124510 – Web Inspector: crash when debugging 2nd-level inspector

Bug 124510 - Web Inspector: crash when debugging 2nd-level inspector

Summary: Web Inspector: crash when debugging 2nd-level inspector

Status:	RESOLVED WORKSFORME

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	Web Inspector (show other bugs)
Version:	528+ (Nightly build)
Hardware:	All All

Importance:	P2 Normal
Assignee:	Nobody

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2013-11-18 08:36 PST by Brian Burg
Modified:	2014-08-03 18:47 PDT (History)
CC List:	3 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Brian Burg 2013-11-18 08:36:59 PST

This has happened to me when using console, occasionally when stepping through inspector code. Most of the crashes happen in InjectedScript.

I have yet to come up with straightforward repro steps, so I'll start by posting stack traces as I run into them.

Comment 1 Brian Burg 2013-11-18 08:37:21 PST

Exception Type:  EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x000000000000000c

Application Specific Information:
Bundle controller class:
BrowserBundleController
 
Process Model:
Single Web Process
 
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.WebCore             	0x00000001040c27b6 WebCore::InjectedScript::wrapCallFrames(WebCore::ScriptValue const&) + 198 (InspectorValues.h:64)
1   com.apple.WebCore             	0x00000001041348ad WebCore::InspectorDebuggerAgent::currentCallFrames() + 77 (InspectorDebuggerAgent.cpp:683)
2   com.apple.WebCore             	0x0000000104136c3b WebCore::InspectorDebuggerAgent::didPause(JSC::ExecState*, WebCore::ScriptValue const&, WebCore::ScriptValue const&) + 443 (InspectorDebuggerAgent.cpp:777)
3   com.apple.WebCore             	0x0000000104695b3c WebCore::ScriptDebugServer::dispatchDidPause(WebCore::ScriptDebugListener*) + 476 (ScriptValue.h:52)
4   com.apple.WebCore             	0x0000000104696083 WebCore::ScriptDebugServer::dispatchFunctionToListeners(WTF::HashSet<WebCore::ScriptDebugListener*, WTF::PtrHash<WebCore::ScriptDebugListener*>, WTF::HashTraits<WebCore::ScriptDebugListener*> > const&, void (WebCore::ScriptDebugServer::*)(WebCore::ScriptDebugListener*)) + 115 (ScriptDebugServer.cpp:268)
5   com.apple.WebCore             	0x0000000104696212 WebCore::ScriptDebugServer::handlePause(JSC::Debugger::ReasonForPause, JSC::JSGlobalObject*) + 66 (TemporaryChange.h:55)
6   com.apple.JavaScriptCore      	0x0000000103575fb5 JSC::Debugger::pauseIfNeeded(JSC::ExecState*) + 357 (Debugger.cpp:442)
7   com.apple.JavaScriptCore      	0x0000000103576306 JSC::Debugger::returnEvent(JSC::ExecState*) + 70 (Debugger.h:49)
8   com.apple.JavaScriptCore      	0x000000010368037f JSC::UnwindFunctor::operator()(JSC::StackVisitor&) + 207 (Interpreter.cpp:400)
9   com.apple.JavaScriptCore      	0x000000010367e12b JSC::Interpreter::unwind(JSC::ExecState*&, JSC::JSValue&) + 571 (StackVisitor.h:123)
10  com.apple.JavaScriptCore      	0x00000001036aa897 JSC::genericUnwind(JSC::VM*, JSC::ExecState*, JSC::JSValue) + 55 (JITExceptions.cpp:44)
11  com.apple.JavaScriptCore      	0x000000010378eff5 llint_slow_path_handle_exception + 53 (LLIntSlowPaths.cpp:1306)
12  com.apple.JavaScriptCore      	0x000000010379309c llint_throw_from_slow_path_trampoline + 15

Comment 2 Brian Burg 2013-11-18 08:44:10 PST

Crashed Thread:  0  Dispatch queue: com.apple.main-thread

Exception Type:  EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x0000042f00000001

VM Regions Near 0x42f00000001:
    __LINKEDIT             0000000201b74000-0000000201be3000 [  444K] r--/rwx SM=COW  /System/Library/Extensions/GeForceGLDriver.bundle/Contents/MacOS/GeForceGLDriver
--> 
    JS JIT generated code  00002de23aa00000-00002de23aa01000 [    4K] ---/rwx SM=NUL  

Application Specific Information:
Bundle controller class:
BrowserBundleController
 
Process Model:
Single Web Process
 

Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.JavaScriptCore      	0x0000000108162e75 JSC::Debugger::pauseIfNeeded(JSC::ExecState*) + 37 (WriteBarrier.h:107)
1   com.apple.WebCore             	0x0000000108d52a5b WebCore::InspectorInstrumentation::addMessageToConsoleImpl(WebCore::InstrumentingAgents*, WebCore::MessageSource, WebCore::MessageType, WebCore::MessageLevel, WTF::String const&, JSC::ExecState*, WTF::PassRefPtr<WebCore::ScriptArguments>, unsigned long) + 139 (InspectorInstrumentation.cpp:1053)
2   com.apple.WebCore             	0x0000000108925b94 WebCore::internalAddMessage(WebCore::Page*, WebCore::MessageType, WebCore::MessageLevel, JSC::ExecState*, WTF::PassRefPtr<WebCore::ScriptArguments>, bool, bool) + 212 (PassRefPtr.h:52)
3   com.apple.WebCore             	0x00000001089262f0 WebCore::Console::assertCondition(JSC::ExecState*, WTF::PassRefPtr<WebCore::ScriptArguments>, bool) + 80 (PassRefPtr.h:52)
4   com.apple.WebCore             	0x0000000108dbb7c3 WebCore::jsConsolePrototypeFunctionAssert(JSC::ExecState*) + 403 (JSConsole.cpp:289)
5   ???                           	0x00002de23aa010a5 0 + 50449669427365

Comment 3 Radar WebKit Bug Importer 2014-02-14 09:51:51 PST

<rdar://problem/16070876>

Comment 4 Brian Burg 2014-08-03 18:47:09 PDT

Hasn't happened to me lately. Will file a better bug if it happens.