[Webkit-unassigned] [Bug 107228] New: Crash in CachedResourceClientWalker on detik.com
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Jan 17 22:13:40 PST 2013
https://bugs.webkit.org/show_bug.cgi?id=107228
Summary: Crash in CachedResourceClientWalker on detik.com
Product: WebKit
Version: 528+ (Nightly build)
Platform: Unspecified
URL: http://www.detik.com
OS/Version: Unspecified
Status: NEW
Severity: Normal
Priority: P2
Component: Page Loading
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: simon.fraser at apple.com
CC: ap at webkit.org, beidson at apple.com
In a debug build with Malloc Scribble enabled, WebKit r140093
Loaded http://www.detik.com, scrolled around for a few seconds, dismissed the popup ad that came up, then crashed:
* thread #1: tid = 0x2303, 0x0000000103553fa4 WebCore`bool WTF::IdentityHashTranslator<WTF::PtrHash<WebCore::CachedResourceClient*> >::equal<WebCore::CachedResourceClient*>(WebCore::CachedResourceClient* const&, WebCore::CachedResourceClient* const&) + 20 at HashTable.h:300, stop reason = EXC_BAD_ACCESS (code=13, address=0x0)
frame #0: 0x0000000103553fa4 WebCore`bool WTF::IdentityHashTranslator<WTF::PtrHash<WebCore::CachedResourceClient*> >::equal<WebCore::CachedResourceClient*>(WebCore::CachedResourceClient* const&, WebCore::CachedResourceClient* const&) + 20 at HashTable.h:300
frame #1: 0x0000000103553def WebCore`WTF::KeyValuePair<WebCore::CachedResourceClient*, unsigned int>* WTF::HashTable<WebCore::CachedResourceClient*, WTF::KeyValuePair<WebCore::CachedResourceClient*, unsigned int>, WTF::KeyValuePairKeyExtractor<WTF::KeyValuePair<WebCore::CachedResourceClient*, unsigned int> >, WTF::PtrHash<WebCore::CachedResourceClient*>, WTF::HashMapValueTraits<WTF::HashTraits<WebCore::CachedResourceClient*>, WTF::HashTraits<unsigned int> >, WTF::HashTraits<WebCore::CachedResourceClient*> >::lookup<WTF::IdentityHashTranslator<WTF::PtrHash<WebCore::CachedResourceClient*> >, WebCore::CachedResourceClient*>(WebCore::CachedResourceClient* const&) + 159 at HashTable.h:628
frame #2: 0x0000000103553d2b WebCore`bool WTF::HashTable<WebCore::CachedResourceClient*, WTF::KeyValuePair<WebCore::CachedResourceClient*, unsigned int>, WTF::KeyValuePairKeyExtractor<WTF::KeyValuePair<WebCore::CachedResourceClient*, unsigned int> >, WTF::PtrHash<WebCore::CachedResourceClient*>, WTF::HashMapValueTraits<WTF::HashTraits<WebCore::CachedResourceClient*>, WTF::HashTraits<unsigned int> >, WTF::HashTraits<WebCore::CachedResourceClient*> >::contains<WTF::IdentityHashTranslator<WTF::PtrHash<WebCore::CachedResourceClient*> >, WebCore::CachedResourceClient*>(WebCore::CachedResourceClient* const&) const + 59 at HashTable.h:999
frame #3: 0x0000000103553cdd WebCore`WTF::HashTable<WebCore::CachedResourceClient*, WTF::KeyValuePair<WebCore::CachedResourceClient*, unsigned int>, WTF::KeyValuePairKeyExtractor<WTF::KeyValuePair<WebCore::CachedResourceClient*, unsigned int> >, WTF::PtrHash<WebCore::CachedResourceClient*>, WTF::HashMapValueTraits<WTF::HashTraits<WebCore::CachedResourceClient*>, WTF::HashTraits<unsigned int> >, WTF::HashTraits<WebCore::CachedResourceClient*> >::contains(WebCore::CachedResourceClient* const&) const + 29 at HashTable.h:403
frame #4: 0x0000000103553cad WebCore`WTF::HashMap<WebCore::CachedResourceClient*, unsigned int, WTF::PtrHash<WebCore::CachedResourceClient*>, WTF::HashTraits<WebCore::CachedResourceClient*>, WTF::HashTraits<unsigned int> >::contains(WebCore::CachedResourceClient* const&) const + 29 at HashMap.h:303
frame #5: 0x0000000103553c6d WebCore`WTF::HashCountedSet<WebCore::CachedResourceClient*, WTF::PtrHash<WebCore::CachedResourceClient*>, WTF::HashTraits<WebCore::CachedResourceClient*> >::contains(WebCore::CachedResourceClient* const&) const + 29 at HashCountedSet.h:144
frame #6: 0x000000010356739d WebCore`WebCore::CachedResourceClientWalker<WebCore::CachedRawResourceClient>::next() + 125 at CachedResourceClientWalker.h:53
frame #7: 0x000000010356673d WebCore`WebCore::CachedRawResource::responseReceived(WebCore::ResourceResponse const&) + 125 at CachedRawResource.cpp:135
frame #8: 0x0000000104c3a325 WebCore`WebCore::SubresourceLoader::didReceiveResponse(WebCore::ResourceResponse const&) + 405 at SubresourceLoader.cpp:184
frame #9: 0x00000001049ef615 WebCore`WebCore::ResourceLoader::didReceiveResponse(WebCore::ResourceHandle*, WebCore::ResourceResponse const&) + 101 at ResourceLoader.cpp:445
frame #10: 0x00000001049ebf0f WebCore`-[WebCoreResourceHandleAsDelegate connection:didReceiveResponse:] + 719 at ResourceHandleMac.mm:748
frame #11: 0x00007fff87c29f58 Foundation`__65-[NSURLConnectionInternal _withConnectionAndDelegate:onlyActive:]_block_invoke_0 + 28
frame #12: 0x00007fff87c29e9c Foundation`-[NSURLConnectionInternal _withConnectionAndDelegate:onlyActive:] + 227
frame #13: 0x00007fff87c29d98 Foundation`-[NSURLConnectionInternal _withActiveConnectionAndDelegate:] + 63
frame #14: 0x00007fff87c2a0c1 Foundation`_NSURLConnectionDidReceiveResponse + 82
frame #15: 0x00007fff8c0042e0 CFNetwork`___delegate_didReceiveResponse_block_invoke_0 + 51
frame #16: 0x00007fff8bff93ca CFNetwork`___withDelegateAsync_block_invoke_0 + 90
frame #17: 0x00007fff8c08956a CFNetwork`__block_global_1 + 28
frame #18: 0x00007fff89ee9724 CoreFoundation`CFArrayApplyFunction + 68
frame #19: 0x00007fff8bfea554 CFNetwork`RunloopBlockContext::perform() + 124
frame #20: 0x00007fff8bfea42b CFNetwork`MultiplexerSource::perform() + 221
frame #21: 0x00007fff89ecb101 CoreFoundation`__CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17
frame #22: 0x00007fff89ecaaed CoreFoundation`__CFRunLoopDoSources0 + 445
frame #23: 0x00007fff89eeddc5 CoreFoundation`__CFRunLoopRun + 789
frame #24: 0x00007fff89eed6b2 CoreFoundation`CFRunLoopRunSpecific + 290
frame #25: 0x00007fff918200a4 HIToolbox`RunCurrentEventLoopInMode + 209
frame #26: 0x00007fff9181fe42 HIToolbox`ReceiveNextEventCommon + 356
frame #27: 0x00007fff9181fcd3 HIToolbox`BlockUntilNextEventMatchingListInMode + 62
frame #28: 0x00007fff925f0613 AppKit`_DPSNextEvent + 685
frame #29: 0x00007fff925efed2 AppKit`-[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 128
frame #30: 0x00007fff925e7283 AppKit`-[NSApplication run] + 517
frame #31: 0x0000000104a26129 WebCore`WebCore::RunLoop::run() + 105 at RunLoopMac.mm:43
frame #32: 0x00000001013b982a WebKit2`int WebKit::ChildProcessMain<WebKit::WebProcess, WebKit::WebProcessMainDelegate>(WebKit::CommandLine const&) + 810 at ChildProcessMain.h:106
frame #33: 0x00000001013b94f5 WebKit2`WebKit::WebProcessMain(WebKit::CommandLine const&) + 21 at WebProcessMainMac.mm:154
frame #34: 0x00000001012a2999 WebKit2`WebKitMain + 201 at WebKitMain.cpp:56
frame #35: 0x00000001012a28a9 WebKit2`WebKitMain + 153 at WebKitMain.cpp:86
frame #36: 0x0000000100000da2 WebProcess`main + 274 at MainMacProcess.cpp:68
frame #37: 0x00007fff8d0147e1 libdyld.dylib`start + 1
I wasn't able to p *this (thanks lldb) but did:
(lldb) p this->m_clientSet
(WTF::HashCountedSet<WebCore::CachedResourceClient *, WTF::PtrHash<WebCore::CachedResourceClient *>, WTF::HashTraits<WebCore::CachedResourceClient> > &) $0 = 0x0000000124834658: {
(WTF::HashCountedSet<WebCore::CachedResourceClient *, WTF::PtrHash<WebCore::CachedResourceClient *>, WTF::HashTraits<WebCore::CachedResourceClient> >::ImplType) m_impl = {
(WTF::HashMap<WebCore::CachedResourceClient *, unsigned int, WTF::PtrHash<WebCore::CachedResourceClient *>, WTF::HashTraits<WebCore::CachedResourceClient>, WTF::HashTraits<unsigned int> >::HashTableType) m_impl = {
(ValueType *) m_table = 0x5555555555555555
(int) m_tableSize = 1431655765
(int) m_tableSizeMask = 1431655765
(int) m_keyCount = 1431655765
(int) m_deletedCount = 1431655765
(const_iterator *) m_iterators = 0x5555555555555555
(WTF::OwnPtr<WTF::Mutex>) m_mutex = {
(WTF::OwnPtr<WTF::Mutex>::PtrType) m_ptr = 0x5555555555555555
}
}
}
}
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list