[Webkit-unassigned] [Bug 25754] New: crash while deleting widget from google.com/ig

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed May 13 11:53:06 PDT 2009 

https://bugs.webkit.org/show_bug.cgi?id=25754

           Summary: crash while deleting widget from google.com/ig
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: PC
               URL: http://google.com/ig
        OS/Version: Linux
            Status: UNCONFIRMED
          Severity: Major
          Priority: P2
         Component: JavaScriptCore
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: tonikitoo at gmail.com
                CC: kenneth.christiansen at openbossa.org


svn/master build hash 6d5187895d87370170ca5d678c8d987730289545
port: qt
steps to reproduce:
1) go to google.com/ig
2) go in
3) try delete a previously added widget (e.g. gchat)


backtrace:


ASSERTION FAILED: root()->m_widgetsThatPreventBlitting
(../../../WebCore/platform/qt/ScrollViewQt.cpp:55 void
WebCore::ScrollView::platformRemoveChild(WebCore::Widget*))

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0xb3e50920 (LWP 11466)]
0xb6ba636f in WebCore::ScrollView::platformRemoveChild (this=0x9f9b488,
child=0xb21f6e0) at ../../../WebCore/platform/qt/ScrollViewQt.cpp:55
55          ASSERT(root()->m_widgetsThatPreventBlitting);
(gdb) bt
#0  0xb6ba636f in WebCore::ScrollView::platformRemoveChild (this=0x9f9b488,
child=0xb21f6e0) at ../../../WebCore/platform/qt/ScrollViewQt.cpp:55
#1  0xb69cb420 in WebCore::ScrollView::removeChild (this=0x9f9b488,
child=0xb21f6e0) at ../../../WebCore/platform/ScrollView.cpp:76
#2  0xb6b078b7 in WebCore::RenderWidget::destroy (this=0xb35fa94) at
../../../WebCore/rendering/RenderWidget.cpp:86
#3  0xb6686c6e in WebCore::Node::detach (this=0xafd3928) at
../../../WebCore/dom/Node.cpp:1139
#4  0xb6610c53 in WebCore::ContainerNode::detach (this=0xafd3928) at
../../../WebCore/dom/ContainerNode.cpp:589
#5  0xb6661eb2 in WebCore::Element::detach (this=0xafd3928) at
../../../WebCore/dom/Element.cpp:732
#6  0xb67e8691 in WebCore::HTMLPlugInElement::detach (this=0xafd3928) at
../../../WebCore/html/HTMLPlugInElement.cpp:73
#7  0xb6610c21 in WebCore::ContainerNode::detach (this=0xa7ea3b0) at
../../../WebCore/dom/ContainerNode.cpp:587
#8  0xb6661eb2 in WebCore::Element::detach (this=0xa7ea3b0) at
../../../WebCore/dom/Element.cpp:732
#9  0xb6610c21 in WebCore::ContainerNode::detach (this=0xaf637d0) at
../../../WebCore/dom/ContainerNode.cpp:587
#10 0xb6661eb2 in WebCore::Element::detach (this=0xaf637d0) at
../../../WebCore/dom/Element.cpp:732
#11 0xb6610c21 in WebCore::ContainerNode::detach (this=0xa53d2e0) at
../../../WebCore/dom/ContainerNode.cpp:587
#12 0xb6661eb2 in WebCore::Element::detach (this=0xa53d2e0) at
../../../WebCore/dom/Element.cpp:732
#13 0xb6610c21 in WebCore::ContainerNode::detach (this=0xae40168) at
../../../WebCore/dom/ContainerNode.cpp:587
#14 0xb661e768 in WebCore::Document::detach (this=0xae40168) at
../../../WebCore/dom/Document.cpp:1342
#15 0xb694aeca in WebCore::Frame::setView (this=0xb426440, view=0x0) at
../../../WebCore/page/Frame.cpp:234
#16 0xb688cf0e in WebCore::FrameLoader::closeAndRemoveChild (this=0x9a1ee4c,
child=0xb426440) at ../../../WebCore/loader/FrameLoader.cpp:3449
#17 0xb68a0f70 in WebCore::FrameLoader::detachFromParent (this=0xb42646c) at
../../../WebCore/loader/FrameLoader.cpp:3531
#18 0xb68a101e in WebCore::FrameLoader::frameDetached (this=0xb42646c) at
../../../WebCore/loader/FrameLoader.cpp:3512
#19 0xb67b7df0 in WebCore::HTMLFrameOwnerElement::willRemove (this=0xa4feee8)
at ../../../WebCore/html/HTMLFrameOwnerElement.cpp:45
#20 0xb66125f5 in WebCore::ContainerNode::willRemove (this=0x9d46b28) at
../../../WebCore/dom/ContainerNode.cpp:281
#21 0xb66125f5 in WebCore::ContainerNode::willRemove (this=0xa1730f0) at
../../../WebCore/dom/ContainerNode.cpp:281
#22 0xb66125f5 in WebCore::ContainerNode::willRemove (this=0x9f7e488) at
../../../WebCore/dom/ContainerNode.cpp:281
#23 0xb66125f5 in WebCore::ContainerNode::willRemove (this=0xb117148) at
../../../WebCore/dom/ContainerNode.cpp:281
#24 0xb66125f5 in WebCore::ContainerNode::willRemove (this=0xb4278e8) at
../../../WebCore/dom/ContainerNode.cpp:281
#25 0xb66125f5 in WebCore::ContainerNode::willRemove (this=0xb15f2b8) at
../../../WebCore/dom/ContainerNode.cpp:281
#26 0xb66125f5 in WebCore::ContainerNode::willRemove (this=0xaf970a0) at
../../../WebCore/dom/ContainerNode.cpp:281
#27 0xb66125f5 in WebCore::ContainerNode::willRemove (this=0xa2b9910) at
../../../WebCore/dom/ContainerNode.cpp:281
#28 0xb66125f5 in WebCore::ContainerNode::willRemove (this=0xb40d918) at
../../../WebCore/dom/ContainerNode.cpp:281
#29 0xb660f764 in willRemoveChild (child=0xb40d918) at
../../../WebCore/dom/ContainerNode.cpp:295
#30 0xb6612335 in WebCore::ContainerNode::removeChild (this=0xb3dc178,
oldChild=0xb40d918, ec=@0xbf937f54) at
../../../WebCore/dom/ContainerNode.cpp:322
#31 0xb66127ae in WebCore::ContainerNode::replaceChild (this=0xb3dc178,
newChild={m_ptr = 0xbf937f48}, oldChild=0xb40d918, ec=@0xbf937f54, 
    shouldLazyAttach=true) at ../../../WebCore/dom/ContainerNode.cpp:191
#32 0xb64d3d7b in WebCore::JSNode::replaceChild (this=0xad235460,
exec=0xb249d234, args=@0xbf938c14) at
../../../WebCore/bindings/js/JSNodeCustom.cpp:84
#33 0xb6ed27dd in WebCore::jsNodePrototypeFunctionReplaceChild
(exec=0xb249d234, thisValue={m_ptr = 0xad235460}, args=@0xbf938c14)
    at generated/debug/JSNode.cpp:1277
#34 0xb63ef7d0 in JSC::Interpreter::privateExecute (this=0x9a32e58,
flag=JSC::Interpreter::Normal, registerFile=0x9a32e60, callFrame=0xb249d1e0, 
    exception=0x9cba110) at
../../../JavaScriptCore/interpreter/Interpreter.cpp:3071
#35 0xb63f3930 in JSC::Interpreter::execute (this=0x9a32e58,
functionBodyNode=0xa6c7470, callFrame=0x9cd0f3c, function=0xad235f60,
thisObj=0xb2480000, 
    args=@0xbf939b98, scopeChain=0xb174910, exception=0x9cba110) at
../../../JavaScriptCore/interpreter/Interpreter.cpp:709
#36 0xb6437a26 in JSC::JSFunction::call (this=0xad235f60, exec=0x9cd0f3c,
thisValue={m_ptr = 0xb2480000}, args=@0xbf939b98)
---Type <return> to continue, or q <return> to quit--- 
    at ../../../JavaScriptCore/runtime/JSFunction.cpp:111
#37 0xb640b75f in JSC::call (exec=0x9cd0f3c, functionObject={m_ptr =
0xad235f60}, callType=JSC::CallTypeJS, callData=@0xbf939ba0, thisValue=
      {m_ptr = 0xb2480000}, args=@0xbf939b98) at
../../../JavaScriptCore/runtime/CallData.cpp:39
#38 0xb64fdc18 in WebCore::ScheduledAction::executeFunctionInContext
(this=0xa07bd70, globalObject=0xb248fda0, thisValue={m_ptr = 0xb2480000})
    at ../../../WebCore/bindings/js/ScheduledAction.cpp:105
#39 0xb64fdf6e in WebCore::ScheduledAction::execute (this=0xa07bd70,
document=0xa757a50) at ../../../WebCore/bindings/js/ScheduledAction.cpp:125
#40 0xb64fe076 in WebCore::ScheduledAction::execute (this=0xa07bd70,
context=0xa757a80) at ../../../WebCore/bindings/js/ScheduledAction.cpp:76
#41 0xb691ef07 in WebCore::DOMTimer::fired (this=0xa273660) at
../../../WebCore/page/DOMTimer.cpp:125
#42 0xb69e6ce9 in WebCore::ThreadTimers::fireTimers (this=0x9a188a8,
fireTime=1242240399.7357991, firingTimers=@0xbf939d24)
    at ../../../WebCore/platform/ThreadTimers.cpp:111
#43 0xb69e6ea8 in WebCore::ThreadTimers::sharedTimerFiredInternal
(this=0x9a188a8) at ../../../WebCore/platform/ThreadTimers.cpp:141
#44 0xb69e6f27 in WebCore::ThreadTimers::sharedTimerFired () at
../../../WebCore/platform/ThreadTimers.cpp:122
#45 0xb6ba6480 in WebCore::SharedTimerQt::timerEvent (this=0x9a18968,
ev=0xbf93a21c) at ../../../WebCore/platform/qt/SharedTimerQt.cpp:105
#46 0xb477a8c6 in QObject::event (this=0x9a18968, e=0xbf93a21c) at
kernel/qobject.cpp:1073
#47 0xb49f9f37 in QApplicationPrivate::notify_helper (this=0x985b550,
receiver=0x9a18968, e=0xbf93a21c) at kernel/qapplication.cpp:4057
#48 0xb49fa2ac in QApplication::notify (this=0xbf93a584, receiver=0x9a18968,
e=0xbf93a21c) at kernel/qapplication.cpp:3604
#49 0xb4762ad4 in QCoreApplication::notifyInternal (this=0xbf93a584,
receiver=0x9a18968, event=0xbf93a21c) at kernel/qcoreapplication.cpp:610
#50 0xb6ba01e3 in QCoreApplication::sendEvent (receiver=0x9a18968,
event=0xbf93a21c) at /usr/include/QtCore/qcoreapplication.h:213
#51 0xb479d4a4 in QTimerInfoList::activateTimers (this=0x9864984) at
kernel/qeventdispatcher_unix.cpp:572
#52 0xb479ac6a in timerSourceDispatch (source=0x9864950) at
kernel/qeventdispatcher_glib.cpp:164
#53 0xb4046b88 in IA__g_main_context_dispatch (context=0x9863c90) at
/build/buildd/glib2.0-2.20.1/glib/gmain.c:1814
#54 0xb404a0eb in g_main_context_iterate (context=0x9863c90, block=1,
dispatch=1, self=0x9861610) at /build/buildd/glib2.0-2.20.1/glib/gmain.c:2448
#55 0xb404a268 in IA__g_main_context_iteration (context=0x9863c90, may_block=1)
at /build/buildd/glib2.0-2.20.1/glib/gmain.c:2511
#56 0xb4799d66 in QEventDispatcherGlib::processEvents (this=0x9861370, flags={i
= -1080843356}) at kernel/qeventdispatcher_glib.cpp:324
#57 0xb4ac6174 in QGuiEventDispatcherGlib::processEvents (this=0x9861370,
flags={i = -1080843308}) at kernel/qguieventdispatcher_glib.cpp:202
#58 0xb475f0f0 in QEventLoop::processEvents (this=0xbf93a468, flags={i =
-1080843236}) at kernel/qeventloop.cpp:149
#59 0xb475f34b in QEventLoop::exec (this=0xbf93a468, flags={i = -1080843152})
at kernel/qeventloop.cpp:200
#60 0xb4763429 in QCoreApplication::exec () at kernel/qcoreapplication.cpp:888
#61 0xb49f9c50 in QApplication::exec () at kernel/qapplication.cpp:3526
#62 0x080594ab in main (argc=Cannot access memory at address 0x0
) at /home/agomes/webkit/staikos/webkit/WebKit/qt/QtLauncher/main.cpp:455


-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list