Bug 145349

Summary: [GTK][Stable] Infinite recursion in WebUserContentController destructor
Product: WebKit Reporter: Michael Catanzaro <mcatanzaro>
Component: WebKit2Assignee: Nobody <webkit-unassigned>
Status: RESOLVED WONTFIX    
Severity: Normal CC: cgarcia, mcatanzaro
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: PC   
OS: Linux   
See Also: https://bugzilla.redhat.com/show_bug.cgi?id=1207089
https://bugzilla.redhat.com/show_bug.cgi?id=1236587

Description Michael Catanzaro 2015-05-23 11:33:32 PDT 
Moving from downstream:

Truncated backtrace:
Thread no. 1 (10 frames)
 #0 WTF::HashTable<WTF::StringImpl*, WTF::StringImpl*, WTF::IdentityExtractor, WTF::StringHash, WTF::HashTraits<WTF::StringImpl*>, WTF::HashTraits<WTF::StringImpl*> >::find<WTF::IdentityHashTranslator<WTF::StringHash>, WTF::StringImpl*> at /usr/src/debug/webkitgtk-2.8.0/Source/WTF/wtf/HashTable.h:948
 #1 find at /usr/src/debug/webkitgtk-2.8.0/Source/WTF/wtf/HashTable.h:388
 #3 WTF::AtomicString::remove at /usr/src/debug/webkitgtk-2.8.0/Source/WTF/wtf/text/AtomicString.cpp:442
 #4 WTF::StringImpl::~StringImpl at /usr/src/debug/webkitgtk-2.8.0/Source/WTF/wtf/text/StringImpl.cpp:113
 #5 WTF::StringImpl::destroy at /usr/src/debug/webkitgtk-2.8.0/Source/WTF/wtf/text/StringImpl.cpp:133
 #6 deref at /usr/src/debug/webkitgtk-2.8.0/Source/WTF/wtf/RefCounted.h:146
 #7 derefIfNotNull<WebCore::UserMessageHandlerDescriptor> at /usr/src/debug/webkitgtk-2.8.0/Source/WTF/wtf/PassRefPtr.h:42
 #8 ~RefPtr at /usr/src/debug/webkitgtk-2.8.0/Source/WTF/wtf/RefPtr.h:59
 #9 ~WebUserMessageHandlerDescriptorProxy at /usr/src/debug/webkitgtk-2.8.0/Source/WebKit2/WebProcess/UserContent/WebUserContentController.cpp:118
 #11 deref at /usr/src/debug/webkitgtk-2.8.0/Source/WTF/wtf/RefCounted.h:146

Full backtrace available in the downstream bug. This can't happen in master anymore, since r181200.
Comment 1 Michael Catanzaro 2015-09-22 16:13:15 PDT 
Obsolete