Bug 39008 - REGRESSION (r58950): Webkit crashes on clicking back button when in hotmail
Summary: REGRESSION (r58950): Webkit crashes on clicking back button when in hotmail
Status: RESOLVED FIXED
Alias: None
Product: WebKit
Classification: Unclassified
Component: DOM (show other bugs)
Version: 528+ (Nightly build)
Hardware: Mac (Intel) OS X 10.6
: P1 Normal
Assignee: Alexey Proskuryakov
URL: http://www.hotmail.com
Keywords: InRadar, Regression
Depends on:
Blocks:
 
Reported: 2010-05-12 11:37 PDT by Seamus Roche
Modified: 2010-05-14 13:32 PDT (History)
5 users (show)

See Also:

Attachments
reduced test case (will crash) (221 bytes, text/html)
2010-05-13 22:48 PDT, Alexey Proskuryakov 		no flags Details
proposed fix (4.76 KB, patch)
2010-05-14 10:13 PDT, Alexey Proskuryakov 		beidson: review+
beidson: commit-queue-
Details | Formatted Diff | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Seamus Roche 2010-05-12 11:37:39 PDT 
Stack trace:


Process:         Safari [3990]
Path:            /Applications/Safari.app/Contents/MacOS/Safari
Identifier:      org.webkit.nightly.WebKit
Version:         r59204 (59204)
Code Type:       X86-64 (Native)
Parent Process:  launchd [135]

Date/Time:       2010-05-12 13:16:56.774 -0500
OS Version:      Mac OS X 10.6.3 (10D2094)
Report Version:  6

Interval Since Last Report:          295007 sec
Crashes Since Last Report:           22
Per-App Interval Since Last Report:  14500 sec
Per-App Crashes Since Last Report:   2
Anonymous UUID:                      31DA81C2-EB46-44AC-8ACD-60DF7A2B6CA6

Exception Type:  EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x000000000000bb49
Crashed Thread:  0  Dispatch queue: com.apple.main-thread

Thread 0 Crashed:  Dispatch queue: com.apple.main-thread
0   ???                           	0x000000000000bb49 0 + 47945
1   com.apple.WebCore             	0x0000000100c4fd18 WebCore::JSHTMLDocument::write(JSC::ExecState*, JSC::ArgList const&) + 24
2   com.apple.WebCore             	0x0000000100c4c129 WebCore::jsHTMLDocumentPrototypeFunctionWrite(JSC::ExecState*, JSC::JSObject*, JSC::JSValue, JSC::ArgList const&) + 137
3   ???                           	0x0000237fe34001b4 0 + 39032180441524
4   com.apple.JavaScriptCore      	0x00000001005aaa5c JSC::Interpreter::execute(JSC::FunctionExecutable*, JSC::ExecState*, JSC::JSFunction*, JSC::JSObject*, JSC::ArgList const&, JSC::ScopeChainNode*, JSC::JSValue*) + 508
5   ???                           	0x000000011fdd1780 0 + 4829550464
6   ???                           	0x00000001202e6280 0 + 4834878080
7   com.apple.WebCore             	0x0000000100bffee0 WebCore::JSDOMWindowShell::~JSDOMWindowShell() + 0
8   ???                           	0x909090909090ffff 0 + 10416984888683069439

Thread 1:  Dispatch queue: com.apple.libdispatch-manager
0   libSystem.B.dylib             	0x00007fff84eea4ea kevent + 10
1   libSystem.B.dylib             	0x00007fff84eec3bd _dispatch_mgr_invoke + 154
2   libSystem.B.dylib             	0x00007fff84eec094 _dispatch_queue_invoke + 185
3   libSystem.B.dylib             	0x00007fff84eebbbe _dispatch_worker_thread2 + 252
4   libSystem.B.dylib             	0x00007fff84eeb4e8 _pthread_wqthread + 353
5   libSystem.B.dylib             	0x00007fff84eeb385 start_wqthread + 13

Thread 2:  WebCore: IconDatabase
0   libSystem.B.dylib             	0x00007fff84f0c316 __semwait_signal + 10
1   libSystem.B.dylib             	0x00007fff84f10131 _pthread_cond_wait + 1286
2   com.apple.WebCore             	0x0000000100af2349 WebCore::IconDatabase::syncThreadMainLoop() + 249
3   com.apple.WebCore             	0x0000000100af247c WebCore::IconDatabase::iconDatabaseSyncThread() + 172
4   libSystem.B.dylib             	0x00007fff84f0a8b6 _pthread_start + 331
5   libSystem.B.dylib             	0x00007fff84f0a769 thread_start + 13

Thread 3:  Safari: SafeBrowsingManager
0   libSystem.B.dylib             	0x00007fff84ed175a mach_msg_trap + 10
1   libSystem.B.dylib             	0x00007fff84ed1dcd mach_msg + 59
2   com.apple.CoreFoundation      	0x00007fff84197452 __CFRunLoopRun + 1698
3   com.apple.CoreFoundation      	0x00007fff841968df CFRunLoopRunSpecific + 575
4   com.apple.Safari              	0x000000010002503f 0x100000000 + 151615
5   com.apple.Safari              	0x0000000100024fcf 0x100000000 + 151503
6   libSystem.B.dylib             	0x00007fff84f0a8b6 _pthread_start + 331
7   libSystem.B.dylib             	0x00007fff84f0a769 thread_start + 13

Thread 4:
0   libSystem.B.dylib             	0x00007fff84ed175a mach_msg_trap + 10
1   libSystem.B.dylib             	0x00007fff84ed1dcd mach_msg + 59
2   com.apple.CoreFoundation      	0x00007fff84197452 __CFRunLoopRun + 1698
3   com.apple.CoreFoundation      	0x00007fff841968df CFRunLoopRunSpecific + 575
4   com.apple.Foundation          	0x00007fff884074e3 +[NSURLConnection(NSURLConnectionReallyInternal) _resourceLoadLoop:] + 297
5   com.apple.Foundation          	0x00007fff88387ead __NSThread__main__ + 1429
6   libSystem.B.dylib             	0x00007fff84f0a8b6 _pthread_start + 331
7   libSystem.B.dylib             	0x00007fff84f0a769 thread_start + 13

Thread 5:
0   libSystem.B.dylib             	0x00007fff84f15286 select$DARWIN_EXTSN + 10
1   com.apple.CoreFoundation      	0x00007fff841b8ef2 __CFSocketManager + 818
2   libSystem.B.dylib             	0x00007fff84f0a8b6 _pthread_start + 331
3   libSystem.B.dylib             	0x00007fff84f0a769 thread_start + 13

Thread 6:  Safari: SnapshotStore
0   libSystem.B.dylib             	0x00007fff84f0c316 __semwait_signal + 10
1   libSystem.B.dylib             	0x00007fff84f10131 _pthread_cond_wait + 1286
2   com.apple.JavaScriptCore      	0x00000001006ae980 WTF::ThreadCondition::timedWait(WTF::Mutex&, double) + 64
3   com.apple.Safari              	0x0000000100120f93 0x100000000 + 1183635
4   com.apple.Safari              	0x0000000100043de3 0x100000000 + 277987
5   com.apple.Safari              	0x0000000100043c7f 0x100000000 + 277631
6   libSystem.B.dylib             	0x00007fff84f0a8b6 _pthread_start + 331
7   libSystem.B.dylib             	0x00007fff84f0a769 thread_start + 13

Thread 7:
0   libSystem.B.dylib             	0x00007fff84ed175a mach_msg_trap + 10
1   libSystem.B.dylib             	0x00007fff84ed1dcd mach_msg + 59
2   com.apple.QuartzCore          	0x00007fff806e8942 CA::Render::Server::server_thread(void*) + 177
3   com.apple.QuartzCore          	0x00007fff806e8882 thread_fun + 34
4   libSystem.B.dylib             	0x00007fff84f0a8b6 _pthread_start + 331
5   libSystem.B.dylib             	0x00007fff84f0a769 thread_start + 13

Thread 8:
0   libSystem.B.dylib             	0x00007fff84eeb30a __workq_kernreturn + 10
1   libSystem.B.dylib             	0x00007fff84eeb71c _pthread_wqthread + 917
2   libSystem.B.dylib             	0x00007fff84eeb385 start_wqthread + 13

Thread 9:  Safari: SpinningProgressIndicator
0   libSystem.B.dylib             	0x00007fff84ed175a mach_msg_trap + 10
1   libSystem.B.dylib             	0x00007fff84ed1dcd mach_msg + 59
2   com.apple.CoreFoundation      	0x00007fff84197452 __CFRunLoopRun + 1698
3   com.apple.CoreFoundation      	0x00007fff841968df CFRunLoopRunSpecific + 575
4   com.apple.Foundation          	0x00007fff883c2a38 -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 270
5   com.apple.Foundation          	0x00007fff883c2917 -[NSRunLoop(NSRunLoop) run] + 77
6   com.apple.Safari              	0x0000000100035165 0x100000000 + 217445
7   com.apple.Foundation          	0x00007fff88387ead __NSThread__main__ + 1429
8   libSystem.B.dylib             	0x00007fff84f0a8b6 _pthread_start + 331
9   libSystem.B.dylib             	0x00007fff84f0a769 thread_start + 13

Thread 10:
0   libSystem.B.dylib             	0x00007fff84eea4ea kevent + 10
1   libSystem.B.dylib             	0x00007fff84f29128 _mdns_query_mDNSResponder + 1061
2   libSystem.B.dylib             	0x00007fff84f283fe _mdns_search + 1140
3   libSystem.B.dylib             	0x00007fff84f2779c _mdns_addrinfo + 715
4   libSystem.B.dylib             	0x00007fff84f2681f search_addrinfo + 146
5   libSystem.B.dylib             	0x00007fff84f26248 si_addrinfo + 1352
6   libSystem.B.dylib             	0x00007fff84f3d40b si_async_launchpad + 94
7   libSystem.B.dylib             	0x00007fff84f0a8b6 _pthread_start + 331
8   libSystem.B.dylib             	0x00007fff84f0a769 thread_start + 13

Thread 0 crashed with X86 Thread State (64-bit):
  rax: 0x0000000122f5e400  rbx: 0x000000011e188e40  rcx: 0x0000000000011f01  rdx: 0x0000000000000013
  rdi: 0x0000000125c69000  rsi: 0x0000000000000000  rbp: 0x00007fff5fbfe290  rsp: 0x00007fff5fbfe088
   r8: 0x0000000101fb3478   r9: 0x0000000000000008  r10: 0x0000000000000000  r11: 0x000000000000bb49
  r12: 0x0000000117fa22f0  r13: 0x00007fff5fbfe2e0  r14: 0xffff000000000000  r15: 0xffff000000000002
  rip: 0x000000000000bb49  rfl: 0x0000000000010206  cr2: 0x000000000000bb49

Binary Images:
       0x100000000 -        0x100251fe7  com.apple.Safari 4.0.5 (6531.22.7) <2865F6F2-717F-20BB-D01C-C3E768EDF09A> /Applications/Safari.app/Contents/MacOS/Safari
       0x1002dc000 -        0x1002dffff +WebKitNightlyEnabler.dylib ??? (???) <E1C51E6D-FB78-67B2-0F35-15C1ED6478D7> /Applications/WebKit (58638).app/Contents/Resources/WebKitNightlyEnabler.dylib
       0x1002e4000 -        0x100460ff7  com.apple.WebKit r59204 (533.9+) <AFFBE020-CA60-C080-7799-C945564A6448> /Applications/WebKit (58638).app/Contents/Frameworks/10.6/WebKit.framework/Versions/A/WebKit
       0x10052a000 -        0x100715fff  com.apple.JavaScriptCore 533+ (533.9+) <6BD71E4A-D194-760C-95C6-3D6481F5FA4F> /Applications/WebKit (58638).app/Contents/Frameworks/10.6/JavaScriptCore.framework/Versions/A/JavaScriptCore
       0x100784000 -        0x1014d9fff  com.apple.WebCore 533+ (533.9+) <E307BD01-A378-3520-A07D-48F595101460> /Applications/WebKit (58638).app/Contents/Frameworks/10.6/WebCore.framework/Versions/A/WebCore
       0x101b2c000 -        0x101b55ff7 +org.andymatuschak.Sparkle 1.5 Beta (git) (830f633) <945EA036-7EC3-D020-C889-29ECB588B891> /Applications/WebKit (58638).app/Contents/Frameworks/10.6/Sparkle.framework/Versions/A/Sparkle
       0x101b70000 -        0x101c56fe7  libcrypto.0.9.7.dylib 0.9.7 (compatibility 0.9.7) <BA5E5276-8696-906D-0A37-0FFEF022B482> /usr/lib/libcrypto.0.9.7.dylib
       0x1183bc000 -        0x1183bcfff  com.apple.JavaPluginCocoa 13.1.0 (13.1.0) <481A3D00-E36A-DF89-8FD1-683F81FCF0E8> /System/Library/Frameworks/JavaVM.framework/Versions/A/Resources/JavaPluginCocoa.bundle/Contents/MacOS/JavaPluginCocoa
       0x118703000 -        0x118704fff  ATSHI.dylib ??? (???) <054AC6AB-70DD-C7E1-80F6-9607B7F1C5D7> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ATS.framework/Versions/A/Resources/ATSHI.dylib
       0x118817000 -        0x11881bff7  libFontRegistryUI.dylib ??? (???) <ED58537C-9208-9B25-5C59-AAEDE230E7AE> /System/Library/Frameworks/ApplicationServices.framework/Frameworks/ATS.framework/Resources/libFontRegistryUI.dylib
       0x1188a8000 -        0x1188b0ff7  com.apple.JavaVM 13.1.0 (13.1.0) <AB562F6D-7D29-20CE-F910-F2A82DADBA35> /System/Library/Frameworks/JavaVM.framework/Versions/A/JavaVM
       0x118d7b000 -        0x118d87fff +com.evernote.EvernoteSafariClipperPlugin 1.0 (81701) <1B438C68-92EC-C72B-7706-B8CC642B4B05> /Users/seamusjr/Library/Internet Plug-Ins/EvernoteSafariClipperPlugin.webplugin/Contents/MacOS/EvernoteSafariClipperPlugin
       0x120b9e000 -        0x120bc4fe7  GLRendererFloat ??? (???) <352FC221-C3DB-283A-4A47-8D2EA8D8F0E8> /System/Library/Frameworks/OpenGL.framework/Resources/GLRendererFloat.bundle/GLRendererFloat
       0x121229000 -        0x1213b6fe7  GLEngine ??? (???) <A55922C2-4862-3372-C5BE-6BDBEC6C90EE> /System/Library/Frameworks/OpenGL.framework/Resources/GLEngine.bundle/GLEngine
       0x1213e7000 -        0x121809ff7  libclh.dylib 3.1.1 C  (3.1.1) <E264AD2D-210A-2408-310E-A7ACE8A0E4CF> /System/Library/Extensions/GeForceGLDriver.bundle/Contents/MacOS/libclh.dylib
       0x121837000 -        0x1226eefe7  com.apple.driver.AppleIntelHDGraphicsGLDriver 1.6.14 (6.1.4) <CE67EF1A-0135-C5A0-29CA-6EC02CDC51D4> /System/Library/Extensions/AppleIntelHDGraphicsGLDriver.bundle/Contents/MacOS/AppleIntelHDGraphicsGLDriver
       0x200000000 -        0x2006c3fe7  com.apple.GeForceGLDriver 1.6.14 (6.1.4) <AF73060D-398F-3DFE-3C34-3ADAAAE47559> /System/Library/Extensions/GeForceGLDriver.bundle/Contents/MacOS/GeForceGLDriver
    0x7fff5fc00000 -     0x7fff5fc3bdef  dyld 132.1 (???) <9B995E17-37AC-B849-C124-E97BE32B778A> /usr/lib/dyld
    0x7fff80003000 -     0x7fff8000bfff  com.apple.DisplayServicesFW 2.2.2 (251) <4243F9AF-4BCA-7F6F-B9A2-D9A08409B5DC> /System/Library/PrivateFrameworks/DisplayServices.framework/Versions/A/DisplayServices
    0x7fff80056000 -     0x7fff800d5fff  com.apple.audio.CoreAudio 3.2.2 (3.2.2) <0FBE15EE-AF44-ECEF-9862-A96A193F5AD2> /System/Library/Frameworks/CoreAudio.framework/Versions/A/CoreAudio
    0x7fff800d6000 -     0x7fff8010bff7  libcups.2.dylib 2.8.0 (compatibility 2.0.0) <FBDDC46F-0B24-7F81-EBE6-9CF093CA4C8B> /usr/lib/libcups.2.dylib
    0x7fff8010c000 -     0x7fff80174fff  com.apple.AppleVAFramework 4.8.12 (4.8.12) <075768D2-1992-7513-F8C8-94348018DA4A> /System/Library/PrivateFrameworks/AppleVA.framework/Versions/A/AppleVA
    0x7fff80175000 -     0x7fff801a6fff  libGLImage.dylib ??? (???) <B8F8BB6F-7E97-54F0-B1AA-0C7495C27EAE> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGLImage.dylib
    0x7fff801a7000 -     0x7fff802ccfef  com.apple.audio.toolbox.AudioToolbox 1.6.3 (1.6.3) <4931DCF6-072F-A4FA-0989-4C4B83BDF98A> /System/Library/Frameworks/AudioToolbox.framework/Versions/A/AudioToolbox
    0x7fff8056b000 -     0x7fff80571ff7  IOSurface ??? (???) <6D342A80-7C22-E633-67A5-FA51DAA601E4> /System/Library/Frameworks/IOSurface.framework/Versions/A/IOSurface
    0x7fff80572000 -     0x7fff80595fff  com.apple.opencl 12.1 (12.1) <81E2DFC2-2C00-AA3D-55F7-A34721213516> /System/Library/Frameworks/OpenCL.framework/Versions/A/OpenCL
    0x7fff8059b000 -     0x7fff80658ff7  com.apple.CoreServices.OSServices 357 (357) <0DD3B712-16C1-09EF-5894-D403A33BDB73> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/OSServices.framework/Versions/A/OSServices
    0x7fff80696000 -     0x7fff80a2efe7  com.apple.QuartzCore 1.6.1 (227.18) <73B865F9-157B-F864-7214-A1FBDFD22A8A> /System/Library/Frameworks/QuartzCore.framework/Versions/A/QuartzCore
    0x7fff80a2f000 -     0x7fff80a43ff7  com.apple.speech.synthesis.framework 3.10.35 (3.10.35) <63C87CF7-56B3-4038-8136-8C26E96AD42F> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/SpeechSynthesis.framework/Versions/A/SpeechSynthesis
    0x7fff80a44000 -     0x7fff80a51fe7  libCSync.A.dylib 543.34.0 (compatibility 64.0.0) <C389970F-FCD6-76A2-87D9-A8CFC1DD3EDE> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libCSync.A.dylib
    0x7fff80a52000 -     0x7fff80a5dff7  com.apple.speech.recognition.framework 3.11.1 (3.11.1) <60484D84-BA63-13DD-50E9-ABDA402C3C45> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/SpeechRecognition.framework/Versions/A/SpeechRecognition
    0x7fff80a9d000 -     0x7fff80bbcff7  com.apple.PubSub 1.0.4 (65.12.1) <52F510C5-05AF-6FA1-63A1-7E6E3D9580CA> /System/Library/Frameworks/PubSub.framework/Versions/A/PubSub
    0x7fff80bbd000 -     0x7fff80bd3fff  com.apple.ImageCapture 6.0 (6.0) <BF702F65-8E30-E318-1B58-AE6C0D5E5715> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/ImageCapture.framework/Versions/A/ImageCapture
    0x7fff80bd4000 -     0x7fff80beaff7  com.apple.MultitouchSupport.framework 204.13 (204.13) <FB283E51-94DC-D1C0-0EFC-7B773966EDAF> /System/Library/PrivateFrameworks/MultitouchSupport.framework/Versions/A/MultitouchSupport
    0x7fff80beb000 -     0x7fff80f1efef  com.apple.CoreServices.CarbonCore 861.6 (861.6) <80DFB173-E3FB-E232-CEDE-77AE5B3EACA2> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CarbonCore.framework/Versions/A/CarbonCore
    0x7fff80f1f000 -     0x7fff80f24ff7  com.apple.CommonPanels 1.2.4 (91) <4D84803B-BD06-D80E-15AE-EFBE43F93605> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/CommonPanels.framework/Versions/A/CommonPanels
    0x7fff81124000 -     0x7fff81133ff7  com.apple.opengl 1.6.7 (1.6.7) <4BF5C593-3666-16B2-86FF-B0C27ED28BFD> /System/Library/Frameworks/OpenGL.framework/Versions/A/OpenGL
    0x7fff811a2000 -     0x7fff814a0fef  com.apple.HIToolbox 1.6.2 (???) <3A6CD66E-A65D-9DC2-0FEF-32D31CBEF3DD> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/HIToolbox.framework/Versions/A/HIToolbox
    0x7fff814a1000 -     0x7fff81503fe7  com.apple.datadetectorscore 2.0 (80.7) <5F0F865C-A80F-FE7F-7DF8-894A4A99EACA> /System/Library/PrivateFrameworks/DataDetectorsCore.framework/Versions/A/DataDetectorsCore
    0x7fff81504000 -     0x7fff8154dfef  libGLU.dylib ??? (???) <8E418680-E31D-C85B-F4A4-DDE013E7F367> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGLU.dylib
    0x7fff8154e000 -     0x7fff815a3fef  com.apple.framework.familycontrols 2.0.1 (2010) <5494ABA6-0E9F-4CA2-120C-DBC240CC7FCF> /System/Library/PrivateFrameworks/FamilyControls.framework/Versions/A/FamilyControls
    0x7fff815e3000 -     0x7fff816c9fe7  com.apple.DesktopServices 1.5.5 (1.5.5) <BB62B39C-4FB4-5AA4-4D5D-2BE07C216BE9> /System/Library/PrivateFrameworks/DesktopServicesPriv.framework/Versions/A/DesktopServicesPriv
    0x7fff816ca000 -     0x7fff816d6fff  libbz2.1.0.dylib 1.0.5 (compatibility 1.0.0) <5C1F2A2C-3AA4-5362-FA7F-D6BCAAC9B02C> /usr/lib/libbz2.1.0.dylib
    0x7fff816d7000 -     0x7fff8195cfef  com.apple.security 6.1.1 (37594) <BC09FE8A-6325-494B-C9F1-DAE768F58DC6> /System/Library/Frameworks/Security.framework/Versions/A/Security
    0x7fff8195d000 -     0x7fff819edfff  com.apple.SearchKit 1.3.0 (1.3.0) <3403E658-A54E-A79A-12EB-E090E8743984> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/SearchKit.framework/Versions/A/SearchKit
    0x7fff81a6f000 -     0x7fff81a80ff7  SyndicationUI ??? (???) <1DAF485D-5025-8897-CA05-3347776438E6> /System/Library/PrivateFrameworks/SyndicationUI.framework/Versions/A/SyndicationUI
    0x7fff81a81000 -     0x7fff81aa9fff  com.apple.DictionaryServices 1.1.1 (1.1.1) <403E9BF2-EC47-1D32-E4B1-3D624AAA5BBD> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/DictionaryServices.framework/Versions/A/DictionaryServices
    0x7fff81aaa000 -     0x7fff81b44fff  com.apple.ApplicationServices.ATS 4.2 (???) <E31469D3-A97D-63BB-FB00-05ACB2CEC561> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ATS.framework/Versions/A/ATS
    0x7fff81b45000 -     0x7fff81bc2fef  com.apple.backup.framework 1.2.2 (1.2.2) <6A7BCE87-A2EF-1BA0-C190-214DE8FE6771> /System/Library/PrivateFrameworks/Backup.framework/Versions/A/Backup
    0x7fff81bd6000 -     0x7fff81c34ff7  com.apple.framework.IOKit 2.0 (???) <701CEEF0-953F-81FA-B983-708ADDE30543> /System/Library/Frameworks/IOKit.framework/Versions/A/IOKit
    0x7fff81c35000 -     0x7fff81c76fff  com.apple.SystemConfiguration 1.10.2 (1.10.2) <0E075BF4-9E0E-08E7-8160-22AE6892F3DF> /System/Library/Frameworks/SystemConfiguration.framework/Versions/A/SystemConfiguration
    0x7fff81cc5000 -     0x7fff81dd4fe7  libcrypto.0.9.8.dylib 0.9.8 (compatibility 0.9.8) <5C73FE56-9A92-15B8-CA89-08E25A418DA7> /usr/lib/libcrypto.0.9.8.dylib
    0x7fff81dd5000 -     0x7fff81deefff  com.apple.CFOpenDirectory 10.6 (10.6) <0F46E102-8B8E-0995-BA85-3D9608F0A30C> /System/Library/Frameworks/OpenDirectory.framework/Versions/A/Frameworks/CFOpenDirectory.framework/Versions/A/CFOpenDirectory
    0x7fff81def000 -     0x7fff81ec9ff7  com.apple.vImage 4.0 (4.0) <354F34BF-B221-A3C9-2CA7-9BE5E14AD5AD> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vImage.framework/Versions/A/vImage
    0x7fff81ef1000 -     0x7fff81f7dfef  SecurityFoundation 36840.0.0 (compatibility 1.0.0) <B53D84B1-79EA-1AFB-0830-7A865E1F6521> /System/Library/Frameworks/SecurityFoundation.framework/Versions/A/SecurityFoundation
    0x7fff81f7e000 -     0x7fff81f8ffff  com.apple.DSObjCWrappers.Framework 10.6 (134) <3C08225D-517E-2822-6152-F6EB13A4ADF9> /System/Library/PrivateFrameworks/DSObjCWrappers.framework/Versions/A/DSObjCWrappers
    0x7fff81fc0000 -     0x7fff8208bfe7  ColorSyncDeprecated.dylib 4.6.0 (compatibility 1.0.0) <4CFE358A-A98F-D810-00D8-78A02E4E2578> /System/Library/Frameworks/ApplicationServices.framework/Frameworks/ColorSync.framework/Versions/A/Resources/ColorSyncDeprecated.dylib
    0x7fff8208c000 -     0x7fff82091fff  libGFXShared.dylib ??? (???) <B2682015-C7B4-AF4D-48FD-D3AC175062C0> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGFXShared.dylib
    0x7fff82092000 -     0x7fff820fafff  com.apple.MeshKitRuntime 1.1 (49.2) <C57FDCEE-CED0-06A8-2890-A3F6BB851998> /System/Library/PrivateFrameworks/MeshKit.framework/Versions/A/Frameworks/MeshKitRuntime.framework/Versions/A/MeshKitRuntime
    0x7fff820fb000 -     0x7fff820ffff7  libmathCommon.A.dylib 315.0.0 (compatibility 1.0.0) <95718673-FEEE-B6ED-B127-BCDBDB60D4E5> /usr/lib/system/libmathCommon.A.dylib
    0x7fff82100000 -     0x7fff821b5fe7  com.apple.ink.framework 1.3.3 (107) <D76C7591-B060-E2DE-6634-968FDABD87EF> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Ink.framework/Versions/A/Ink
    0x7fff82205000 -     0x7fff822bafe7  com.apple.ColorSync 4.6.3 (4.6.3) <0522B33D-F78A-9A46-1CB2-9073E4F8EFD8> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ColorSync.framework/Versions/A/ColorSync
    0x7fff822f1000 -     0x7fff822f1ff7  com.apple.quartzframework 1.5 (1.5) <B182B579-BCCE-81BF-8DA2-9E0B7BDF8516> /System/Library/Frameworks/Quartz.framework/Versions/A/Quartz
    0x7fff822f2000 -     0x7fff822fdfff  com.apple.CrashReporterSupport 10.6.3 (250) <ACCC4AB2-384D-F884-4C4E-7FEB411C2025> /System/Library/PrivateFrameworks/CrashReporterSupport.framework/Versions/A/CrashReporterSupport
    0x7fff822fe000 -     0x7fff8237cfff  com.apple.CoreText 3.1.0 (???) <2D2DECAA-05C4-C4D0-1233-FB682569FFB8> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreText.framework/Versions/A/CoreText
    0x7fff8237d000 -     0x7fff823c0ff7  libRIP.A.dylib 543.34.0 (compatibility 64.0.0) <7D947F07-54E1-9038-01F8-4F0D03EE96D1> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libRIP.A.dylib
    0x7fff823c1000 -     0x7fff823c2fff  com.apple.MonitorPanelFramework 1.3.0 (1.3.0) <5062DACE-FCE7-8E41-F5F6-58821778629C> /System/Library/PrivateFrameworks/MonitorPanel.framework/Versions/A/MonitorPanel
    0x7fff823c3000 -     0x7fff823c7ff7  libCGXType.A.dylib 543.34.0 (compatibility 64.0.0) <E3EC6546-EA24-FEA2-7EE0-BA9A880E0D98> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libCGXType.A.dylib
    0x7fff823c8000 -     0x7fff8240bfff  libtidy.A.dylib ??? (???) <8AF4DB3A-7BDB-7AF7-0E9C-413BBBD0E380> /usr/lib/libtidy.A.dylib
    0x7fff8258b000 -     0x7fff8258eff7  com.apple.securityhi 4.0 (36638) <A78CE7A6-03D5-131B-2B58-ED1FCC2AEAC8> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/SecurityHI.framework/Versions/A/SecurityHI
    0x7fff8258f000 -     0x7fff827cafef  com.apple.imageKit 2.0.3 (1.0) <8C892913-3AD6-27DE-BD2C-12EB13760318> /System/Library/Frameworks/Quartz.framework/Versions/A/Frameworks/ImageKit.framework/Versions/A/ImageKit
    0x7fff827cb000 -     0x7fff82808fff  com.apple.LDAPFramework 2.0 (120.1) <1683330C-2908-9A45-AFF1-2282792C2570> /System/Library/Frameworks/LDAP.framework/Versions/A/LDAP
    0x7fff82809000 -     0x7fff82809ff7  com.apple.vecLib 3.6 (vecLib 3.6) <08D3D45D-908B-B86A-00BA-0F978D2702A7> /System/Library/Frameworks/vecLib.framework/Versions/A/vecLib
    0x7fff82974000 -     0x7fff82a8dfef  libGLProgrammability.dylib ??? (???) <69D69589-B572-20A5-7C74-EDE0A1B9A845> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGLProgrammability.dylib
    0x7fff82a8e000 -     0x7fff82aa3ff7  com.apple.LangAnalysis 1.6.6 (1.6.6) <0EE4B175-27DF-A2F7-366C-A9CC2814A93D> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/LangAnalysis.framework/Versions/A/LangAnalysis
    0x7fff82ac3000 -     0x7fff82ac8fff  libGIF.dylib ??? (???) <FBCF8D99-52D0-E743-C01A-528CDE05C399> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libGIF.dylib
    0x7fff82e09000 -     0x7fff82e84fff  com.apple.ISSupport 1.9.3 (51) <BE4B548C-F9C4-2464-12A6-F94A21D569C6> /System/Library/PrivateFrameworks/ISSupport.framework/Versions/A/ISSupport
    0x7fff82e85000 -     0x7fff82ea6fff  libresolv.9.dylib 40.0.0 (compatibility 1.0.0) <E34F3FC9-8CB3-2AB5-877E-D3D36273AF60> /usr/lib/libresolv.9.dylib
    0x7fff82f87000 -     0x7fff82f98ff7  libz.1.dylib 1.2.3 (compatibility 1.0.0) <EAFA94DA-7A60-69AB-24A7-3E15566F596F> /usr/lib/libz.1.dylib
    0x7fff82f99000 -     0x7fff82f9aff7  com.apple.TrustEvaluationAgent 1.1 (1) <306FD9EE-A301-41D5-EBDE-2FC52F28229C> /System/Library/PrivateFrameworks/TrustEvaluationAgent.framework/Versions/A/TrustEvaluationAgent
    0x7fff82f9b000 -     0x7fff833dffef  libLAPACK.dylib 219.0.0 (compatibility 1.0.0) <E14EC4C6-B055-A4AC-B971-42AB644E4A7C> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libLAPACK.dylib
    0x7fff833e9000 -     0x7fff833fbfe7  libsasl2.2.dylib 3.15.0 (compatibility 3.0.0) <76B83C8D-8EFE-4467-0F75-275648AFED97> /usr/lib/libsasl2.2.dylib
    0x7fff83432000 -     0x7fff83477fff  com.apple.CoreMediaIOServices 130.0 (1035) <D9B2D333-380A-35B9-43B9-D723CFB7BC75> /System/Library/PrivateFrameworks/CoreMediaIOServices.framework/Versions/A/CoreMediaIOServices
    0x7fff83478000 -     0x7fff8347afff  libRadiance.dylib ??? (???) <E9030B43-15FA-4739-72D5-FF5DDF595354> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libRadiance.dylib
    0x7fff8347b000 -     0x7fff834c7fff  libauto.dylib ??? (???) <205CE82B-3DE0-4A9D-CEB9-F6A3DDA22ED4> /usr/lib/libauto.dylib
    0x7fff836ac000 -     0x7fff83eb6fe7  libBLAS.dylib 219.0.0 (compatibility 1.0.0) <EEE5CE62-9155-6559-2AEA-05CED0F5B0F1> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libBLAS.dylib
    0x7fff83eb7000 -     0x7fff83ef8fef  com.apple.QD 3.35 (???) <022EDBCA-DE3A-6410-F263-2FC7DA8FAC88> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/QD.framework/Versions/A/QD
    0x7fff83ef9000 -     0x7fff83f41ff7  libvDSP.dylib 268.0.1 (compatibility 1.0.0) <170DE04F-89AB-E295-0880-D69CAFBD7979> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libvDSP.dylib
    0x7fff83f81000 -     0x7fff83f88fff  com.apple.OpenDirectory 10.6 (10.6) <72A65D76-7831-D31E-F1B3-9E48BF26A98B> /System/Library/Frameworks/OpenDirectory.framework/Versions/A/OpenDirectory
    0x7fff83f89000 -     0x7fff83fcdff7  com.apple.ImageCaptureCore 1.0.1 (1.0.1) <788A9BF0-691B-FE10-7385-AF4A7A786478> /System/Library/Frameworks/ImageCaptureCore.framework/Versions/A/ImageCaptureCore
    0x7fff83fce000 -     0x7fff8409efff  com.apple.CFNetwork 454.9.4 (454.9.4) <434E179F-C058-4B58-E8B2-058DDC5DC6B1> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/CFNetwork.framework/Versions/A/CFNetwork
    0x7fff8409f000 -     0x7fff840dafff  com.apple.AE 496.4 (496.4) <64C27EC8-FC7F-EA6B-9435-9A3452425915> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/AE.framework/Versions/A/AE
    0x7fff840db000 -     0x7fff840ddfff  com.apple.print.framework.Print 6.1 (237.1) <E4220665-6652-8F59-241D-59A21436DB21> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Print.framework/Versions/A/Print
    0x7fff840de000 -     0x7fff8414afe7  com.apple.CorePDF 1.1 (1.1) <51ED67DB-7D98-1C33-3DE0-2DA270F7CF8B> /System/Library/PrivateFrameworks/CorePDF.framework/Versions/A/CorePDF
    0x7fff8414b000 -     0x7fff842c0fef  com.apple.CoreFoundation 6.6.1 (550.19) <D119AB06-B148-8FE2-3137-7BF50A29F084> /System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation
    0x7fff842c1000 -     0x7fff84308fef  com.apple.QuickLookFramework 2.2 (327.4) <CFEB2FC2-BB80-C589-85B1-D01220A9F0D7> /System/Library/Frameworks/QuickLook.framework/Versions/A/QuickLook
    0x7fff84309000 -     0x7fff84309ff7  com.apple.CoreServices 44 (44) <210A4C56-BECB-E3E4-B6EE-7EC53E02265D> /System/Library/Frameworks/CoreServices.framework/Versions/A/CoreServices
    0x7fff84d53000 -     0x7fff84d67fff  libGL.dylib ??? (???) <A85982AB-6395-DE2B-2023-F735093E663D> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libGL.dylib
    0x7fff84d6f000 -     0x7fff84dbeff7  com.apple.DirectoryService.PasswordServerFramework 6.0 (6.0) <17EFD646-6F53-36E9-56BF-5A339E83EFFC> /System/Library/PrivateFrameworks/PasswordServer.framework/Versions/A/PasswordServer
    0x7fff84ea5000 -     0x7fff84eb3ff7  libkxld.dylib ??? (???) <5D1D0B3A-2BA3-79DD-DC2E-A2CEEAE4AA3B> /usr/lib/system/libkxld.dylib
    0x7fff84eb4000 -     0x7fff84ecfff7  com.apple.openscripting 1.3.1 (???) <5A6ECC32-04D0-9A62-635D-1DD03EC6E190> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/OpenScripting.framework/Versions/A/OpenScripting
    0x7fff84ed0000 -     0x7fff8508fff7  libSystem.B.dylib 125.0.1 (compatibility 1.0.0) <D8F3BC70-08DE-8D03-2930-2ACC3F05F5ED> /usr/lib/libSystem.B.dylib
    0x7fff85090000 -     0x7fff85146fff  libobjc.A.dylib 227.0.0 (compatibility 1.0.0) <B1F5CDC0-96BD-C7C0-BEAA-1E2259DDE067> /usr/lib/libobjc.A.dylib
    0x7fff85147000 -     0x7fff85178fef  libTrueTypeScaler.dylib ??? (???) <C15B0761-5136-BD0C-20F7-C8F8A95AF367> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ATS.framework/Versions/A/Resources/libTrueTypeScaler.dylib
    0x7fff85179000 -     0x7fff8517ffff  libCGXCoreImage.A.dylib 543.34.0 (compatibility 64.0.0) <B79AD788-40A4-51A1-DF9A-AFDBD33F30BD> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/Resources/libCGXCoreImage.A.dylib
    0x7fff85180000 -     0x7fff85689fe7  com.apple.VideoToolbox 0.484.5 (484.5) <31D9235B-3D7D-92F4-9B90-0BB2E1CEBF11> /System/Library/PrivateFrameworks/VideoToolbox.framework/Versions/A/VideoToolbox
    0x7fff856a5000 -     0x7fff858e7fe7  com.apple.AddressBook.framework 5.0.1 (868) <109B6E99-FCC9-00DC-058E-8B0B4B967B80> /System/Library/Frameworks/AddressBook.framework/Versions/A/AddressBook
    0x7fff858e8000 -     0x7fff858f7fff  com.apple.NetFS 3.2.1 (3.2.1) <3FC302C9-A5C6-A9CA-08CE-435AD05499F1> /System/Library/Frameworks/NetFS.framework/Versions/A/NetFS
    0x7fff858f8000 -     0x7fff85ab2fff  com.apple.ImageIO.framework 3.0.2 (3.0.1) <EB87E6F6-74CA-48E2-FB31-B866C879D538> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/ImageIO
    0x7fff85ab3000 -     0x7fff85adeff7  libxslt.1.dylib 3.24.0 (compatibility 3.0.0) <87A0B228-B24A-C426-C3FB-B40D7258DD49> /usr/lib/libxslt.1.dylib
    0x7fff85adf000 -     0x7fff85b30fe7  com.apple.HIServices 1.8.0 (???) <A16322D3-8EEC-9928-4730-8916C21D8187> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/HIServices.framework/Versions/A/HIServices
    0x7fff85b4d000 -     0x7fff85e5dfff  com.apple.RawCamera.bundle 2.3.2 (516) <BBD6E8FA-35A8-7F1F-4856-F74140DEB0A0> /System/Library/CoreServices/RawCamera.bundle/Contents/MacOS/RawCamera
    0x7fff85e8e000 -     0x7fff85ef8fe7  libvMisc.dylib 268.0.1 (compatibility 1.0.0) <7D8B6D68-7E70-2AF2-BF9F-2CD56145909C> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/libvMisc.dylib
    0x7fff85ef9000 -     0x7fff85fa8fff  edu.mit.Kerberos 6.5.9 (6.5.9) <1511C86A-9739-CD0C-B25F-004F2CAE7638> /System/Library/Frameworks/Kerberos.framework/Versions/A/Kerberos
    0x7fff85fa9000 -     0x7fff85facff7  libCoreVMClient.dylib ??? (???) <F00F6772-08DB-03EE-1E12-9CF60CE69D8C> /System/Library/Frameworks/OpenGL.framework/Versions/A/Libraries/libCoreVMClient.dylib
    0x7fff85fad000 -     0x7fff8611dfef  com.apple.MediaToolbox 0.484.5 (484.5) <9A934786-851D-390E-0E78-B92044029995> /System/Library/PrivateFrameworks/MediaToolbox.framework/Versions/A/MediaToolbox
    0x7fff8612a000 -     0x7fff8612bfff  liblangid.dylib ??? (???) <EA4D1607-2BD5-2EE2-2A3B-632EEE5A444D> /usr/lib/liblangid.dylib
    0x7fff8612c000 -     0x7fff861ecfe7  libFontParser.dylib ??? (???) <2C6B6ABB-7EF0-3CD8-97D2-9B4534D0056C> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ATS.framework/Versions/A/Resources/libFontParser.dylib
    0x7fff861f5000 -     0x7fff861f6ff7  com.apple.audio.units.AudioUnit 1.6.3 (1.6.3) <5264A680-010D-4DD6-911E-04AD0DA3D0B4> /System/Library/Frameworks/AudioUnit.framework/Versions/A/AudioUnit
    0x7fff861f7000 -     0x7fff8627cfff  com.apple.print.framework.PrintCore 6.2 (312.5) <28C44275-6DF8-23CB-4E7A-97E128F5A390> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/PrintCore.framework/Versions/A/PrintCore
    0x7fff8627d000 -     0x7fff86283ff7  com.apple.DiskArbitration 2.3 (2.3) <857F6E43-1EF4-7D53-351B-10DE0A8F992A> /System/Library/Frameworks/DiskArbitration.framework/Versions/A/DiskArbitration
    0x7fff862a9000 -     0x7fff86c9efe7  com.apple.AppKit 6.6.5 (1038.29) <8938E4FE-E661-ABC6-097F-00E258F8345B> /System/Library/Frameworks/AppKit.framework/Versions/C/AppKit
    0x7fff86f0c000 -     0x7fff86f0ffff  com.apple.help 1.3.1 (41) <E311A81E-9870-A430-1E16-AFF6C92CE6E5> /System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/Help.framework/Versions/A/Help
    0x7fff86f10000 -     0x7fff86f9ffff  com.apple.PDFKit 2.5.1 (2.5.1) <927B9F90-3EBE-768E-8B18-BE43B4B58190> /System/Library/Frameworks/Quartz.framework/Versions/A/Frameworks/PDFKit.framework/Versions/A/PDFKit
    0x7fff86fa0000 -     0x7fff86fa0ff7  com.apple.ApplicationServices 38 (38) <10A0B9E9-4988-03D4-FC56-DDE231A02C63> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/ApplicationServices
    0x7fff87066000 -     0x7fff87066ff7  com.apple.Accelerate 1.6 (Accelerate 1.6) <2BB7D669-4B40-6A52-ADBD-DA4DB3BC0B1B> /System/Library/Frameworks/Accelerate.framework/Versions/A/Accelerate
    0x7fff87067000 -     0x7fff8708cff7  com.apple.CoreVideo 1.6.1 (45.5) <BB098B75-BA61-50E6-FE8E-FFE285BDECE8> /System/Library/Frameworks/CoreVideo.framework/Versions/A/CoreVideo
    0x7fff8708d000 -     0x7fff871a4fef  libxml2.2.dylib 10.3.0 (compatibility 10.0.0) <7DC5239F-CD6A-820C-7C66-C528D7E27649> /usr/lib/libxml2.2.dylib
    0x7fff8727d000 -     0x7fff8743bfff  libicucore.A.dylib 40.0.0 (compatibility 1.0.0) <8FD6F415-48EE-99A1-6B30-EE49D2ACC1E7> /usr/lib/libicucore.A.dylib
    0x7fff8743c000 -     0x7fff87479ff7  libFontRegistry.dylib ??? (???) <DD501984-1941-4112-7063-8F52BC336DE9> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ATS.framework/Versions/A/Resources/libFontRegistry.dylib
    0x7fff87612000 -     0x7fff8768ffef  libstdc++.6.dylib 7.9.0 (compatibility 7.0.0) <35ECA411-2C08-FD7D-11B1-1B7A04921A5C> /usr/lib/libstdc++.6.dylib
    0x7fff877d0000 -     0x7fff877f0ff7  com.apple.DirectoryService.Framework 3.6 (621.3) <34B17024-866F-70AF-2098-4B5FCF57AE52> /System/Library/Frameworks/DirectoryService.framework/Versions/A/DirectoryService
    0x7fff877f1000 -     0x7fff877f1ff7  com.apple.Accelerate.vecLib 3.6 (vecLib 3.6) <DA9BFF01-40DF-EBD5-ABB7-787DAF2D77CF> /System/Library/Frameworks/Accelerate.framework/Versions/A/Frameworks/vecLib.framework/Versions/A/vecLib
    0x7fff87827000 -     0x7fff878e0fff  libsqlite3.dylib 9.6.0 (compatibility 9.0.0) <5A15E12A-AE8F-1A36-BBC7-564E7D7AD0FB> /usr/lib/libsqlite3.dylib
    0x7fff878e1000 -     0x7fff878f7fef  libbsm.0.dylib ??? (???) <83676D2E-23CD-45CD-BE5C-35FCFFBBBDBB> /usr/lib/libbsm.0.dylib
    0x7fff87950000 -     0x7fff87999ff7  com.apple.securityinterface 4.0.1 (37214) <C22EEFC8-92E8-EC11-B967-FD790D39F9AB> /System/Library/Frameworks/SecurityInterface.framework/Versions/A/SecurityInterface
    0x7fff87a11000 -     0x7fff8810e037  com.apple.CoreGraphics 1.543.34 (???) <31C0EC15-C448-2387-E84B-E943758A2BA3> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/CoreGraphics.framework/Versions/A/CoreGraphics
    0x7fff8810f000 -     0x7fff88219ff7  com.apple.MeshKitIO 1.1 (49.2) <B9E2EB6C-66F6-CFAD-4530-DDA4355D7FBA> /System/Library/PrivateFrameworks/MeshKit.framework/Versions/A/Frameworks/MeshKitIO.framework/Versions/A/MeshKitIO
    0x7fff8821a000 -     0x7fff8821aff7  com.apple.Cocoa 6.6 (???) <68B0BE46-6E24-C96F-B341-054CF9E8F3B6> /System/Library/Frameworks/Cocoa.framework/Versions/A/Cocoa
    0x7fff8821b000 -     0x7fff88241fe7  libJPEG.dylib ??? (???) <440FA813-F1E2-FCC3-BE63-500A45F972BE> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libJPEG.dylib
    0x7fff882ee000 -     0x7fff88327ff7  com.apple.MeshKit 1.1 (49.2) <2860E92F-5B68-E8DD-0E8F-BF3DD6ACF330> /System/Library/PrivateFrameworks/MeshKit.framework/Versions/A/MeshKit
    0x7fff88328000 -     0x7fff88346fff  libPng.dylib ??? (???) <B7CA0853-6A58-7D98-8288-789C2D3EBACC> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libPng.dylib
    0x7fff88347000 -     0x7fff88376ff7  com.apple.quartzfilters 1.6.0 (1.6.0) <9CECB4FC-1CCF-B8A2-B935-5888B21CBEEF> /System/Library/Frameworks/Quartz.framework/Versions/A/Frameworks/QuartzFilters.framework/Versions/A/QuartzFilters
    0x7fff88377000 -     0x7fff885f8fe7  com.apple.Foundation 6.6.2 (751.21) <83E7623F-159A-EA50-44B9-B59FBD36A393> /System/Library/Frameworks/Foundation.framework/Versions/C/Foundation
    0x7fff885f9000 -     0x7fff88640ff7  com.apple.coreui 2 (114) <BB09E685-1F5D-0676-1A0E-295610B387A8> /System/Library/PrivateFrameworks/CoreUI.framework/Versions/A/CoreUI
    0x7fff88641000 -     0x7fff8877ffff  com.apple.CoreData 102.1 (251) <782F29CA-ACC7-4A77-5772-52FBE2CEFB5E> /System/Library/Frameworks/CoreData.framework/Versions/A/CoreData
    0x7fff88780000 -     0x7fff88802fff  com.apple.QuickLookUIFramework 2.2 (327.4) <18A5C284-8ED5-7061-5D8C-F91D74130AF8> /System/Library/Frameworks/Quartz.framework/Versions/A/Frameworks/QuickLookUI.framework/Versions/A/QuickLookUI
    0x7fff88803000 -     0x7fff888a3fff  com.apple.LaunchServices 362.1 (362.1) <4529EF9C-45C7-E2E3-6726-4A5AD382566D> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/LaunchServices.framework/Versions/A/LaunchServices
    0x7fff888a4000 -     0x7fff888dcff7  libssl.0.9.8.dylib 0.9.8 (compatibility 0.9.8) <9AD9F3ED-1C29-8B41-079F-80426FA85CEC> /usr/lib/libssl.0.9.8.dylib
    0x7fff888dd000 -     0x7fff88927ff7  com.apple.Metadata 10.6.3 (507.8) <2193434D-C43B-C1D8-6326-48B25C0CCA11> /System/Library/Frameworks/CoreServices.framework/Versions/A/Frameworks/Metadata.framework/Versions/A/Metadata
    0x7fff88928000 -     0x7fff88b92fe7  com.apple.QuartzComposer 4.1 (156.13) <88CAE5C0-DD7C-96DC-B891-0BC07F08A7D4> /System/Library/Frameworks/Quartz.framework/Versions/A/Frameworks/QuartzComposer.framework/Versions/A/QuartzComposer
    0x7fff88b93000 -     0x7fff88b93ff7  com.apple.Carbon 150 (152) <CD519A75-306B-D53E-746A-14850E92390A> /System/Library/Frameworks/Carbon.framework/Versions/A/Carbon
    0x7fff88b94000 -     0x7fff88be3fef  libTIFF.dylib ??? (???) <87349890-8ACA-C2FD-D8A7-1617A27D88BF> /System/Library/Frameworks/ApplicationServices.framework/Versions/A/Frameworks/ImageIO.framework/Versions/A/Resources/libTIFF.dylib
    0x7fff88be4000 -     0x7fff88d53ff7  com.apple.QTKit 7.6.6 (1729) <0B8D0737-FCB0-954C-9732-920F63B22C54> /System/Library/Frameworks/QTKit.framework/Versions/A/QTKit
    0x7fff88d54000 -     0x7fff88d96fef  com.apple.CoreMedia 0.484.5 (484.5) <884505D7-8A7C-181F-7944-B40CB321A882> /System/Library/PrivateFrameworks/CoreMedia.framework/Versions/A/CoreMedia
    0x7fffffe00000 -     0x7fffffe01fff  libSystem.B.dylib ??? (???) <D8F3BC70-08DE-8D03-2930-2ACC3F05F5ED> /usr/lib/libSystem.B.dylib

Model: MacBookPro6,2, BootROM MBP61.0057.B07, 2 processors, Intel Core i7, 2.66 GHz, 4 GB, SMC 1.58f16
Graphics: NVIDIA GeForce GT 330M, NVIDIA GeForce GT 330M, PCIe, 512 MB
Graphics: Intel HD Graphics, Intel HD Graphics, Built-In, 288 MB
Memory Module: global_name
AirPort: spairport_wireless_card_type_airport_extreme (0x14E4, 0x93), Broadcom BCM43xx 1.0 (5.10.131.14.7)
Bluetooth: Version 2.3.2f5, 2 service, 19 devices, 1 incoming serial ports
Network Service: AirPort, AirPort, en1
Serial ATA Device: ST9500420ASG, 465.76 GB
Serial ATA Device: MATSHITADVD-R   UJ-898
USB Device: Hub, 0x0424  (SMSC), 0x2514, 0xfd100000
USB Device: Built-in iSight, 0x05ac  (Apple Inc.), 0x8507, 0xfd110000
USB Device: IR Receiver, 0x05ac  (Apple Inc.), 0x8242, 0xfd120000
USB Device: Hub, 0x0424  (SMSC), 0x2514, 0xfa100000
USB Device: BRCM2070 Hub, 0x0a5c  (Broadcom Corp.), 0x4500, 0xfa110000
USB Device: Bluetooth USB Host Controller, 0x05ac  (Apple Inc.), 0x8218, 0xfa113000
USB Device: Internal Memory Card Reader, 0x05ac  (Apple Inc.), 0x8403, 0xfa130000
USB Device: Apple Internal Keyboard / Trackpad, 0x05ac  (Apple Inc.), 0x0236, 0xfa120000
Comment 1 Mark Rowe (bdash) 2010-05-12 14:35:55 PDT 
<rdar://problem/7976142>
Comment 2 Alice Liu 2010-05-13 15:13:04 PDT 
has anyone else reproduced this?  please comment if you have, thanks!
Comment 3 Alexey Proskuryakov 2010-05-13 17:07:18 PDT 
Caused by synchronous document.write fix in bug 38146.
Comment 4 Joseph Pecoraro 2010-05-13 20:15:27 PDT 
I created a Hotmail account, and using the nightly mentioned by the originator (r59204) I habe able to reproduce this problem a few times. Just hammering back / forward and jumping between the Inbox and New message screens. I haven't been able to get concrete steps, so maybe this is based on advertisements.

It took a lot longer, but I finally hit an ASSERT in a debug build:


ASSERTION FAILED: item->documentSequenceNumber() == history()->currentItem()->documentSequenceNumber()
(/Users/pecoraro/Code/webkit-open-source/WebCore/loader/FrameLoader.cpp:3647 void WebCore::FrameLoader::navigateWithinDocument(WebCore::HistoryItem*))

Program received signal EXC_BAD_ACCESS, Could not access memory.
Reason: KERN_INVALID_ADDRESS at address: 0x00000000bbadbeef
0x00000001017150b8 in WebCore::FrameLoader::navigateWithinDocument (this=0x1118b1850, item=0x105abb6e0) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/FrameLoader.cpp:3647
3647	    ASSERT(item->documentSequenceNumber() == history()->currentItem()->documentSequenceNumber());
(gdb) bt
#0  0x00000001017150b8 in WebCore::FrameLoader::navigateWithinDocument (this=0x1118b1850, item=0x105abb6e0) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/FrameLoader.cpp:3647
#1  0x00000001017182f0 in WebCore::FrameLoader::loadItem (this=0x1118b1850, item=0x105abb6e0, loadType=WebCore::FrameLoadTypeBack) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/FrameLoader.cpp:3786
#2  0x000000010177f25c in WebCore::HistoryController::recursiveGoToItem (this=0x1118b19c0, item=0x105abb6e0, fromItem=0x119ee8870, type=WebCore::FrameLoadTypeBack) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/HistoryController.cpp:598
#3  0x000000010177f3b8 in WebCore::HistoryController::goToItem (this=0x1118b19c0, targetItem=0x105abb6e0, type=WebCore::FrameLoadTypeBack) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/HistoryController.cpp:231
#4  0x0000000101b98da6 in WebCore::Page::goToItem (this=0x111006a80, item=0x105abb6e0, type=WebCore::FrameLoadTypeBack) at /Users/pecoraro/Code/webkit-open-source/WebCore/page/Page.cpp:308
#5  0x0000000101b98f5e in WebCore::Page::goBack (this=0x111006a80) at /Users/pecoraro/Code/webkit-open-source/WebCore/page/Page.cpp:237
#6  0x0000000100f2becd in -[WebView goBack] (self=0x111005180, _cmd=0x7fff8423c7cc) at /Users/pecoraro/Code/webkit-open-source/WebKit/mac/WebView/WebView.mm:3153
#7  0x0000000100f2165d in -[WebView(WebIBActions) goBack:] (self=0x111005180, _cmd=0x7fff879dd1c1, sender=0x10868b570) at /Users/pecoraro/Code/webkit-open-source/WebKit/mac/WebView/WebView.mm:3854
#8  0x0000000100090540 in ?? ()
#9  0x00007fff83c818ea in -[NSApplication sendAction:to:from:] ()
#10 0x00000001000498cd in ?? ()
#11 0x00007fff83c81849 in -[NSControl sendAction:to:] ()
#12 0x00007fff83d0d8d0 in -[NSSegmentedCell _sendActionFrom:] ()
#13 0x00007fff83d0d1af in -[NSCell trackMouse:inRect:ofView:untilMouseUp:] ()
#14 0x00007fff83d0c6c7 in -[NSSegmentedCell trackMouse:inRect:ofView:untilMouseUp:] ()
#15 0x00007fff83d0bc59 in -[NSControl mouseDown:] ()
#16 0x00007fff83c25f1b in -[NSWindow sendEvent:] ()
#17 0x00000001000456c3 in ?? ()
#18 0x000000010011eb72 in ?? ()
#19 0x00007fff83b5b662 in -[NSApplication sendEvent:] ()
#20 0x0000000100030e66 in ?? ()
#21 0x00007fff83af20aa in -[NSApplication run] ()
#22 0x00007fff83aead7c in NSApplicationMain ()
#23 0x0000000100001d78 in ?? ()
Comment 5 Joseph Pecoraro 2010-05-13 21:18:27 PDT 
After commenting out (but logging) when I hit the above ASSERT it looks like that doesn't cause a crash.

Doing some more "stress testing" of back & forward I hit the following ASSERT. The other assert didn't appear to have been hit.

ASSERTION FAILED: !cachedPage || cachedPage->document() == m_frame->document()
(/Users/pecoraro/Code/webkit-open-source/WebCore/loader/HistoryController.cpp:197 void WebCore::HistoryController::invalidateCurrentItemCachedPage())

Program received signal EXC_BAD_ACCESS, Could not access memory.
Reason: KERN_INVALID_ADDRESS at address: 0x00000000bbadbeef
0x000000010177e9bf in WebCore::HistoryController::invalidateCurrentItemCachedPage (this=0x1130249c0) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/HistoryController.cpp:197
197	    ASSERT(!cachedPage || cachedPage->document() == m_frame->document());
(gdb) bt
#0  0x000000010177e9bf in WebCore::HistoryController::invalidateCurrentItemCachedPage (this=0x1130249c0) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/HistoryController.cpp:197
#1  0x0000000101712167 in WebCore::FrameLoader::receivedMainResourceError (this=0x113024850, error=@0x7fff5fbfe540, isComplete=true) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/FrameLoader.cpp:3311
#2  0x0000000101b38aba in WebCore::MainResourceLoader::didCancel (this=0x10807ce00, error=@0x7fff5fbfe540) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/MainResourceLoader.cpp:104
#3  0x0000000101d1db93 in WebCore::ResourceLoader::cancel (this=0x10807ce00, error=@0x7fff5fbfe5a0) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/ResourceLoader.cpp:362
#4  0x0000000101d1d2be in WebCore::ResourceLoader::cancel (this=0x10807ce00) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/ResourceLoader.cpp:352
#5  0x00000001015df406 in WebCore::DocumentLoader::stopLoading (this=0x108043e00, databasePolicy=WebCore::DatabasePolicyStop) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/DocumentLoader.cpp:232
#6  0x000000010170dbcf in WebCore::FrameLoader::stopAllLoaders (this=0x113024850, databasePolicy=WebCore::DatabasePolicyStop) at /Users/pecoraro/Code/webkit-open-source/WebCore/loader/FrameLoader.cpp:2214
#7  0x0000000101b98d8e in WebCore::Page::goToItem (this=0x111e50450, item=0x11abd14a0, type=WebCore::FrameLoadTypeForward) at /Users/pecoraro/Code/webkit-open-source/WebCore/page/Page.cpp:305
#8  0x0000000101b98f2a in WebCore::Page::goForward (this=0x111e50450) at /Users/pecoraro/Code/webkit-open-source/WebCore/page/Page.cpp:248
#9  0x0000000100f2be53 in -[WebView goForward] (self=0x111e4eb10, _cmd=0x7fff8423c7d8) at /Users/pecoraro/Code/webkit-open-source/WebKit/mac/WebView/WebView.mm:3161
#10 0x0000000100f21637 in -[WebView(WebIBActions) goForward:] (self=0x111e4eb10, _cmd=0x7fff879dd1b6, sender=0x105a8ef10) at /Users/pecoraro/Code/webkit-open-source/WebKit/mac/WebView/WebView.mm:3859
#11 0x000000010009180f in ?? ()
#12 0x00007fff83c818ea in -[NSApplication sendAction:to:from:] ()
#13 0x00000001000498cd in ?? ()
#14 0x00007fff83c81849 in -[NSControl sendAction:to:] ()
#15 0x00007fff83d0d8d0 in -[NSSegmentedCell _sendActionFrom:] ()
#16 0x00007fff83d0d1af in -[NSCell trackMouse:inRect:ofView:untilMouseUp:] ()
#17 0x00007fff83d0c6c7 in -[NSSegmentedCell trackMouse:inRect:ofView:untilMouseUp:] ()
#18 0x00007fff83d0bc59 in -[NSControl mouseDown:] ()
#19 0x00007fff83c25f1b in -[NSWindow sendEvent:] ()
#20 0x00000001000456c3 in ?? ()
#21 0x000000010011eb72 in ?? ()
#22 0x00007fff83b5b662 in -[NSApplication sendEvent:] ()
#23 0x0000000100030e66 in ?? ()
#24 0x00007fff83af20aa in -[NSApplication run] ()
#25 0x00007fff83aead7c in NSApplicationMain ()
#26 0x0000000100001d78 in ?? ()
Current language:  auto; currently c++
(gdb) p cachedPage
$1 = ('WebCore::CachedPage' *) 0x11ac59c60
(gdb) p cachedPage->document()
$2 = (class WebCore::Document *) 0x1142bcc00
(gdb) p m_frame->document()
$3 = (class WebCore::Document *) 0x106992600


I still haven't been able to reproduce the exact same crash with my ToT Debug build (r59438). =)
Comment 6 Alexey Proskuryakov 2010-05-13 21:46:49 PDT 
FWIW, I never saw any of these history controller assertions. If you can find exact steps to reproduce this, please file a new bug, as it's clearly a different issue.
Comment 7 Joseph Pecoraro 2010-05-13 22:05:20 PDT 
I can only reproduce this with the r59204 nightly. Normally after just a few tries. My steps are.

  1. Navigate to hotmail.com
  2. Log in.
  3. Click "New" for a new email.
  4. Click "Inbox"
  5. Furiously go back and forth a few times.
  6. If that fails Go between "Inbox" and the "Manage Folders" link.

I haven't been able to reproduce this on ToT (debug). I just finished a release build.
Comment 8 Joseph Pecoraro 2010-05-13 22:14:47 PDT 
Arg, I hit this with release build:

Exception Type:  EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: 0x000000000000000d, 0x0000000000000000
Crashed Thread:  0  Dispatch queue: com.apple.main-thread

Thread 0 Crashed:  Dispatch queue: com.apple.main-thread
0   com.apple.WebCore             	0x0000000100e85f14 WebCore::Document::write(WebCore::SegmentedString const&, WebCore::Document*) + 148 (Document.cpp:223)
1   com.apple.WebCore             	0x00000001011c30f8 WebCore::JSHTMLDocument::write(JSC::ExecState*, JSC::ArgList const&) + 24 (JSHTMLDocumentCustom.cpp:162)
2   com.apple.WebCore             	0x00000001011bf859 WebCore::jsHTMLDocumentPrototypeFunctionWrite(JSC::ExecState*, JSC::JSObject*, JSC::JSValue, JSC::ArgList const&) + 137 (JSHTMLDocument.cpp:436)
3   ???                           	0x000036fb664002f4 0 + 60453380162292
4   com.apple.JavaScriptCore      	0x00000001007ce1dc JSC::Interpreter::executeCall(JSC::FunctionExecutable*, JSC::ExecState*, JSC::JSFunction*, JSC::JSObject*, JSC::ArgList const&, JSC::ScopeChainNode*, JSC::JSValue*) + 508 (JITCode.h:77)
5   ???                           	0x0000000118954300 0 + 4707402496
6   ???                           	0x0000000119146780 0 + 4715734912
7   com.apple.WebCore             	0x0000000101173410 WebCore::JSDOMWindowShell::~JSDOMWindowShell() + 0 (JSDOMWindowShell.cpp:54)
8   ???                           	0x0000441f0f66ffff 0 + 74900193083391
Comment 9 Joseph Pecoraro 2010-05-13 22:19:45 PDT 
Weird that I can't get this to reproduce in the nightlies. I've commented out both of the asserts I've hit (in hopes it would lead to the crash) and I put logging there instead. I've managed to reproduce both of those but not produce a crash. I'm calling it a night.
Comment 10 Alexey Proskuryakov 2010-05-13 22:48:07 PDT 
Created attachment 56056 [details]
reduced test case (will crash)

Attaching a reduced test case. As mentioned before, the actual fix is trivial, will wrap it up in the morning.
Comment 11 Alexey Proskuryakov 2010-05-14 10:13:42 PDT 
Created attachment 56083 [details]
proposed fix

I removed the helper class, because:
1) I didn't like its name.
2) In a tricky place like this, it's probably best to be explicit about which tokenizer is being accessed.

Technically, it would be just as easy to have the checks in helper class by making it hold a Document pointer.
Comment 12 Brady Eidson 2010-05-14 10:57:29 PDT 
Comment on attachment 56083 [details]
proposed fix


> @@ -1978,12 +1955,19 @@ void Document::write(const SegmentedStri
>      if (!m_tokenizer)
>          open(ownerDocument);
>  
> -    {
> -        ASSERT(m_tokenizer);
> -        SynchronousHTMLTokenizerGuard tokenizerGuard(m_tokenizer.get());
> -        m_tokenizer->write(text, false);
> +    ASSERT(m_tokenizer);
> +    bool wasForcedSynchronous = false;
> +    HTMLTokenizer* tokenizer = m_tokenizer->asHTMLTokenizer();
> +    if (tokenizer) {
> +        wasForcedSynchronous = tokenizer->forceSynchronous();
> +        tokenizer->setForceSynchronous(true);
>      }
>  
> +    m_tokenizer->write(text, false);
> +
> +    if (m_tokenizer && tokenizer && m_tokenizer->asHTMLTokenizer() == tokenizer)
> +        tokenizer->setForceSynchronous(wasForcedSynchronous);
> +

Couldn't this last if block also include "!wasForcedSynchronous" as a condition, and it would always tokenizer->setForceSynchronous(false)?

r+ with that consideration.
Comment 13 Alexey Proskuryakov 2010-05-14 13:32:44 PDT 
Committed <http://trac.webkit.org/changeset/59486>.