Bug 110761

Summary:

Crash in InspectorResourceAgent::didFailLoading()

Product:

WebKit

Reporter:

Vsevolod Vlasov <vsevik>

Component:

Web Inspector (Deprecated)

Assignee:

Nobody <webkit-unassigned>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

apavlov, commit-queue, inferno, keishi, loislo, pfeldman, pmuellr, vsevik, web-inspector-bugs, webkit.review.bot, yurys

Priority:

Version:

528+ (Nightly build)

Hardware:

Unspecified

OS:

Unspecified

Attachments:

Description	Flags
Patch	none

Vsevolod Vlasov

Reported 2013-02-25 08:15:52 PST

0x01ca144a [Google Chrome Framework] - ../../WTF/wtf/text/StringImpl.h:558] WebCore::NetworkResourcesData::resourceType 0x01c835ef [Google Chrome Framework] - InspectorResourceAgent.cpp:322] WebCore::InspectorResourceAgent::didFailLoading 0x01c65905 [Google Chrome Framework] - InspectorInstrumentation.cpp:783] WebCore::InspectorInstrumentation::didFailLoadingImpl 0x01cb3de2 [Google Chrome Framework] - ../inspector/InspectorInstrumentation.h:1464] WebCore::DocumentThreadableLoader::notifyFinished 0x01cb3e93 [Google Chrome Framework] - ../loader/DocumentThreadableLoader.cpp:312] _ZThn8_N7WebCore24DocumentThreadableLoader14notifyFinishedEPNS_14CachedResourceE 0x01cf11b8 [Google Chrome Framework] - CachedResource.cpp:378] WebCore::CachedResource::checkNotify 0x01ce0ac8 [Google Chrome Framework] - SubresourceLoader.cpp:296] WebCore::SubresourceLoader::didFail 0x01cddb46 [Google Chrome Framework] - ResourceLoader.cpp:473] WebCore::ResourceLoader::didFail 0x019064ae [Google Chrome Framework] - ResourceHandle.cpp:172] WebCore::ResourceHandleInternal::didFail 0x0235c5ad [Google Chrome Framework] - weburlloader_impl.cc:710] webkit_glue::WebURLLoaderImpl::Context::OnCompletedRequest 0x00dc8ca3 [Google Chrome Framework] - resource_dispatcher.cc:501] content::ResourceDispatcher::OnRequestComplete 0x00dc7c8f [Google Chrome Framework] - ../base/tuple.h:571] content::ResourceDispatcher::DispatchMessage 0x00dc77ce [Google Chrome Framework] - resource_dispatcher.cc:293] content::ResourceDispatcher::OnMessageReceived 0x00d2be15 [Google Chrome Framework] - child_thread.cc:243] content::ChildThread::OnMessageReceived 0x00cf1273 [Google Chrome Framework] - ipc_channel_proxy.cc:261] IPC::ChannelProxy::Context::OnDispatchMessage 0x00cf2b18 [Google Chrome Framework] - ../base/bind_internal.h:190] base::internal::Invoker<2, base::internal::BindState<base::internal::RunnableAdapter<void (IPC::ChannelProxy::Context::*)(const IPC::Message &)>, void (IPC::ChannelProxy::Context *, const IPC::Message &), void (IPC::ChannelProxy::Context *, IPC::Message)>, void (IPC::ChannelProxy::Context *, const IPC::Message &)>::Run 0x007faa37 [Google Chrome Framework] - ../base/callback.h:396] MessageLoop::RunTask 0x007fae6c [Google Chrome Framework] - message_loop.cc:488] MessageLoop::DoWork 0x007ccca4 [Google Chrome Framework] - message_pump_mac.mm:252] base::MessagePumpCFRunLoopBase::RunWork 0x9314a13e [CoreFoundation] + 0x0001213e] __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ 0x93149af5 [CoreFoundation] + 0x00011af5] __CFRunLoopDoSources0 0x931739c7 [CoreFoundation] + 0x0003b9c7] __CFRunLoopRun 0x931731db [CoreFoundation] + 0x0003b1db] CFRunLoopRunSpecific 0x93173087 [CoreFoundation] + 0x0003b087] CFRunLoopRunInMode 0x95e75542 [HIToolbox] + 0x00002542] RunCurrentEventLoopInMode 0x95e7c8aa [HIToolbox] + 0x000098aa] ReceiveNextEventCommon 0x95e7c719 [HIToolbox] + 0x00009719] BlockUntilNextEventMatchingListInMode 0x9b1a2ee7 [AppKit] + 0x00009ee7] _DPSNextEvent 0x9b1a2751 [AppKit] + 0x00009751] -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] 0x9b19eac0 [AppKit] + 0x00005ac0] -[NSApplication run] 0x007cd060 [Google Chrome Framework] - message_pump_mac.mm:576] base::MessagePumpNSApplication::DoRun 0x007ccb9b [Google Chrome Framework] - message_pump_mac.mm:171] base::MessagePumpCFRunLoopBase::Run 0x007fa4cf [Google Chrome Framework] - message_loop.cc:433] MessageLoop::RunHandler 0x0080dff0 [Google Chrome Framework] - run_loop.cc:45] base::RunLoop::Run 0x007fa249 [Google Chrome Framework] - message_loop.cc:313] MessageLoop::Run 0x02bb773c [Google Chrome Framework] - renderer_main.cc:226] content::RendererMain 0x006eae6a [Google Chrome Framework] - content_main_runner.cc:450] content::ContentMainRunnerImpl::Run 0x006ea1df [Google Chrome Framework] - content_main.cc:35] content::ContentMain 0x00107c68 [Google Chrome Framework] - chrome_main.cc:32] ChromeMain 0x000fff77 [Google Chrome Helper] - chrome_exe_main_mac.cc:16] main 0x000fff54 [Google Chrome Helper] + 0x00000f54] start 0x00000009

Attachments
Patch (9.60 KB, patch) 2013-02-25 08:30 PST, Vsevolod Vlasov	no flags	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Vsevolod Vlasov

Comment 1 2013-02-25 08:30:49 PST

Created attachment 190068 [details] Patch

Abhishek Arya

Comment 2 2013-02-25 08:58:18 PST

Do we have a tracking chromium bug for this ?

Vsevolod Vlasov

Comment 3 2013-02-25 09:30:23 PST

I am sorry, I forgot to add it: https://code.google.com/p/chromium/issues/detail?id=177831

Abhishek Arya

Comment 4 2013-02-25 09:35:23 PST

Not a security bug. It is a null pointer crash. Confirmed with Vsevolod.

WebKit Review Bot

Comment 5 2013-02-25 09:49:14 PST

Comment on attachment 190068 [details] Patch Clearing flags on attachment: 190068 Committed r143938: <http://trac.webkit.org/changeset/143938>

WebKit Review Bot

Comment 6 2013-02-25 09:49:18 PST

All reviewed patches have been landed. Closing bug.

Note You need to log in before you can comment on or make changes to this bug.