[Webkit-unassigned] [Bug 165848] [GTK] WebProcess from WebKitGtk+ 2.15.2 SIGSEGVs in std::unique_ptr<SoupBuffer, WTF::GPtrDeleter<SoupBuffer> >::get() const () at /usr/include/c++/6/bits/unique_ptr.h:305
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Dec 21 05:15:47 PST 2016
https://bugs.webkit.org/show_bug.cgi?id=165848
--- Comment #18 from Carlos Garcia Campos <cgarcia at igalia.com> ---
(In reply to comment #12)
> (In reply to comment #11)
> > (In reply to comment #10)
> > > Maybe this is the same I fixed in r208881
> >
> > Sounds like it. I will apply that patch and check ...
>
> Actually, this is already in 2.15.2
I didn't take into account that size() calls isSizeAvailable() that is virtual, and in the case of GIF, it's overriden and also calls decode(). I think the solution should be to make decoders thread-safe, but in the meantime, could you try moving the LockHolder locker(m_lock); in ImageDecoder::createFrameImageAtIndex() to the beginning? right before the size() call?
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20161221/8c4bdcf4/attachment.html>
More information about the webkit-unassigned
mailing list