Bug 119653
| Summary: | EXC_BAD_ACCESS when browsing the Crossfilter demonstration page | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Jon Buffington <jon> |
| Component: | JavaScriptCore | Assignee: | Nobody <webkit-unassigned> |
| Status: | RESOLVED DUPLICATE | ||
| Severity: | Normal | CC: | ap, zan |
| Priority: | P2 | ||
| Version: | 528+ (Nightly build) | ||
| Hardware: | Mac (Intel) | ||
| OS: | OS X 10.8 | ||
| URL: | http://square.github.io/crossfilter/ | ||
Jon Buffington
Steps to reproduce:
1) Open WebKit nightly build on OS X 10.8.
2) Navigate to http://square.github.io/crossfilter/
Actual Results:
The application crashed.
Expected Results:
The page should display.
---
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0 com.apple.JavaScriptCore 0x000000010872d95a JSC::JSObject::putDirectIndexBeyondVectorLengthWithArrayStorage(JSC::ExecState*, unsigned int, JSC::JSValue, unsigned int, JSC::PutDirectIndexMode, JSC::ArrayStorage*) + 138
1 com.apple.JavaScriptCore 0x000000010872e1d8 JSC::JSObject::putDirectIndexBeyondVectorLength(JSC::ExecState*, unsigned int, JSC::JSValue, unsigned int, JSC::PutDirectIndexMode) + 1560
2 com.apple.JavaScriptCore 0x00000001085855e0 JSC::arrayProtoFuncMap(JSC::ExecState*) + 1008
3 ??? 0x0000406a7a801045 0 + 70826065924165
4 com.apple.JavaScriptCore 0x00000001086d5ef1 JSC::JITCode::execute(JSC::JSStack*, JSC::ExecState*, JSC::VM*) + 49
5 com.apple.JavaScriptCore 0x00000001086bbc2a JSC::Interpreter::executeCall(JSC::ExecState*, JSC::JSObject*, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&) + 650
6 com.apple.JavaScriptCore 0x00000001085a3935 JSC::call(JSC::ExecState*, JSC::JSValue, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&) + 69
7 com.apple.WebCore 0x0000000109016b6c WebCore::JSEventListener::handleEvent(WebCore::ScriptExecutionContext*, WebCore::Event*) + 908
8 com.apple.WebCore 0x0000000108ce4cbc WebCore::EventTarget::fireEventListeners(WebCore::Event*, WebCore::EventTargetData*, WTF::Vector<WebCore::RegisteredEventListener, 1ul, WTF::CrashOnOverflow>&) + 364
9 com.apple.WebCore 0x0000000108ce49d6 WebCore::EventTarget::fireEventListeners(WebCore::Event*) + 390
10 com.apple.WebCore 0x0000000108ce4838 WebCore::EventTarget::dispatchEvent(WTF::PassRefPtr<WebCore::Event>) + 88
11 com.apple.WebCore 0x00000001096f5a4f WebCore::XMLHttpRequestProgressEventThrottle::dispatchEvent(WTF::PassRefPtr<WebCore::Event>) + 335
12 com.apple.WebCore 0x00000001096f05a2 WebCore::XMLHttpRequest::callReadyStateChangeListener() + 514
13 com.apple.WebCore 0x00000001096f43f6 WebCore::XMLHttpRequest::didFinishLoading(unsigned long, double) + 358
14 com.apple.WebCore 0x0000000108a8d04d WebCore::CachedResource::checkNotify() + 93
15 com.apple.WebCore 0x0000000108a89fd2 WebCore::CachedRawResource::finishLoading(WebCore::ResourceBuffer*) + 194
16 com.apple.WebCore 0x00000001095614f5 WebCore::SubresourceLoader::didFinishLoading(double) + 133
17 com.apple.Foundation 0x00007fff94e7fd88 __65-[NSURLConnectionInternal _withConnectionAndDelegate:onlyActive:]_block_invoke_0 + 28
18 com.apple.Foundation 0x00007fff94e7fccc -[NSURLConnectionInternal _withConnectionAndDelegate:onlyActive:] + 227
19 com.apple.Foundation 0x00007fff94e7fbc8 -[NSURLConnectionInternal _withActiveConnectionAndDelegate:] + 63
20 com.apple.CFNetwork 0x00007fff8f348091 ___delegate_didFinishLoading_block_invoke_0 + 40
21 com.apple.CFNetwork 0x00007fff8f33a54a ___withDelegateAsync_block_invoke_0 + 90
22 com.apple.CFNetwork 0x00007fff8f3caf3a __block_global_1 + 28
23 com.apple.CoreFoundation 0x00007fff96bfc154 CFArrayApplyFunction + 68
24 com.apple.CFNetwork 0x00007fff8f32b2b4 RunloopBlockContext::perform() + 124
25 com.apple.CFNetwork 0x00007fff8f32b18b MultiplexerSource::perform() + 221
26 com.apple.CoreFoundation 0x00007fff96bddb31 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17
27 com.apple.CoreFoundation 0x00007fff96bdd455 __CFRunLoopDoSources0 + 245
28 com.apple.CoreFoundation 0x00007fff96c007f5 __CFRunLoopRun + 789
29 com.apple.CoreFoundation 0x00007fff96c000e2 CFRunLoopRunSpecific + 290
30 com.apple.HIToolbox 0x00007fff8a68beb4 RunCurrentEventLoopInMode + 209
31 com.apple.HIToolbox 0x00007fff8a68bc52 ReceiveNextEventCommon + 356
32 com.apple.HIToolbox 0x00007fff8a68bae3 BlockUntilNextEventMatchingListInMode + 62
33 com.apple.AppKit 0x00007fff94387533 _DPSNextEvent + 685
34 com.apple.AppKit 0x00007fff94386df2 -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 128
35 com.apple.AppKit 0x00007fff9437e1a3 -[NSApplication run] + 517
36 com.apple.WebCore 0x00000001094a7422 WebCore::RunLoop::run() + 82
37 com.apple.WebKit2 0x00000001081c1c42 int WebKit::ChildProcessMain<WebKit::WebProcess, WebKit::WebContentProcessMainDelegate>(int, char**) + 614
38 com.apple.WebProcess 0x00000001080d8e23 main + 337
39 libdyld.dylib 0x00007fff92f897e1 start + 1
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
Zan Dobersek
Thanks for the bug report.
This looks similar enough to bug #119224, so I'll be marking this bug as a duplicate of that one.
*** This bug has been marked as a duplicate of bug 119224 ***
Alexey Proskuryakov
It's unclear from the partial stack trace which nightly build you were using. This may not be a duplicate.
Could you please re-test with a current nightly, and attach a complete stack trace as a file if this still happens?
Jon Buffington
I just re-tested with current nightly (r154730) and I am now able to load http://square.github.io/crossfilter/.
FWIW, I was testing WebKit nightly that was current on 2013-08-10 when I filed the bug.