[Webkit-unassigned] [Bug 51453] New: [Qt] crash in QNetworkReplyHandler::sendResponseIfNeeded()

[bugzilla-daemon at webkit.org]

https://bugs.webkit.org/show_bug.cgi?id=51453

           Summary: [Qt] crash in
                    QNetworkReplyHandler::sendResponseIfNeeded()
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: PC
        OS/Version: Windows XP
            Status: UNCONFIRMED
          Severity: Normal
          Priority: P3
         Component: New Bugs
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: apple64 at tut.by


While working with a 3rd-party html/js widget loaded into QWebView, I've experienced a crash in QNetworkReplyHandler::sendResponseIfNeeded().
The crash happens when this method tries to call m_reply->error(), while m_reply value is NULL.
(Qt 4.6: qnetworkreplyhandler.cpp line 262)
(WebKit Trac (Dec 22nd 2010): qnetworkreplyhandler.cpp line 352)

Please find full call stack (Qt 4.6 opensource) attached.

The problem was initially reproduced on Qt 4.6, later - confirmed on Qt 4.7, but is likely to be present also in latest qnetworkreplyhandler.cpp version retrieved on 22.12.2010 via WebKit Trac (http://trac.webkit.org/browser/trunk/WebCore/platform/network/qt/QNetworkReplyHandler.cpp).

Steps to reproduce are not available, unfortunately, as I'm not authorized to upload the problematic widget here.

Anyway, the crash can be fixed by adding a check whether m_reply value is NULL, prior to performing any actions on the pointer.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.