[Webkit-unassigned] [Bug 114932] New: WebkitGTK crash on fastMalloc call from libjavascriptcoregtk

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sun Apr 21 20:19:06 PDT 2013 

https://bugs.webkit.org/show_bug.cgi?id=114932

           Summary: WebkitGTK crash on fastMalloc call from
                    libjavascriptcoregtk
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Other
        OS/Version: Linux
            Status: UNCONFIRMED
          Severity: Normal
          Priority: P1
         Component: WebKit Gtk
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: edsiper at gmail.com
                CC: edsiper at gmail.com


In my current code, i use a simple web view to render different contents in a GTK window, this is related to web pages and local files from the filesystem (jpeg & mp4).

When loading the Yahoo page first time it works, but if i load a fixed set of JPEG images and then Yahoo site again it crash with the following error (gdb backtrace):

  #0  0x413af2a6 in WTF::fastMalloc(unsigned int) () from /usr/lib/libjavascriptcoregtk-3.0.so.0
  #1  0x413c48c6 in WTF::StringImpl::createUninitialized(unsigned int, unsigned char*&) () from /usr/lib/libjavascriptcoregtk-3.0.so.0
  #2  0x412fb93a in WTF::PassRefPtr<WTF::StringImpl> JSC::Identifier::add<unsigned char>(JSC::JSGlobalData*, unsigned char const*, int) ()
   from /usr/lib/libjavascriptcoregtk-3.0.so.0
  #3  0x41303474 in JSC::Lexer<unsigned char>::lexExpectIdentifier(JSC::JSTokenData*, JSC::JSTokenLocation*, unsigned int, bool) ()
   from /usr/lib/libjavascriptcoregtk-3.0.so.0
  #4  0x41328e52 in JSC::ASTBuilder::Expression JSC::Parser<JSC::Lexer<unsigned char> >::parseMemberExpression<JSC::ASTBuilder>(JSC::ASTBuilder&) ()
   from /usr/lib/libjavascriptcoregtk-3.0.so.0


The system is Ubuntu 12.10 in an armhf architecture, the problem cannot be reproduced in x86_64. 

In order to load a new URI my code do:

   gtk_widget_grab_focus(webParent);
   webkit_web_view_stop_loading(webView);

   session = webkit_get_default_session();
   soup_session_abort(session);

   webkit_web_view_load_uri(webView, feed->path);

Ubuntu packages:

 - libwebkitgtk-3.0-0    1.10.0-0ubuntu1.1   armhf        Web content engine library for GTK+
 - libwebkitgtk-3.0-dev  1.10.0-0ubuntu1.1   armhf        Web content engine library for GTK+ - Development files

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list