RESOLVED FIXED 30163
crash in WebCore::queryInfoCallback 
https://bugs.webkit.org/show_bug.cgi?id=30163
Summary crash in WebCore::queryInfoCallback
Yanko Kaneti
Reported 2009-10-07 04:32:14 PDT
I can quite reliably crash devhelp (using webkit) by scrolling fast up-down the selection in the search results pane. Core was generated by `devhelp'. Program terminated with signal 11, Segmentation fault. #0 WebCore::queryInfoCallback (source=<value optimized out>, res=<value optimized out>) at WebCore/platform/network/soup/ResourceHandleSoup.cpp:845 845 client->didReceiveResponse(handle.get(), response); (gdb) p client $1 = (WebCore::ResourceHandleClient *) 0x0 (gdb) bt full #0 WebCore::queryInfoCallback (source=<value optimized out>, res=<value optimized out>) at WebCore/platform/network/soup/ResourceHandleSoup.cpp:845 handle = {<WTF::FastAllocBase> = {<No data fields>}, m_ptr = 0x7f2a6ed0ad80} info = 0x7f2a68001760 tv = {tv_sec = 0, tv_usec = 0} d = 0x7f2a6e047400 client = 0x0 response = {<WebCore::ResourceResponseBase> = {m_url = {m_string = {m_impl = {<WTF::FastAllocBase> = {<No data fields>}, m_ptr = 0x7f2a6e1a2e70}}, m_isValid = true, m_protocolInHTTPFamily = false, m_schemeEnd = 4, m_userStart = 7, m_userEnd = 7, m_passwordEnd = 7, m_hostEnd = 7, m_portEnd = 7, m_pathAfterLastSlash = 35, m_pathEnd = 65, m_queryEnd = 65, m_fragmentEnd = 65}, m_mimeType = {m_impl = {<WTF::FastAllocBase> = {<No data fields>}, m_ptr = 0x7f2a6ec71100}}, m_expectedContentLength = 72827, m_textEncodingName = {m_impl = {<WTF::FastAllocBase> = {<No data fields>}, m_ptr = 0x0}}, m_suggestedFilename = {m_impl = {<WTF::FastAllocBase> = {<No data fields>}, m_ptr = 0x0}}, m_httpStatusCode = 0, m_httpStatusText = {m_impl = {<WTF::FastAllocBase> = {<No data fields>}, m_ptr = 0x0}}, m_httpHeaderFields = {<WTF::HashMap<WebCore::AtomicString, WebCore::String, WebCore::CaseFoldingHash, WTF::HashTraits<WebCore::AtomicString>, WTF::HashTraits<WebCore::String> >> = {<WTF::FastAllocBase> = {<No data fields>}, m_impl = {static m_minTableSize = <optimized out>, static m_maxLoad = <optimized out>, static m_minLoad = <optimized out>, m_table = 0x0, m_tableSize = 0, m_tableSizeMask = 0, m_keyCount = 0, m_deletedCount = 0}}, <No data fields>}, m_lastModifiedDate = 0, m_isNull = false, m_haveParsedCacheControlHeader = false, m_haveParsedAgeHeader = false, m_haveParsedDateHeader = false, m_haveParsedExpiresHeader = false, m_haveParsedLastModifiedHeader = false, m_cacheControlContainsNoCache = false, m_cacheControlContainsNoStore = false, m_cacheControlContainsMustRevalidate = false, m_cacheControlMaxAge = 0, m_age = 0, m_date = 0, m_expires = 0, m_lastModified = 0}, <No data fields>} uri = <value optimized out> error = 0x0 #1 0x00007f2a7fd0ad28 in complete_in_idle_cb_for_thread (_data=0x1569620) at gsimpleasyncresult.c:650 data = 0x1569620 simple = 0x2a10b60 [GSimpleAsyncResult]
Attachments
Add attachment proposed patch, testcase, etc.
Yanko Kaneti
Comment 1 2009-10-07 04:34:34 PDT
mm, forgot the allimportant details. This is fedora rawhide (mostly up to date) with localy build webkit 1.1.15.2 , because its still not in the repo webkitgtk-1.1.15.2-1.fc12.x86_64 devhelp-2.28.0-1.fc12.x86_64
Gustavo Noronha (kov)
Comment 2 2009-12-09 14:55:53 PST
Oh, this one should be fixed by this: http://trac.webkit.org/changeset/51380
Note You need to log in before you can comment on or make changes to this bug.