[Webkit-unassigned] [Bug 101211] New: Protect against resource deletion during iteration in MemoryCache::pruneDeadResourcesToSize
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon Nov 5 06:03:31 PST 2012
https://bugs.webkit.org/show_bug.cgi?id=101211
Summary: Protect against resource deletion during iteration in
MemoryCache::pruneDeadResourcesToSize
Product: WebKit
Version: 528+ (Nightly build)
Platform: Unspecified
OS/Version: Unspecified
Status: NEW
Severity: Normal
Priority: P2
Component: Page Loading
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: koivisto at iki.fi
There have been some crashes that look like this:
1 0x000000000000003f 0 + 63
2 com.apple.WebCore 0x7fff86c26b47 WebCore::MemoryCache::pruneDeadResourcesToSize(unsigned int) + 0x1f7
3 com.apple.WebCore 0x7fff86ba8507 WebCore::MemoryCache::prune() + 0x67
4 com.apple.WebCore 0x7fff8733cbe6 WebCore::BitmapImage::draw(WebCore::GraphicsContext*, WebCore::FloatRect const&, WebCore::FloatRect const&, WebCore::ColorSpace, WebCore::CompositeOperator, WebCore::RespectImageOrientationEnum) + 0xf6
5 com.apple.WebCore 0x7fff86ccc364 WebCore::BitmapImage::draw(WebCore::GraphicsContext*, WebCore::FloatRect const&, WebCore::FloatRect const&, WebCore::ColorSpace, WebCore::CompositeOperator) + 0x14
6 com.apple.WebCore 0x7fff86d50297 WebCore::Image::drawTiled(WebCore::GraphicsContext*, WebCore::FloatRect const&, WebCore::FloatPoint const&, WebCore::FloatSize const&, WebCore::ColorSpace, WebCore::CompositeOperator) + 0x277
7 com.apple.WebCore 0x7fff86d50011
A possible cause is that call to destroyDecodedData() causes other resources besides the current one to be evicted from cache.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list