[Webkit-unassigned] [Bug 98680] Crash in Chrome when dialog containing <input> and long text is dismissed.

Thu Oct 18 13:35:14 PDT 2012

https://bugs.webkit.org/show_bug.cgi?id=98680


--- Comment #5 from Fil Zembowicz <fil at google.com>  2012-10-18 13:36:09 PST ---
Just came across another repro which is far more reliable ... go to a google doc (eg. https://docs.google.com/document), click the title to rename it, and write in a long title like before. This repros for me on Chrome (Mac, Linux). Here's the stacktrace:

0x01fc42d7    [Google Chrome Framework]    - RenderLayer.cpp:1735]    WebCore::RenderLayer::scrollTo
0x01fc6190    [Google Chrome Framework]    - RenderLayer.cpp:2021]    WebCore::RenderLayer::setScrollOffset
0x019e8deb    [Google Chrome Framework]    - ScrollableArea.cpp:147]    WebCore::ScrollableArea::scrollPositionChanged
0x019e3d2a    [Google Chrome Framework]    - ScrollAnimator.cpp:149]    WebCore::ScrollAnimator::notifyPositionChanged
0x019e8c7e    [Google Chrome Framework]    - ScrollableArea.cpp:126]    WebCore::ScrollableArea::scrollToOffsetWithoutAnimation
0x01fc3dce    [Google Chrome Framework]    - RenderLayer.cpp:1677]    WebCore::RenderLayer::scrollToOffset
0x01950024    [Google Chrome Framework]    - TextFieldInputType.cpp:180]    WebCore::TextFieldInputType::forwardEvent
0x019028a5    [Google Chrome Framework]    - HTMLInputElement.cpp:1204]    WebCore::HTMLInputElement::defaultEventHandler
0x0144f276    [Google Chrome Framework]    - EventDispatcher.cpp:348]    WebCore::EventDispatcher::dispatchEventPostProcess
0x0144f080    [Google Chrome Framework]    - EventDispatcher.cpp:263]    WebCore::EventDispatcher::dispatchEvent
0x0144d2b1    [Google Chrome Framework]    - EventDispatchMediator.cpp:52]    WebCore::BlurEventDispatchMediator::dispatchEvent
0x0144dc61    [Google Chrome Framework]    - EventDispatcher.cpp:129]    WebCore::EventDispatcher::dispatchEvent
0x01466178    [Google Chrome Framework]    - Node.cpp:2655]    WebCore::Node::dispatchBlurEvent
0x018f54d6    [Google Chrome Framework]    - HTMLFormControlElement.cpp:479]    WebCore::HTMLFormControlElement::dispatchBlurEvent
0x01936b11    [Google Chrome Framework]    - HTMLTextFormControlElement.cpp:96]    WebCore::HTMLTextFormControlElement::dispatchBlurEvent
0x0142ba82    [Google Chrome Framework]    - Document.cpp:3804]    WebCore::Document::setFocusedNode
0x0142c0fc    [Google Chrome Framework]    - Document.cpp:3712]    WebCore::Document::removeFocusedNodeOfSubtree
0x01412214    [Google Chrome Framework]    - ContainerNode.cpp:401]    WebCore::ContainerNode::removeChild
0x01460234    [Google Chrome Framework]    - Node.cpp:617]    WebCore::Node::removeChild
0x01bec2d3    [Google Chrome Framework]    - V8NodeCustom.cpp:104]    WebCore::V8Node::removeChildCallback
0x0162ef07    [Google Chrome Framework]    - builtins.cc:1146]    v8::internal::Builtin_HandleApiCall

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.