[Webkit-unassigned] [Bug 52422] New: [chromium] More crash in FontFallbackList::determinePitch(const Font* font)

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Jan 13 21:33:46 PST 2011 

https://bugs.webkit.org/show_bug.cgi?id=52422

           Summary: [chromium] More crash in
                    FontFallbackList::determinePitch(const Font* font)
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: PC
        OS/Version: Windows XP
            Status: NEW
          Keywords: InChromiumBugs
          Severity: Normal
          Priority: P2
         Component: WebCore Misc.
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: hbono at chromium.org


Unfortunately, my previous change for <https://bugs.webkit.org/show_bug.cgi?id=25770> cannot fix the crash in Bug 25770.

This is a crash log for Chrome 10.0.634.0 stored in our crash server.

Product, Version     Chrome ,  10.0.634.0
Stack Signature     WebCore::FontFallbackList::determinePitch(WebCore::Font const *)-1EA68F4
New Stack Signature     WebCore::FontFallbackList::determinePitch(WebCore::Font const *) baeba093_841e5de7_6067284b_f63eebe8_a3d8ae41
Files     Download minidump
Report Time (UTC)     2011/01/13 10:29:47, Thu
Uptime     10453 ms
OS Name, Version     Windows NT ,  5.1.2600 Service Pack 3
CPU Architecture, Info     x86 ,  GenuineIntel family 6 model 23 stepping 6
extension-1     hehijbfgiekmjfkfjpbkbammjbdenadd
num-extensions     1
num-views     1
plat     Win32
ptype     renderer
url-chunk-1     http://sdf.kr/xe/buwak
Comments    
Add Comment

0x023323ce     [chrome.dll     - fontfallbacklist.cpp:77]    WebCore::FontFallbackList::determinePitch(WebCore::Font const *)
0x022d6227     [chrome.dll     - renderblocklinelayout.cpp:1641]    WebCore::RenderBlock::findNextLineBreak(WebCore::BidiResolver<WebCore::InlineIterator,WebCore::BidiRun> &,bool,bool &,bool &,bool &,WebCore::EClear *,WebCore::RenderBlock::FloatingObject *)
0x022d413a     [chrome.dll     - renderblocklinelayout.cpp:667]    WebCore::RenderBlock::layoutInlineChildren(bool,int &,int &)
0x0221b470     [chrome.dll     - renderblock.cpp:1230]    WebCore::RenderBlock::layoutBlock(bool,int)
0x0221b16c     [chrome.dll     - renderblock.cpp:1128]    WebCore::RenderBlock::layout()
0x0221caee     [chrome.dll     - renderblock.cpp:1959]    WebCore::RenderBlock::layoutBlockChild(WebCore::RenderBox *,WebCore::RenderBlock::MarginInfo &,int &,int &)
0x0221c91a     [chrome.dll     - renderblock.cpp:1897]    WebCore::RenderBlock::layoutBlockChildren(bool,int &)
0x0221b480     [chrome.dll     - renderblock.cpp:1232]    WebCore::RenderBlock::layoutBlock(bool,int)
0x0221b16c     [chrome.dll     - renderblock.cpp:1128]    WebCore::RenderBlock::layout()
0x0221f160     [chrome.dll     - renderblock.cpp:3066]    WebCore::RenderBlock::insertFloatingObject(WebCore::RenderBox *)
0x022d5999     [chrome.dll     - renderblocklinelayout.cpp:1309]    WebCore::RenderBlock::skipLeadingWhitespace(WebCore::BidiResolver<WebCore::InlineIterator,WebCore::BidiRun> &,bool,bool,bool,WebCore::RenderBlock::FloatingObject *)
0x022d5c86     [chrome.dll     - renderblocklinelayout.cpp:1428]    WebCore::RenderBlock::findNextLineBreak(WebCore::BidiResolver<WebCore::InlineIterator,WebCore::BidiRun> &,bool,bool &,bool &,bool &,WebCore::EClear *,WebCore::RenderBlock::FloatingObject *)
0x022d413a     [chrome.dll     - renderblocklinelayout.cpp:667]    WebCore::RenderBlock::layoutInlineChildren(bool,int &,int &)
0x0221b470     [chrome.dll     - renderblock.cpp:1230]    WebCore::RenderBlock::layoutBlock(bool,int)
0x0221b16c     [chrome.dll     - renderblock.cpp:1128]    WebCore::RenderBlock::layout()
0x0221caee     [chrome.dll     - renderblock.cpp:1959]    WebCore::RenderBlock::layoutBlockChild(WebCore::RenderBox *,WebCore::RenderBlock::MarginInfo &,int &,int &)
0x0221c91a     [chrome.dll     - renderblock.cpp:1897]    WebCore::RenderBlock::layoutBlockChildren(bool,int &)
0x0221b480     [chrome.dll     - renderblock.cpp:1232]    WebCore::RenderBlock::layoutBlock(bool,int)
0x0221b16c     [chrome.dll     - renderblock.cpp:1128]    WebCore::RenderBlock::layout()
0x0221caee     [chrome.dll     - renderblock.cpp:1959]    WebCore::RenderBlock::layoutBlockChild(WebCore::RenderBox *,WebCore::RenderBlock::MarginInfo &,int &,int &)
0x0221c91a     [chrome.dll     - renderblock.cpp:1897]    WebCore::RenderBlock::layoutBlockChildren(bool,int &)
0x0221b480     [chrome.dll     - renderblock.cpp:1232]    WebCore::RenderBlock::layoutBlock(bool,int)
0x0221b16c     [chrome.dll     - renderblock.cpp:1128]    WebCore::RenderBlock::layout()
0x0221caee     [chrome.dll     - renderblock.cpp:1959]    WebCore::RenderBlock::layoutBlockChild(WebCore::RenderBox *,WebCore::RenderBlock::MarginInfo &,int &,int &)
0x0221c91a     [chrome.dll     - renderblock.cpp:1897]    WebCore::RenderBlock::layoutBlockChildren(bool,int &)
0x0221b480     [chrome.dll     - renderblock.cpp:1232]    WebCore::RenderBlock::layoutBlock(bool,int)
0x0221b16c     [chrome.dll     - renderblock.cpp:1128]    WebCore::RenderBlock::layout()
0x0221caee     [chrome.dll     - renderblock.cpp:1959]    WebCore::RenderBlock::layoutBlockChild(WebCore::RenderBox *,WebCore::RenderBlock::MarginInfo &,int &,int &)
0x0221c91a     [chrome.dll     - renderblock.cpp:1897]    WebCore::RenderBlock::layoutBlockChildren(bool,int &)
0x0221b480     [chrome.dll     - renderblock.cpp:1232]    WebCore::RenderBlock::layoutBlock(bool,int)
0x0221b16c     [chrome.dll     - renderblock.cpp:1128]    WebCore::RenderBlock::layout()
0x021739c9     [chrome.dll     - renderview.cpp:130]    WebCore::RenderView::layout()
0x0219bfef     [chrome.dll     - frameview.cpp:872]    WebCore::FrameView::layout(bool)
0x0219e192     [chrome.dll     - frameview.cpp:2247]    WebCore::FrameView::updateLayoutAndStyleIfNeededRecursive()
0x01d721ee     [chrome.dll     - render_widget.cc:504]    RenderWidget::DoDeferredUpdate()
0x01d7216c     [chrome.dll     - render_widget.cc:483]    RenderWidget::CallDoDeferredUpdate()
0x01d73cbb     [chrome.dll     - task.h:331]    RunnableMethod<RenderWidget,void ( RenderWidget::*)(void),Tuple0>::Run()
0x01cff63f     [chrome.dll     - message_loop.cc:356]    MessageLoop::RunTask(Task *)
0x01cff6c6     [chrome.dll     - message_loop.cc:365]    MessageLoop::DeferOrRunPendingTask(MessageLoop::PendingTask const &)
0x01cffa78     [chrome.dll     - message_loop.cc:558]    MessageLoop::DoWork()
0x01d16d3a     [chrome.dll     - message_pump_default.cc:50]    base::MessagePumpDefault::Run(base::MessagePump::Delegate *)
0x01cff5c0     [chrome.dll     - message_loop.cc:331]    MessageLoop::RunInternal()
0x01cff545     [chrome.dll     - message_loop.cc:304]    MessageLoop::RunHandler()
0x01cff439     [chrome.dll     - message_loop.cc:234]    MessageLoop::Run()
0x01d2d874     [chrome.dll     - renderer_main.cc:297]    RendererMain(MainFunctionParams const &)
0x01c33f99     [chrome.dll     - chrome_main.cc:914]    ChromeMain
0x00403e7a     [chrome.exe     - client_util.cc:280]    MainDllLoader::Launch(HINSTANCE__ *,sandbox::SandboxInterfaceInfo *)
0x00404243     [chrome.exe     - chrome_exe_main_win.cc:46]    wWinMain
0x00449cc0     [chrome.exe     - crt0.c:263]    __tmainCRTStartup
0x7c7e7076     [kernel32.dll     + 0x00017076]    BaseProcessStart

Even though I still cannot reproduce this crash on my PCs, it may be a good idea to try using all fonts installed to Windows XP by default, i.e. adopting carpet-bombing. (I would note this crash mostly happens when rendering Korean pages.)

Regards,

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list