[Webkit-unassigned] [Bug 56583] fast/frames/viewsource-unfinished-tags.html crashed once in _NPN_DeallocateObject beneath JS GC on Windows XP Debug (Tests)
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed May 25 05:27:24 PDT 2011
https://bugs.webkit.org/show_bug.cgi?id=56583
Adam Roben (:aroben) <aroben at apple.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |DUPLICATE
--- Comment #3 from Adam Roben (:aroben) <aroben at apple.com> 2011-05-25 05:27:23 PST ---
Top of the stack:
0012df04 01bee97b 0a880a98 0012df3c 0012df24 WebKit!_NPN_DeallocateObject+0x7f [c:\cygwin\home\buildbot\slave\win-debug\build\source\webcore\bridge\npruntime.cpp @ 158]
0012df14 01f448e3 0a880a98 1060e5a8 0012df30 WebKit!_NPN_ReleaseObject+0xeb [c:\cygwin\home\buildbot\slave\win-debug\build\source\webcore\bridge\npruntime.cpp @ 148]
0012df24 01f45a86 1060e5a8 0012df54 012f0678 WebKit!JSC::Bindings::CInstance::~CInstance+0x23 [c:\cygwin\home\buildbot\slave\win-debug\build\source\webcore\bridge\c\c_instance.cpp @ 93]
0012df30 012f0678 00000001 0012df9c cccccccc WebKit!JSC::Bindings::CInstance::`scalar deleting destructor'+0x16
0012df54 012ebeb4 0012df6c 01a7a749 1060e5a8 WebKit!WTF::RefCounted<JSC::Bindings::Instance>::deref+0x68 [c:\cygwin\home\buildbot\slave\win-debug\build\webkitbuild\debug\include\private\javascriptcore\refcounted.h @ 141]
0012df5c 01a7a749 1060e5a8 0dba38b0 0012df78 WebKit!WTF::derefIfNotNull<JSC::Bindings::Instance>+0x14 [c:\cygwin\home\buildbot\slave\win-debug\build\webkitbuild\debug\include\private\javascriptcore\passrefptr.h @ 60]
0012df6c 01ee22e2 0dba3880 0012df84 0202b4df WebKit!WTF::RefPtr<JSC::Bindings::Instance>::~RefPtr<JSC::Bindings::Instance>+0x19 [c:\cygwin\home\buildbot\slave\win-debug\build\webkitbuild\debug\include\private\javascriptcore\refptr.h @ 58]
0012df78 0202b4df 0dba3880 0012df90 0202b536 WebKit!JSC::Bindings::RuntimeObject::~RuntimeObject+0x22 [c:\cygwin\home\buildbot\slave\win-debug\build\source\webcore\bridge\runtime_object.cpp @ 50]
0012df84 0202b536 0dba3880 0012dfa8 00ad9790 WebKit!JSC::Bindings::CRuntimeObject::~CRuntimeObject+0x1f [c:\cygwin\home\buildbot\slave\win-debug\build\source\webcore\bridge\c\cruntimeobject.cpp @ 50]
0012df90 00ad9790 00000000 05478580 0dba3880 WebKit!JSC::Bindings::CRuntimeObject::`scalar deleting destructor'+0x16
0012dfa8 00ad8b57 cccccccc 0547949c 0547943c JavaScriptCore!JSC::MarkedBlock::allocate+0x70 [c:\cygwin\home\buildbot\slave\win-debug\build\source\javascriptcore\runtime\jscell.h @ 382]
0012dfbc 00a34dc2 0547949c 0547949c 0547943c JavaScriptCore!JSC::MarkedSpace::allocateFromSizeClass+0x47 [c:\cygwin\home\buildbot\slave\win-debug\build\source\javascriptcore\runtime\markedspace.cpp @ 78]
Definitely a dupe of bug 61317.
*** This bug has been marked as a duplicate of bug 61317 ***
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list