109225 2013-02-07 13:23:35 -0800 [Gtk] WebKit2 crashes when loading pages with http 304 code. 2013-02-08 07:40:51 -0800 1 1 1 Unclassified WebKit WebKitGTK 528+ (Nightly build) Unspecified Unspecified RESOLVED DUPLICATE 109287 http://renevier.net/misc/webkit_109225.php P2 Normal --- 1 a.renevier webkit-unassigned cgarcia gustavo mrobinson svillar oldest_to_newest 827848 0 a.renevier 2013-02-07 13:23:35 -0800 Hi, when loading a page with a 304 code from cache, MiniBrowser crashes. This happens because in that case, receiveData happens before receiveResponse. Then, in that case, setCertificateToMainResource is called before a response has been set to the webresource. So, webkitURIResponseSetCertificateInfo(webkit_web_resource_get_response(priv->mainResource.get()), results in a null parameter being used in webkitURIResponseSetCertificateInfo). Here is the crash backtrace: #0 0xb6918bd9 in webkitURIResponseSetCertificateInfo(_WebKitURIResponse*, WebKit::WebCertificateInfo*) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 #1 0xb6922c45 in setCertificateToMainResource(_WebKitWebView*) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 #2 0xb6928dcd in webkitWebViewLoadChanged(_WebKitWebView*, WebKitLoadEvent) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 #3 0xb690a34b in didCommitLoadForFrame(OpaqueWKPage const*, OpaqueWKFrame const*, void const*, void const*) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 #4 0xb6978912 in WebKit::WebLoaderClient::didCommitLoadForFrame(WebKit::WebPageProxy*, WebKit::WebFrameProxy*, WebKit::APIObject*) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 #5 0xb698c20e in WebKit::WebPageProxy::didCommitLoadForFrame(unsigned long long, WTF::String const&, bool, unsigned int, WebKit::PlatformCertificateInfo const&, CoreIPC::MessageDecoder&) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 #6 0xb6a4aeb8 in void CoreIPC::handleMessageVariadic<Messages::WebPageProxy::DidCommitLoadForFrame, WebKit::WebPageProxy, void (WebKit::WebPageProxy::*)(unsigned long long, WTF::String const&, bool, unsigned int, WebKit::PlatformCertificateInfo const&, CoreIPC::MessageDecoder&)>(CoreIPC::MessageDecoder&, WebKit::WebPageProxy*, void (WebKit::WebPageProxy::*)(unsigned long long, WTF::String const&, bool, unsigned int, WebKit::PlatformCertificateInfo const&, CoreIPC::MessageDecoder&)) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 #7 0xb6a4a458 in WebKit::WebPageProxy::didReceiveWebPageProxyMessage(CoreIPC::Connection*, CoreIPC::MessageDecoder&) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 #8 0xb69850a7 in WebKit::WebPageProxy::didReceiveMessage(CoreIPC::Connection*, CoreIPC::MessageDecoder&) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 #9 0xb69a230c in WebKit::WebProcessProxy::didReceiveMessage(CoreIPC::Connection*, CoreIPC::MessageDecoder&) () from /home/arno/webkit/WebKit.upstream/WebKitBuild/Release/.libs/libwebkit2gtk-3.0.so.0 827851 1 a.renevier 2013-02-07 13:25:00 -0800 loading the above url twice in a row will crash MiniBrowser. 827852 2 187164 a.renevier 2013-02-07 13:25:19 -0800 Created attachment 187164 crashtest source 828561 3 svillar 2013-02-08 07:40:51 -0800 Although this was reported first, I'm setting this as dup of the other because there is a patch available *** This bug has been marked as a duplicate of bug 109287 *** 187164 2013-02-07 13:25:19 -0800 2013-02-07 13:25:19 -0800 crashtest source crash.php application/x-php 245 a.renevier PD9waHAKJGNvbnRlbnQgPSAiPGh0bWw+aGVsbG8gd29ybGQ8L2h0bWw+IjsKJG1kNSA9IG1kNSgk Y29udGVudCk7CmlmICgkX1NFUlZFUlsiSFRUUF9JRl9OT05FX01BVENIIl0gPT0gJG1kNSkgewog ICAgaGVhZGVyKCRfU0VSVkVSWydTRVJWRVJfUFJPVE9DT0wnXS4nIDMwNCBOb3QgTW9kaWZpZWQn LCB0cnVlLCAzMDQpOwp9IGVsc2UgewogICAgaGVhZGVyKCJFVGFnOiAkbWQ1Iik7CiAgICBwcmlu dCAkY29udGVudDsKfQo/Pgo=