[Webkit-unassigned] [Bug 33006] New: Crashing with CSS hover and -webkit-box-shadow on Safari, Latest WebKit

Mon Dec 28 19:41:58 PST 2009

https://bugs.webkit.org/show_bug.cgi?id=33006

           Summary: Crashing with CSS hover and -webkit-box-shadow on
                    Safari, Latest WebKit
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Macintosh Intel
               URL: http://taiyolab.com/webkitreport/mouse_event_crash.htm
                    l
        OS/Version: Mac OS X 10.6
            Status: UNCONFIRMED
          Severity: Critical
          Priority: P1
         Component: CSS
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: taiyoster at gmail.com

Element which styled with "-webkit-box-shadow" and pseudo CSS class "hover"
makes Safari 4 and WebKit.app to crash.

Reproducing BUG
http://taiyolab.com/webkitreport/mouse_event_crash.html

1. Place your pointer on "Upper container"
2. Safari 4, WebKit.app crashes.

Related crashed thread on log

Thread 0 Crashed:  Dispatch queue: com.apple.main-thread
0   com.apple.WebCore                 0x00007fff8287dde6
WebCore::RenderLayer::updateHoverActiveState(WebCore::HitTestRequest const&,
WebCore::HitTestResult&) + 582
1   com.apple.WebCore                 0x00007fff8287ca20
WebCore::RenderLayer::hitTest(WebCore::HitTestRequest const&,
WebCore::HitTestResult&) + 224
2   com.apple.WebCore                 0x00007fff8287c89b
WebCore::Document::prepareMouseEvent(WebCore::HitTestRequest const&,
WebCore::IntPoint const&, WebCore::PlatformMouseEvent const&) + 91
3   com.apple.WebCore                 0x00007fff8287c6e0
WebCore::EventHandler::prepareMouseEvent(WebCore::HitTestRequest const&,
WebCore::PlatformMouseEvent const&) + 80
4   com.apple.WebCore                 0x00007fff8287c2a5
WebCore::EventHandler::handleMouseMoveEvent(WebCore::PlatformMouseEvent const&,
WebCore::HitTestResult*) + 389
5   com.apple.WebCore                 0x00007fff8287c06a
WebCore::EventHandler::mouseMoved(WebCore::PlatformMouseEvent const&) + 74
6   com.apple.WebCore                 0x00007fff8287bcba
WebCore::EventHandler::mouseMoved(NSEvent*) + 202
7   com.apple.WebKit                  0x00007fff8231511f
-[WebHTMLView(WebPrivate) _updateMouseoverWithEvent:] + 927
8   com.apple.Foundation              0x00007fff80c6c85a _nsnote_callback + 167
9   com.apple.CoreFoundation          0x00007fff855a0e3a __CFXNotificationPost
+ 954
10  com.apple.CoreFoundation          0x00007fff8558d3e8
_CFXNotificationPostNotification + 200
11  com.apple.Foundation              0x00007fff80c637c4 -[NSNotificationCenter
postNotificationName:object:userInfo:] + 101
12  com.apple.AppKit                  0x00007fff8808252a forwardMethod + 104
13  com.apple.AppKit                  0x00007fff8808252a forwardMethod + 104
14  com.apple.AppKit                  0x00007fff8808252a forwardMethod + 104
15  com.apple.AppKit                  0x00007fff8808252a forwardMethod + 104
16  com.apple.AppKit                  0x00007fff8808252a forwardMethod + 104
17  com.apple.AppKit                  0x00007fff8808252a forwardMethod + 104
18  com.apple.AppKit                  0x00007fff8808252a forwardMethod + 104
19  com.apple.AppKit                  0x00007fff8808252a forwardMethod + 104
20  com.apple.AppKit                  0x00007fff881503af -[NSWindow sendEvent:]
+ 8769
21  com.apple.Safari                  0x0000000100049117 0x100000000 + 299287
22  com.apple.AppKit                  0x00007fff88084c19 -[NSApplication
sendEvent:] + 4198
23  com.apple.Safari                  0x0000000100031c10 0x100000000 + 203792
24  com.apple.AppKit                  0x00007fff8801b796 -[NSApplication run] +
474
25  com.apple.AppKit                  0x00007fff88014468 NSApplicationMain +
364
26  com.apple.Safari                  0x0000000100001a28 0x100000000 + 6696

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.