Bug 28684

Summary:

Crash after typing "clear" and pressing return in inspector console

Product:

WebKit

Reporter:

Mark Rowe (bdash) <mrowe>

Component:

Web Inspector (Deprecated)

Assignee:

Pavel Feldman <pfeldman>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

pfeldman, timothy, yurys

Priority:

Keywords:

HasReduction

Version:

528+ (Nightly build)

Hardware:

OS:

OS X 10.5

Attachments:

Description	Flags
patch	none
patch (now with patch checkbox checked)	timothy: review+

Mark Rowe (bdash)

Reported 2009-08-24 13:21:07 PDT

With a debug build of r47723, typing "clear" and then pressing return in the inspector console results in a crash: Program received signal EXC_BAD_ACCESS, Could not access memory. Reason: KERN_PROTECTION_FAILURE at address: 0x00000010 0x015ba6f2 in WebCore::JSQuarantinedObjectWrapper::getCallData (this=0x16e20340, callData=@0xbfffd888) at WebCore/bindings/js/JSQuarantinedObjectWrapper.cpp:263 263 if (m_unwrappedObject->getCallData(unwrappedCallData) == CallTypeNone) (gdb)

Attachments
patch (3.09 KB, application/octet-stream) 2009-09-03 01:53 PDT, Pavel Feldman	no flags	Details
patch (now with patch checkbox checked) (3.09 KB, patch) 2009-09-03 01:53 PDT, Pavel Feldman	timothy: review+	Details Formatted Diff Diff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.

Pavel Feldman

Comment 1 2009-09-03 01:53:01 PDT

Created attachment 38972 [details] patch As I was suggesting earlier, it seems like objects wrapped with wrapCallback do not survive gc. Here is an easy workaround for this bug while it is getting fixed.

Pavel Feldman

Comment 2 2009-09-03 01:53:48 PDT

Created attachment 38973 [details] patch (now with patch checkbox checked)

Pavel Feldman

Comment 3 2009-09-03 09:51:54 PDT

Committing to http://svn.webkit.org/repository/webkit/trunk ... M WebCore/ChangeLog M WebCore/inspector/front-end/InjectedScript.js Committed r48022

Note You need to log in before you can comment on or make changes to this bug.