pixman-0.23.2, cairo git-61c0f67. 1. Set up toolbar layout like on https://bugs.freedesktop.org/attachment.cgi?id=49726 screenshot (no toolbars except menu bar, location and search input fields on menu bar) in firefox. 2. Go to http://vk.com/id1 3. Mouse on heart in one of the messages 4. Click "All" in appeared tooltip. 5. Program received signal SIGSEGV, Segmentation fault. 0x00007ffff2e01d0e in validate (badreg=) at pixman-region.c:1584 1584 { bisected to 52e3814824235ff236bc013f9adc85ed85eb8fb8 is the first bad commit commit 52e3814824235ff236bc013f9adc85ed85eb8fb8 Author: Chris Wilson <chris@chris-wilson.co.uk> Date: Sun Jul 24 17:31:39 2011 +0100 clip: Skip processing of rectangle-intersection if it wholly subsumes the clip Signed-off-by: Chris Wilson <chris@chris-wilson.co.uk> :040000 040000 61bb41c8e457d205cf3cd44fa046ef4a507aee8d 8ce54d01cf39f1a90909d78424a69e348e2c3246 M src
Created attachment 49989 [details] gdb bt Sorry for bzipped gdb output, it's huge (22584 stack frames)
Created attachment 49990 [details] gdb bt full
Created attachment 49991 [details] First 100 stack frames of gdb bt full in plain text
Also happens in Thunderbird, during multiple (about 100) mails selection.
Still happens with latest git HEAD is now at ba1060f cff-subset: fix decoding of real numbers
Try cairo-trace --flush --no-callers --no-mark-dirty firefox http://vk.com/idl Tigger the crash and see if perf/cairo-perf-trace $trace-from-above also crashes.
[ # ] backend test min(s) median(s) stddev. count [ 0] null firefox Error during replay, line 2027: out of memory [ 0] xcb firefox 4.862 5.839 22.69% 15/15 [ 0] xlib firefox Segmentation fault http://ojab.ru/firefox.18955.trace
Cannot reproduce with latest git.
Use of freedesktop.org services, including Bugzilla, is subject to our Code of Conduct. How we collect and use information is described in our Privacy Policy.