RESOLVED FIXED 199677
Crash at WebCore::IDBServer::MemoryObjectStoreCursor::incrementReverseIterator 
https://bugs.webkit.org/show_bug.cgi?id=199677
Summary Crash at WebCore::IDBServer::MemoryObjectStoreCursor::incrementReverseIterator
Sihui Liu
Reported 2019-07-10 11:59:52 PDT
Thread 7 name: IndexedDatabase Server Thread 7 Crashed ↩: 0 WebCore 0x00000001cfe963d0 WebCore::IDBServer::MemoryObjectStoreCursor::incrementReverseIterator(std::__1::set<WebCore::IDBKeyData, std::__1::less<WebCore::IDBKeyData>, WTF::FastAllocator<WebCore::IDBKeyData> >&, WebCore::IDBKeyData const&, unsigned int) + 612 (MemoryObjectStoreCursor.cpp:0) 1 WebCore 0x00000001cfe96340 WebCore::IDBServer::MemoryObjectStoreCursor::incrementReverseIterator(std::__1::set<WebCore::IDBKeyData, std::__1::less<WebCore::IDBKeyData>, WTF::FastAllocator<WebCore::IDBKeyData> >&, WebCore::IDBKeyData const&, unsigned int) + 468 (MemoryObjectStoreCursor.cpp:268) 2 WebCore 0x00000001cfe9651c WebCore::IDBServer::MemoryObjectStoreCursor::iterate(WebCore::IDBKeyData const&, WebCore::IDBKeyData const&, unsigned int, WebCore::IDBGetResult&) + 328 (MemoryObjectStoreCursor.cpp:340) 3 WebCore 0x00000001cfe90e60 WebCore::IDBServer::MemoryIDBBackingStore::iterateCursor(WebCore::IDBResourceIdentifier const&, WebCore::IDBResourceIdentifier const&, WebCore::IDBIterateCursorData const&, WebCore::IDBGetResult&) + 128 (MemoryIDBBackingStore.cpp:550) 4 WebCore 0x00000001cfebcd8c WebCore::IDBServer::UniqueIDBDatabase::performIterateCursor(unsigned long long, WebCore::IDBResourceIdentifier const&, WebCore::IDBResourceIdentifier const&, WebCore::IDBIterateCursorData const&) + 168 (UniqueIDBDatabase.cpp:1540) 5 WebCore 0x00000001cfece2bc WTF::Detail::CallableWrapper<WTF::CrossThreadTask WTF::createCrossThreadTask<WebCore::IDBServer::UniqueIDBDatabase, 0, unsigned long long, WebCore::IDBResourceIdentifier const&, WebCore::IDBResourceIdentifier const&, WebCore::IDBIterateCursorData const&, unsigned long long, WebCore::IDBResourceIdentifier, WebCore::IDBResourceIdentifier, WebCore::IDBIterateCursorData>(WebCore::IDBServer::UniqueIDBDatabase&, void (WebCore::IDBServer::UniqueIDBDatabase::*)(unsigned long long, WebCore::IDBResourceIdentifier const&, WebCore::IDBResourceIdentifier const&, WebCore::IDBIterateCursorData const&), unsigned long long const&, WebCore::IDBResourceIdentifier const&, WebCore::IDBResourceIdentifier const&, WebCore::IDBIterateCursorData const&)::'lambda'(), void>::call() + 84 (CrossThreadTask.h:78) 6 WebCore 0x00000001cfec00c8 WebCore::IDBServer::UniqueIDBDatabase::executeNextDatabaseTask() + 192 (Function.h:79)
Attachments
Patch (1.62 KB, patch)
2019-07-10 12:07 PDT, Sihui Liu 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Sihui Liu
Comment 1 2019-07-10 12:06:25 PDT
<rdar://problem/52334665>
Sihui Liu
Comment 2 2019-07-10 12:07:41 PDT
Created attachment 373856 [details] Patch
WebKit Commit Bot
Comment 3 2019-07-10 17:43:13 PDT
Comment on attachment 373856 [details] Patch Clearing flags on attachment: 373856 Committed r247337: <https://trac.webkit.org/changeset/247337>
WebKit Commit Bot
Comment 4 2019-07-10 17:43:15 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.