128458 – Crash in InjectedBundleBackForwardListItem::item() at navigation/resources/redirect-2.html when running layout tests

RESOLVED DUPLICATE of bug 127683 128458

Crash in InjectedBundleBackForwardListItem::item() at navigation/resources/redirect-2.html when running layout tests

https://bugs.webkit.org/show_bug.cgi?id=128458

Summary Crash in InjectedBundleBackForwardListItem::item() at navigation/resources/re...

mitz

Reported 2014-02-08 10:46:38 PST

WebKitTestRunner Web Content crashed while running the layout tests: Application Specific Information: CRASHING TEST: /navigation/resources/redirect-2.html Thread 0 Crashed:: Dispatch queue: com.apple.main-thread 0 com.apple.WebKit2 0x0000000110f6955c WTF::RefPtr<WebCore::HistoryItem>::get() const + 12 (RefPtr.h:57) 1 com.apple.WebKit2 0x00000001115044ac WebKit::InjectedBundleBackForwardListItem::item() const + 28 (InjectedBundleBackForwardListItem.h:49) 2 com.apple.WebKit2 0x00000001115042b6 WKBundleBackForwardListItemIsSame + 54 (WKBundleBackForwardListItem.cpp:42) 3 WebKitTestRunnerInjectedBundle 0x000000011adc1906 WTR::InjectedBundlePage::dumpBackForwardList(WTF::StringBuilder&) + 326 (InjectedBundlePage.cpp:1845) 4 WebKitTestRunnerInjectedBundle 0x000000011adb58fb WTR::InjectedBundle::dumpBackForwardListsForAllPages(WTF::StringBuilder&) + 107 (InjectedBundle.cpp:324) 5 WebKitTestRunnerInjectedBundle 0x000000011adbe5ad WTR::InjectedBundlePage::dump() + 941 (InjectedBundlePage.cpp:872) 6 WebKitTestRunnerInjectedBundle 0x000000011adbdc07 WTR::InjectedBundlePage::frameDidChangeLocation(OpaqueWKBundleFrame const*, bool) + 199 (InjectedBundlePage.cpp:1887) 7 WebKitTestRunnerInjectedBundle 0x000000011adbc686 WTR::InjectedBundlePage::didFinishLoadForFrame(OpaqueWKBundleFrame const*) + 118 (InjectedBundlePage.cpp:894) 8 WebKitTestRunnerInjectedBundle 0x000000011adbb428 WTR::InjectedBundlePage::didFinishLoadForFrame(OpaqueWKBundlePage const*, OpaqueWKBundleFrame const*, void const**, void const*) + 40 (InjectedBundlePage.cpp:550) 9 com.apple.WebKit2 0x0000000110f7d456 WebKit::InjectedBundlePageLoaderClient::didFinishLoadForFrame(WebKit::WebPage*, WebKit::WebFrame*, WTF::RefPtr<API::Object>&) + 118 (InjectedBundlePageLoaderClient.cpp:141) 10 com.apple.WebKit2 0x00000001112673d1 WebKit::WebFrameLoaderClient::dispatchDidFinishLoad() + 97 (WebFrameLoaderClient.cpp:521) 11 com.apple.WebCore 0x0000000114bfddcf WebCore::FrameLoader::checkLoadCompleteForThisFrame() + 1711 (FrameLoader.cpp:2263) 12 com.apple.WebCore 0x0000000114bf6514 WebCore::FrameLoader::checkLoadComplete() + 324 (FrameLoader.cpp:2433) 13 com.apple.WebCore 0x00000001148dd61a WebCore::DocumentLoader::finishedLoading(double) + 778 (DocumentLoader.cpp:448) 14 com.apple.WebCore 0x00000001148dd27e WebCore::DocumentLoader::notifyFinished(WebCore::CachedResource*) + 270 (DocumentLoader.cpp:374) 15 com.apple.WebCore 0x00000001144dbf1d WebCore::CachedResource::checkNotify() + 109 (CachedResource.cpp:330) 16 com.apple.WebCore 0x00000001144dc054 WebCore::CachedResource::finishLoading(WebCore::ResourceBuffer*) + 52 (CachedResource.cpp:347) 17 com.apple.WebCore 0x00000001144d65f8 WebCore::CachedRawResource::finishLoading(WebCore::ResourceBuffer*) + 200 (CachedRawResource.cpp:97) 18 com.apple.WebCore 0x0000000115e12298 WebCore::SubresourceLoader::didFinishLoading(double) + 440 (SubresourceLoader.cpp:311) 19 com.apple.WebKit2 0x0000000111496b4c WebKit::WebResourceLoader::didFinishResourceLoad(double) + 156 (WebResourceLoader.cpp:136) 20 com.apple.WebKit2 0x0000000111499fbb void IPC::callMemberFunctionImpl<WebKit::WebResourceLoader, void (WebKit::WebResourceLoader::*)(double), std::__1::tuple<double>, 0ul>(WebKit::WebResourceLoader*, void (WebKit::WebResourceLoader::*)(double), std::__1::tuple<double>&&, std::index_sequence<0ul>) + 155 (HandleMessage.h:17) 21 com.apple.WebKit2 0x0000000111499f18 void IPC::callMemberFunction<WebKit::WebResourceLoader, void (WebKit::WebResourceLoader::*)(double), std::__1::tuple<double>, std::make_index_sequence<1ul> >(std::__1::tuple<double>&&, WebKit::WebResourceLoader*, void (WebKit::WebResourceLoader::*)(double)) + 88 (HandleMessage.h:23) 22 com.apple.WebKit2 0x0000000111499472 void IPC::handleMessage<Messages::WebResourceLoader::DidFinishResourceLoad, WebKit::WebResourceLoader, void (WebKit::WebResourceLoader::*)(double)>(IPC::MessageDecoder&, WebKit::WebResourceLoader*, void (WebKit::WebResourceLoader::*)(double)) + 162 (HandleMessage.h:117) 23 com.apple.WebKit2 0x0000000111498b88 WebKit::WebResourceLoader::didReceiveWebResourceLoaderMessage(IPC::Connection*, IPC::MessageDecoder&) + 952 (WebResourceLoaderMessageReceiver.cpp:73) 24 com.apple.WebKit2 0x0000000110fe497c WebKit::NetworkProcessConnection::didReceiveMessage(IPC::Connection*, IPC::MessageDecoder&) + 172 (NetworkProcessConnection.cpp:62) 25 com.apple.WebKit2 0x0000000110dee803 IPC::Connection::dispatchMessage(IPC::MessageDecoder&) + 51 (Connection.cpp:777) 26 com.apple.WebKit2 0x0000000110de6940 IPC::Connection::dispatchMessage(std::__1::unique_ptr<IPC::MessageDecoder, std::__1::default_delete<IPC::MessageDecoder> >) + 368 (Connection.cpp:797) 27 com.apple.WebKit2 0x0000000110dee591 IPC::Connection::dispatchOneMessage() + 1377 (Connection.cpp:823) 28 com.apple.WebKit2 0x0000000110dfc7d2 WTF::FunctionWrapper<void (IPC::Connection::*)()>::operator()(IPC::Connection*) + 114 (Functional.h:218) 29 com.apple.WebKit2 0x0000000110dfc755 WTF::BoundFunctionImpl<WTF::FunctionWrapper<void (IPC::Connection::*)()>, void (IPC::Connection*)>::operator()() + 53 (Functional.h:496) 30 com.apple.WebKit2 0x0000000110e04492 WTF::Function<void ()>::operator()() const + 114 (Functional.h:704) 31 com.apple.WebKit2 0x0000000110e0440c std::__1::__function::__func<WTF::Function<void ()>, std::__1::allocator<WTF::Function<void ()> >, void ()>::operator()() + 60 (functional:1059) 32 com.apple.JavaScriptCore 0x00000001132e74ca std::__1::function<void ()>::operator()() const + 26 (functional:1435) 33 com.apple.JavaScriptCore 0x00000001132f6bf4 WTF::RunLoop::performWork() + 276 (RunLoop.cpp:106) 34 com.apple.JavaScriptCore 0x00000001132f80a4 WTF::RunLoop::performWork(void*) + 36 (RunLoopCF.cpp:38) 35 com.apple.CoreFoundation 0x00007fff8b4a38f1 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17 36 com.apple.CoreFoundation 0x00007fff8b495062 __CFRunLoopDoSources0 + 242 37 com.apple.CoreFoundation 0x00007fff8b4947ef __CFRunLoopRun + 831 38 com.apple.CoreFoundation 0x00007fff8b494275 CFRunLoopRunSpecific + 309 39 com.apple.HIToolbox 0x00007fff89a94f0d RunCurrentEventLoopInMode + 226 40 com.apple.HIToolbox 0x00007fff89a94cb7 ReceiveNextEventCommon + 479 41 com.apple.HIToolbox 0x00007fff89a94abc _BlockUntilNextEventMatchingListInModeWithFilter + 65 42 com.apple.AppKit 0x00007fff85f2c28e _DPSNextEvent + 1434 43 com.apple.AppKit 0x00007fff85f2b8db -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 122 44 com.apple.AppKit 0x00007fff85f1f9cc -[NSApplication run] + 553 45 com.apple.AppKit 0x00007fff85f0a803 NSApplicationMain + 940 46 com.apple.XPCService 0x00007fff903f8c0f _xpc_main + 385 47 libxpc.dylib 0x00007fff8a2c6b2e xpc_main + 399 48 com.apple.WebKit.WebContent.Development 0x000000010cfec375 main + 37 49 libdyld.dylib 0x00007fff8f1dd5fd start + 1

Attachments
Add attachment proposed patch, testcase, etc.

Fujii Hironori

Comment 1 2018-02-19 19:46:12 PST

*** This bug has been marked as a duplicate of bug 127683 ***

Fujii Hironori

Comment 2 2018-02-19 19:48:40 PST

*** Bug 150205 has been marked as a duplicate of this bug. ***

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution DUPLICATE

of bug 127683

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware Unspecified

OS Unspecified

Product WebKit

Component WebKit2

Assignee

Nobody

Reported

2014-02-08 10:46 PST

Modified

2018-02-19 19:48 PST History

CC List

4 users Show

URL

Keywords LayoutTestFailure

Duplicates (1)

150205 View as bug list

Depends on

Blocks