[Webkit-unassigned] [Bug 64011] New: Crash related to accessibility and setFocusedNode

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Jul 6 11:50:19 PDT 2011 

https://bugs.webkit.org/show_bug.cgi?id=64011

           Summary: Crash related to accessibility and setFocusedNode
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Macintosh
        OS/Version: Mac OS X 10.6
            Status: UNCONFIRMED
          Severity: Normal
          Priority: P2
         Component: Accessibility
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: dmazzoni at google.com


A particular sequence of actions on a Google+ page is causing both Safari and Webkit Nightly to crash when used with VoiceOver. It seems to be caused by AccessibilityRenderObject trying to set focus to a node that no longer exists.

We'll try to post a minimal html example, but for now, here's a stack trace.

Program received signal EXC_BAD_ACCESS, Could not access memory.
Reason: KERN_INVALID_ADDRESS at address: 0x0000000000000000

#0  0x0000000000000000 in ?? ()
#1  0x00007fff864998f2 in NSAccessibilityHandleFocusChangedForce ()
#2  0x0000000100e02fc6 in WebCore::Document::setFocusedNode ()
#3  0x0000000100f268f7 in WebCore::FocusController::setFocusedNode ()
#4  0x0000000100ef436b in WebCore::Element::focus ()
#5  0x0000000100c81c1a in WebCore::AccessibilityRenderObject::setFocused ()
#6  0x0000000100c6e9af in -[AccessibilityObjectWrapper
accessibilitySetValue:forAttribute:] ()
#7  0x00007fff866f279b in SetAttributeValue ()
#8  0x00007fff8312d9ab in _AXXMIGSetAttributeValue ()
#9  0x00007fff831376ea in _XSetAttributeValue ()
#10 0x00007fff831130bb in mshMIGPerform ()
#11 0x00007fff855e66e1 in __CFRunLoopRun ()
#12 0x00007fff855e4dbf in CFRunLoopRunSpecific ()
#13 0x00007fff817297ee in RunCurrentEventLoopInMode ()
#14 0x00007fff817295f3 in ReceiveNextEventCommon ()
#15 0x00007fff817294ac in BlockUntilNextEventMatchingListInMode ()
#16 0x00007fff864a3e64 in _DPSNextEvent ()
#17 0x00007fff864a37a9 in -[NSApplication
nextEventMatchingMask:untilDate:inMode:dequeue:] ()
#18 0x000000010001605a in ?? ()
#19 0x00007fff8646948b in -[NSApplication run] ()
#20 0x00007fff864621a8 in NSApplicationMain ()
#21 0x0000000100009f7c in ?? ()

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list