823D3B9: CallNPMethod(JSContext*, JSObject*, unsigned, long*,
long*) (nsJSNPRuntime.cpp:1120)
==14048==    by 0x405D709: js_Invoke (jsinterp.c:1375)
==14048==    by 0x4064D4D: js_Interpret (jsinterp.c:3944)
==14048==    by 0x405D771: js_Invoke (jsinterp.c:1394)
==14048==    by 0x405CBD0: js_InternalInvoke (jsinterp.c:1469)
==14048==  Address 0x10C881D4 is not stack'd, malloc'd or (recently) free'd
==14048== 
==14048== Invalid read of size 4
==14048==    at 0xE9AE1D3: EventObjectCreateWrapper(_NPP*, EventObject*)
(plugin-class.cpp:2478)
==14048==    by 0xE9B39B4: MoonlightDependencyObjectObject::Invoke(int, void*,
_NPVariant const*, unsigned, _NPVariant*) (plugin-class.cpp:2265)
==14048==    by 0xE9B44D6: MoonlightImageObject::Invoke(int, void*, _NPVariant
const*, unsigned, _NPVariant*) (plugin-class.cpp:2901)
==14048==    by 0xE9B789F: _invoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (plugin-class.cpp:1325)
==14048==    by 0x823D3B9: CallNPMethod(JSContext*, JSObject*, unsigned, long*,
long*) (nsJSNPRuntime.cpp:1120)
==14048==    by 0x405D709: js_Invoke (jsinterp.c:1375)
==14048==    by 0x4064D4D: js_Interpret (jsinterp.c:3944)
==14048==    by 0x405D771: js_Invoke (jsinterp.c:1394)
==14048==    by 0x405CBD0: js_InternalInvoke (jsinterp.c:1469)
==14048==    by 0x4035189: JS_CallFunctionValue (jsapi.c:4351)
==14048==    by 0x823D637: doInvoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (nsJSNPRuntime.cpp:578)
==14048==    by 0x823D6E5: nsJSObjWrapper::NP_Invoke(NPObject*, void*,
_NPVariant const*, unsigned, _NPVariant*) (nsJSNPRuntime.cpp:603)
==14048==  Address 0x10C881D0 is not stack'd, malloc'd or (recently) free'd
==14048== 
==14048== Invalid read of size 4
==14048==    at 0xE9AE067: EventObjectCreateWrapper(_NPP*, EventObject*)
(plugin-class.cpp:2427)
==14048==    by 0xE9B39B4: MoonlightDependencyObjectObject::Invoke(int, void*,
_NPVariant const*, unsigned, _NPVariant*) (plugin-class.cpp:2265)
==14048==    by 0xE9B789F: _invoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (plugin-class.cpp:1325)
==14048==    by 0x823D3B9: CallNPMethod(JSContext*, JSObject*, unsigned, long*,
long*) (nsJSNPRuntime.cpp:1120)
==14048==    by 0x405D709: js_Invoke (jsinterp.c:1375)
==14048==    by 0x4064D4D: js_Interpret (jsinterp.c:3944)
==14048==    by 0x405D771: js_Invoke (jsinterp.c:1394)
==14048==    by 0x405CBD0: js_InternalInvoke (jsinterp.c:1469)
==14048==    by 0x4035189: JS_CallFunctionValue (jsapi.c:4351)
==14048==    by 0x823D637: doInvoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (nsJSNPRuntime.cpp:578)
==14048==    by 0x823D6E5: nsJSObjWrapper::NP_Invoke(NPObject*, void*,
_NPVariant const*, unsigned, _NPVariant*) (nsJSNPRuntime.cpp:603)
==14048==    by 0x823992B: _invoke (ns4xPlugin.cpp:1715)
==14048==  Address 0x1134F8D0 is not stack'd, malloc'd or (recently) free'd
==14048== 
==14048== Invalid read of size 4
==14048==    at 0xE9AE1D3: EventObjectCreateWrapper(_NPP*, EventObject*)
(plugin-class.cpp:2478)
==14048==    by 0xE9B39B4: MoonlightDependencyObjectObject::Invoke(int, void*,
_NPVariant const*, unsigned, _NPVariant*) (plugin-class.cpp:2265)
==14048==    by 0xE9B789F: _invoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (plugin-class.cpp:1325)
==14048==    by 0x823D3B9: CallNPMethod(JSContext*, JSObject*, unsigned, long*,
long*) (nsJSNPRuntime.cpp:1120)
==14048==    by 0x405D709: js_Invoke (jsinterp.c:1375)
==14048==    by 0x4064D4D: js_Interpret (jsinterp.c:3944)
==14048==    by 0x405D771: js_Invoke (jsinterp.c:1394)
==14048==    by 0x405CBD0: js_InternalInvoke (jsinterp.c:1469)
==14048==    by 0x4035189: JS_CallFunctionValue (jsapi.c:4351)
==14048==    by 0x823D637: doInvoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (nsJSNPRuntime.cpp:578)
==14048==    by 0x823D6E5: nsJSObjWrapper::NP_Invoke(NPObject*, void*,
_NPVariant const*, unsigned, _NPVariant*) (nsJSNPRuntime.cpp:603)
==14048==    by 0x823992B: _invoke (ns4xPlugin.cpp:1715)
==14048==  Address 0x1134F8D0 is not stack'd, malloc'd or (recently) free'd
==14048== 
==14048== Invalid read of size 4
==14048==    at 0xE9AE069: EventObjectCreateWrapper(_NPP*, EventObject*)
(plugin-class.cpp:2427)
==14048==    by 0xE9B39B4: MoonlightDependencyObjectObject::Invoke(int, void*,
_NPVariant const*, unsigned, _NPVariant*) (plugin-class.cpp:2265)
==14048==    by 0xE9B44D6: MoonlightImageObject::Invoke(int, void*, _NPVariant
const*, unsigned, _NPVariant*) (plugin-class.cpp:2901)
==14048==    by 0xE9B789F: _invoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (plugin-class.cpp:1325)
==14048==    by 0x823D3B9: CallNPMethod(JSContext*, JSObject*, unsigned, long*,
long*) (nsJSNPRuntime.cpp:1120)
==14048==    by 0x405D709: js_Invoke (jsinterp.c:1375)
==14048==    by 0x4064D4D: js_Interpret (jsinterp.c:3944)
==14048==    by 0x405D771: js_Invoke (jsinterp.c:1394)
==14048==    by 0x405CBD0: js_InternalInvoke (jsinterp.c:1469)
==14048==    by 0x4035189: JS_CallFunctionValue (jsapi.c:4351)
==14048==    by 0x823D637: doInvoke(NPObject*, void*, _NPVariant const*,
unsigned, _NPVariant*) (nsJSNPRuntime.cpp:578)
==14048==    by 0x823D6E5: nsJSObjWrapper::NP_Invoke(NPObject*, void*,
_NPVariant const*, unsigned, _NPVariant*) (nsJSNPRuntime.cpp:603)
==14048==  Address 0x40240000 is not stack'd, malloc'd or (recently) free'd
==14048== 
==14048== ERROR SUMMARY: 2631 errors from 20 contexts (suppressed: 213 from 3)
==14048== malloc/free: in use at exit: 65,872,075 bytes in 631,421 blocks.
==14048== malloc/free: 2,269,407 allocs, 1,637,986 frees, 1,888,585,488 bytes
allocated.
==14048== For counts of detected errors, rerun with: -v
==14048== searching for pointers to 631,421 not-freed blocks.
==14048== checked 120,657,380 bytes.
==14048== 
==14048== LEAK SUMMARY:
==14048==    definitely lost: 766,043 bytes in 42,264 blocks.
==14048==      possibly lost: 3,232,642 bytes in 52,749 blocks.
==14048==    still reachable: 61,873,390 bytes in 536,408 blocks.
==14048==         suppressed: 0 bytes in 0 blocks.
==14048== Rerun with --leak-check=full to see details of leaked memory.


-- 
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
You are the assignee for the bug.

More information about the mono-bugs mailing list