[Webkit-unassigned] [Bug 78670] New: Crash in WTF::RetainPtr<__CFData const*>::operator __CFData const* WTF::RetainPtr<__CFData const*>::*() const

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Feb 14 22:30:46 PST 2012


https://bugs.webkit.org/show_bug.cgi?id=78670

           Summary: Crash in WTF::RetainPtr<__CFData const*>::operator
                    __CFData const* WTF::RetainPtr<__CFData const*>::*()
                    const
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Macintosh Intel
               URL: http://demo.pmease.com/build/5048
        OS/Version: Mac OS X 10.7
            Status: UNCONFIRMED
          Severity: Normal
          Priority: P2
         Component: Web Template Framework
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: rex_4539 at yahoo.com


Created an attachment (id=127117)
 --> (https://bugs.webkit.org/attachment.cgi?id=127117&action=review)
Crash log.

r107713

Reproducibility: always

Steps:
1. Go to http://demo.pmease.com/build/5048
2. Double click on any text so you can wrap-select it.

What happened:
2. Crash.

Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.WebCore                 0x000000010ecee76c WTF::RetainPtr<__CFData const*>::operator __CFData const* WTF::RetainPtr<__CFData const*>::*() const + 12 (RetainPtr.h:91)
1   com.apple.WebCore                 0x000000010f8c695c WebCore::SharedBuffer::hasPlatformData() const + 28 (SharedBufferCF.cpp:64)
2   com.apple.WebCore                 0x000000010f8c5129 WebCore::SharedBuffer::size() const + 25 (SharedBuffer.cpp:100)
3   com.apple.WebCore                 0x000000010f8c739b -[WebCoreSharedBufferData length] + 43 (SharedBufferMac.mm:84)
4   com.apple.CoreFoundation          0x00007fff909247f6 CFDataGetLength + 118
5   com.apple.CoreFoundation          0x00007fff909e3619 __CFPasteboardSetData + 57
6   com.apple.CoreFoundation          0x00007fff909e3578 CFPasteboardSetData + 456
7   com.apple.AppKit                  0x00007fff93781c54 -[NSPasteboard _setData:forType:index:usesPboardTypes:] + 369
8   com.apple.AppKit                  0x00007fff9377eb33 -[NSPasteboard setData:forType:] + 86
9   com.apple.WebCore                 0x000000010fc2c311 WebCore::PlatformPasteboard::setBufferForType(WTF::PassRefPtr<WebCore::SharedBuffer>, WTF::String const&) + 113 (PlatformPasteboardMac.mm:91)
10  com.apple.WebKit2                 0x000000010cc326c5 WebKit::WebPlatformStrategies::setBufferForType(WTF::PassRefPtr<WebCore::SharedBuffer>, WTF::String const&, WTF::String const&) + 85 (WebPlatformStrategies.cpp:176)
11  com.apple.WebKit2                 0x000000010cc32727 non-virtual thunk to WebKit::WebPlatformStrategies::setBufferForType(WTF::PassRefPtr<WebCore::SharedBuffer>, WTF::String const&, WTF::String const&) + 55
12  com.apple.WebCore                 0x000000010f53dc73 WebCore::Pasteboard::writeSelectionForTypes(WTF::Vector<WTF::String, 0ul> const&, WebCore::Range*, bool, WebCore::Frame*) + 5203 (PasteboardMac.mm:194)
13  com.apple.WebCore                 0x000000010f53e104 WebCore::Pasteboard::writeSelection(WebCore::Range*, bool, WebCore::Frame*) + 84 (PasteboardMac.mm:207)
14  com.apple.WebCore                 0x000000010e9d6812 WebCore::Editor::copy() + 434 (Editor.cpp:1079)
15  com.apple.WebCore                 0x000000010e9e85a8 _ZN7WebCoreL11executeCopyEPNS_5FrameEPNS_5EventENS_19EditorCommandSourceERKN3WTF6StringE + 40 (EditorCommand.cpp:285)
16  com.apple.WebCore                 0x000000010e9e7a60 WebCore::Editor::Command::execute(WTF::String const&, WebCore::Event*) const + 208 (EditorCommand.cpp:1664)
17  com.apple.WebKit2                 0x000000010cb9b1ee WebKit::WebPage::executeEditingCommand(WTF::String const&, WTF::String const&) + 142 (WebPage.cpp:545)
18  com.apple.WebKit2                 0x000000010cb9ea91 WebKit::WebPage::executeEditCommand(WTF::String const&) + 65 (WebPage.cpp:1413)
19  com.apple.WebKit2                 0x000000010cbcecb7 void CoreIPC::callMemberFunction<WebKit::WebPage, void (WebKit::WebPage::*)(WTF::String const&), WTF::String>(CoreIPC::Arguments1<WTF::String> const&, WebKit::WebPage*, void (WebKit::WebPage::*)(WTF::String const&)) + 135 (HandleMessage.h:20)
20  com.apple.WebKit2                 0x000000010cbca41a void CoreIPC::handleMessage<Messages::WebPage::ExecuteEditCommand, WebKit::WebPage, void (WebKit::WebPage::*)(WTF::String const&)>(CoreIPC::ArgumentDecoder*, WebKit::WebPage*, void (WebKit::WebPage::*)(WTF::String const&)) + 122 (HandleMessage.h:297)
21  com.apple.WebKit2                 0x000000010cbc73ab WebKit::WebPage::didReceiveWebPageMessage(CoreIPC::Connection*, CoreIPC::MessageID, CoreIPC::ArgumentDecoder*) + 2891 (WebPageMessageReceiver.cpp:253)
22  com.apple.WebKit2                 0x000000010cba1e0d WebKit::WebPage::didReceiveMessage(CoreIPC::Connection*, CoreIPC::MessageID, CoreIPC::ArgumentDecoder*) + 301 (WebPage.cpp:2452)
23  com.apple.WebKit2                 0x000000010cc52e5b WebKit::WebProcess::didReceiveMessage(CoreIPC::Connection*, CoreIPC::MessageID, CoreIPC::ArgumentDecoder*) + 923 (WebProcess.cpp:669)
24  com.apple.WebKit2                 0x000000010caf1d8f WebKit::WebConnectionToUIProcess::didReceiveMessage(CoreIPC::Connection*, CoreIPC::MessageID, CoreIPC::ArgumentDecoder*) + 383 (WebConnectionToUIProcess.cpp:88)
25  com.apple.WebKit2                 0x000000010caf1ddd non-virtual thunk to WebKit::WebConnectionToUIProcess::didReceiveMessage(CoreIPC::Connection*, CoreIPC::MessageID, CoreIPC::ArgumentDecoder*) + 61
26  com.apple.WebKit2                 0x000000010c99a49c CoreIPC::Connection::dispatchMessage(CoreIPC::Connection::Message<CoreIPC::ArgumentDecoder>&) + 428 (Connection.cpp:692)
27  com.apple.WebKit2                 0x000000010c99cd23 CoreIPC::Connection::dispatchMessages() + 211 (Connection.cpp:720)
28  com.apple.WebKit2                 0x000000010c9a3990 WTF::FunctionWrapper<void (CoreIPC::Connection::*)()>::operator()(CoreIPC::Connection*) + 112 (Functional.h:173)
29  com.apple.WebKit2                 0x000000010c9a3915 WTF::BoundFunctionImpl<WTF::FunctionWrapper<void (CoreIPC::Connection::*)()>, void ()(CoreIPC::Connection*)>::operator()() + 53 (Functional.h:373)
30  com.apple.WebCore                 0x000000010f8287ed WTF::Function<void ()()>::operator()() const + 141 (Functional.h:581)
31  com.apple.WebCore                 0x000000010f8285c3 WebCore::RunLoop::performWork() + 147 (RunLoop.cpp:66)
32  com.apple.WebCore                 0x000000010f8271a0 WebCore::RunLoop::performWork(void*) + 96 (RunLoopMac.mm:65)
33  com.apple.CoreFoundation          0x00007fff909206e1 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17
34  com.apple.CoreFoundation          0x00007fff9091ff4d __CFRunLoopDoSources0 + 253
35  com.apple.CoreFoundation          0x00007fff90946d39 __CFRunLoopRun + 905
36  com.apple.CoreFoundation          0x00007fff90946676 CFRunLoopRunSpecific + 230
37  com.apple.HIToolbox               0x00007fff9778531f RunCurrentEventLoopInMode + 277
38  com.apple.HIToolbox               0x00007fff9778c5c9 ReceiveNextEventCommon + 355
39  com.apple.HIToolbox               0x00007fff9778c456 BlockUntilNextEventMatchingListInMode + 62
40  com.apple.AppKit                  0x00007fff93288f5d _DPSNextEvent + 659
41  com.apple.AppKit                  0x00007fff93288861 -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 135
42  com.apple.AppKit                  0x00007fff9328519d -[NSApplication run] + 470
43  com.apple.WebCore                 0x000000010f8275cc WebCore::RunLoop::run() + 92 (RunLoopMac.mm:101)
44  com.apple.WebKit2                 0x000000010cc69284 WebKit::WebProcessMain(WebKit::CommandLine const&) + 3556 (WebProcessMainMac.mm:176)
45  com.apple.WebKit2                 0x000000010cb7dbdf _ZL10WebKitMainRKN6WebKit11CommandLineE + 239 (WebKitMain.cpp:50)
46  com.apple.WebKit2                 0x000000010cb7dac2 WebKitMain + 178 (WebKitMain.cpp:74)
47  com.apple.WebProcess              0x000000010c937d82 main + 290 (MainMac.cpp:68)
48  com.apple.WebProcess              0x000000010c937c54 start + 52

Expected result:
2. WebKit does not crash.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.



More information about the webkit-unassigned mailing list