[Webkit-unassigned] [Bug 176305] New: Crash in WebCore::RegisteredEventListener::callback

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sun Sep 3 07:36:25 PDT 2017 

https://bugs.webkit.org/show_bug.cgi?id=176305

            Bug ID: 176305
           Summary: Crash in WebCore::RegisteredEventListener::callback
           Product: WebKit
           Version: Other
          Hardware: PC
                OS: Linux
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: Event Handling
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: mcatanzaro at igalia.com

Created attachment 319778

  --> https://bugs.webkit.org/attachment.cgi?id=319778&action=review

Backtrace

WebCore::RegisteredEventListener::callback:

Truncated backtrace:
Thread no. 1 (10 frames)
 #0 WTF::Ref<WebCore::EventListener>::operator WebCore::EventListener& at /usr/src/debug/webkitgtk-2.16.3/Source/WTF/wtf/Ref.h:139
 #1 WebCore::RegisteredEventListener::callback at /usr/src/debug/webkitgtk-2.16.3/Source/WebCore/dom/RegisteredEventListener.h:51
 #2 WebCore::EventListenerIterator::nextListener at /usr/src/debug/webkitgtk-2.16.3/Source/WebCore/dom/EventListenerMap.cpp:270
 #3 WebCore::EventTarget::visitJSEventListeners at /usr/src/debug/webkitgtk-2.16.3/Source/WebCore/dom/EventTarget.cpp:298
 #4 WebCore::JSEventTarget::visitAdditionalChildren at /usr/src/debug/webkitgtk-2.16.3/Source/WebCore/bindings/js/JSEventTargetCustom.cpp:87
 #5 WebCore::JSEventTarget::visitChildren at /usr/src/debug/webkitgtk-2.16.3/x86_64-redhat-linux-gnu/DerivedSources/WebCore/JSEventTarget.cpp:304
 #6 WebCore::JSNode::visitChildren at /usr/src/debug/webkitgtk-2.16.3/x86_64-redhat-linux-gnu/DerivedSources/WebCore/JSNode.cpp:928
 #7 JSC::SlotVisitor::visitChildren at /usr/src/debug/webkitgtk-2.16.3/Source/JavaScriptCore/heap/SlotVisitor.cpp:396
 #8 JSC::SlotVisitor::<lambda(JSC::MarkStackArray&)>::operator() at /usr/src/debug/webkitgtk-2.16.3/Source/JavaScriptCore/heap/SlotVisitor.cpp:495
 #9 JSC::SlotVisitor::forEachMarkStack<JSC::SlotVisitor::drain(WTF::MonotonicTime)::<lambda(JSC::MarkStackArray&)> > at /usr/src/debug/webkitgtk-2.16.3/Source/JavaScriptCore/heap/SlotVisitorInlines.h:116

Only one report of this total. Better backtrace attached.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20170903/fed3ead1/attachment.html>

More information about the webkit-unassigned mailing list