[Webkit-unassigned] [Bug 47136] WebSocket tests are crashing

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Oct 4 17:29:57 PDT 2010


https://bugs.webkit.org/show_bug.cgi?id=47136


Simon Fraser (smfr) <simon.fraser at apple.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |simon.fraser at apple.com




--- Comment #1 from Simon Fraser (smfr) <simon.fraser at apple.com>  2010-10-04 17:29:57 PST ---
There's a heap corruption bug somewhere. When debugging, I see variable display of 'this' go bad in Xcode in the SocketStreamHandleBase() ctor.

Disassembling this gives:

0x0000000103c0ad64  <+0000>  push   %rbp
0x0000000103c0ad65  <+0001>  mov    %rsp,%rbp
0x0000000103c0ad68  <+0004>  mov    %rdi,-0x8(%rbp)
0x0000000103c0ad6c  <+0008>  lea    0x1437e0d(%rip),%rax        # 0x105042b80 <_ZTVN7WebCore22SocketStreamHandleBaseE>
0x0000000103c0ad73  <+0015>  lea    0x10(%rax),%rdx
0x0000000103c0ad77  <+0019>  mov    -0x8(%rbp),%rax
0x0000000103c0ad7b  <+0023>  mov    %rdx,(%rax)        <--- 'this' gets clobbered here

It's loading the vtable, but I don't know what the 
   lea    0x10(%rax),%rdx
is trying to do.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.



More information about the webkit-unassigned mailing list