[Webkit-unassigned] [Bug 272248] New: Crash in WebKit::WebDataListSuggestionPicker::close

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Apr 5 14:45:19 PDT 2024 

https://bugs.webkit.org/show_bug.cgi?id=272248

            Bug ID: 272248
           Summary: Crash in WebKit::WebDataListSuggestionPicker::close
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebCore Misc.
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: mcatanzaro at redhat.com

Created attachment 470776

  --> https://bugs.webkit.org/attachment.cgi?id=470776&action=review

Full backtrace

I'm not able to reproduce this, but here's a crash that occurred after clicking Back from https://www.brother-usa.com/home to https://pwg.org/printers/. Looks like I must have had a search input focused, but that's not sufficient to make it crash.

#0  WebKit::WebPage::identifier (this=0x0) at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebKit/WebProcess/WebPage/WebPage.h:439
#1  WebKit::WebDataListSuggestionPicker::close (this=0x7fb0229a5460)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebKit/WebProcess/WebCoreSupport/WebDataListSuggestionPicker.cpp:62
#2  0x00007fb03bb3ea27 in WebCore::TextFieldInputType::closeSuggestions (this=0x7fb0222c8400)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/html/TextFieldInputType.cpp:1012
#3  WebCore::TextFieldInputType::~TextFieldInputType (this=0x7fb0222c8400)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/html/TextFieldInputType.cpp:87
#4  0x00007fb03bb366fe in WebCore::SearchInputType::~SearchInputType (this=0x7fb0222c8400)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/html/SearchInputType.h:41
#5  WebCore::SearchInputType::~SearchInputType (this=0x7fb0222c8400) at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/html/SearchInputType.h:41
#6  0x00007fb03ba72a1f in std::default_delete<WebCore::InputType>::operator() (__ptr=0x7fb0229a5460, this=<optimized out>)
    at /usr/bin/../lib/gcc/x86_64-unknown-linux-gnu/13.2.0/../../../../include/c++/13.2.0/bits/unique_ptr.h:99
#7  WTF::RefCounted<WebCore::InputType, std::default_delete<WebCore::InputType> >::deref (this=0x7fb0229a5468) at WTF/Headers/wtf/RefCounted.h:220
#8  WTF::DefaultRefDerefTraits<WebCore::InputType>::derefIfNotNull (ptr=0x7fb0229a5460) at WTF/Headers/wtf/Ref.h:62
#9  WTF::RefPtr<WebCore::InputType, WTF::RawPtrTraits<WebCore::InputType>, WTF::DefaultRefDerefTraits<WebCore::InputType> >::~RefPtr (this=0x7f97be010c58)
    at WTF/Headers/wtf/RefPtr.h:60
#10 WebCore::HTMLInputElement::~HTMLInputElement (this=0x7f97be010b60)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/html/HTMLInputElement.cpp:158

Full backtrace attached.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20240405/9c7a19a6/attachment.htm>

More information about the webkit-unassigned mailing list