144767 – Crashes in SocketStreamHandleBase::close

RESOLVED FIXED 144767

Crashes in SocketStreamHandleBase::close

https://bugs.webkit.org/show_bug.cgi?id=144767

Summary Crashes in SocketStreamHandleBase::close

Alexey Proskuryakov

Reported 2015-05-07 15:20:02 PDT

We have crash reports where SocketStreamHandleBase::close() is called on a null object while processing a CLOSE frame from the server. Thread 0 Crashed: 0 WebCore 0x37daf446 WebCore::SocketStreamHandleBase::close() + 6 (SocketStreamHandleBase.cpp:86) 1 WebCore 0x37ee75b2 WebCore::WebSocketChannel::processOutgoingFrameQueue() + 554 (WebSocketChannel.cpp:775) 2 WebCore 0x37ee949a WebCore::WebSocketChannel::processFrame() + 3282 (WebSocketChannel.cpp:660) 3 WebCore 0x37ee8268 WebCore::WebSocketChannel::processBuffer() + 64 (WebSocketChannel.cpp:449) 4 WebCore 0x37ee8218 WebCore::WebSocketChannel::didReceiveSocketStreamData(WebCore::SocketStreamHandle*, char const*, int) + 172 (WebSocketChannel.cpp:312) rdar://problem/20486538

Attachments
proposed fix (2.57 KB, patch) 2015-05-07 17:27 PDT, Alexey Proskuryakov	beidson: review+	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Alexey Proskuryakov

Comment 1 2015-05-07 17:27:16 PDT

Created attachment 252659 [details] proposed fix

Alexey Proskuryakov

Comment 2 2015-05-08 12:16:20 PDT

Committed <http://trac.webkit.org/r184005>.

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware Unspecified

OS Unspecified

Product WebKit

Component WebCore Misc.

Assignee

Alexey Proskuryakov

Reported

2015-05-07 15:20 PDT

Modified

2015-05-08 12:16 PDT History

CC List

0 users

URL

Keywords InRadar

Depends on

Blocks