[Webkit-unassigned] [Bug 17408] Reproducible crash below Node::querySelectorAll under guard malloc

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sun Feb 17 07:39:23 PST 2008 

http://bugs.webkit.org/show_bug.cgi?id=17408





------- Comment #1 from mrowe at apple.com  2008-02-17 07:39 PDT -------
Created an attachment (id=19173)
 --> (http://bugs.webkit.org/attachment.cgi?id=19173&action=view)
Crash log

Top of crash log:

Exception Type:  EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x00000000f0365fec
Crashed Thread:  0

Thread 0 Crashed:
0   com.apple.WebCore                   0x01bbb98f
WebCore::RenderStyle::setAffectedByAttributeSelectors() + 9
(RenderStyle.h:2120)
1   com.apple.WebCore                   0x01ba6961
WebCore::CSSStyleSelector::checkOneSelector(WebCore::CSSSelector*,
WebCore::Element*, bool, bool) + 729 (CSSStyleSelector.cpp:1582)
2   com.apple.WebCore                   0x01ba910f
WebCore::CSSStyleSelector::checkSelector(WebCore::CSSSelector*,
WebCore::Element*, bool, bool) + 151 (CSSStyleSelector.cpp:1411)
3   com.apple.WebCore                   0x01ba9602
WebCore::CSSStyleSelector::checkSelector(WebCore::CSSSelector*) + 66
(CSSStyleSelector.cpp:1386)
4   com.apple.WebCore                   0x021505d1
WebCore::SelectorNodeList::SelectorNodeList(WTF::PassRefPtr<WebCore::Node>,
WebCore::CSSSelector*) + 169 (SelectorNodeList.cpp:48)
5   com.apple.WebCore                   0x0215064d
WebCore::SelectorNodeList::SelectorNodeList(WTF::PassRefPtr<WebCore::Node>,
WebCore::CSSSelector*) + 31 (SelectorNodeList.cpp:55)
6   com.apple.WebCore                   0x01ed5ba1
WebCore::Node::querySelectorAll(WebCore::String const&, int&) + 519
(Node.cpp:1268)
7   com.apple.WebCore                   0x01de8dfb
WebCore::jsDocumentPrototypeFunctionQuerySelectorAll(KJS::ExecState*,
KJS::JSObject*, KJS::List const&) + 171 (JSDocument.cpp:1080)
8   com.apple.JavaScriptCore            0x0025fc74
KJS::PrototypeFunction::callAsFunction(KJS::ExecState*, KJS::JSObject*,
KJS::List const&) + 34 (function.cpp:883)
9   com.apple.JavaScriptCore            0x0027c83c
KJS::JSObject::call(KJS::ExecState*, KJS::JSObject*, KJS::List const&) + 222
(object.cpp:96)
10  com.apple.JavaScriptCore            0x002d73e6
KJS::FunctionCallDotNode::inlineEvaluate(KJS::ExecState*) + 776
(nodes.cpp:1225)


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list