Bug 158724

Summary: Crash inside firstPositionInNode in checkLoadCompleteForThisFrame
Product: WebKit Reporter: Ryosuke Niwa <rniwa>
Component: Page LoadingAssignee: Ryosuke Niwa <rniwa>
Status: RESOLVED FIXED    
Severity: Normal CC: beidson, cdumez, commit-queue, ddkilzer, enrica, japhet
Priority: P2 Keywords: InRadar
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
See Also: https://bugs.webkit.org/show_bug.cgi?id=134897
Attachments:
Description Flags
Fixes the crash none

Ryosuke Niwa
Reported 2016-06-13 20:52:01 PDT
Thread 0 name: Dispatch queue: com.apple.main-thread Thread 0 Crashed: 0 WebCore 0x000000018f4d6428 WebCore::firstPositionInNode(WebCore::Node*) + 12 (Position.h:310) 1 WebCore 0x000000018f3498bc WebCore::FrameLoader::checkLoadCompleteForThisFrame() + 1100 (FrameLoader.cpp:2312) 2 WebCore 0x000000018f349348 WebCore::FrameLoader::checkLoadComplete() + 372 (FrameLoader.cpp:2464) 3 WebCore 0x000000018f37b270 WebCore::DocumentLoader::finishedLoading(double) + 388 (DocumentLoader.cpp:441) 4 WebCore 0x000000018f3ba734 WebCore::CachedResource::checkNotify() + 448 (CachedResource.cpp:299) 5 WebCore 0x000000018f571814 WebCore::CachedRawResource::finishLoading(WebCore::SharedBuffer*) + 224 (CachedRawResource.cpp:103) 6 WebCore 0x000000018f3ba414 WebCore::SubresourceLoader::didFinishLoading(double) + 988 (SubresourceLoader.cpp:429) 7 WebKit 0x0000000193e61330 WebKit::WebResourceLoader::didReceiveResource(WebKit::ShareableResource::Handle const&, double) + 296 (WebResourceLoader.cpp:211) 8 WebKit 0x0000000193e61f68 void IPC::handleMessage<Messages::WebResourceLoader::DidReceiveResource, WebKit::WebResourceLoader, void (WebKit::WebResourceLoader::*)(WebKit::ShareableResource::Handle const&, double)>(IPC::MessageDecoder&, WebKit::WebResourceLoader*, void (WebKit::WebResourceLoader::*)(WebKit::ShareableResource::Handle const&, double)) + 92 (HandleMessage.h:16) 9 WebKit 0x0000000193ca3cac IPC::Connection::dispatchMessage(std::__1::unique_ptr<IPC::MessageDecoder, std::__1::default_delete<IPC::MessageDecoder> >) + 168 (Connection.cpp:895) 10 WebKit 0x0000000193ca6658 IPC::Connection::dispatchOneMessage() + 204 (Connection.cpp:957) 11 JavaScriptCore 0x000000018f06e408 WTF::RunLoop::performWork() + 452 (functional:1817) 12 JavaScriptCore 0x000000018f06e7b4 WTF::RunLoop::performWork(void*) + 36 (RunLoopCF.cpp:38) 13 CoreFoundation 0x000000018a94d598 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 24 (CFRunLoop.c:1938) 14 CoreFoundation 0x000000018a94cee0 __CFRunLoopDoSources0 + 524 (CFRunLoop.c:1984) 15 CoreFoundation 0x000000018a94ab60 __CFRunLoopRun + 804 (CFRunLoop.c:2816) 16 CoreFoundation 0x000000018a87d794 CFRunLoopRunSpecific + 292 (CFRunLoop.c:3098) 17 Foundation 0x000000018b316618 -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 304 (NSRunLoop.m:367) 18 Foundation 0x000000018b36aef4 -[NSRunLoop(NSRunLoop) run] + 88 (NSRunLoop.m:389) 19 libxpc.dylib 0x000000018a633f40 _xpc_objc_main + 660 (main.m:186) 20 libxpc.dylib 0x000000018a635c38 xpc_main + 200 (init.c:1438) 21 com.apple.WebKit.WebContent 0x00000001000c75e4 main + 376 (XPCServiceMain.mm:114) 22 libdyld.dylib 0x000000018a42b5f0 start + 4 <rdar://problem/26071214>
Attachments
Fixes the crash (3.21 KB, patch)
2016-06-13 20:53 PDT, Ryosuke Niwa 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Ryosuke Niwa
Comment 1 2016-06-13 20:53:13 PDT
Created attachment 281231 [details] Fixes the crash
WebKit Commit Bot
Comment 2 2016-06-14 00:34:16 PDT
Comment on attachment 281231 [details] Fixes the crash Clearing flags on attachment: 281231 Committed r202035: <http://trac.webkit.org/changeset/202035>
WebKit Commit Bot
Comment 3 2016-06-14 00:34:22 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.