[Webkit-unassigned] [Bug 13591] New: REPRODUCIBLE CRASH inspecting embedded YouTube video
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri May 4 17:58:31 PDT 2007
http://bugs.webkit.org/show_bug.cgi?id=13591
Summary: REPRODUCIBLE CRASH inspecting embedded YouTube video
Product: WebKit
Version: 522+ (nightly)
Platform: Macintosh
URL: http://www.macrumors.com/2007/05/04/southpark-get-a-mac-
ad/
OS/Version: Mac OS X 10.4
Status: NEW
Keywords: NeedsReduction, NeedsRadar
Severity: Normal
Priority: P1
Component: Web Inspector
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: ddkilzer at webkit.org
* SUMMARY
Using the WebInspector to on an embedded YouTube video on the linked page
causes a crash.
* STEPS TO REPRODUCE
1. Open Safari/WebKit.
2. Navigate to the URL:
http://www.macrumors.com/2007/05/04/southpark-get-a-mac-ad/
3. Right-click near the video and select "Inspect Element".
4. Navigate to the <center> tag that holds the <object> tag in the Web
Inspector.
5. Disclose the <center> tag in the Web Inspector.
* EXPECTED RESULTS
A red highlight should be drawn around the embedded object.
* ACTUAL RESULTS
Safari/WebKit crashes.
* REGRESSION
Only tested with a local debug build of WebKit r21257 with Safari 2.0.4 (419.3)
on Mac OS X 10.4.9 (8P135).
* NOTES
Console output:
Segmentation fault
Stack trace:
Exception: EXC_BAD_ACCESS (0x0001)
Codes: KERN_INVALID_ADDRESS (0x0001) at 0x80fd21e0
Thread 0 Crashed:
0 libobjc.A.dylib 0x90a44c04 objc_msgSend_stret + 36
1 com.apple.WebKit 0x003b8130
-[WebInspector(WebInspectorScripting) highlightDOMNode:] + 100
(WebInspector.m:300)
2 libobjc.A.dylib 0x90a461f4 objc_msgSendv + 180
3 com.apple.Foundation 0x92bdcc94 -[NSInvocation invoke] + 944
4 com.apple.JavaScriptCore 0x00541b0c
KJS::Bindings::ObjcInstance::invokeMethod(KJS::ExecState*,
KJS::Bindings::MethodList const&, KJS::List const&) + 1888
(objc_instance.mm:190)
5 com.apple.JavaScriptCore 0x0053b96c
KJS::RuntimeMethod::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List
const&) + 404 (runtime_method.cpp:89)
6 com.apple.JavaScriptCore 0x0059c6a0
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 288
(object.cpp:97)
7 com.apple.JavaScriptCore 0x005c187c
KJS::FunctionCallDotNode::evaluate(KJS::ExecState*) + 992 (nodes.cpp:790)
8 com.apple.JavaScriptCore 0x005bdef8
KJS::ExprStatementNode::execute(KJS::ExecState*) + 220 (nodes.cpp:1723)
9 com.apple.JavaScriptCore 0x005ba83c
KJS::SourceElementsNode::execute(KJS::ExecState*) + 624 (nodes.cpp:2529)
10 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
11 com.apple.JavaScriptCore 0x005bdd80
KJS::IfNode::execute(KJS::ExecState*) + 504 (nodes.cpp:1742)
12 com.apple.JavaScriptCore 0x005ba83c
KJS::SourceElementsNode::execute(KJS::ExecState*) + 624 (nodes.cpp:2529)
13 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
14 com.apple.JavaScriptCore 0x005bdd80
KJS::IfNode::execute(KJS::ExecState*) + 504 (nodes.cpp:1742)
15 com.apple.JavaScriptCore 0x005ba6e8
KJS::SourceElementsNode::execute(KJS::ExecState*) + 284 (nodes.cpp:2523)
16 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
17 com.apple.JavaScriptCore 0x0058a8d8
KJS::DeclaredFunctionImp::execute(KJS::ExecState*) + 92 (function.cpp:319)
18 com.apple.JavaScriptCore 0x00599c70
KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List
const&) + 688 (function.cpp:107)
19 com.apple.JavaScriptCore 0x0059c6a0
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 288
(object.cpp:97)
20 com.apple.JavaScriptCore 0x005c20c8
KJS::FunctionCallResolveNode::evaluate(KJS::ExecState*) + 792 (nodes.cpp:694)
21 com.apple.JavaScriptCore 0x005bdef8
KJS::ExprStatementNode::execute(KJS::ExecState*) + 220 (nodes.cpp:1723)
22 com.apple.JavaScriptCore 0x005ba6e8
KJS::SourceElementsNode::execute(KJS::ExecState*) + 284 (nodes.cpp:2523)
23 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
24 com.apple.JavaScriptCore 0x0058a8d8
KJS::DeclaredFunctionImp::execute(KJS::ExecState*) + 92 (function.cpp:319)
25 com.apple.JavaScriptCore 0x00599c70
KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List
const&) + 688 (function.cpp:107)
26 com.apple.JavaScriptCore 0x0059c6a0
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 288
(object.cpp:97)
27 com.apple.JavaScriptCore 0x005c187c
KJS::FunctionCallDotNode::evaluate(KJS::ExecState*) + 992 (nodes.cpp:790)
28 com.apple.JavaScriptCore 0x005bdef8
KJS::ExprStatementNode::execute(KJS::ExecState*) + 220 (nodes.cpp:1723)
29 com.apple.JavaScriptCore 0x005bdd80
KJS::IfNode::execute(KJS::ExecState*) + 504 (nodes.cpp:1742)
30 com.apple.JavaScriptCore 0x005ba83c
KJS::SourceElementsNode::execute(KJS::ExecState*) + 624 (nodes.cpp:2529)
31 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
32 com.apple.JavaScriptCore 0x0058a8d8
KJS::DeclaredFunctionImp::execute(KJS::ExecState*) + 92 (function.cpp:319)
33 com.apple.JavaScriptCore 0x00599c70
KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List
const&) + 688 (function.cpp:107)
34 com.apple.JavaScriptCore 0x0059c6a0
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 288
(object.cpp:97)
35 com.apple.JavaScriptCore 0x005c187c
KJS::FunctionCallDotNode::evaluate(KJS::ExecState*) + 992 (nodes.cpp:790)
36 com.apple.JavaScriptCore 0x005bdef8
KJS::ExprStatementNode::execute(KJS::ExecState*) + 220 (nodes.cpp:1723)
37 com.apple.JavaScriptCore 0x005ba83c
KJS::SourceElementsNode::execute(KJS::ExecState*) + 624 (nodes.cpp:2529)
38 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
39 com.apple.JavaScriptCore 0x005bdd80
KJS::IfNode::execute(KJS::ExecState*) + 504 (nodes.cpp:1742)
40 com.apple.JavaScriptCore 0x005ba83c
KJS::SourceElementsNode::execute(KJS::ExecState*) + 624 (nodes.cpp:2529)
41 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
42 com.apple.JavaScriptCore 0x0058a8d8
KJS::DeclaredFunctionImp::execute(KJS::ExecState*) + 92 (function.cpp:319)
43 com.apple.JavaScriptCore 0x00599c70
KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List
const&) + 688 (function.cpp:107)
44 com.apple.JavaScriptCore 0x0059c6a0
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 288
(object.cpp:97)
45 com.apple.JavaScriptCore 0x005c187c
KJS::FunctionCallDotNode::evaluate(KJS::ExecState*) + 992 (nodes.cpp:790)
46 com.apple.JavaScriptCore 0x005bdef8
KJS::ExprStatementNode::execute(KJS::ExecState*) + 220 (nodes.cpp:1723)
47 com.apple.JavaScriptCore 0x005ba6e8
KJS::SourceElementsNode::execute(KJS::ExecState*) + 284 (nodes.cpp:2523)
48 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
49 com.apple.JavaScriptCore 0x0058a8d8
KJS::DeclaredFunctionImp::execute(KJS::ExecState*) + 92 (function.cpp:319)
50 com.apple.JavaScriptCore 0x00599c70
KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List
const&) + 688 (function.cpp:107)
51 com.apple.JavaScriptCore 0x0059c6a0
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 288
(object.cpp:97)
52 com.apple.JavaScriptCore 0x005c20c8
KJS::FunctionCallResolveNode::evaluate(KJS::ExecState*) + 792 (nodes.cpp:694)
53 com.apple.JavaScriptCore 0x005bdef8
KJS::ExprStatementNode::execute(KJS::ExecState*) + 220 (nodes.cpp:1723)
54 com.apple.JavaScriptCore 0x005ba6e8
KJS::SourceElementsNode::execute(KJS::ExecState*) + 284 (nodes.cpp:2523)
55 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
56 com.apple.JavaScriptCore 0x005b83a8
KJS::GlobalFuncImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List
const&) + 1080 (function.cpp:806)
57 com.apple.JavaScriptCore 0x0059c6a0
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 288
(object.cpp:97)
58 com.apple.JavaScriptCore 0x005c20c8
KJS::FunctionCallResolveNode::evaluate(KJS::ExecState*) + 792 (nodes.cpp:694)
59 com.apple.JavaScriptCore 0x005bdef8
KJS::ExprStatementNode::execute(KJS::ExecState*) + 220 (nodes.cpp:1723)
60 com.apple.JavaScriptCore 0x005bdd80
KJS::IfNode::execute(KJS::ExecState*) + 504 (nodes.cpp:1742)
61 com.apple.JavaScriptCore 0x005ba83c
KJS::SourceElementsNode::execute(KJS::ExecState*) + 624 (nodes.cpp:2529)
62 com.apple.JavaScriptCore 0x0058a788
KJS::BlockNode::execute(KJS::ExecState*) + 216 (nodes.cpp:1700)
63 com.apple.JavaScriptCore 0x0058a8d8
KJS::DeclaredFunctionImp::execute(KJS::ExecState*) + 92 (function.cpp:319)
64 com.apple.JavaScriptCore 0x00599c70
KJS::FunctionImp::callAsFunction(KJS::ExecState*, KJS::JSObject*, KJS::List
const&) + 688 (function.cpp:107)
65 com.apple.JavaScriptCore 0x0059c6a0
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 288
(object.cpp:97)
66 com.apple.WebCore 0x012d3b54
KJS::JSAbstractEventListener::handleEvent(WebCore::Event*, bool) + 736
(kjs_events.cpp:123)
67 com.apple.WebCore 0x012940e4
WebCore::EventTargetNode::handleLocalEvents(WebCore::Event*, bool) + 548
(EventTargetNode.cpp:166)
68 com.apple.WebCore 0x012920a8
WebCore::EventTargetNode::dispatchGenericEvent(WTF::PassRefPtr<WebCore::Event>,
int&, bool) + 1036 (EventTargetNode.cpp:207)
69 com.apple.WebCore 0x01294d90
WebCore::EventTargetNode::dispatchEvent(WTF::PassRefPtr<WebCore::Event>, int&,
bool, WebCore::EventTarget*) + 396 (EventTargetNode.cpp:308)
70 com.apple.WebCore 0x01294e24
WebCore::EventTargetNode::dispatchEvent(WTF::PassRefPtr<WebCore::Event>, int&,
bool) + 80 (EventTargetNode.cpp:292)
71 com.apple.WebCore 0x014b3ac0
WebCore::EventHandler::defaultKeyboardEventHandler(WebCore::KeyboardEvent*) +
908 (EventHandler.cpp:1367)
72 com.apple.WebCore 0x0129520c
WebCore::EventTargetNode::defaultEventHandler(WebCore::Event*) + 308
(EventTargetNode.cpp:583)
73 com.apple.WebCore 0x012926e4
WebCore::EventTargetNode::dispatchGenericEvent(WTF::PassRefPtr<WebCore::Event>,
int&, bool) + 2632 (EventTargetNode.cpp:266)
74 com.apple.WebCore 0x01294d90
WebCore::EventTargetNode::dispatchEvent(WTF::PassRefPtr<WebCore::Event>, int&,
bool, WebCore::EventTarget*) + 396 (EventTargetNode.cpp:308)
75 com.apple.WebCore 0x01294e24
WebCore::EventTargetNode::dispatchEvent(WTF::PassRefPtr<WebCore::Event>, int&,
bool) + 80 (EventTargetNode.cpp:292)
76 com.apple.WebCore 0x01292e10
WebCore::EventTargetNode::dispatchKeyEvent(WebCore::PlatformKeyboardEvent
const&) + 260 (EventTargetNode.cpp:370)
77 com.apple.WebCore 0x014af0bc
WebCore::EventHandler::keyEvent(WebCore::PlatformKeyboardEvent const&) + 152
(EventHandler.cpp:1333)
78 com.apple.WebCore 0x014ac90c
WebCore::EventHandler::keyEvent(NSEvent*) + 524 (EventHandlerMac.mm:138)
79 com.apple.WebKit 0x00356ac0 -[WebHTMLView
performKeyEquivalent:] + 544 (WebHTMLView.mm:4002)
80 com.apple.AppKit 0x9383eb68 -[NSView
performKeyEquivalent:] + 140
81 com.apple.AppKit 0x9383eb68 -[NSView
performKeyEquivalent:] + 140
82 com.apple.AppKit 0x9383eb68 -[NSView
performKeyEquivalent:] + 140
83 com.apple.AppKit 0x9383eb68 -[NSView
performKeyEquivalent:] + 140
84 com.apple.AppKit 0x9383eac8 -[NSWindow
performKeyEquivalent:] + 32
85 com.apple.AppKit 0x93899820 -[NSApplication
_handleKeyEquivalent:] + 56
86 com.apple.AppKit 0x937a3408 -[NSApplication sendEvent:]
+ 2944
87 com.apple.Safari 0x00021238 0x1000 + 131640
88 com.apple.AppKit 0x9379ad10 -[NSApplication run] + 508
89 com.apple.AppKit 0x9388b87c NSApplicationMain + 452
90 com.apple.Safari 0x0005c77c 0x1000 + 374652
91 com.apple.Safari 0x0005c624 0x1000 + 374308
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list