[Webkit-unassigned] [Bug 9629] New: Safari crashes when AJAX coincides with unloading page
bugzilla-daemon at opendarwin.org
bugzilla-daemon at opendarwin.org
Wed Jun 28 01:47:13 PDT 2006
http://bugzilla.opendarwin.org/show_bug.cgi?id=9629
Summary: Safari crashes when AJAX coincides with unloading page
Product: WebKit
Version: 312.x
Platform: Macintosh
OS/Version: Mac OS X 10.3
Status: UNCONFIRMED
Severity: major
Priority: P2
Component: XML DOM
AssignedTo: webkit-unassigned at opendarwin.org
ReportedBy: mike.richmond at globalgraphics.com
We have a Web-based user interface using DHTML and AJAX. On Safari, it fairly
frequently crashes. This seems to occur when submitting a form, or otherwise
moving from page to page. The crash log suggests that some AJAX code may
perhaps be trying to execute, when the document has already been freed.
Crash reporter shows:
OS Version: 10.3.9 (Build 7W98)
Report Version: 2
Command: Safari
Path: /Applications/Safari.app/Contents/MacOS/Safari
Version: 1.3 (312)
PID: 471
Thread: 0
Exception: EXC_BAD_ACCESS (0x0001)
Codes: KERN_PROTECTION_FAILURE (0x0002) at 0x00000074
Thread 0 Crashed:
0 com.apple.WebCore 0x96602038 DOM::DocumentImpl::part() const + 0
1 com.apple.WebCore 0x9663a970
KJS::XMLHttpRequest::slotData(KIO::Job*, char const*, int) + 0xec
2 com.apple.WebCore 0x9661beb0 KWQSignal::call(KIO::Job*, char
const*, int) const + 0x98
3 com.apple.WebKit 0x95015944 -[WebSubresourceClient
didReceiveData:lengthReceived:] + 0x44
4 com.apple.Foundation 0x90a5949c
-[NSURLConnection(NSURLConnectionInternal) _sendDidReceiveDataCallback] + 0xcc
5 com.apple.Foundation 0x90a3d310
-[NSURLConnection(NSURLConnectionInternal) _sendCallbacks] + 0x1b4
6 com.apple.Foundation 0x90a279e4 -[NSArray
makeObjectsPerformSelector:withObject:] + 0x108
7 com.apple.Foundation 0x90a51b7c _sendCallbacks + 0xd4
8 com.apple.CoreFoundation 0x901c3b90 __CFRunLoopDoSources0 + 0x1fc
9 com.apple.CoreFoundation 0x901c1448 __CFRunLoopRun + 0x1b0
10 com.apple.CoreFoundation 0x901c5d74 CFRunLoopRunSpecific + 0x148
11 com.apple.HIToolbox 0x92886e10 RunCurrentEventLoopInMode + 0xac
12 com.apple.HIToolbox 0x9288d53c ReceiveNextEventCommon + 0x17c
13 com.apple.HIToolbox 0x928af638
BlockUntilNextEventMatchingListInMode + 0x60
14 com.apple.AppKit 0x92e822ac _DPSNextEvent + 0x180
15 com.apple.AppKit 0x92e98d2c -[NSApplication
nextEventMatchingMask:untilDate:inMode:dequeue:] + 0x74
16 com.apple.Safari 0x0000bd24 0x1000 + 0xad24
17 com.apple.AppKit 0x92ead0ac -[NSApplication run] + 0x21c
18 com.apple.AppKit 0x92f697bc NSApplicationMain + 0x1d0
19 com.apple.Safari 0x00007fc4 0x1000 + 0x6fc4
20 com.apple.Safari 0x000546e8 0x1000 + 0x536e8
Thread 1:
0 libSystem.B.dylib 0x90007878 mach_msg_trap + 0x8
1 libSystem.B.dylib 0x900073f8 mach_msg + 0x38
2 com.apple.CoreFoundation 0x901c15e8 __CFRunLoopRun + 0x350
3 com.apple.CoreFoundation 0x901c5d74 CFRunLoopRunSpecific + 0x148
4 com.apple.Foundation 0x90a2d1b8 -[NSRunLoop runMode:beforeDate:] +
0xac
5 com.apple.Foundation 0x90a45dbc -[NSRunLoop run] + 0x4c
6 com.apple.WebKit 0x94ff341c +[WebFileDatabase _syncLoop:] + 0xa8
7 com.apple.Foundation 0x90a6a510 forkThreadForFunction + 0x6c
8 libSystem.B.dylib 0x90024910 _pthread_body + 0x28
Thread 2:
0 libSystem.B.dylib 0x90007878 mach_msg_trap + 0x8
1 libSystem.B.dylib 0x900073f8 mach_msg + 0x38
2 com.apple.CoreFoundation 0x901c15e8 __CFRunLoopRun + 0x350
3 com.apple.CoreFoundation 0x901c5d74 CFRunLoopRunSpecific + 0x148
4 com.apple.Foundation 0x90a2d1b8 -[NSRunLoop runMode:beforeDate:] +
0xac
5 com.apple.Foundation 0x90a45dbc -[NSRunLoop run] + 0x4c
6 com.apple.Foundation 0x90a98054
+[NSURLConnection(NSURLConnectionInternal) _resourceLoadLoop:] + 0x20c
7 com.apple.Foundation 0x90a6a510 forkThreadForFunction + 0x6c
8 libSystem.B.dylib 0x90024910 _pthread_body + 0x28
Thread 3:
0 libSystem.B.dylib 0x90007878 mach_msg_trap + 0x8
1 libSystem.B.dylib 0x900073f8 mach_msg + 0x38
2 com.apple.CoreFoundation 0x901c15e8 __CFRunLoopRun + 0x350
3 com.apple.CoreFoundation 0x901c5d74 CFRunLoopRunSpecific + 0x148
4 com.apple.Foundation 0x90a2d1b8 -[NSRunLoop runMode:beforeDate:] +
0xac
5 com.apple.Foundation 0x90a45dbc -[NSRunLoop run] + 0x4c
6 com.apple.Foundation 0x90a98594 +[NSURLCache _diskCacheSyncLoop:] +
0xa8
7 com.apple.Foundation 0x90a6a510 forkThreadForFunction + 0x6c
8 libSystem.B.dylib 0x90024910 _pthread_body + 0x28
Thread 4:
0 libSystem.B.dylib 0x9000b42c select + 0xc
1 com.apple.CoreFoundation 0x901c69f8 __CFSocketManager + 0x1fc
2 libSystem.B.dylib 0x90024910 _pthread_body + 0x28
Thread 5:
0 libSystem.B.dylib 0x9000b42c select + 0xc
1 com.apple.Foundation 0x90a229c4 _loadRunLoop + 0xd4
2 libSystem.B.dylib 0x90024910 _pthread_body + 0x28
PPC Thread State:
srr0: 0x96602038 srr1: 0x0200f030 vrsave: 0x00000000
cr: 0x24024242 xer: 0x20000003 lr: 0x96639230 ctr: 0x9011c160
r0: 0x05827b60 r1: 0xbfffd640 r2: 0x00000000 r3: 0x00000000
r4: 0x00000002 r5: 0x0000000a r6: 0x00000038 r7: 0x96535f74
r8: 0xa64fda5c r9: 0x004239d8 r10: 0x05383830 r11: 0x00423000
r12: 0x05355bf2 r13: 0x00000000 r14: 0x00000000 r15: 0x00000001
r16: 0x00000001 r17: 0x00000000 r18: 0xa01c12b0 r19: 0x00000000
r20: 0x00004fe3 r21: 0xa0a2d15c r22: 0xa0a2d15c r23: 0xa0a2d15c
r24: 0xa0a2d15c r25: 0x04b35dd0 r26: 0x05853160 r27: 0x01b7dc00
r28: 0x00000415 r29: 0x04b9f590 r30: 0x04b9f5bc r31: 0x966391f8
Binary Images Description:
0x1000 - 0xccfff com.apple.Safari 1.3 (312)
/Applications/Safari.app/Contents/MacOS/Safari
0x4b7000 - 0x4b9fff com.apple.PDFImporter 1.3.1 (???)
/System/Library/Components/PDFImporter.component/Contents/MacOS/PDFImporter
0x10cb000 - 0x10cdfff com.apple.textencoding.unicode 1.6.4
/System/Library/TextEncodings/Unicode Encodings.bundle/Contents/MacOS/Unicode
Encodings
0x806c0000 - 0x806e9fff libxslt.1.dylib /usr/lib/libxslt.1.dylib
0x80830000 - 0x8090efff libxml2.2.dylib /usr/lib/libxml2.2.dylib
0x88ed0000 - 0x88edcfff com.apple.agl 2.5 (AGL-2.5)
/System/Library/Frameworks/AGL.framework/Versions/A/AGL
0x8b0c0000 - 0x8b788fff com.apple.QuickTimeComponents.component 6.5.2
/System/Library/QuickTime/QuickTimeComponents.component/Contents/MacOS/QuickTimeComponents
0x8fe00000 - 0x8fe4ffff dyld /usr/lib/dyld
0x90000000 - 0x9014ffff libSystem.B.dylib /usr/lib/libSystem.B.dylib
0x901c0000 - 0x9026dfff com.apple.CoreFoundation 6.3.8 (299.36)
/System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation
0x902b0000 - 0x90529fff com.apple.CoreServices.CarbonCore 10.3.7
/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CarbonCore.framework/Versions/A/CarbonCore
0x905a0000 - 0x90610fff com.apple.framework.IOKit 1.3.6 (???)
/System/Library/Frameworks/IOKit.framework/Versions/A/IOKit
0x90640000 - 0x906c8fff com.apple.CoreServices.OSServices 3.0.1
/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/OSServices.framework/Versions/A/OSServices
0x9071d000 - 0x9072afff com.apple.CommonPanels 1.2.1 (1.0)
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/CommonPanels.framework/Versions/A/CommonPanels
0x90733000 - 0x90746fff libRIP.A.dylib
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libRIP.A.dylib
0x90750000 - 0x907b7fff com.apple.audio.CoreAudio 2.1.2
/System/Library/Frameworks/CoreAudio.framework/Versions/A/CoreAudio
0x90810000 - 0x90810fff com.apple.ApplicationServices 1.0 (???)
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/ApplicationServices
0x90812000 - 0x90843fff com.apple.securityinterface 1.0 (39)
/System/Library/Frameworks/SecurityInterface.framework/Versions/A/SecurityInterface
0x90860000 - 0x908cffff libobjc.A.dylib /usr/lib/libobjc.A.dylib
0x908f5000 - 0x90912fff com.apple.audio.SoundManager 3.8
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/CarbonSound.framework/Versions/A/CarbonSound
0x90940000 - 0x909b3fff com.apple.DesktopServices 1.2.5
/System/Library/PrivateFrameworks/DesktopServicesPriv.framework/Versions/A/DesktopServicesPriv
0x90a02000 - 0x90a0dfff com.apple.securityhi 1.2 (90)
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/SecurityHI.framework/Versions/A/SecurityHI
0x90a20000 - 0x90b7bfff com.apple.Foundation 6.3.7 (500.59)
/System/Library/Frameworks/Foundation.framework/Versions/C/Foundation
0x90c32000 - 0x90c4cfff libresolv.9.dylib /usr/lib/libresolv.9.dylib
0x90c70000 - 0x90c8afff libGL.dylib
/System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGL.dylib
0x90cb0000 - 0x90d12fff libGLU.dylib
/System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGLU.dylib
0x90d40000 - 0x90d40fff com.apple.Carbon 10.3 (???)
/System/Library/Frameworks/Carbon.framework/Versions/A/Carbon
0x90d50000 - 0x90d6bfff com.apple.SystemConfiguration 1.7.1 (???)
/System/Library/Frameworks/SystemConfiguration.framework/Versions/A/SystemConfiguration
0x90db0000 - 0x90dbbfff com.apple.opengl 1.3.8
/System/Library/Frameworks/OpenGL.framework/Versions/A/OpenGL
0x90dd0000 - 0x90df0fff com.apple.DirectoryService.Framework 1.7.2
/System/Library/Frameworks/DirectoryService.framework/Versions/A/DirectoryService
0x90ec0000 - 0x90ec0fff com.apple.Cocoa 6.3 (???)
/System/Library/Frameworks/Cocoa.framework/Versions/A/Cocoa
0x910e0000 - 0x91133fff com.apple.bom 1.2.5 (63.2)
/System/Library/PrivateFrameworks/Bom.framework/Versions/A/Bom
0x91141000 - 0x91141fff com.apple.CoreServices 10.3 (???)
/System/Library/Frameworks/CoreServices.framework/Versions/A/CoreServices
0x91242000 - 0x9124bfff com.apple.DiskArbitration 2.0.5
/System/Library/PrivateFrameworks/DiskArbitration.framework/Versions/A/DiskArbitration
0x912e0000 - 0x912f7fff com.apple.LangAnalysis 1.5.4
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/LangAnalysis.framework/Versions/A/LangAnalysis
0x913a0000 - 0x9145ffff ColorSync
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ColorSync.framework/Versions/A/ColorSync
0x914ad000 - 0x9151afff libvDSP.dylib
/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libvDSP.dylib
0x915e0000 - 0x91699fff com.apple.QD 3.4.67 (???)
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/QD.framework/Versions/A/QD
0x916f0000 - 0x91728fff com.apple.AE 1.4
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/AE.framework/Versions/A/AE
0x91760000 - 0x917f3fff com.apple.print.framework.PrintCore 3.3
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/PrintCore.framework/Versions/A/PrintCore
0x91890000 - 0x918aafff com.apple.openscripting 1.2.1 (???)
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/OpenScripting.framework/Versions/A/OpenScripting
0x918d0000 - 0x918e0fff com.apple.ImageCapture 2.1.5
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/ImageCapture.framework/Versions/A/ImageCapture
0x91970000 - 0x919befff com.apple.print.framework.Print 3.3
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Print.framework/Versions/A/Print
0x91a40000 - 0x91ab3fff com.apple.NavigationServices 3.3.3
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/NavigationServices.framework/Versions/A/NavigationServices
0x91b10000 - 0x91b10fff com.apple.audio.units.AudioUnit 1.3.2
/System/Library/Frameworks/AudioUnit.framework/Versions/A/AudioUnit
0x91b30000 - 0x91b44fff libCGATS.A.dylib
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libCGATS.A.dylib
0x91b60000 - 0x91b6bfff libCSync.A.dylib
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libCSync.A.dylib
0x91bb0000 - 0x91d45fff com.apple.QuickTime 6.5.2
/System/Library/Frameworks/QuickTime.framework/QuickTime
0x91eca000 - 0x91f02fff com.apple.LaunchServices 10.3.5 (98.4)
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/LaunchServices.framework/Versions/A/LaunchServices
0x92070000 - 0x92096fff com.apple.FindByContent 1.4 (1.2)
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/FindByContent.framework/Versions/A/FindByContent
0x92170000 - 0x92357fff com.apple.security 2.4 (179)
/System/Library/Frameworks/Security.framework/Versions/A/Security
0x927f0000 - 0x92827fff com.apple.CFNetwork 1.2.2 (7)
/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CFNetwork.framework/Versions/A/CFNetwork
0x9283f000 - 0x92859fff libPDFRIP.A.dylib
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libPDFRIP.A.dylib
0x92880000 - 0x92c05fff com.apple.HIToolbox 1.3.7 (???)
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/HIToolbox.framework/Versions/A/HIToolbox
0x92de0000 - 0x92e30fff com.apple.HIServices 1.4.1 (0.0.1d1)
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/HIServices.framework/Versions/A/HIServices
0x92e70000 - 0x9336ffff com.apple.AppKit 6.3.9 (743.41)
/System/Library/Frameworks/AppKit.framework/Versions/C/AppKit
0x93680000 - 0x93958fff com.apple.CoreGraphics 1.203.30 (???)
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/CoreGraphics
0x939d0000 - 0x939d4fff libmathCommon.A.dylib
/usr/lib/system/libmathCommon.A.dylib
0x93a50000 - 0x93a64fff libcups.2.dylib /usr/lib/libcups.2.dylib
0x93a6a000 - 0x93a7dfff com.apple.speech.synthesis.framework 3.2
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/SpeechSynthesis.framework/Versions/A/SpeechSynthesis
0x93aa0000 - 0x93b87fff com.apple.AddressBook.framework 1.1.2 (321)
/System/Library/Frameworks/AddressBook.framework/Versions/A/AddressBook
0x93c00000 - 0x93ca3fff com.apple.audio.toolbox.AudioToolbox 1.3.2
/System/Library/Frameworks/AudioToolbox.framework/Versions/A/AudioToolbox
0x93cec000 - 0x93d04fff com.apple.WebServices 1.1.1 (1.1.0)
/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/WebServicesCore.framework/Versions/A/WebServicesCore
0x940c0000 - 0x940fcfff com.apple.LDAPFramework 1.3.4 (37.4.2)
/System/Library/Frameworks/LDAP.framework/Versions/A/LDAP
0x941cd000 - 0x94259fff com.apple.ink.framework 101.1.4 (55.12)
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Ink.framework/Versions/A/Ink
0x94580000 - 0x9458cfff com.apple.help 1.0.1
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Help.framework/Versions/A/Help
0x94596000 - 0x945a5fff libPSRIP.A.dylib
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libPSRIP.A.dylib
0x945b0000 - 0x945b9fff libz.1.dylib /usr/lib/libz.1.dylib
0x945c0000 - 0x945d0fff libsasl2.2.0.1.dylib /usr/lib/libsasl2.2.0.1.dylib
0x94650000 - 0x946affff com.apple.SearchKit 1.0.2
/System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/SearchKit.framework/Versions/A/SearchKit
0x946ed000 - 0x946fdfff com.apple.speech.recognition.framework 3.3
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/SpeechRecognition.framework/Versions/A/SpeechRecognition
0x94720000 - 0x94721fff com.apple.securityfoundation 1.0 (6)
/System/Library/Frameworks/SecurityFoundation.framework/Versions/A/SecurityFoundation
0x94c40000 - 0x94c4ffff com.apple.DSObjCWrappers.Framework 1.0
/System/Library/PrivateFrameworks/DSObjCWrappers.framework/Versions/A/DSObjCWrappers
0x94c57000 - 0x94d1dfff libcrypto.0.9.7.dylib /usr/lib/libcrypto.0.9.7.dylib
0x94fe0000 - 0x95077fff com.apple.WebKit 312.1.1
/System/Library/Frameworks/WebKit.framework/Versions/A/WebKit
0x952ed000 - 0x953cffff com.apple.JavaScriptCore 1.2 (312)
/System/Library/Frameworks/WebKit.framework/Versions/A/Frameworks/JavaScriptCore.framework/Versions/A/JavaScriptCore
0x954c0000 - 0x95ac6fff libBLAS.dylib
/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libBLAS.dylib
0x95b20000 - 0x95df0fff libLAPACK.dylib
/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libLAPACK.dylib
0x95f00000 - 0x95f20fff libvMisc.dylib
/System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libvMisc.dylib
0x9646d000 - 0x96753fff com.apple.WebCore 315.0.1
/System/Library/Frameworks/WebKit.framework/Versions/A/Frameworks/WebCore.framework/Versions/A/WebCore
0x968d0000 - 0x969b2fff libicucore.A.dylib /usr/lib/libicucore.A.dylib
0x96a04000 - 0x96a6dfff com.apple.htmlrendering 1.1.2
/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/HTMLRendering.framework/Versions/A/HTMLRendering
0x96aa0000 - 0x96acefff libssl.0.9.7.dylib /usr/lib/libssl.0.9.7.dylib
0x96b50000 - 0x96bdffff ATS
/System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ATS.framework/Versions/A/ATS
0x96cb0000 - 0x96d9efff libiconv.2.dylib /usr/lib/libiconv.2.dylib
0x96de0000 - 0x96df0fff com.apple.vecLib 3.0.3 (vecLib 3.0.3)
/System/Library/Frameworks/vecLib.framework/Versions/A/vecLib
0x96ee0000 - 0x96ee8fff libbsm.dylib /usr/lib/libbsm.dylib
--
Configure bugmail: http://bugzilla.opendarwin.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list