[Webkit-unassigned] [Bug 9476] New: REGRESSION: Reproducible crash after closing window after viewing css2.1/t0803-c5501-imrgn-t-00-b-ag.html

bugzilla-daemon at opendarwin.org bugzilla-daemon at opendarwin.org
Fri Jun 16 18:58:21 PDT 2006 

http://bugzilla.opendarwin.org/show_bug.cgi?id=9476

           Summary: REGRESSION: Reproducible crash after closing window
                    after viewing css2.1/t0803-c5501-imrgn-t-00-b-ag.html
           Product: WebKit
           Version: 420+ (nightly)
          Platform: Macintosh
        OS/Version: Mac OS X 10.4
            Status: NEW
          Keywords: HasReduction, Regression
          Severity: normal
          Priority: P1
         Component: JavaScriptCore
        AssignedTo: webkit-unassigned at opendarwin.org
        ReportedBy: ddkilzer at kilzer.net
                CC: andersca at mac.com


I believe this may be a regression from Bug 7080.

Steps to Reproduce:

1. Open WebKit+Safari.
2. Open LayoutTests/css2.1/t0803-c5501-imrgn-t-00-b-ag.html
3. Close the browser window.
4. WebKit+Safari crashes.

Relevant part of stack trace:

Date/Time:      2006-06-16 20:51:52.614 -0500
OS Version:     10.4.6 (Build 8I127)
Report Version: 4

Command: Safari
Path:    /Applications/Safari.app/Contents/MacOS/Safari
Parent:  bash [263]

Version:        2.0.3 (417.9.3)
Build Version:  2
Project Name:   WebBrowser
Source Version: 4170903

PID:    25147
Thread: 0

Exception:  EXC_BAD_ACCESS (0x0001)
Codes:      KERN_INVALID_ADDRESS (0x0001) at 0x6f6e546f

Thread 0 Crashed:
0   com.apple.JavaScriptCore            0x0101578c
KJS::Debugger::detach(KJS::Interpreter*) + 140 (debugger.cpp:79)
1   com.apple.JavaScriptCore            0x01023c40
KJS::Interpreter::~Interpreter [not-in-charge]() + 240 (interpreter.cpp:264)
2   com.apple.WebCore                   0x01a6b694
KJS::ScriptInterpreter::~ScriptInterpreter [in-charge deleting]() + 64
(kjs_binding.cpp:75)
3   com.apple.WebCore                   0x01a894a4 WebCore::KJSProxy::~KJSProxy
[in-charge]() + 92 (kjs_proxy.cpp:48)
4   com.apple.WebCore                   0x01c02644
WebCore::FramePrivate::~FramePrivate [in-charge]() + 116 (FramePrivate.h:112)
5   com.apple.WebCore                   0x01869e0c WebCore::Frame::~Frame
[not-in-charge]() + 1076 (Frame.cpp:221)
6   com.apple.WebCore                   0x0187f120 WebCore::FrameMac::~FrameMac
[in-charge deleting]() + 248 (FrameMac.mm:173)
7   com.apple.WebCore                   0x01bae92c
WebCore::Shared<WebCore::Frame>::deref() + 144 (Shared.h:32)
8   com.apple.WebCore                   0x01bae980
WTF::RefPtr<WebCore::Frame>::~RefPtr [in-charge]() + 64 (RefPtr.h:41)
9   com.apple.WebCore                   0x0198ecc4 WebCore::Page::~Page
[in-charge]() + 340 (Page.cpp:63)
10  com.apple.WebCore                   0x018af8f0 -[WebCorePageBridge dealloc]
+ 64 (WebCorePageBridge.mm:83)
11  com.apple.WebKit                    0x0039811c -[WebView(WebPrivate)
_close] + 224 (WebView.m:575)
12  com.apple.Safari                    0x00047d2c 0x1000 + 290092
13  com.apple.Foundation                0x9297d5e8 -[NSArray
makeObjectsPerformSelector:withObject:] + 264
14  com.apple.Safari                    0x0005c608 0x1000 + 374280
15  com.apple.Safari                    0x0005a9c8 0x1000 + 367048
16  com.apple.Foundation                0x92975ad8 _nsnote_callback + 180
17  com.apple.CoreFoundation            0x9080b010 __CFXNotificationPost + 368
18  com.apple.CoreFoundation            0x908030ec
_CFXNotificationPostNotification + 684
19  com.apple.Foundation                0x9295fee0 -[NSNotificationCenter
postNotificationName:object:userInfo:] + 92
20  com.apple.AppKit                    0x937c1820 -[NSWindow _close] + 100
21  com.apple.AppKit                    0x937c1784 -[NSWindow close] + 36
22  com.apple.Safari                    0x0005a96c 0x1000 + 366956
23  com.apple.Safari                    0x0005c498 0x1000 + 373912
24  com.apple.AppKit                    0x937c0ff0 -[NSApplication
sendAction:to:from:] + 108
25  com.apple.Safari                    0x00029adc 0x1000 + 166620
26  com.apple.AppKit                    0x937c0f24 -[NSControl sendAction:to:]
+ 96
27  com.apple.AppKit                    0x937c0e04 -[NSCell _sendActionFrom:] +
156
28  com.apple.AppKit                    0x937c08e4 -[NSButtonCell
performClick:] + 472
29  com.apple.AppKit                    0x937c0ff0 -[NSApplication
sendAction:to:from:] + 108
30  com.apple.Safari                    0x00029adc 0x1000 + 166620
31  com.apple.AppKit                    0x9381b838 -[NSMenu
performActionForItemAtIndex:] + 392
32  com.apple.AppKit                    0x9381b5bc -[NSCarbonMenuImpl
performActionWithHighlightingForItemAtIndex:] + 104
33  com.apple.AppKit                    0x9381b064 -[NSMenu
performKeyEquivalent:] + 272
34  com.apple.AppKit                    0x9381acb0 -[NSApplication
_handleKeyEquivalent:] + 328
35  com.apple.AppKit                    0x937247a8 -[NSApplication sendEvent:]
+ 2944
36  com.apple.Safari                    0x000217a8 0x1000 + 133032
37  com.apple.AppKit                    0x9371c0b0 -[NSApplication run] + 508
38  com.apple.AppKit                    0x9380cbfc NSApplicationMain + 452
39  com.apple.Safari                    0x0005cb98 0x1000 + 375704
40  com.apple.Safari                    0x0005ca40 0x1000 + 375360


-- 
Configure bugmail: http://bugzilla.opendarwin.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list