[Webkit-unassigned] [Bug 92397] New: Crash in JSWeakObjectMapGet
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Jul 26 10:39:32 PDT 2012
https://bugs.webkit.org/show_bug.cgi?id=92397
Summary: Crash in JSWeakObjectMapGet
Product: WebKit
Version: 528+ (Nightly build)
Platform: Macintosh Intel
OS/Version: Mac OS X 10.7
Status: UNCONFIRMED
Severity: Critical
Priority: P1
Component: JavaScriptCore
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: kevin at rhubarbproductions.com
First, 10.8 needs to be added to the OS list.
Running 10.8/Safari 6 with the latest nightly.
I've received a few crashes today, sometimes when closing a window, sometimes clicking the back button. It's unclear on exact cause and the crash report isn't always exactly the same.
These crashes take down the whole browser and not just causing the tabs to reload.
Here's 3 excerpts:
1:
Process: WebProcess [929]
Path: /Applications/WebKit.app/Contents/Frameworks/10.8/WebKit2.framework/WebProcess.app/Contents/MacOS/WebProcess
Identifier: com.apple.WebProcess
Version: 537+ (537.3+)
Code Type: X86-64 (Native)
Parent Process: ??? [1]
User ID: 501
Date/Time: 2012-07-26 10:19:33.193 -0400
OS Version: Mac OS X 10.8 (12A269)
Report Version: 10
Crashed Thread: 0 Dispatch queue: com.apple.main-thread
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x0000000000000000
VM Regions Near 0:
-->
__TEXT 0000000104ad2000-0000000104ad3000 [ 4K] r-x/rwx SM=COW /Applications/WebKit.app/Contents/Frameworks/10.8/WebKit2.framework/WebProcess.app/Contents/MacOS/WebProcess
Application Specific Information:
Bundle controller class:
BrowserBundleController
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0 com.apple.JavaScriptCore 0x0000000104fb5046 JSWeakObjectMapGet + 86
1 com.apple.Safari.framework 0x00007fff8f18b055 Safari::JSWrapper::disconnectAllWrappers(Safari::JSWrappable const*) + 85
2 com.apple.Safari.framework 0x00007fff8f0b634f Safari::ContentExtension::willDestroyGlobalObjectForDOMWindowExtension(Safari::WK::BundlePage const&, Safari::WK::BundleDOMWindowExtension const&) + 103
3 com.apple.Safari.framework 0x00007fff8f0be586 Safari::ContentExtensionsController::willDestroyGlobalObjectForDOMWindowExtension(Safari::WK::BundlePage const&, Safari::WK::BundleDOMWindowExtension const&) + 120
4 com.apple.Safari.framework 0x00007fff8f0a2df8 Safari::WK::willDestroyGlobalObjectForDOMWindowExtension(OpaqueWKBundlePage const*, OpaqueWKBundleDOMWindowExtension const*, void const*) + 74
5 com.apple.WebKit2 0x0000000104b33b0f WebKit::InjectedBundlePageLoaderClient::willDestroyGlobalObjectForDOMWindowExtension(WebKit::WebPage*, WebCore::DOMWindowExtension*) + 111
6 com.apple.WebCore 0x00000001054c1fa5 WebCore::DOMWindowExtension::willDetachGlobalObjectFromFrame() + 37
7 com.apple.WebCore 0x00000001054bc34b WebCore::DOMWindow::willDetachDocumentFromFrame() + 267
8 com.apple.WebCore 0x00000001053b2a58 WebCore::Document::prepareForDestruction() + 56
9 com.apple.WebCore 0x0000000105550064 WebCore::Frame::setView(WTF::PassRefPtr<WebCore::FrameView>) + 68
10 com.apple.WebCore 0x0000000105551691 WebCore::Frame::createView(WebCore::IntSize const&, WebCore::Color const&, bool, WebCore::IntSize const&, bool, WebCore::ScrollbarMode, bool, WebCore::ScrollbarMode, bool) + 97
11 com.apple.WebKit2 0x0000000104b9d17c WebKit::WebFrameLoaderClient::transitionToCommittedForNewPage() + 198
12 com.apple.WebCore 0x000000010555c96c WebCore::FrameLoader::transitionToCommitted(WTF::PassRefPtr<WebCore::CachedPage>) + 668
13 com.apple.WebCore 0x000000010555c21e WebCore::FrameLoader::commitProvisionalLoad() + 350
14 com.apple.WebCore 0x00000001053c60cc WebCore::DocumentLoader::commitLoad(char const*, int) + 76
15 com.apple.WebCore 0x0000000105c23ad5 WebCore::ResourceLoader::didReceiveData(char const*, int, long long, bool) + 53
16 com.apple.WebCore 0x0000000105a4ac66 WebCore::MainResourceLoader::didReceiveData(char const*, int, long long, bool) + 694
17 com.apple.WebCore 0x0000000105c24118 WebCore::ResourceLoader::didReceiveData(WebCore::ResourceHandle*, char const*, int, int) + 136
18 com.apple.Foundation 0x00007fff910691e8 __65-[NSURLConnectionInternal _withConnectionAndDelegate:onlyActive:]_block_invoke_0 + 28
19 com.apple.Foundation 0x00007fff9106912c -[NSURLConnectionInternal _withConnectionAndDelegate:onlyActive:] + 227
20 com.apple.Foundation 0x00007fff91069028 -[NSURLConnectionInternal _withActiveConnectionAndDelegate:] + 63
21 com.apple.Foundation 0x00007fff9106bb4b _NSURLConnectionDidReceiveData_LengthReceived + 86
22 com.apple.CFNetwork 0x00007fff9658b944 ___delegate_didReceiveDataArray_block_invoke_0 + 132
23 com.apple.CFNetwork 0x00007fff9657e6fa ___withDelegateAsync_block_invoke_0 + 90
24 com.apple.CFNetwork 0x00007fff9660e5ca __block_global_1 + 28
25 com.apple.CoreFoundation 0x00007fff99b81e44 CFArrayApplyFunction + 68
26 com.apple.CFNetwork 0x00007fff9656f894 RunloopBlockContext::perform() + 124
27 com.apple.CFNetwork 0x00007fff9656f76b MultiplexerSource::perform() + 221
28 com.apple.CoreFoundation 0x00007fff99b63841 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17
29 com.apple.CoreFoundation 0x00007fff99b6322d __CFRunLoopDoSources0 + 445
30 com.apple.CoreFoundation 0x00007fff99b864e5 __CFRunLoopRun + 789
31 com.apple.CoreFoundation 0x00007fff99b85dd2 CFRunLoopRunSpecific + 290
32 com.apple.HIToolbox 0x00007fff9272c774 RunCurrentEventLoopInMode + 209
33 com.apple.HIToolbox 0x00007fff9272c512 ReceiveNextEventCommon + 356
34 com.apple.HIToolbox 0x00007fff9272c3a3 BlockUntilNextEventMatchingListInMode + 62
35 com.apple.AppKit 0x00007fff918bdfa3 _DPSNextEvent + 685
36 com.apple.AppKit 0x00007fff918bd862 -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 128
37 com.apple.AppKit 0x00007fff918b4c03 -[NSApplication run] + 517
38 com.apple.WebCore 0x0000000105c35c13 WebCore::RunLoop::run() + 67
39 com.apple.WebKit2 0x0000000104bfb78c WebKit::WebProcessMain(WebKit::CommandLine const&) + 2586
40 com.apple.WebKit2 0x0000000104baac7b WebKitMain + 285
41 com.apple.WebProcess 0x0000000104ad2e7b main + 214
42 libdyld.dylib 0x00007fff94b1f7e1 start + 1
2:
Process: WebProcess [1888]
Path: /Applications/WebKit.app/Contents/Frameworks/10.8/WebKit2.framework/WebProcess.app/Contents/MacOS/WebProcess
Identifier: com.apple.WebProcess
Version: 537+ (537.3+)
Code Type: X86-64 (Native)
Parent Process: ??? [1]
User ID: 501
Date/Time: 2012-07-26 12:21:38.638 -0400
OS Version: Mac OS X 10.8 (12A269)
Report Version: 10
Crashed Thread: 0 Dispatch queue: com.apple.main-thread
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x00000000000010c8
VM Regions Near 0x10c8:
-->
__TEXT 000000010126b000-000000010126c000 [ 4K] r-x/rwx SM=COW /Applications/WebKit.app/Contents/Frameworks/10.8/WebKit2.framework/WebProcess.app/Contents/MacOS/WebProcess
Application Specific Information:
Bundle controller class:
BrowserBundleController
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0 com.apple.JavaScriptCore 0x000000010174e016 JSWeakObjectMapGet + 38
1 com.apple.Safari.framework 0x00007fff8f18b055 Safari::JSWrapper::disconnectAllWrappers(Safari::JSWrappable const*) + 85
2 com.apple.Safari.framework 0x00007fff8f0b634f Safari::ContentExtension::willDestroyGlobalObjectForDOMWindowExtension(Safari::WK::BundlePage const&, Safari::WK::BundleDOMWindowExtension const&) + 103
3 com.apple.Safari.framework 0x00007fff8f0be586 Safari::ContentExtensionsController::willDestroyGlobalObjectForDOMWindowExtension(Safari::WK::BundlePage const&, Safari::WK::BundleDOMWindowExtension const&) + 120
4 com.apple.Safari.framework 0x00007fff8f0a2df8 Safari::WK::willDestroyGlobalObjectForDOMWindowExtension(OpaqueWKBundlePage const*, OpaqueWKBundleDOMWindowExtension const*, void const*) + 74
5 com.apple.WebKit2 0x00000001012ccb0f WebKit::InjectedBundlePageLoaderClient::willDestroyGlobalObjectForDOMWindowExtension(WebKit::WebPage*, WebCore::DOMWindowExtension*) + 111
6 com.apple.WebCore 0x0000000101c5aea6 WebCore::DOMWindowExtension::willDestroyGlobalObjectInCachedFrame() + 38
7 com.apple.WebCore 0x0000000101c5489b WebCore::DOMWindow::willDestroyCachedFrame() + 267
8 com.apple.WebCore 0x0000000101a34aa1 WebCore::CachedFrame::destroy() + 33
9 com.apple.WebCore 0x0000000101a36312 WebCore::CachedPage::destroy() + 34
10 com.apple.WebCore 0x0000000102242d88 WebCore::PageCache::releaseAutoreleasedPagesNow() + 168
11 com.apple.WebCore 0x0000000102586064 WebCore::ThreadTimers::sharedTimerFiredInternal() + 148
12 com.apple.WebCore 0x0000000102418183 WebCore::timerFired(__CFRunLoopTimer*, void*) + 51
13 com.apple.CoreFoundation 0x00007fff99ba14b4 __CFRUNLOOP_IS_CALLING_OUT_TO_A_TIMER_CALLBACK_FUNCTION__ + 20
14 com.apple.CoreFoundation 0x00007fff99ba0fcd __CFRunLoopDoTimer + 557
15 com.apple.CoreFoundation 0x00007fff99b867b9 __CFRunLoopRun + 1513
16 com.apple.CoreFoundation 0x00007fff99b85dd2 CFRunLoopRunSpecific + 290
17 com.apple.HIToolbox 0x00007fff9272c774 RunCurrentEventLoopInMode + 209
18 com.apple.HIToolbox 0x00007fff9272c512 ReceiveNextEventCommon + 356
19 com.apple.HIToolbox 0x00007fff9272c3a3 BlockUntilNextEventMatchingListInMode + 62
20 com.apple.AppKit 0x00007fff918bdfa3 _DPSNextEvent + 685
21 com.apple.AppKit 0x00007fff918bd862 -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 128
22 com.apple.AppKit 0x00007fff918b4c03 -[NSApplication run] + 517
23 com.apple.WebCore 0x00000001023cec13 WebCore::RunLoop::run() + 67
24 com.apple.WebKit2 0x000000010139478c WebKit::WebProcessMain(WebKit::CommandLine const&) + 2586
25 com.apple.WebKit2 0x0000000101343c7b WebKitMain + 285
26 com.apple.WebProcess 0x000000010126be7b main + 214
27 libdyld.dylib 0x00007fff94b1f7e1 start + 1
3:
rocess: WebProcess [2306]
Path: /Applications/WebKit.app/Contents/Frameworks/10.8/WebKit2.framework/WebProcess.app/Contents/MacOS/WebProcess
Identifier: com.apple.WebProcess
Version: 537+ (537.3+)
Code Type: X86-64 (Native)
Parent Process: ??? [1]
User ID: 501
Date/Time: 2012-07-26 13:32:44.755 -0400
OS Version: Mac OS X 10.8 (12A269)
Report Version: 10
Crashed Thread: 0 Dispatch queue: com.apple.main-thread
Exception Type: EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x00000000000010c8
VM Regions Near 0x10c8:
-->
__TEXT 000000010df40000-000000010df41000 [ 4K] r-x/rwx SM=COW /Applications/WebKit.app/Contents/Frameworks/10.8/WebKit2.framework/WebProcess.app/Contents/MacOS/WebProcess
Application Specific Information:
Bundle controller class:
BrowserBundleController
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0 com.apple.JavaScriptCore 0x000000010e423016 JSWeakObjectMapGet + 38
1 com.apple.Safari.framework 0x00007fff8f18b055 Safari::JSWrapper::disconnectAllWrappers(Safari::JSWrappable const*) + 85
2 com.apple.Safari.framework 0x00007fff8f0b5f23 Safari::ContentExtension::invalidateContentExtensionPage(Safari::WK::BundlePage const&) + 161
3 com.apple.Safari.framework 0x00007fff8f0be5fa Safari::ContentExtensionsController::invalidateContentWebPages(Safari::WK::BundlePage const&) + 100
4 com.apple.Safari.framework 0x00007fff8f01b885 Safari::BrowserBundleController::willDestroyPage(Safari::WK::Bundle const&, Safari::WK::BundlePage const&) + 87
5 com.apple.Safari.framework 0x00007fff8f09f89d Safari::WK::willDestroyPage(OpaqueWKBundle const*, OpaqueWKBundlePage const*, void const*) + 65
6 com.apple.WebKit2 0x000000010e022e9b WebKit::WebPage::close() + 69
7 com.apple.WebKit2 0x000000010dfea0b1 WebKit::WebConnectionToUIProcess::didReceiveMessage(CoreIPC::Connection*, CoreIPC::MessageID, CoreIPC::ArgumentDecoder*) + 179
8 com.apple.WebKit2 0x000000010df877bb CoreIPC::Connection::dispatchMessage(CoreIPC::Connection::Message<CoreIPC::ArgumentDecoder>&) + 175
9 com.apple.WebKit2 0x000000010df88cd9 CoreIPC::Connection::dispatchOneMessage() + 139
10 com.apple.WebCore 0x000000010f0a2fb8 WebCore::RunLoop::performWork() + 312
11 com.apple.WebCore 0x000000010f0a3635 WebCore::RunLoop::performWork(void*) + 53
12 com.apple.CoreFoundation 0x00007fff99b63841 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17
13 com.apple.CoreFoundation 0x00007fff99b63165 __CFRunLoopDoSources0 + 245
14 com.apple.CoreFoundation 0x00007fff99b864e5 __CFRunLoopRun + 789
15 com.apple.CoreFoundation 0x00007fff99b85dd2 CFRunLoopRunSpecific + 290
16 com.apple.HIToolbox 0x00007fff9272c774 RunCurrentEventLoopInMode + 209
17 com.apple.HIToolbox 0x00007fff9272c512 ReceiveNextEventCommon + 356
18 com.apple.HIToolbox 0x00007fff9272c3a3 BlockUntilNextEventMatchingListInMode + 62
19 com.apple.AppKit 0x00007fff918bdfa3 _DPSNextEvent + 685
20 com.apple.AppKit 0x00007fff918bd862 -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 128
21 com.apple.AppKit 0x00007fff918b4c03 -[NSApplication run] + 517
22 com.apple.WebCore 0x000000010f0a3c13 WebCore::RunLoop::run() + 67
23 com.apple.WebKit2 0x000000010e06978c WebKit::WebProcessMain(WebKit::CommandLine const&) + 2586
24 com.apple.WebKit2 0x000000010e018c7b WebKitMain + 285
25 com.apple.WebProcess 0x000000010df40e7b main + 214
26 libdyld.dylib 0x00007fff94b1f7e1 start + 1
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list