[Webkit-unassigned] [Bug 82896] Segmentation fault in JS drop-down menus in facebook.com
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Apr 4 06:53:41 PDT 2012
https://bugs.webkit.org/show_bug.cgi?id=82896
--- Comment #7 from Mario Sanchez Prada <msanchez at igalia.com> 2012-04-04 06:53:41 PST ---
(In reply to comment #6)
> (In reply to comment #5)
> > I followed those steps listed and even broke on the crashing method. I saw m_renderer = 0 and everything worked ok
> >
> > Breakpoint 2, WebCore::AccessibilityRenderObject::isAttachment (this=0x7fcda238c1e0) at AccessibilityRenderObject.cpp:535
> > 535 RenderBoxModelObject* renderer = renderBoxModelObject();
> > (gdb) x/ca m_renderer
> > 0x0: Cannot access memory at address 0x0
> > (gdb) s
> > WebCore::AccessibilityRenderObject::renderBoxModelObject (this=0x7fcda238c1e0) at AccessibilityRenderObject.cpp:133
> > 133 if (!m_renderer || !m_renderer->isBoxModelObject())
> > (gdb) n
> > 134 return 0;
> > (gdb) bt
> > #0 WebCore::AccessibilityRenderObject::renderBoxModelObject (this=0x7fcda238c1e0) at AccessibilityRenderObject.cpp:134
>
> I think this ones up to you figure out.
Thanks Chris for helping me debug this thing. It turns out I did dare to git bisect and, after 11 full builds I finally found the commit where this started failing reliably:
http://trac.webkit.org/changeset/110819
I see you're the author of that commit, so I leave this here in the hope you might perhaps have a clue of why this is happening.
Now I need to run.
Again, thanks!
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list