[Webkit-unassigned] [Bug 17338] New: A crash in popActivation when playing evil games with database support

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Feb 13 00:48:07 PST 2008


http://bugs.webkit.org/show_bug.cgi?id=17338

           Summary: A crash in popActivation when playing evil games with
                    database support
           Product: WebKit
           Version: 525+ (Nightly build)
          Platform: Macintosh
        OS/Version: Mac OS X 10.5
            Status: NEW
          Severity: Normal
          Priority: P1
         Component: JavaScriptCore
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: ap at webkit.org
                CC: cwzwarich at uwaterloo.ca


Steps to reproduce:
1. Open the attached test case.
2. Click "OK" in alerts as they pop up.
3. Experience a crash

This is 100% reproducible for me with a local debug build of r30190.

Thread 0 Crashed:
0   com.apple.JavaScriptCore            0x005da8de
WTF::Vector<KJS::LocalStorageEntry, 32ul>::shrink(unsigned long) + 130
(Vector.h:635)
1   com.apple.JavaScriptCore            0x006045d0
KJS::JSGlobalObject::popActivation() + 96 (JSGlobalObject.cpp:543)
2   com.apple.JavaScriptCore            0x005962c5
KJS::FunctionExecState::~FunctionExecState() + 137 (ExecState.cpp:213)
3   com.apple.JavaScriptCore            0x005962e7
KJS::FunctionExecState::~FunctionExecState() + 17 (ExecState.cpp:213)
4   com.apple.JavaScriptCore            0x0059b40c
KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List
const&) + 214 (function.cpp:83)
5   com.apple.JavaScriptCore            0x005a0ef4
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 222
(object.cpp:96)
6   com.apple.WebCore                   0x01db1866
WebCore::JSCustomSQLStatementCallback::handleEvent(WebCore::SQLTransaction*,
WebCore::SQLResultSet*, bool&) + 668 (JSCustomSQLStatementCallback.cpp:87)
7   com.apple.WebCore                   0x01f9beeb
WebCore::SQLStatement::performCallback(WebCore::SQLTransaction*) + 321
(SQLStatement.cpp:169)
8   com.apple.WebCore                   0x01f9e40e
WebCore::SQLTransaction::deliverStatementCallback() + 124
(SQLTransaction.cpp:342)
9   com.apple.WebCore                   0x01f9d49d
WebCore::SQLTransaction::performPendingCallback() + 481
(SQLTransaction.cpp:159)
10  com.apple.WebCore                   0x01c2a0b1
WebCore::Database::deliverPendingCallback(void*) + 23 (Database.cpp:525)
11  com.apple.WebCore                   0x020a34df -[WebCoreFunctionWrapper
invoke] + 23 (Threading.mm:53)


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.


More information about the webkit-unassigned mailing list