[Webkit-unassigned] [Bug 14152] New: REGRESSION: closing a tab with a modified form, then hitting undo causes a crash

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Jun 14 16:31:50 PDT 2007 

http://bugs.webkit.org/show_bug.cgi?id=14152

           Summary: REGRESSION: closing a tab with a modified form, then
                    hitting undo causes a crash
           Product: WebKit
           Version: 522+ (nightly)
          Platform: Macintosh
        OS/Version: Mac OS X 10.4
            Status: NEW
          Keywords: Regression
          Severity: Normal
          Priority: P1
         Component: Forms
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: rachael at omnigroup.com


steps to reproduce:
1 . launch Safari 3.0 beta or a recent webkit nightly (reproduced with r23527)
- make sure tabs are enabled. I was unable to reproduce this with separate
windows instead of tabs.
2. open 2 tabs. in one (order is irrelevant) open a page with a text area (this
page would work fine!)
3. type stuff in the text area, then close the tab.
4. hit command z to undo, or select "Undo Typing" in the edit menu
5. crash!

here's the backtrace:
Date/Time:      2007-06-14 16:06:07.085 -0700
OS Version:     10.4.9 (Build 8P2137)
Report Version: 4

Command: Safari
Path:    /Applications/Safari.app/Contents/MacOS/Safari
Parent:  WindowServer [64]

Version:        3.0 (522.11)
Build Version:  2
Project Name:   WebBrowser
Source Version: 45221100

PID:    6991
Thread: 0

Exception:  EXC_BAD_ACCESS (0x0001)
Codes:      KERN_INVALID_ADDRESS (0x0001) at 0xac3e8495

Thread 0 Crashed:
0   libobjc.A.dylib             0x90a574c7 objc_msgSend + 23
1   com.apple.Foundation        0x928a20cb -[_NSUndoStack popAndInvoke] + 278
2   com.apple.Foundation        0x928a1f5d -[NSUndoManager undoNestedGroup] +
347
3   com.apple.AppKit            0x935d2a14 -[NSCellUndoManager undo] + 107
4   com.apple.AppKit            0x9337ad88 -[NSApplication sendAction:to:from:]
+ 107
5   com.apple.Safari            0x000184db 0x1000 + 95451
6   com.apple.AppKit            0x93428ce7 -[NSMenu
performActionForItemAtIndex:] + 455
7   com.apple.AppKit            0x93428a29 -[NSCarbonMenuImpl
performActionWithHighlightingForItemAtIndex:] + 103
8   com.apple.AppKit            0x93428680 -[NSMenu performKeyEquivalent:] +
766
9   com.apple.AppKit            0x934280a2 -[NSApplication
_handleKeyEquivalent:] + 254
10  com.apple.AppKit            0x9335bd87 -[NSApplication sendEvent:] + 3542
11  com.apple.Safari            0x00014c98 0x1000 + 81048
12  com.apple.AppKit            0x93286dfe -[NSApplication run] + 547
13  com.apple.AppKit            0x9327ad2f NSApplicationMain + 573
14  com.apple.Safari            0x00002302 0x1000 + 4866
15  com.apple.Safari            0x00048ef5 0x1000 + 294645


Reproduced with: Safari 3.0, Safari 2.0 with nightly revision 23527, internal
omniweb alphas on Webkit rev 22076
Not reproduced with : Safari 2.0 without modification, OmniWeb 5.5.4 which is
on rev 13302.


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list