[Webkit-unassigned] [Bug 15367] Assertion failure inspecting a document including soft hyphen code (0xad)

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Oct 5 08:36:11 PDT 2007 

http://bugs.webkit.org/show_bug.cgi?id=15367





------- Comment #3 from ddkilzer at webkit.org  2007-10-05 08:36 PDT -------
(In reply to comment #1)
> ** This file may crash your browser.

Using a local debug build of WebKit r26042 with Safari 3 Public Beta v. 3.0.3
(522.12.1) on Mac OS X 10.4.10 (8R218), this does cause an assertion failure:

ASSERTION FAILED: lastWordBoundary == i
(/path/to/WebKit/WebCore/rendering/RenderText.cpp:586 virtual void
WebCore::RenderText::calcPrefWidths(int))
Segmentation fault

Exception:  EXC_BAD_ACCESS (0x0001)
Codes:      KERN_INVALID_ADDRESS (0x0001) at 0xbbadbeef

Thread 0 Crashed:
0   com.apple.WebCore           0x011d8a0c
WebCore::RenderText::calcPrefWidths(int) + 1408 (RenderText.cpp:586)
1   com.apple.WebCore           0x011d7c2c
WebCore::RenderText::trimmedPrefWidths(int, int&, bool&, int&, bool&, bool&,
bool&, int&, int&, int&, int&, bool&) + 224 (RenderText.cpp:432)
2   com.apple.WebCore           0x0116475c
WebCore::RenderBlock::calcInlinePrefWidths() + 2136 (RenderBlock.cpp:3741)
3   com.apple.WebCore           0x01164da8
WebCore::RenderBlock::calcPrefWidths() + 540 (RenderBlock.cpp:3395)
4   com.apple.WebCore           0x011ec12c
WebCore::RenderTableCell::calcPrefWidths() + 64 (RenderTableCell.cpp:109)
5   com.apple.WebCore           0x0131b4c4
WebCore::AutoTableLayout::recalcColumn(int) + 740 (AutoTableLayout.cpp:85)
6   com.apple.WebCore           0x0131bfd8
WebCore::AutoTableLayout::fullRecalc() + 1292 (AutoTableLayout.cpp:213)
7   com.apple.WebCore           0x0131d7bc
WebCore::AutoTableLayout::calcPrefWidths(int&, int&) + 52
(AutoTableLayout.cpp:254)
8   com.apple.WebCore           0x011f2398
WebCore::RenderTable::calcPrefWidths() + 192 (RenderTable.cpp:540)
9   com.apple.WebCore           0x01177498 WebCore::RenderBox::maxPrefWidth()
const + 80 (RenderBox.cpp:184)
10  com.apple.WebCore           0x011eeb08 WebCore::RenderTable::calcWidth() +
880 (RenderTable.cpp:244)
11  com.apple.WebCore           0x011f2614 WebCore::RenderTable::layout() + 492
(RenderTable.cpp:282)
12  com.apple.WebCore           0x016c07a8
WebCore::RenderObject::layoutIfNeeded() + 76 (RenderObject.h:477)
13  com.apple.WebCore           0x01174880
WebCore::RenderBlock::layoutBlockChildren(bool) + 1976 (RenderBlock.cpp:1215)
14  com.apple.WebCore           0x01175fdc
WebCore::RenderBlock::layoutBlock(bool) + 1616 (RenderBlock.cpp:585)
15  com.apple.WebCore           0x0115f810 WebCore::RenderBlock::layout() + 92
(RenderBlock.cpp:494)
16  com.apple.WebCore           0x016c07a8
WebCore::RenderObject::layoutIfNeeded() + 76 (RenderObject.h:477)
17  com.apple.WebCore           0x01174880
WebCore::RenderBlock::layoutBlockChildren(bool) + 1976 (RenderBlock.cpp:1215)
18  com.apple.WebCore           0x01175fdc
WebCore::RenderBlock::layoutBlock(bool) + 1616 (RenderBlock.cpp:585)
19  com.apple.WebCore           0x0115f810 WebCore::RenderBlock::layout() + 92
(RenderBlock.cpp:494)
20  com.apple.WebCore           0x016c07a8
WebCore::RenderObject::layoutIfNeeded() + 76 (RenderObject.h:477)
21  com.apple.WebCore           0x01174880
WebCore::RenderBlock::layoutBlockChildren(bool) + 1976 (RenderBlock.cpp:1215)
22  com.apple.WebCore           0x01175fdc
WebCore::RenderBlock::layoutBlock(bool) + 1616 (RenderBlock.cpp:585)
23  com.apple.WebCore           0x0115f810 WebCore::RenderBlock::layout() + 92
(RenderBlock.cpp:494)
24  com.apple.WebCore           0x011861cc WebCore::RenderView::layout() + 392
(RenderView.cpp:114)
25  com.apple.WebCore           0x011040f0 WebCore::FrameView::layout(bool) +
2500 (FrameView.cpp:435)
26  com.apple.WebCore           0x0110f4cc WebCore::Document::implicitClose() +
1440 (Document.cpp:1460)
27  com.apple.WebCore           0x01483bd8
WebCore::FrameLoader::checkCallImplicitClose() + 592 (FrameLoader.cpp:1309)
28  com.apple.WebCore           0x0148f770
WebCore::FrameLoader::checkCompleted() + 404 (FrameLoader.cpp:1255)
29  com.apple.WebCore           0x01490b7c
WebCore::FrameLoader::finishedParsing() + 116 (FrameLoader.cpp:1203)
30  com.apple.WebCore           0x011085c0 WebCore::Document::finishedParsing()
+ 84 (Document.cpp:3429)
31  com.apple.WebCore           0x01024928 WebCore::HTMLParser::finished() +
308 (HTMLParser.cpp:1427)
32  com.apple.WebCore           0x01028034 WebCore::HTMLTokenizer::end() + 336
(HTMLTokenizer.cpp:1555)
33  com.apple.WebCore           0x01028534 WebCore::HTMLTokenizer::finish() +
1212 (HTMLTokenizer.cpp:1596)
34  com.apple.WebCore           0x0110674c WebCore::Document::finishParsing() +
84 (Document.cpp:1560)
35  com.apple.WebCore           0x01492d9c
WebCore::FrameLoader::endIfNotLoadingMainResource() + 160
(FrameLoader.cpp:1030)
36  com.apple.WebCore           0x01492e80 WebCore::FrameLoader::end() + 44
(FrameLoader.cpp:1015)
37  com.apple.WebCore           0x01497f00
WebCore::DocumentLoader::finishedLoading() + 92 (DocumentLoader.cpp:321)
38  com.apple.WebCore           0x014898c8
WebCore::FrameLoader::finishedLoading() + 96 (FrameLoader.cpp:2737)
39  com.apple.WebCore           0x0149856c
WebCore::MainResourceLoader::didFinishLoading() + 272
(MainResourceLoader.cpp:305)
40  com.apple.WebCore           0x0149a88c
WebCore::ResourceLoader::didFinishLoading(WebCore::ResourceHandle*) + 60
41  com.apple.WebCore           0x0146d7a0 -[WebCoreResourceHandleAsDelegate
connectionDidFinishLoading:] + 204 (ResourceHandleMac.mm:456)
42  com.apple.Foundation        0x92c1589c
-[NSURLConnection(NSURLConnectionInternal) _sendDidFinishLoadingCallback] + 188
43  com.apple.Foundation        0x92c13b08
-[NSURLConnection(NSURLConnectionInternal) _sendCallbacks] + 556
44  com.apple.Foundation        0x92c13860 _sendCallbacks + 156
45  com.apple.CoreFoundation    0x907de4fc __CFRunLoopDoSources0 + 384
46  com.apple.CoreFoundation    0x907dda2c __CFRunLoopRun + 452
47  com.apple.CoreFoundation    0x907dd4ac CFRunLoopRunSpecific + 268
48  com.apple.HIToolbox         0x9329bb20 RunCurrentEventLoopInMode + 264
49  com.apple.HIToolbox         0x9329b1b4 ReceiveNextEventCommon + 380
50  com.apple.HIToolbox         0x9329b020
BlockUntilNextEventMatchingListInMode + 96
51  com.apple.AppKit            0x937a1ae4 _DPSNextEvent + 384
52  com.apple.AppKit            0x937a17a8 -[NSApplication
nextEventMatchingMask:untilDate:inMode:dequeue:] + 116
53  com.apple.Safari            0x00006770 0x1000 + 22384
54  com.apple.AppKit            0x9379dcec -[NSApplication run] + 472
55  com.apple.AppKit            0x9388e87c NSApplicationMain + 452
56  com.apple.Safari            0x0000244c 0x1000 + 5196
57  com.apple.Safari            0x0004f1b0 0x1000 + 319920


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list