Bug 143562

Summary: Network Cache: Crash in WebCore::CachedResource::tryReplaceEncodedData
Product: WebKit Reporter: Antti Koivisto <koivisto>
Component: Page LoadingAssignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Normal CC: commit-queue
Priority: P2 Keywords: InRadar
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
patch none

Description Antti Koivisto 2015-04-09 06:35:41 PDT 
For example

https://build.webkit.org/builders/Apple%20Yosemite%20Release%20WK2%20%28Tests%29/builds/3805

Exception Type:        EXC_BAD_ACCESS (SIGBUS)
Exception Codes:       0x000000000000000a, 0x000000011693b000

VM Regions Near 0x11693b000:
    Image IO               0000000116931000-000000011693b000 [   40K] rw-/rwx SM=PRV  
--> mapped file            000000011693b000-000000011693e000 [   12K] r--/r-- SM=COW  /private/var/folders/*
    CoreUI image data      000000011693e000-000000011693f000 [    4K] rw-/rwx SM=PRV  

Application Specific Information:
CRASHING TEST: /css/css-image-loading.html

Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   libsystem_platform.dylib      	0x00007fff8d627db5 _platform_memcmp + 213
1   com.apple.WebCore             	0x000000010f23eeea WebCore::CachedResource::tryReplaceEncodedData(WebCore::SharedBuffer&) + 122 (CachedResource.cpp:781)
2   com.apple.WebKit              	0x000000010dbb04f2 WebKit::NetworkProcessConnection::didCacheResource(WebCore::ResourceRequest const&, WebKit::ShareableResource::Handle const&, WebCore::SessionID) + 86 (NetworkProcessConnection.cpp:97)
3   com.apple.WebKit              	0x000000010dbb06be void IPC::handleMessage<Messages::NetworkProcessConnection::DidCacheResource, WebKit::NetworkProcessConnection, void (WebKit::NetworkProcessConnection::*)(WebCore::ResourceRequest const&, WebKit::ShareableResource::Handle const&, WebCore::SessionID)>(IPC::MessageDecoder&, WebKit::NetworkProcessConnection*, void (WebKit::NetworkProcessConnection::*)(WebCore::ResourceRequest const&, WebKit::ShareableResource::Handle const&, WebCore::SessionID)) + 118 (HandleMessage.h:93)
4   com.apple.WebKit              	0x000000010db485e2 IPC::Connection::dispatchMessage(std::__1::unique_ptr<IPC::MessageDecoder, std::__1::default_delete<IPC::MessageDecoder> >) + 102 (Connection.cpp:872)
5   com.apple.WebKit              	0x000000010db4a7ae IPC::Connection::dispatchOneMessage() + 114 (memory:2593)
6   com.apple.JavaScriptCore      	0x000000010edbd7d7 WTF::RunLoop::performWork() + 423 (RunLoop.cpp:106)
7   com.apple.JavaScriptCore      	0x000000010edbdea2 WTF::RunLoop::performWork(void*) + 34 (RunLoopCF.cpp:39)
8   com.apple.CoreFoundation      	0x00007fff845f6681 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17
9   com.apple.CoreFoundation      	0x00007fff845e880d __CFRunLoopDoSources0 + 269
10  com.apple.CoreFoundation      	0x00007fff845e7e3f __CFRunLoopRun + 927
11  com.apple.CoreFoundation      	0x00007fff845e7858 CFRunLoopRunSpecific + 296
12  com.apple.HIToolbox           	0x00007fff8d08eaef RunCurrentEventLoopInMode + 235
13  com.apple.HIToolbox           	0x00007fff8d08e86a ReceiveNextEventCommon + 431
14  com.apple.HIToolbox           	0x00007fff8d08e6ab _BlockUntilNextEventMatchingListInModeWithFilter + 71
15  com.apple.AppKit              	0x00007fff8f5aef81 _DPSNextEvent + 964
16  com.apple.AppKit              	0x00007fff8f5ae730 -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 194
17  com.apple.AppKit              	0x00007fff8f5a2593 -[NSApplication run] + 594
18  com.apple.AppKit              	0x00007fff8f58da14 NSApplicationMain + 1832
Comment 1 Antti Koivisto 2015-04-09 06:35:57 PDT 
rdar://problem/15924780
Comment 2 Antti Koivisto 2015-04-09 06:45:10 PDT 
Created attachment 250439 [details]
patch
Comment 3 WebKit Commit Bot 2015-04-09 09:21:17 PDT 
Comment on attachment 250439 [details]
patch

Clearing flags on attachment: 250439

Committed r182602: <http://trac.webkit.org/changeset/182602>
Comment 4 WebKit Commit Bot 2015-04-09 09:21:21 PDT 
All reviewed patches have been landed.  Closing bug.