Bug 17860

Summary: REGRESSION(r31038?): Crash in WebCore::Loader::Host::didFinishLoading on CNN.com
Product: WebKit Reporter: Steven Hollingsworth <ampcoder>
Component: Page LoadingAssignee: Nobody <webkit-unassigned>
Status: RESOLVED DUPLICATE    
Severity: Major CC: ayoung, dev+webkit, edman007x, jeroenvandeven, kevin, koivisto, nate, phamtq, zwarich
Priority: P1 Keywords: NeedsReduction, Regression
Version: 528+ (Nightly build)   
Hardware: Mac (Intel)   
OS: OS X 10.5   
URL: http://www.cnn.com
Attachments:
Description Flags
Problem Report for WebKit
none
r31055 crash log none

Steven Hollingsworth
Reported 2008-03-14 20:31:37 PDT
WebKit crashed while browsing the Index page on CNN.com.
Attachments
Problem Report for WebKit (39.61 KB, text/plain)
2008-03-14 20:32 PDT, Steven Hollingsworth 		no flags
Details
r31055 crash log (33.32 KB, text/plain)
2008-03-15 12:53 PDT, Dave Marquard 		no flags
Details
View All Add attachment proposed patch, testcase, etc.
Steven Hollingsworth
Comment 1 2008-03-14 20:32:00 PDT
Created attachment 19781 [details] Problem Report for WebKit
Matt Lilek
Comment 2 2008-03-14 22:09:33 PDT
Confirmed with r31072. Didn't actually get CNN to crash for me, but lynda.com (bug 17861) did. Thread 0 Crashed: 0 com.apple.WebCore 0x020582c3 WebCore::Loader::Host::didFinishLoading(WebCore::SubresourceLoader*) + 313 (loader.cpp:269) 1 com.apple.WebCore 0x01ff2469 WebCore::SubresourceLoader::didFinishLoading() + 169 (SubresourceLoader.cpp:195) 2 com.apple.WebCore 0x01ef15d6 WebCore::ResourceLoader::didFinishLoading(WebCore::ResourceHandle*) + 24 (ResourceLoader.cpp:373) 3 com.apple.WebCore 0x01eeed91 -[WebCoreResourceHandleAsDelegate connectionDidFinishLoading:] + 101 (ResourceHandleMac.mm:521) 4 com.apple.Foundation 0x913a38b7 -[NSURLConnection(NSURLConnectionReallyInternal) sendDidFinishLoading] + 87 5 com.apple.Foundation 0x913a3844 _NSURLConnectionDidFinishLoading + 68 6 com.apple.CFNetwork 0x947177f3 sendDidFinishLoadingCallback + 148 7 com.apple.CFNetwork 0x94714920 _CFURLConnectionSendCallbacks + 1994 8 com.apple.CFNetwork 0x947140d9 muxerSourcePerform + 283 9 com.apple.CoreFoundation 0x9526562e CFRunLoopRunSpecific + 3166 10 com.apple.CoreFoundation 0x95265d18 CFRunLoopRunInMode + 88 11 com.apple.HIToolbox 0x92df06a0 RunCurrentEventLoopInMode + 283 12 com.apple.HIToolbox 0x92df04b9 ReceiveNextEventCommon + 374 13 com.apple.HIToolbox 0x92df032d BlockUntilNextEventMatchingListInMode + 106 14 com.apple.AppKit 0x916647d9 _DPSNextEvent + 657 15 com.apple.AppKit 0x9166408e -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 128 16 com.apple.Safari 0x0000806e 0x1000 + 28782 17 com.apple.AppKit 0x9165d0c5 -[NSApplication run] + 795 18 com.apple.AppKit 0x9162a30a NSApplicationMain + 574 19 com.apple.Safari 0x000b9a76 0x1000 + 756342
Matt Lilek
Comment 3 2008-03-14 22:09:45 PDT
*** Bug 17861 has been marked as a duplicate of this bug. ***
Kevin M. Dean
Comment 4 2008-03-15 04:51:54 PDT
Just confirming that I had about 4 or 5 similar crashes yesterday from some random sites. One of which I can remember was after doing a function search on php.net.
Dave Marquard
Comment 5 2008-03-15 12:53:43 PDT
Created attachment 19783 [details] r31055 crash log I've seen the same issue on several sites with r31055. Crash log attached.
Cameron Zwarich (cpst)
Comment 6 2008-03-15 13:25:52 PDT
Might this be the cause? http://trac.webkit.org/projects/webkit/changeset/31038
Matt Lilek
Comment 7 2008-03-15 21:28:05 PDT
*** Bug 17864 has been marked as a duplicate of this bug. ***
Ed Martin
Comment 8 2008-03-15 22:10:40 PDT
Incase anyone is having trouble reproducing this bug, well if you have a .mac account login at http://webmail.mac.com/ and it will crash within a second (which BTW, is very very annoying)
Antti Koivisto
Comment 9 2008-03-15 23:52:30 PDT
Likely to be duplicate of memory smasher Bug 17862.
Antti Koivisto
Comment 10 2008-03-16 00:03:09 PDT
Yep, the patch there fixes webmail.mac.com crash too. *** This bug has been marked as a duplicate of 17862 ***
Robert Blaut
Comment 11 2008-03-16 23:29:13 PDT
*** Bug 17877 has been marked as a duplicate of this bug. ***
Robert Blaut
Comment 12 2008-03-16 23:30:17 PDT
*** Bug 17874 has been marked as a duplicate of this bug. ***
Note You need to log in before you can comment on or make changes to this bug.