WebGL crash in iceweasel 32.0

Tim Allen screwtape at froup.com
Wed Jun 18 13:29:08 UTC 2014 

I updated to the latest Aurora iceweasel, as per usual, and before
I restarted, I happened to have a page open that used WebGL. After the
restart, the browser loaded as normal and then disappeared.

After a little bit of investigation, I came up with the following
reproduction steps:

- rm -rf /tmp/temp-profile; mkdir /tmp/temp-profile
- iceweasel -profile /tmp/temp-profile -no-remote http://get.webgl.com

Expected results:

- Spinning cube rendered in WebGL

Actual results:

- Iceweasel prints the following messages (possibly unrelated):

  ATTENTION: default value of option force_s3tc_enable overridden by
      environment.
  Can't find symbol 'glXCreateContextAttribsARB'.
  ATTENTION: option value of option force_s3tc_enable ignored.
  ATTENTION: option value of option force_s3tc_enable ignored.

- Segfault

If I run the above steps in GDB, I can get the following backtrace:

#0  0x0000000000000000 in ?? ()
#1  0x00007ffff449dd59 in TSymbolTableLevel::~TSymbolTableLevel (
    this=0x7fffc4cac010, __in_chrg=<optimized out>)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/gfx/angle/src/compiler/SymbolTable.cpp:174
#2  0x00007ffff4489cf4 in TSymbolTable::pop (this=0x7fffb05fe6d0)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/gfx/angle/src/compiler/SymbolTable.h:271
#3  0x00007ffff449a356 in TCompiler::compile (this=0x7fffb05fe600, 
    shaderStrings=shaderStrings at entry=0x7fffffff8b90, 
    numStrings=numStrings at entry=1, compileOptions=<optimized out>, 
    compileOptions at entry=6220)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/gfx/angle/src/compiler/Compiler.cpp:207
#4  0x00007ffff449c638 in ShCompile (handle=<optimized out>, 
    shaderStrings=0x7fffffff8b90, numStrings=1, compileOptions=6220)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/gfx/angle/src/compiler/ShaderLang.cpp:190
#5  0x00007ffff3d5dff6 in mozilla::WebGLContext::CompileShader (this=
    0x7fffc478fc00, shader=0x7fffb3766180)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/content/canvas/src/WebGLContextGL.cpp:3121
#6  0x00007ffff396a6dc in mozilla::dom::WebGLRenderingContextBinding::compileShader (cx=0x7fffb00d5100, obj=..., self=0x7fffc478fc00, args=...)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/build-browser/dom/bindings/WebGLRenderingContextBinding.cpp:8262
#7  0x00007ffff39b88ee in mozilla::dom::GenericBindingMethod (
    cx=cx at entry=0x7fffb00d5100, argc=<optimized out>, vp=<optimized out>)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/dom/bindings/BindingUtils.cpp:2347
#8  0x00007ffff492e7b1 in CallJSNative (args=..., 
    native=0x7ffff39b87bb <mozilla::dom::GenericBindingMethod(JSContext*, unsigned int, JS::Value*)>, cx=0x7fffb00d5100)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/js/src/jscntxtinlines.h:239
#9  js::Invoke (cx=0x7fffb00d5100, args=..., construct=<optimized out>)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/js/src/vm/Interpreter.cpp:455
#10 0x00007ffff4925292 in Interpret (cx=0x7fffb00d5100, state=...)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/js/src/vm/Interpreter.cpp:2566
#11 0x00007ffff492e45a in js::RunScript (cx=cx at entry=0x7fffb00d5100, state=...)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/js/src/vm/Interpreter.cpp:402
#12 0x00007ffff492e6a9 in js::Invoke (cx=cx at entry=0x7fffb00d5100, args=..., 
    construct=construct at entry=js::NO_CONSTRUCT)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/js/src/vm/Interpreter.cpp:474
#13 0x00007ffff492ec21 in js::Invoke (cx=cx at entry=0x7fffb00d5100, thisv=..., 
    fval=..., argc=argc at entry=3, argv=<optimized out>, rval=..., 
    rval at entry=...)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/js/src/vm/Interpreter.cpp:511
#14 0x00007ffff4767015 in js::jit::DoCallFallback (cx=0x7fffb00d5100, 
    frame=0x7fffffffa3d0, stub_=0x7fffbe9fc958, argc=3, vp=0x7fffffffa340, 
    res=...)
    at /tmp/buildd/iceweasel-32.0~a2+20140613004003/js/src/jit/BaselineIC.cpp:81

I should also note that I'm running up-to-date Debian Jessie with GNOME
3, using the standard Debian Mesa and Intel drivers. Also, an official
Firefox Aurora 32 binary works fine.

Is there any more information I can provide?

More information about the pkg-mozilla-maintainers mailing list