[Webkit-unassigned] [Bug 12045] New: Crash under gmalloc at WTF::RefPtr<WebCore::HTMLSliderThumbElement>::operator->

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sun Dec 31 00:25:28 PST 2006 

http://bugs.webkit.org/show_bug.cgi?id=12045

           Summary: Crash under gmalloc at
                    WTF::RefPtr<WebCore::HTMLSliderThumbElement>::operator->
           Product: WebKit
           Version: 420+ (nightly)
          Platform: Macintosh
        OS/Version: Mac OS X 10.4
            Status: NEW
          Severity: Major
          Priority: P2
         Component: New Bugs
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: bdash at webkit.org


Program received signal EXC_BAD_ACCESS, Could not access memory.
Reason: KERN_PROTECTION_FAILURE at address: 0x49b45000
0x015c9cdd in WTF::RefPtr<WebCore::HTMLSliderThumbElement>::operator->
(this=0x49b45000) at RefPtr.h:50
50              T *operator->() const { return m_ptr; }
(gdb) bt
#0  0x015c9cdd in WTF::RefPtr<WebCore::HTMLSliderThumbElement>::operator->
(this=0x49b45000) at RefPtr.h:50
#1  0x013a428a in WebCore::RenderSlider::inDragMode (this=0x49b44f60) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderSlider.cpp:385
#2  0x0119a0c2 in WebCore::RenderThemeMac::paintSliderThumb (this=0x1640fe0,
o=0x4a32bf60, paintInfo=@0xbfffcb80, r=@0xbfffca40) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderThemeMac.mm:1028
#3  0x0119c61b in WebCore::RenderTheme::paint (this=0x1640fe0, o=0x4a32bf60,
paintInfo=@0xbfffcb80, r=@0xbfffca40) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderTheme.cpp:125
#4  0x0115f141 in WebCore::RenderBox::paintBoxDecorations (this=0x4a32bf60,
paintInfo=@0xbfffcb80, tx=8, ty=154) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderBox.cpp:365
#5  0x011591df in WebCore::RenderBlock::paintObject (this=0x4a32bf60,
paintInfo=@0xbfffcb80, tx=8, ty=154) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderBlock.cpp:1351
#6  0x01151e89 in WebCore::RenderBlock::paint (this=0x4a32bf60,
paintInfo=@0xbfffcb80, tx=8, ty=154) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderBlock.cpp:1285
#7  0x011521bf in WebCore::RenderBlock::paintChildren (this=0x49b44f60,
paintInfo=@0xbfffccb0, tx=8, ty=8) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderBlock.cpp:1315
#8  0x01159280 in WebCore::RenderBlock::paintObject (this=0x49b44f60,
paintInfo=@0xbfffccb0, tx=8, ty=8) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderBlock.cpp:1369
#9  0x01151e89 in WebCore::RenderBlock::paint (this=0x49b44f60,
paintInfo=@0xbfffccb0, tx=8, ty=8) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderBlock.cpp:1285
#10 0x011521bf in WebCore::RenderBlock::paintChildren (this=0xf1c82f60,
paintInfo=@0xbfffce04, tx=0, ty=0) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderBlock.cpp:1315
#11 0x01159280 in WebCore::RenderBlock::paintObject (this=0xf1c82f60,
paintInfo=@0xbfffce04, tx=0, ty=0) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderBlock.cpp:1369
#12 0x01151e89 in WebCore::RenderBlock::paint (this=0xf1c82f60,
paintInfo=@0xbfffce04, tx=0, ty=0) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderBlock.cpp:1285
#13 0x011809b6 in WebCore::RenderLayer::paintLayer (this=0xf1c86f68,
rootLayer=0xf0fe3f68, p=0xbfffd034, paintDirtyRect=@0xbfffd03c,
haveTransparency=false, paintRestriction=WebCore::PaintRestrictionNone,
paintingRoot=0x0) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderLayer.cpp:1433
#14 0x01180bfc in WebCore::RenderLayer::paintLayer (this=0xf0fe3f68,
rootLayer=0xf0fe3f68, p=0xbfffd034, paintDirtyRect=@0xbfffd03c,
haveTransparency=false, paintRestriction=WebCore::PaintRestrictionNone,
paintingRoot=0x0) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderLayer.cpp:1463
#15 0x01180cc4 in WebCore::RenderLayer::paint (this=0xf0fe3f68, p=0xbfffd034,
damageRect=@0xbfffd03c, paintRestriction=WebCore::PaintRestrictionNone,
paintingRoot=0x0) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/rendering/RenderLayer.cpp:1330
#16 0x010dfc7b in WebCore::Frame::paint (this=0xbf365fd0, p=0xbfffd034,
rect=@0xbfffd03c) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/page/Frame.cpp:1041
#17 0x01100429 in -[WebCoreFrameBridge drawRect:] (self=0xbf337fe4,
_cmd=0x90aa2b6c, rect={origin = {x = 0, y = 0}, size = {width = 1400, height =
761}}) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebCore/page/mac/WebCoreFrameBridge.mm:480
#18 0x00341fbf in -[WebHTMLView drawSingleRect:] (self=0xc89d2fa0,
_cmd=0x3c3308, rect={origin = {x = 0, y = 0}, size = {width = 1400, height =
761}}) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebKit/WebView/WebHTMLView.m:2678
#19 0x00342395 in -[WebHTMLView drawRect:] (self=0xc89d2fa0, _cmd=0x90aa2b6c,
rect={origin = {x = 0, y = 0}, size = {width = 1400, height = 761}}) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebKit/WebView/WebHTMLView.m:2729
#20 0x932ee3b1 in -[NSView _drawRect:clip:] ()
#21 0x932ed40b in -[NSView _recursiveDisplayAllDirtyWithLockFocus:visRect:] ()
#22 0x0033bd2f in -[WebHTMLView(WebPrivate)
_recursiveDisplayAllDirtyWithLockFocus:visRect:] (self=0xc89d2fa0,
_cmd=0x90a83574, needsLockFocus=1 '\001', visRect={origin = {x = 0, y = 0},
size = {width = 1400, height = 761}}) at
/Users/mrowe/Documents/Source/SVN/WebKit-Nightlies/WebKit/WebView/WebHTMLView.m:893
#23 0x932ff36f in _recursiveDisplayInRect2 ()
#24 0x9083af26 in CFArrayApplyFunction ()
#25 0x932ed613 in -[NSView _recursiveDisplayAllDirtyWithLockFocus:visRect:] ()
#26 0x932ff36f in _recursiveDisplayInRect2 ()
#27 0x9083af26 in CFArrayApplyFunction ()
#28 0x932ed613 in -[NSView _recursiveDisplayAllDirtyWithLockFocus:visRect:] ()
#29 0x932ec473 in -[NSView
_recursiveDisplayRectIfNeededIgnoringOpacity:isVisibleRect:rectIsVisibleRectForView:topView:]
()
#30 0x932ed041 in -[NSView
_recursiveDisplayRectIfNeededIgnoringOpacity:isVisibleRect:rectIsVisibleRectForView:topView:]
()
#31 0x932ed041 in -[NSView
_recursiveDisplayRectIfNeededIgnoringOpacity:isVisibleRect:rectIsVisibleRectForView:topView:]
()
#32 0x932ed041 in -[NSView
_recursiveDisplayRectIfNeededIgnoringOpacity:isVisibleRect:rectIsVisibleRectForView:topView:]
()
#33 0x932ed041 in -[NSView
_recursiveDisplayRectIfNeededIgnoringOpacity:isVisibleRect:rectIsVisibleRectForView:topView:]
()
#34 0x932ed041 in -[NSView
_recursiveDisplayRectIfNeededIgnoringOpacity:isVisibleRect:rectIsVisibleRectForView:topView:]
()
#35 0x932ebb78 in -[NSThemeFrame
_recursiveDisplayRectIfNeededIgnoringOpacity:isVisibleRect:rectIsVisibleRectForView:topView:]
()
#36 0x932eb362 in -[NSView
_displayRectIgnoringOpacity:isVisibleRect:rectIsVisibleRectForView:] ()
#37 0x932eac8e in -[NSView displayIfNeeded] ()
#38 0x932eaa32 in -[NSWindow displayIfNeeded] ()
#39 0x0001c394 in ?? ()
#40 0x9333ad6c in _handleWindowNeedsDisplay ()
#41 0x9082a155 in __CFRunLoopDoObservers ()
#42 0x908291f7 in CFRunLoopRunSpecific ()
#43 0x90828eb5 in CFRunLoopRunInMode ()
#44 0x92dcdb90 in RunCurrentEventLoopInMode ()
#45 0x92dcd297 in ReceiveNextEventCommon ()
#46 0x92dcd0ee in BlockUntilNextEventMatchingListInMode ()
#47 0x9326f465 in _DPSNextEvent ()
#48 0x9326f056 in -[NSApplication
nextEventMatchingMask:untilDate:inMode:dequeue:] ()
#49 0x00006f96 in ?? ()
#50 0x93268ddb in -[NSApplication run] ()
#51 0x9325cd2f in NSApplicationMain ()
#52 0x0005f7de in ?? ()
#53 0x0005f6f9 in ?? ()


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list