[Webkit-unassigned] [Bug 70423] New: Crash in WTF::RefCountedBase::derefBase() due to assert failure

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Oct 19 08:53:58 PDT 2011 

https://bugs.webkit.org/show_bug.cgi?id=70423

           Summary: Crash in WTF::RefCountedBase::derefBase() due to
                    assert failure
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Macintosh Intel
        OS/Version: Mac OS X 10.7
            Status: UNCONFIRMED
          Severity: Critical
          Priority: P1
         Component: JavaScriptCore
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: rex_4539 at yahoo.com


Created an attachment (id=111629)
 --> (https://bugs.webkit.org/attachment.cgi?id=111629&action=review)
Crash log.

r97844

Reproducibility: always

Steps:
Add an attachment in JIRA 4.3

What happened:
As soon as the file is uploaded and attached, WebKit throws and assert failure and crashes.

ASSERTION FAILED: m_verifier.isSafeToUse()
/Users/rex/WebKit/WebKitBuild/Debug/JavaScriptCore.framework/PrivateHeaders/RefCounted.h(122) : bool WTF::RefCountedBase::derefBase()
1   0x10c08ad90 WTF::RefCountedBase::derefBase()
2   0x10c14133f WTF::RefCounted<WebCore::FormData>::deref()
3   0x10c141316 void WTF::derefIfNotNull<WebCore::FormData>(WebCore::FormData*)
4   0x10c1412e8 WTF::RefPtr<WebCore::FormData>::~RefPtr()
5   0x10c1412c5 WTF::RefPtr<WebCore::FormData>::~RefPtr()
6   0x10c6d7c4c std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >::~pair()
7   0x10c6d7b65 std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >::~pair()
8   0x10c6df085 WTF::HashTable<__CFReadStream*, std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >, WTF::PairFirstExtractor<std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> > >, WTF::PtrHash<__CFReadStream*>, WTF::PairHashTraits<WTF::HashTraits<__CFReadStream*>, WTF::HashTraits<WTF::RefPtr<WebCore::FormData> > >, WTF::HashTraits<__CFReadStream*> >::deleteBucket(std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >&)
9   0x10c6df021 WTF::HashTable<__CFReadStream*, std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >, WTF::PairFirstExtractor<std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> > >, WTF::PtrHash<__CFReadStream*>, WTF::PairHashTraits<WTF::HashTraits<__CFReadStream*>, WTF::HashTraits<WTF::RefPtr<WebCore::FormData> > >, WTF::HashTraits<__CFReadStream*> >::remove(std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >*)
10  0x10c6def4d WTF::HashTable<__CFReadStream*, std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >, WTF::PairFirstExtractor<std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> > >, WTF::PtrHash<__CFReadStream*>, WTF::PairHashTraits<WTF::HashTraits<__CFReadStream*>, WTF::HashTraits<WTF::RefPtr<WebCore::FormData> > >, WTF::HashTraits<__CFReadStream*> >::removeAndInvalidateWithoutEntryConsistencyCheck(std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >*)
11  0x10c6deef9 WTF::HashTable<__CFReadStream*, std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >, WTF::PairFirstExtractor<std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> > >, WTF::PtrHash<__CFReadStream*>, WTF::PairHashTraits<WTF::HashTraits<__CFReadStream*>, WTF::HashTraits<WTF::RefPtr<WebCore::FormData> > >, WTF::HashTraits<__CFReadStream*> >::removeWithoutEntryConsistencyCheck(WTF::HashTableIterator<__CFReadStream*, std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >, WTF::PairFirstExtractor<std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> > >, WTF::PtrHash<__CFReadStream*>, WTF::PairHashTraits<WTF::HashTraits<__CFReadStream*>, WTF::HashTraits<WTF::RefPtr<WebCore::FormData> > >, WTF::HashTraits<__CFReadStream*> >)
12  0x10c6de454 WTF::HashMap<__CFReadStream*, WTF::RefPtr<WebCore::FormData>, WTF::PtrHash<__CFReadStream*>, WTF::HashTraits<__CFReadStream*>, WTF::HashTraits<WTF::RefPtr<WebCore::FormData> > >::remove(WTF::HashTableIteratorAdapter<WTF::HashTable<__CFReadStream*, std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> >, WTF::PairFirstExtractor<std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> > >, WTF::PtrHash<__CFReadStream*>, WTF::PairHashTraits<WTF::HashTraits<__CFReadStream*>, WTF::HashTraits<WTF::RefPtr<WebCore::FormData> > >, WTF::HashTraits<__CFReadStream*> >, std::pair<__CFReadStream*, WTF::RefPtr<WebCore::FormData> > >)
13  0x10c6de0f4 WTF::HashMap<__CFReadStream*, WTF::RefPtr<WebCore::FormData>, WTF::PtrHash<__CFReadStream*>, WTF::HashTraits<__CFReadStream*>, WTF::HashTraits<WTF::RefPtr<WebCore::FormData> > >::remove(__CFReadStream* const&)
14  0x10c6d6093 _ZN7WebCoreL12formFinalizeEP14__CFReadStreamPv
15  0x109ed49f2 __CFStreamDeallocate
16  0x109ea8256 CFRelease
17  0x11142b622 spoolingFinalize
18  0x109ed49f2 __CFStreamDeallocate
19  0x109ea8256 CFRelease
20  0x113c7191b HTTPRequest::~HTTPRequest()
21  0x109ea8256 CFRelease
22  0x113c4ce02 URLRequest::~URLRequest()
23  0x109ea8256 CFRelease
24  0x113c70e07 URLProtocol::~URLProtocol()
25  0x109ea8256 CFRelease
26  0x109ed78d5 __CFBasicHashReplaceValue
27  0x109eaca8c CFDictionarySetValue
28  0x113c5689f SocketStream::setProperty(void const*, __CFString const*, void const*)
29  0x113c567e0 virtual thunk to SocketStream::setProperty(void const*, __CFString const*, void const*)
30  0x113c5738f ReadStreamCallbacks::_setProperty(__CFReadStream*, __CFString const*, void const*, void*)
31  0x109f468c4 CFReadStreamSetProperty

Expected result:
WebKit does not crash.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list