72912 – [GTK] SIGSEGV in WebCore::gotChunkCallback, ResourceHandleSoup.cpp:364

Bug 72912 - [GTK] SIGSEGV in WebCore::gotChunkCallback, ResourceHandleSoup.cpp:364

Summary: [GTK] SIGSEGV in WebCore::gotChunkCallback, ResourceHandleSoup.cpp:364

Status:	RESOLVED DUPLICATE of bug 72883

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	WebKitGTK (show other bugs)
Version:	528+ (Nightly build)
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	Nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2011-11-21 14:42 PST by Xan Lopez
Modified:	2011-11-28 23:06 PST (History)
CC List:	4 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Xan Lopez 2011-11-21 14:42:00 PST

r100946, happens from time to time.

(gdb) bt
#0  0x0000000000000031 in ?? ()
#1  0x00007ffff5956640 in WebCore::gotChunkCallback (msg=0x2121020, chunk=0x217d6d0, data=0x21fab60)
    at ../../Source/WebCore/platform/network/soup/ResourceHandleSoup.cpp:364
#2  0x00007ffff350b671 in g_cclosure_marshal_VOID__BOXED (closure=0x21fbb20, return_value=0x0, n_param_values=2, param_values=0x1e5a810, 
    invocation_hint=0x7fffffffad80, marshal_data=0x0) at gmarshal.c:574
#3  0x00007ffff3508dc2 in g_closure_invoke (closure=0x21fbb20, return_value=0x0, n_param_values=2, param_values=0x1e5a810, 
    invocation_hint=0x7fffffffad80) at gclosure.c:774
#4  0x00007ffff3522397 in signal_emit_unlocked_R (node=0x1cb1a40, detail=0, instance=0x2121020, emission_return=0x0, 
    instance_and_params=0x1e5a810) at gsignal.c:3302
#5  0x00007ffff3521591 in g_signal_emit_valist (instance=0x2121020, signal_id=453, detail=0, var_args=0x7fffffffb008) at gsignal.c:3033
#6  0x00007ffff3521ae9 in g_signal_emit (instance=0x2121020, signal_id=453, detail=0) at gsignal.c:3090
#7  0x00007ffff3763d8b in soup_message_got_chunk (msg=0x2121020, chunk=0x217d6d0) at soup-message.c:1046
#8  0x00007ffff376983d in read_body_chunk (msg=0x2121020) at soup-message-io.c:516
#9  0x00007ffff376a8a7 in io_read (sock=0x1f978c0, msg=0x2121020) at soup-message-io.c:989
#10 0x00007ffff350aba4 in g_cclosure_marshal_VOID__VOID (closure=0x2139110, return_value=0x0, n_param_values=1, param_values=0x1d400c0, 
    invocation_hint=0x7fffffffd370, marshal_data=0x0) at gmarshal.c:85
#11 0x00007ffff3508dc2 in g_closure_invoke (closure=0x2139110, return_value=0x0, n_param_values=1, param_values=0x1d400c0, 
    invocation_hint=0x7fffffffd370) at gclosure.c:774
#12 0x00007ffff3522397 in signal_emit_unlocked_R (node=0x1ceec30, detail=0, instance=0x1f978c0, emission_return=0x0, 
    instance_and_params=0x1d400c0) at gsignal.c:3302
#13 0x00007ffff3521591 in g_signal_emit_valist (instance=0x1f978c0, signal_id=466, detail=0, var_args=0x7fffffffd5f8) at gsignal.c:3033
#14 0x00007ffff3521ae9 in g_signal_emit (instance=0x1f978c0, signal_id=466, detail=0) at gsignal.c:3090
#15 0x00007ffff377e0f8 in socket_read_watch (pollable=0x1d61d00, user_data=0x1f978c0) at soup-socket.c:1265
#16 0x00007ffff35c0b8a in pollable_source_dispatch (source=0x1ef1e40, callback=0x7ffff377e09b <socket_read_watch>, user_data=0x1f978c0)
    at gpollableinputstream.c:232
#17 0x00007ffff33fef42 in g_main_dispatch (context=0x544f00) at gmain.c:2513
#18 0x00007ffff33ffc03 in g_main_context_dispatch (context=0x544f00) at gmain.c:3050
#19 0x00007ffff33ffde6 in g_main_context_iterate (context=0x544f00, block=1, dispatch=1, self=0x573d30) at gmain.c:3121
#20 0x00007ffff33ffeaa in g_main_context_iteration (context=0x544f00, may_block=1) at gmain.c:3182
#21 0x00007ffff3601346 in g_application_run (application=0x617000, argc=1, argv=0x7fffffffda88) at gapplication.c:1320
#22 0x0000000000430ca2 in main (argc=1, argv=0x7fffffffda88) at ../../src/ephy-main.c:472

Comment 1 Xan Lopez 2011-11-21 14:44:02 PST

The values of the pointers in the function call:

    client->didReceiveData(handle.get(), chunk->data, chunk->length, -1);

seem OK, so not sure of what's going on here.

Comment 2 Xan Lopez 2011-11-21 14:47:13 PST

I seem to be able to reproduce this 100% with this link: http://javierparra.eu/?p=721

Comment 3 Sergio Villar Senin 2011-11-22 03:28:07 PST

(In reply to comment #2)
> I seem to be able to reproduce this 100% with this link: http://javierparra.eu/?p=721

I'm fairly sure that this is a dup of https://bugs.webkit.org/show_bug.cgi?id=72883 because running it with valgrind  I get the same assertion in JSC code.

Comment 4 Sergio Villar Senin 2011-11-22 06:30:28 PST

(In reply to comment #3)
> (In reply to comment #2)
> > I seem to be able to reproduce this 100% with this link: http://javierparra.eu/?p=721
> 
> I'm fairly sure that this is a dup of https://bugs.webkit.org/show_bug.cgi?id=72883 because running it with valgrind  I get the same assertion in JSC code.

Just to clarify, I get Xan's trace when running with gdb but when I use valgrind I get the same assertion than the one I copy pasted in https://bugs.webkit.org/show_bug.cgi?id=72883

Comment 5 Sergio Villar Senin 2011-11-22 06:37:03 PST

I'm closing this a duplicate as the traces are exactly the same.

*** This bug has been marked as a duplicate of bug 72883 ***