[Webkit-unassigned] [Bug 25394] New: CRASH in DocumentLoader::addResponse due to bad |this| pointer

[bugzilla-daemon at webkit.org]

https://bugs.webkit.org/show_bug.cgi?id=25394

           Summary: CRASH in DocumentLoader::addResponse due to bad |this|
                    pointer
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: PC
        OS/Version: Windows XP
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: Page Loading
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: fishd at chromium.org
                CC: darin at apple.com, andersca at apple.com


CRASH in DocumentLoader::addResponse due to bad |this| pointer

This is possibly a regression since we have started to see it show up with
greater frequency in our automated reliability testing as well as in end-user
crash reports.

Here's the relevant portion of the stack:

chrome_2390000!WebCore::DocumentLoader::addResponse+0x3
[c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\loader\documentloader.cpp
@ 670]
chrome_2390000!WebCore::FrameLoader::didReceiveResponse+0x1f
[c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp
@ 3729]
chrome_2390000!WebCore::ResourceLoader::didReceiveResponse+0x8c
[c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\loader\resourceloader.cpp
@ 243]
chrome_2390000!WebCore::SubresourceLoader::didReceiveResponse+0x80
[c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\loader\subresourceloader.cpp
@ 144]
chrome_2390000!WebCore::ResourceLoader::didReceiveResponse+0xe
[c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\loader\resourceloader.cpp
@ 407]
chrome_2390000!WebCore::ResourceHandleInternal::OnReceivedResponse+0xc0
[c:\b\slave\chromium-rel-xp\build\src\webkit\glue\resource_handle_impl.cc @
547]
chrome_2390000!ResourceDispatcher::OnReceivedResponse+0x93
[c:\b\slave\chromium-rel-xp\build\src\chrome\common\resource_dispatcher.cc @
368]
<snip... called from an incoming IPC message>


-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.