[Webkit-unassigned] [Bug 55122] New: [SVG] r79474 broke 2 svg/dynamic-updates tests

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Feb 24 00:50:07 PST 2011 

https://bugs.webkit.org/show_bug.cgi?id=55122

           Summary: [SVG] r79474 broke 2 svg/dynamic-updates tests
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: PC
        OS/Version: Mac OS X 10.5
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit Gtk
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: pnormand at igalia.com
                CC: reni at webkit.org


Those 2 reliably crash on GTK now:

svg/dynamic-updates/SVGFEConvolveMatrixElement-dom-kernelUnitLength-attr.html
svg/dynamic-updates/SVGFEConvolveMatrixElement-svgdom-kernelUnitLength-prop.html

Thread 1 (Thread 1312):
#0  0x00007f47ed58f4ce in WebCore::SVGFEConvolveMatrixElement::setFilterEffectAttribute (this=0x22419a0, effect=0x2220d50, attrName=...) at ../../Source/WebCore/svg/SVGFEConvolveMatrixElement.cpp:147
#1  0x00007f47ed4acec7 in WebCore::RenderSVGResourceFilter::primitiveAttributeChanged (this=0x22538f8, object=0x221efa8, attribute=...) at ../../Source/WebCore/rendering/svg/RenderSVGResourceFilter.cpp:347
#2  0x00007f47ed58b6c0 in WebCore::RenderSVGResourceFilterPrimitive::primitiveAttributeChanged (this=0x221efa8, attribute=...) at ../../Source/WebCore/rendering/svg/RenderSVGResourceFilterPrimitive.h:57
#3  0x00007f47ed58b700 in WebCore::SVGFilterPrimitiveStandardAttributes::primitiveAttributeChanged (this=0x22419a0, attribute=...) at ../../Source/WebCore/svg/SVGFilterPrimitiveStandardAttributes.h:66
#4  0x00007f47ed58f69c in WebCore::SVGFEConvolveMatrixElement::svgAttributeChanged (this=0x22419a0, attrName=...) at ../../Source/WebCore/svg/SVGFEConvolveMatrixElement.cpp:176
#5  0x00007f47ed5dcd19 in WebCore::SVGAnimatedProperty::commitChange (this=0x222dd30) at ../../Source/WebCore/svg/properties/SVGAnimatedProperty.h:43
#6  0x00007f47ed885730 in WebCore::SVGAnimatedStaticPropertyTearOff<float>::setBaseVal (this=0x222dd30, property=@0x7fff8c82091c) at ../../Source/WebCore/svg/properties/SVGAnimatedStaticPropertyTearOff.h:45
#7  0x00007f47ed884f3f in WebCore::setJSSVGAnimatedNumberBaseVal (exec=0x7f479b5b6158, thisObject=0x7f479a54bb90, value=...) at DerivedSources/WebCore/JSSVGAnimatedNumber.cpp:185
#8  0x00007f47ed885b47 in JSC::lookupPut<WebCore::JSSVGAnimatedNumber> (exec=0x7f479b5b6158, propertyName=..., value=..., table=0x7f47ef0bdca0, thisObj=0x7f479a54bb90) at ../../Source/JavaScriptCore/runtime/Lookup.h:319
#9  0x00007f47ed8856d3 in JSC::lookupPut<WebCore::JSSVGAnimatedNumber, WebCore::DOMObjectWithGlobalPointer> (exec=0x7f479b5b6158, propertyName=..., value=..., table=0x7f47ef0bdca0, thisObj=0x7f479a54bb90, slot=...) at ../../Source/JavaScriptCore/runtime/Lookup.h:333
#10 0x00007f47ed884ee1 in WebCore::JSSVGAnimatedNumber::put (this=0x7f479a54bb90, exec=0x7f479b5b6158, propertyName=..., value=..., slot=...) at DerivedSources/WebCore/JSSVGAnimatedNumber.cpp:178
#11 0x00007f47eda10b0e in JSC::JSValue::put (this=0x7fff8c820af0, exec=0x7f479b5b6158, propertyName=..., value=..., slot=...) at ../../Source/JavaScriptCore/runtime/JSObject.h:780
#12 0x00007f47eda038e7 in JSC::cti_op_put_by_id (args=0x7fff8c820b40) at ../../Source/JavaScriptCore/jit/JITStubs.cpp:1351
#13 0x00007f47eda026bf in JSC::JITThunks::tryCacheGetByID (callFrame=0x7f479b9cecd6, codeBlock=0x7fff8c820b40, returnAddress=..., baseValue=..., propertyName=..., slot=..., stubInfo=0x2073460) at ../../Source/JavaScriptCore/jit/JITStubs.cpp:869
#14 0x00007f47ed9d5a57 in JSC::JITCode::execute (this=0x2302bd8, registerFile=0x20779b8, callFrame=0x7f479b5b6118, globalData=0x2073460) at ../../Source/JavaScriptCore/jit/JITCode.h:77
#15 0x00007f47ed9d2ae8 in JSC::Interpreter::executeCall (this=0x20779a0, callFrame=0x21eea48, function=0x7f479a54c610, callType=JSC::CallTypeJS, callData=..., thisValue=..., args=...) at ../../Source/JavaScriptCore/interpreter/Interpreter.cpp:851
#16 0x00007f47eda5f174 in JSC::call (exec=0x21eea48, functionObject=..., callType=JSC::CallTypeJS, callData=..., thisValue=..., args=...) at ../../Source/JavaScriptCore/runtime/CallData.cpp:38
#17 0x00007f47ecc6d18b in WebCore::JSMainThreadExecState::call (exec=0x21eea48, functionObject=..., callType=JSC::CallTypeJS, callData=..., thisValue=..., args=...) at ../../Source/WebCore/bindings/js/JSMainThreadExecState.h:48
#18 0x00007f47ecca50a5 in WebCore::JSEventListener::handleEvent (this=0x22636a0, scriptExecutionContext=0x2243838, event=0x2305ad0) at ../../Source/WebCore/bindings/js/JSEventListener.cpp:123
#19 0x00007f47ece966c1 in WebCore::EventTarget::fireEventListeners (this=0x22532b0, event=0x2305ad0, d=0x225bac0, entry=...) at ../../Source/WebCore/dom/EventTarget.cpp:354
#20 0x00007f47ece96550 in WebCore::EventTarget::fireEventListeners (this=0x22532b0, event=0x2305ad0) at ../../Source/WebCore/dom/EventTarget.cpp:323
#21 0x00007f47eceae1b9 in WebCore::Node::handleLocalEvents (this=0x22532b0, event=0x2305ad0) at ../../Source/WebCore/dom/Node.cpp:2543
#22 0x00007f47ece93f24 in WebCore::EventContext::handleLocalEvents (this=0x2307100, event=0x2305ad0) at ../../Source/WebCore/dom/EventContext.cpp:48
#23 0x00007f47eceaec7b in WebCore::Node::dispatchGenericEvent (this=0x2214670, prpEvent=...) at ../../Source/WebCore/dom/Node.cpp:2694
#24 0x00007f47eceae596 in WebCore::Node::dispatchEvent (this=0x2214670, prpEvent=...) at ../../Source/WebCore/dom/Node.cpp:2612
#25 0x00007f47eceaffea in WebCore::Node::dispatchMouseEvent (this=0x2214670, eventType=..., button=0, detail=1, pageX=108, pageY=166, screenX=108, screenY=166, ctrlKey=false, altKey=false, shiftKey=false, metaKey=false, isSimulated=false, relatedTargetArg=0x0, underlyingEvent=...) at ../../Source/WebCore/dom/Node.cpp:2902
#26 0x00007f47eceaf7c0 in WebCore::Node::dispatchMouseEvent (this=0x2214670, event=..., eventType=..., detail=1, relatedTarget=0x0) at ../../Source/WebCore/dom/Node.cpp:2799
#27 0x00007f47ed20204c in WebCore::EventHandler::dispatchMouseEvent (this=0x1a53bb0, eventType=..., targetNode=0x2214670, clickCount=1, mouseEvent=..., setUnder=true) at ../../Source/WebCore/page/EventHandler.cpp:1910
#28 0x00007f47ed200ad1 in WebCore::EventHandler::handleMouseReleaseEvent (this=0x1a53bb0, mouseEvent=...) at ../../Source/WebCore/page/EventHandler.cpp:1623
#29 0x00007f47ecb804f2 in webkit_web_view_button_release_event (widget=0x1a3e010, event=0x2067c80) at ../../Source/WebKit/gtk/webkit/webkitwebview.cpp:905
#30 0x00007f47ebc66c18 in ?? () from /usr/lib/libgtk-x11-2.0.so.0
#31 0x00007f47ea5e833e in g_closure_invoke (closure=0x19e6990, return_value=0x7fff8c821b40, n_param_values=2, param_values=0x211b800, invocation_hint=0x7fff8c821b00) at /tmp/buildd/glib2.0-2.27.91/./gobject/gclosure.c:767
#32 0x00007f47ea600ff2 in signal_emit_unlocked_R (node=0x19e6a00, detail=<value optimized out>, instance=<value optimized out>, emission_return=<value optimized out>, instance_and_params=<value optimized out>) at /tmp/buildd/glib2.0-2.27.91/./gobject/gsignal.c:3290
#33 0x00007f47ea60297c in g_signal_emit_valist (instance=0x1a3e010, signal_id=<value optimized out>, detail=0, var_args=0x7fff8c821cf0) at /tmp/buildd/glib2.0-2.27.91/./gobject/gsignal.c:2993
#34 0x00007f47ea603363 in g_signal_emit (instance=0x7fff8c81feb0, signal_id=0, detail=3904495104) at /tmp/buildd/glib2.0-2.27.91/./gobject/gsignal.c:3040
#35 0x00007f47ebd7cf3f in ?? () from /usr/lib/libgtk-x11-2.0.so.0
#36 0x00007f47ebc5f103 in gtk_propagate_event () from /usr/lib/libgtk-x11-2.0.so.0
#37 0x00007f47ebc601bb in gtk_main_do_event () from /usr/lib/libgtk-x11-2.0.so.0
#38 0x000000000042255d in dispatchEvent (event=0x2067c80) at ../../Tools/DumpRenderTree/gtk/EventSender.cpp:535
#39 0x0000000000422505 in sendOrQueueEvent (event=0x2067c80, shouldReplaySavedEvents=true) at ../../Tools/DumpRenderTree/gtk/EventSender.cpp:523
#40 0x000000000042193d in mouseUpCallback (context=0x7f479b5b60c8, function=0x7f479a547010, thisObject=0x7f479a549250, argumentCount=0, arguments=0x7fff8c821f78, exception=0x7fff8c822018) at ../../Tools/DumpRenderTree/gtk/EventSender.cpp:345
#41 0x00007f47ed96385c in JSC::JSCallbackFunction::call (exec=0x7f479b5b60c8) at ../../Source/JavaScriptCore/API/JSCallbackFunction.cpp:67
#42 0x00007f47eda07850 in JSC::cti_op_call_NotJSFunction (args=0x7fff8c822150) at ../../Source/JavaScriptCore/jit/JITStubs.cpp:2103
#43 0x00007f47eda026bf in JSC::JITThunks::tryCacheGetByID (callFrame=0x7f479b5b6088, codeBlock=0x7fff8c822150, returnAddress=..., baseValue=..., propertyName=..., slot=..., stubInfo=0x2073460) at ../../Source/JavaScriptCore/jit/JITStubs.cpp:869
#44 0x00007f47ed9d5a57 in JSC::JITCode::execute (this=0x224ffd8, registerFile=0x20779b8, callFrame=0x7f479b5b6038, globalData=0x2073460) at ../../Source/JavaScriptCore/jit/JITCode.h:77
#45 0x00007f47ed9d250b in JSC::Interpreter::execute (this=0x20779a0, program=0x224ffc0, callFrame=0x21eea48, scopeChain=0x22390d0, thisObj=0x7f479a541050) at ../../Source/JavaScriptCore/interpreter/Interpreter.cpp:780
#46 0x00007f47eda6ca6f in JSC::evaluate (exec=0x21eea48, scopeChain=..., source=..., thisValue=...) at ../../Source/JavaScriptCore/runtime/Completion.cpp:62
#47 0x00007f47eccb0bef in WebCore::JSMainThreadExecState::evaluate (exec=0x21eea48, chain=..., source=..., thisValue=...) at ../../Source/WebCore/bindings/js/JSMainThreadExecState.h:54
#48 0x00007f47eccd7426 in WebCore::ScriptController::evaluateInWorld (this=0x1a538e8, sourceCode=..., world=0x2077be0) at ../../Source/WebCore/bindings/js/ScriptController.cpp:142
#49 0x00007f47eccd8a21 in WebCore::ScriptController::executeScriptInWorld (this=0x1a538e8, world=0x2077be0, script=..., forceUserGesture=false) at ../../Source/WebCore/bindings/js/ScriptController.cpp:504
#50 0x00007f47eccd1ec8 in WebCore::ScheduledAction::execute (this=0x2258190, document=0x22437d0) at ../../Source/WebCore/bindings/js/ScheduledAction.cpp:131
#51 0x00007f47eccd1a3e in WebCore::ScheduledAction::execute (this=0x2258190, context=0x2243838) at ../../Source/WebCore/bindings/js/ScheduledAction.cpp:76
#52 0x00007f47ed1e9fcd in WebCore::DOMTimer::fired (this=0x2259a60) at ../../Source/WebCore/page/DOMTimer.cpp:130
#53 0x00007f47ed311f58 in WebCore::ThreadTimers::sharedTimerFiredInternal (this=0x1a79da0) at ../../Source/WebCore/platform/ThreadTimers.cpp:112
#54 0x00007f47ed311e8f in WebCore::ThreadTimers::sharedTimerFired () at ../../Source/WebCore/platform/ThreadTimers.cpp:90
#55 0x00007f47ecb08c4a in WebCore::timeout_cb () at ../../Source/WebCore/platform/gtk/SharedTimerGtk.cpp:49
#56 0x00007f47e9d27dbb in g_timeout_dispatch (source=0x21b2cb0, callback=0, user_data=0x7f47e8b9de00) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:3877
#57 0x00007f47e9d27362 in g_main_dispatch (context=0xffff000000000002) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:2440
#58 g_main_context_dispatch (context=0xffff000000000002) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:3013
#59 0x00007f47e9d2ba28 in g_main_context_iterate (context=0x19d51e0, block=<value optimized out>, dispatch=<value optimized out>, self=<value optimized out>) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:3091
#60 0x00007f47e9d2bf35 in g_main_loop_run (loop=0x223c230) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:3299
#61 0x00007f47ebc60657 in gtk_main () from /usr/lib/libgtk-x11-2.0.so.0
#62 0x000000000041e056 in runTest (testPathOrURL=...) at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:677
#63 0x000000000041d6e8 in runTestingServerLoop () at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:487
#64 0x000000000041f7cd in main (argc=2, argv=0x7fff8c823438) at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:1141

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list