[Webkit-unassigned] [Bug 12634] Regression: crash loading web archive
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Sat Feb 24 09:04:39 PST 2007
http://bugs.webkit.org/show_bug.cgi?id=12634
------- Comment #17 from jim.correia at pobox.com 2007-02-24 09:04 PDT -------
I can still reproduce this as of r19837, but don't yet have a 100% reduction of
the problem (since it seems to depend what ad CNN.com serves up on a given
reload.)
In the debugger I'm seeing that the ASSERT at the top of
FrameLoader::transitionToCommitted fails:
ASSERT(m_state == FrameStateProvisional);
m_state is already 1/FrameStateCommittedPage.
If we return (as we would in a release build) we end up in
FrameLoader::commitProvisionalLoad with a nil m_provisionalDocumentLoader,
which is used anyway, which is end reason for the crash.
I can seem to reproduce this more readily than others, but I'm not an expert on
this codebase. I'm happy to do more debugging (how did the FrameLoader get into
an unexpected state?) if someone can point me in the right direction.
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list