Bug 41903
Summary: | [GTK] plugins/return-negative-one-from-write.html crashes | ||
---|---|---|---|
Product: | WebKit | Reporter: | Xan Lopez <xan.lopez> |
Component: | WebKitGTK | Assignee: | Nobody <webkit-unassigned> |
Status: | RESOLVED FIXED | ||
Severity: | Normal | CC: | darin, mrobinson |
Priority: | P2 | ||
Version: | 528+ (Nightly build) | ||
Hardware: | PC | ||
OS: | OS X 10.5 |
Xan Lopez
http://trac.webkit.org/changeset/61768 did some refactoring that added a new ASSERT in the setDefersLoading method. This is causing a new crash, which according to the commit is likely to be a bug.
Attachments | ||
---|---|---|
Add attachment proposed patch, testcase, etc. |
Xan Lopez
Trace:
Thread 1 (Thread 5246):
#0 0x00007f4469a14603 in WebCore::ResourceHandle::setDefersLoading (
this=0x2e12350, defers=true)
at ../../WebCore/platform/network/ResourceHandle.cpp:150
#1 0x00007f44698f0d2b in WebCore::ResourceLoader::setDefersLoading (
this=0x2deb440, defers=true)
at ../../WebCore/loader/ResourceLoader.cpp:154
#2 0x00007f4469a3ff33 in WebCore::PluginStream::destroyStream (
this=0x2d731a0) at ../../WebCore/plugins/PluginStream.cpp:271
#3 0x00007f4469a3fc63 in WebCore::PluginStream::destroyStream (
this=0x2d731a0, reason=1) at ../../WebCore/plugins/PluginStream.cpp:238
#4 0x00007f4469a3fb83 in WebCore::PluginStream::cancelAndDestroyStream (
this=0x2d731a0, reason=1) at ../../WebCore/plugins/PluginStream.cpp:223
#5 0x00007f4469a40609 in WebCore::PluginStream::deliverData (this=0x2d731a0)
at ../../WebCore/plugins/PluginStream.cpp:359
#6 0x00007f4469a40c0c in WebCore::PluginStream::didReceiveData (
this=0x2d731a0, loader=0x2deb440, data=0x2e02dc0 "T", length=8)
at ../../WebCore/plugins/PluginStream.cpp:429
#7 0x00007f44698e81d7 in WebCore::NetscapePlugInStreamLoader::didReceiveData
(this=0x2deb440, data=0x2e02dc0 "T", length=8, lengthReceived=0,
allAtOnce=false) at ../../WebCore/loader/NetscapePlugInStreamLoader.cpp:93
#8 0x00007f44698f1ce3 in WebCore::ResourceLoader::didReceiveData (
this=0x2deb440, data=0x2e02dc0 "T", length=8, lengthReceived=0)
at ../../WebCore/loader/ResourceLoader.cpp:431
#9 0x00007f4469de8b17 in parseDataUrl (callbackData=0x2e12350)
at ../../WebCore/platform/network/soup/ResourceHandleSoup.cpp:412
#10 0x00007f446521b01b in g_timeout_dispatch (source=0x2e09650, callback=0,
user_data=0x7f44642f1e20) at /tmp/buildd/glib2.0-2.22.4/glib/gmain.c:3396
#11 0x00007f446521a90e in g_main_dispatch (context=0x473e60)
at /tmp/buildd/glib2.0-2.22.4/glib/gmain.c:1960
#12 IA__g_main_context_dispatch (context=0x473e60)
at /tmp/buildd/glib2.0-2.22.4/glib/gmain.c:2513
#13 0x00007f446521e2c8 in g_main_context_iterate (context=0x473e60,
block=<value optimized out>, dispatch=<value optimized out>,
self=<value optimized out>)
at /tmp/buildd/glib2.0-2.22.4/glib/gmain.c:2591
#14 0x00007f446521e725 in IA__g_main_loop_run (loop=0x2daaab0)
at /tmp/buildd/glib2.0-2.22.4/glib/gmain.c:2799
#15 0x00007f446709b287 in gtk_main () from /usr/lib/libgtk-x11-2.0.so.0
#16 0x00000000004158d3 in runTest (testPathOrURL=...)
at ../../WebKitTools/DumpRenderTree/gtk/DumpRenderTree.cpp:528
#17 0x0000000000416f97 in main (argc=2, argv=0x7fffffffd568)
at ../../WebKitTools/DumpRenderTree/gtk/DumpRenderTree.cpp:991
Martin Robinson
Committed r80736: <http://trac.webkit.org/changeset/80736>
Martin Robinson
This was not crashing locally, so I'm going to unskip it. I believe that when this was skipped we did not have an implementation of setDefersLoading. If it continues to crash I'll re-open and re-skip.