[Webkit-unassigned] [Bug 177861] Ownership issues in IDBConnectionProxy::completeOpenDBRequest
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Oct 4 05:23:12 PDT 2017
https://bugs.webkit.org/show_bug.cgi?id=177861
--- Comment #2 from Ihor Ivlev <ivlev.igor at gmail.com> ---
(In reply to Ihor Ivlev from comment #0)
> IDBTransaction::create calls IDBTransaction::IDBTransaction, which does the
> following
> (https://github.com/WebKit/webkit/blob/master/Source/WebCore/Modules/
> indexeddb/IDBTransaction.cpp#L95):
>
> RefPtr<IDBTransaction> self;
> JSC::VM& vm = context->vm();
> vm.whenIdle([self, this]() {
> deactivate();
> });
>
> Most likely this is a bug. deactivate() might be called on a wrong object
> since "RefPtr<IDBTransaction> self" does not capture reference to "this".
Hmmm even though this looks like a bug, after looking further, I am not sure that this is happening in database->startVersionChangeTransaction case, since this is the else branch of
if (m_info.mode() == IDBTransactionMode::Versionchange) {
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20171004/866cf08d/attachment.html>
More information about the webkit-unassigned
mailing list