[Webkit-unassigned] [Bug 14503] REGRESSION: creating an iframe from javascript will cause safari to crash after leaving webpage

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sat Jul 7 11:04:56 PDT 2007


http://bugs.webkit.org/show_bug.cgi?id=14503


pewtermoose at gmail.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |pewtermoose at gmail.com
             Status|UNCONFIRMED                 |NEW
     Ever Confirmed|0                           |1
           Keywords|                            |HasReduction, Regression
           Priority|P2                          |P1
            Summary|creating an iframe from     |REGRESSION: creating an
                   |javascript will cause safari|iframe from javascript will
                   |to crash after leaving      |cause safari to crash after
                   |webpage                     |leaving webpage




------- Comment #5 from pewtermoose at gmail.com  2007-07-07 11:04 PDT -------
The attached testcase crashes Safari on Windows XP with a local debug build of
r24086. This does not crash in Safari 3.0.2 Beta.

*----> Stack Back Trace <----*

*** ERROR: Symbol file could not be found.  Defaulted to export symbols for
c:\Program Files\Safari\CFNetwork.dll - 

WARNING: Stack unwind information not available. Following frames may be wrong.

ChildEBP RetAddr  Args to Child              

0012e838 1061e3c4 0012ea3c 0012eb28 6fc057ad
WebKit_debug!WebCore__Widget__~Widget+0x58

0012e934 10730ee7 0012eb1c 0012eb28 6fc057ad
WebKit_debug!WebCore__ScrollView__~ScrollView+0x84

0012ea3c 10730cab 0012ec28 0012eb28 6fc057ad
WebKit_debug!WebCore__FrameView__~FrameView+0x1f7

0012eb1c 105050e5 00000001 0012ec34 cccccccc
WebKit_debug!WebCore__FrameView__`scalar deleting destructor'+0x2b

0012eb3c 1063420f 0012ed10 0012ec34 6fc057ad
WebKit_debug!WebCore__FrameView__deref+0x55

0012ec28 10624766 00000000 0012ee28 0012ed1c
WebKit_debug!WTF__RefPtr<WebCore__FrameView>__operator=+0x4f

0012ed10 1072ac32 00000000 0012ef30 0012ee34
WebKit_debug!WebCore__Frame__setView+0xb6

0012ee28 106f6bf5 034db7c0 0012f028 0012f030
WebKit_debug!WebCore__FrameTree__removeChild+0x42

0012ef30 106f6066 0012f10c 0012f030 6fc057ad
WebKit_debug!WebCore__FrameLoader__detachFromParent+0x105

0012f028 106f2fa2 0012f224 0012f118 6fc057ad
WebKit_debug!WebCore__FrameLoader__detachChildren+0x66

0012f10c 106f3b9b 031e6028 0012f468 0012f230
WebKit_debug!WebCore__FrameLoader__setDocumentLoader+0xf2

0012f224 106f36f1 00000000 0012f558 0012f91c
WebKit_debug!WebCore__FrameLoader__transitionToCommitted+0x18b

0012f468 107092b2 00000000 0012f650 0012f91c
WebKit_debug!WebCore__FrameLoader__commitProvisionalLoad+0xb1

0012f558 107094d7 0012f738 0012f91c 6fc057ad
WebKit_debug!WebCore__DocumentLoader__commitIfReady+0x62

0012f650 1070968b 02a88fb0 000024db 0012f820
WebKit_debug!WebCore__DocumentLoader__commitLoad+0x37

0012f738 106f1c0a 02a88fb0 000024db 0012f908
WebKit_debug!WebCore__DocumentLoader__receivedData+0x5b

0012f820 1099477e 02a88fb0 000024db 0012fa00
WebKit_debug!WebCore__FrameLoader__receivedData+0x3a

0012f908 10992cda 02a88fb0 000024db 0012f900
WebKit_debug!WebCore__MainResourceLoader__addData+0x4e

0012fa00 109956f0 02a88fb0 000024db 000024db
WebKit_debug!WebCore__ResourceLoader__didReceiveData+0x4a

0012fb00 109937c2 02a88fb0 000024db 000024db
WebKit_debug!WebCore__MainResourceLoader__didReceiveData+0xf0

0012fbf4 10710860 03492b78 02a88fb0 000024db
WebKit_debug!WebCore__ResourceLoader__didReceiveData+0x42

0012fd40 61832fe0 02a67c88 026dcef8 000024db
WebKit_debug!WebCore__didReceiveData+0xd0

018861d0 026dcef8 00000000 00000000 00030004
CFNetwork!CFURLConnectionResume+0x3f6

00000003 00000000 00000000 00000000 00000000 0x26dcef8


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.



More information about the webkit-unassigned mailing list