[Webkit-unassigned] [Bug 55054] New: Crash in WebView::topLevelFrame when running fast/dom/window-domurl-crash.html on Windows with full page heap enabled
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Feb 23 09:09:06 PST 2011
https://bugs.webkit.org/show_bug.cgi?id=55054
Summary: Crash in WebView::topLevelFrame when running
fast/dom/window-domurl-crash.html on Windows with full
page heap enabled
Product: WebKit
Version: 528+ (Nightly build)
Platform: PC
OS/Version: Windows XP
Status: NEW
Keywords: NeedsRadar, PlatformOnly
Severity: Normal
Priority: P2
Component: WebKit Misc.
AssignedTo: webkit-unassigned at lists.webkit.org
ReportedBy: aroben at apple.com
CC: sfalken at apple.com
To reproduce:
1. gflags /p /enable dumprendertree.exe /full
2. run-webkit-tests fast/dom/window-domurl-crash.html
You'll crash in WebView::topLevelFrame. It looks like we're accessing a destroyed WebView. Here's the backtrace:
> WebKit.dll!WebView::topLevelFrame() Line 875 + 0x11 bytes C++
WebKit.dll!WebView::WebViewWndProc(HWND__ * hWnd=0x000e06c6, unsigned int message=130, unsigned int wParam=0, long lParam=0) Line 2061 + 0xe bytes C++
user32.dll!_InternalCallWinProc at 20() + 0x28 bytes
user32.dll!_UserCallWinProcCheckWow at 32() + 0x13692 bytes
user32.dll!_DispatchClientMessage at 20() + 0x4d bytes
user32.dll!___fnNCDESTROY at 4() + 0x26 bytes
ntdll.dll!_KiUserCallbackDispatcher at 12() + 0x13 bytes
user32.dll!_NtUserDestroyWindow at 4() + 0xc bytes
DumpRenderTree.exe!main(int argc=2, char * * argv=0x07c57f98) Line 1379 + 0x28 bytes C++
DumpRenderTree.exe!__tmainCRTStartup() Line 597 + 0x17 bytes C
kernel32.dll!_BaseProcessStart at 4() + 0x23 bytes
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list