[Webkit-unassigned] [Bug 12782] New: Crash in BidiContext::deref on gdk debug build

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Feb 15 17:18:43 PST 2007 

http://bugs.webkit.org/show_bug.cgi?id=12782

           Summary: Crash in BidiContext::deref on gdk debug build
           Product: WebKit
           Version: 420+ (nightly)
          Platform: PC
        OS/Version: Mac OS X 10.4
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: New Bugs
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: kkowalczyk at gmail.com


Happens quite often when navigating between google properties
(google.com/video.google.com/news.google.com)

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread -1243199824 (LWP 22133)]
WebCore::BidiContext::deref (this=0xc) at ../../rendering/bidi.cpp:291
291         count--;
(gdb) bt
#0  WebCore::BidiContext::deref (this=0xc) at ../../rendering/bidi.cpp:291
#1  0xb75d5b7a in WebCore::RootInlineBox::setLineBreakInfo (this=0x839e61c,
obj=0x0, breakPos=0, status=0x0, context=0x0)
    at ../../../JavaScriptCore/wtf/RefPtr.h:106
#2  0xb75d6052 in WebCore::RootInlineBox::childRemoved (this=0x839e61c,
box=0x839e674) at ../../rendering/RootInlineBox.cpp:169
#3  0xb75378ba in WebCore::InlineFlowBox::removeChild (this=0x839f21c,
child=0x839e674) at ../../rendering/InlineFlowBox.cpp:118
#4  0xb7537058 in WebCore::InlineBox::remove (this=0x839e61c) at
../../rendering/InlineBox.cpp:41
#5  0xb75bb3a8 in WebCore::RenderText::destroy (this=0x8293b4c) at
../../rendering/RenderText.cpp:111
#6  0xb72a7293 in WebCore::Node::detach (this=0x82e3ae0) at
../../dom/Node.cpp:824
#7  0xb725b9bb in WebCore::ContainerNode::detach (this=0x83a3e88) at
../../dom/ContainerNode.cpp:617
#8  0xb728b74a in WebCore::Element::detach (this=0x83a3e88) at
../../dom/Element.cpp:576
#9  0xb725b9bb in WebCore::ContainerNode::detach (this=0x83a3fa0) at
../../dom/ContainerNode.cpp:617
#10 0xb728b74a in WebCore::Element::detach (this=0x83a3fa0) at
../../dom/Element.cpp:576
#11 0xb725b9bb in WebCore::ContainerNode::detach (this=0x83a40a8) at
../../dom/ContainerNode.cpp:617
#12 0xb728b74a in WebCore::Element::detach (this=0x83a40a8) at
../../dom/Element.cpp:576
#13 0xb725b9bb in WebCore::ContainerNode::detach (this=0x83afce0) at
../../dom/ContainerNode.cpp:617
#14 0xb728b74a in WebCore::Element::detach (this=0x83afce0) at
../../dom/Element.cpp:576
#15 0xb725b9bb in WebCore::ContainerNode::detach (this=0x83bb478) at
../../dom/ContainerNode.cpp:617
#16 0xb728b74a in WebCore::Element::detach (this=0x83bb478) at
../../dom/Element.cpp:576
#17 0xb728fc37 in WebCore::Element::recalcStyle (this=0x83bb478,
change=WebCore::Node::Force) at ../../dom/Element.cpp:590
#18 0xb728f902 in WebCore::Element::recalcStyle (this=0x83d6060,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#19 0xb728f902 in WebCore::Element::recalcStyle (this=0x84da758,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#20 0xb728f902 in WebCore::Element::recalcStyle (this=0x84d9870,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#21 0xb728f902 in WebCore::Element::recalcStyle (this=0x84d9ab0,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#22 0xb728f902 in WebCore::Element::recalcStyle (this=0x84db910,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#23 0xb728f902 in WebCore::Element::recalcStyle (this=0x84db7e8,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#24 0xb728f902 in WebCore::Element::recalcStyle (this=0x84dbc60,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#25 0xb728f902 in WebCore::Element::recalcStyle (this=0x84dbd70,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#26 0xb728f902 in WebCore::Element::recalcStyle (this=0x84dcb48,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#27 0xb728f902 in WebCore::Element::recalcStyle (this=0x84dcc68,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#28 0xb728f902 in WebCore::Element::recalcStyle (this=0x827f4b0,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#29 0xb728f902 in WebCore::Element::recalcStyle (this=0x82f5b58,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#30 0xb728f902 in WebCore::Element::recalcStyle (this=0x813c100,
change=WebCore::Node::Force) at ../../dom/Element.cpp:626
#31 0xb7277dc9 in WebCore::Document::recalcStyle (this=0x815c0c0,
change=WebCore::Node::Force) at ../../dom/Document.cpp:1004
#32 0xb7276ee4 in WebCore::Document::updateStyleSelector (this=0x815c0c0) at
../../dom/Document.cpp:1898
#33 0xb7276fa0 in WebCore::Document::stylesheetLoaded (this=0x839e61c) at
../../dom/Document.cpp:1877
#34 0xb73a5b12 in WebCore::HTMLLinkElement::setCSSStyleSheet (this=0x8251930,
url=@0xbf92fff4, charset=@0xbf92fff0, sheetStr=@0x82c0fd0)
    at ../../html/HTMLLinkElement.cpp:230
#35 0xb7458313 in WebCore::CachedCSSStyleSheet::checkNotify (this=0x82c0ee8) at
../../loader/CachedCSSStyleSheet.cpp:89
#36 0xb74589dd in WebCore::CachedCSSStyleSheet::data (this=0x82c0ee8,
data=@0x8499e20, allDataReceived=true)
    at ../../loader/CachedCSSStyleSheet.cpp:79
#37 0xb74a32b6 in WebCore::Loader::didFinishLoading (this=0xb781cf98,
loader=0x812d188) at ../../loader/loader.cpp:107
#38 0xb749cdee in WebCore::SubresourceLoader::didFinishLoading (this=0x812d188)
at ../../loader/SubresourceLoader.cpp:189
#39 0xb74978a1 in WebCore::ResourceLoader::didFinishLoading (this=0x812d188) at
../../loader/ResourceLoader.cpp:323
#40 0xb762a9c6 in WebCore::ResourceHandleManager::remove (this=0x8071b78,
job=0x84993c0) at ../../platform/network/gdk/ResourceHandleManager.cpp:175
#41 0xb762b02e in WebCore::ResourceHandleManager::downloadTimerCallback
(this=0x8071b78, timer=0x8071b80)
    at ../../platform/network/gdk/ResourceHandleManager.cpp:144
#42 0xb762b56b in WebCore::Timer<WebCore::ResourceHandleManager>::fired
(this=0x8071b80) at ../../platform/Timer.h:96
#43 0xb7510bb4 in WebCore::TimerBase::fireTimers (fireTime=1171588046.3096969,
firingTimers=@0xbf9303cc) at ../../platform/Timer.cpp:336
#44 0xb7510caf in WebCore::TimerBase::sharedTimerFired () at
../../platform/Timer.cpp:353
#45 0xb762530e in timeout_cb () at ../../platform/gdk/SharedTimerLinux.cpp:48


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list