89160 2012-06-14 19:53:07 -0700 [BlackBerry] Selection - Crash when manipulating selection by dragging handle 2012-07-05 17:24:51 -0700 1 1 1 Unclassified WebKit WebKit BlackBerry 528+ (Nightly build) Other Other RESOLVED WORKSFORME P2 Normal --- 89193 0 xuewen.ok webkit-unassigned rwlbuis tonikitoo webkit.review.bot oldest_to_newest 649796 0 xuewen.ok 2012-06-14 19:53:07 -0700 RIM bug:164970 I got this: Program received signal SIGSEGV, Segmentation fault. [Switching to pid 63352986 tid 16] WebCore::Node::shadowAncestorNode (this=0x0) at /home/anilsson/dev/webkit/Source/WebCore/dom/Node.cpp:1496 1496 if (isSVGElement()) (gdb) bt #0 WebCore::Node::shadowAncestorNode (this=0x0) at /home/anilsson/dev/webkit/Source/WebCore/dom/Node.cpp:1496 #1 0x7bc85520 in WebCore::comparePositions (a=..., b=...) at /home/anilsson/dev/webkit/Source/WebCore/editing/htmlediting.cpp:78 #2 0x7bc82d00 in WebCore::VisibleSelection::setWithoutValidation (this=0x16d74d8, base=..., extent=...) at /home/anilsson/dev/webkit/Source/WebCore/editing/VisibleSelection.cpp:448 #3 0x7bbab3ce in BlackBerry::WebKit::SelectionHandler::setSelection (this=0x14ffbb0, start=..., end=...) at /home/anilsson/dev/webkit/Source/WebKit/blackberry/WebKitSupport/SelectionHandler.cpp:492 #4 0x7bb6b99e in BlackBerry::WebKit::WebPage::setSelection (this=0x147d8a8, startPoint=..., endPoint=...) at /home/anilsson/dev/webkit/Source/WebKit/blackberry/Api/WebPage.cpp:4586 #5 0x797cb2ce in BlackBerry::Platform::MethodDelegate2<void (BlackBerry::WebKit::WebPage::*)(BlackBerry::Platform::IntPoint const&, BlackBerry::Platform::IntPoint const&), BlackBerry::WebKit::WebPage, BlackBerry::Platform::IntPoint, BlackBerry::Platform::IntPoint>::execute (this=0x14fd730) at /home/anilsson/dev/staging/usr/include/browser/platform/BlackBerryPlatformMessageDelegate.h:934 #6 0x7b06cbcc in BlackBerry::Platform::ExecutableMessage::execute (this=<optimized out>) at /home/anilsson/dev/platform/blackberryplatform/BlackBerryPlatformExecutableMessage.cpp:38 #7 0x7b079416 in BlackBerry::Platform::MessageClient::executeMessage (this=0x13aeb70, message=0x141bc58, returnCode=0) at /home/anilsson/dev/platform/blackberryplatform/BlackBerryPlatformMessageClient.cpp:680 #8 0x7b079b16 in BlackBerry::Platform::MessageClient::coalesceMessage (this=0x13aeb70, message=0x141bc58, returnCode=0) at /home/anilsson/dev/platform/blackberryplatform/BlackBerryPlatformMessageClient.cpp:666 #9 0x7b079bb2 in BlackBerry::Platform::MessageClient::receivePendingMessage (this=0x13aeb70, timeout=<optimized out>) at /home/anilsson/dev/platform/blackberryplatform/BlackBerryPlatformMessageClient.cpp:641 #10 0x7b079be8 in BlackBerry::Platform::MessageClient::processNextMessage (this=0x13aeb70, timeout=<optimized out>) at /home/anilsson/dev/platform/blackberryplatform/BlackBerryPlatformMessageClient.cpp:562 #11 0x7b079dbe in BlackBerry::Platform::MessageClient::exec (this=0x13aeb70) at /home/anilsson/dev/platform/blackberryplatform/BlackBerryPlatformMessageClient.cpp:595 #12 0x797c57f2 in WebKitThread::exec (this=0x13aeb58) at /home/anilsson/dev/libwebview/WebKitThread.cpp:195 #13 0x7b0775ba in BlackBerry::Platform::MessageClient::run (context=0x13aeb70) at /home/anilsson/dev/platform/blackberryplatform/BlackBerryPlatformMessageClient.cpp:581 #14 0x01bafed0 in getgroups (gidsetsize=0, grouplist=0x0) at ../../getgroups.c:32 Backtrace stopped: previous frame inner to this frame (corrupt stack?) (gdb) disassemble Dump of assembler code for function WebCore::Node::shadowAncestorNode() const: => 0x7bc259f8 <+0>: ldr r3, [r0, #20] 0x7bc259fa <+2>: lsls r1, r3, #25 0x7bc259fc <+4>: bmi.n 0x7bc25a18 <WebCore::Node::shadowAncestorNode() const+32> 0x7bc259fe <+6>: tst.w r3, #65536 ; 0x10000 0x7bc25a02 <+10>: mov r3, r0 0x7bc25a04 <+12>: beq.n 0x7bc25a0e <WebCore::Node::shadowAncestorNode() const+22> 0x7bc25a06 <+14>: b.n 0x7bc25a16 <WebCore::Node::shadowAncestorNode() const+30> 0x7bc25a08 <+16>: ldr r2, [r3, #20] 0x7bc25a0a <+18>: lsls r2, r2, #15 0x7bc25a0c <+20>: bmi.n 0x7bc25a16 <WebCore::Node::shadowAncestorNode() const+30> 0x7bc25a0e <+22>: ldr r3, [r3, #12] 0x7bc25a10 <+24>: cmp r3, #0 0x7bc25a12 <+26>: bne.n 0x7bc25a08 <WebCore::Node::shadowAncestorNode() const+16> 0x7bc25a14 <+28>: bx lr 0x7bc25a16 <+30>: ldr r0, [r3, #12] 0x7bc25a18 <+32>: bx lr End of assembler dump. (gdb) info registers r0 0x0 0 r1 0x16d75e0 23950816 r2 0x1 1 r3 0x8 8 r4 0x0 0 r5 0x21 33 r6 0x1476360 21455712 r7 0x16d74d0 23950544 r8 0x0 0 r9 0x0 0 r10 0x16d7594 23950740 r11 0x18db988 26065288 r12 0x58 88 sp 0x16d7478 0x16d7478 lr 0x7bc85521 2076726561 pc 0x7bc259f8 0x7bc259f8 <WebCore::Node::shadowAncestorNode() const> cpsr 0x40000030 1073741872 649806 1 147717 xuewen.ok 2012-06-14 20:19:50 -0700 Created attachment 147717 patch It has been internal reviewed by Antonio Gomes 649910 2 147717 webkit.review.bot 2012-06-14 23:16:28 -0700 Comment on attachment 147717 patch Clearing flags on attachment: 147717 Committed r120404: <http://trac.webkit.org/changeset/120404> 649912 3 webkit.review.bot 2012-06-14 23:16:32 -0700 All reviewed patches have been landed. Closing bug. 650045 4 webkit.review.bot 2012-06-15 02:52:45 -0700 Re-opened since this is blocked by 89193 663753 5 rwlbuis 2012-07-05 15:09:07 -0700 (In reply to comment #4) > Re-opened since this is blocked by 89193 That one is reported as fixed, so this one can be closed again? 663794 6 xuewen.ok 2012-07-05 17:24:51 -0700 This issue has been luckily fixed by unknown patches. So close it. 147717 2012-06-14 20:19:50 -0700 2012-06-14 23:16:28 -0700 patch patch text/plain 2587 xuewen.ok RnJvbSA5OGJjOTI2NzkzYzBhNDIzMWUxNjlkYTE2ODgxZTNmNzliZGZhMTc2IE1vbiBTZXAgMTcg MDA6MDA6MDAgMjAwMQpGcm9tOiBTZWFuIFdhbmcgPFh1ZXdlbi5XYW5nQHRvcmNobW9iaWxlLmNv bS5jbj4KRGF0ZTogRnJpLCAxNSBKdW4gMjAxMiAxMTowMTozNSArMDgwMApTdWJqZWN0OiBbUEFU Q0hdIFtCbGFja0JlcnJ5XSBTZWxlY3Rpb24gLSBDcmFzaCB3aGVuIG1hbmlwdWxhdGluZyBzZWxl Y3Rpb24KIGJ5IGRyYWdnaW5nIGhhbmRsZQogaHR0cHM6Ly9idWdzLndlYmtpdC5vcmcvc2hvd19i dWcuY2dpP2lkPTg5MTYwCgpSSU1CVUc6MTY0OTcwCkF2b2lkIHRvIHNldCBwb3NpdGlvbiBpbiBz aGFkb3cgdHJlZSB0byB0aGUgbmV3IHNlbGVjdGlvbidzIGJhc2UuIEl0CmNyYXNoZXMgd2hlbiBz ZXR0aW5nIGEgc2hhZG93IHBvc2l0aW9uIHRvIGEgc2VsZWN0aW9uJyBiYXNlLgoKUmV2aWV3ZWQg YnkgQW50b25pbyBHb21lcy4KCiogV2ViS2l0U3VwcG9ydC9TZWxlY3Rpb25IYW5kbGVyLmNwcDoK KEJsYWNrQmVycnk6OldlYktpdDo6dmlzaWJsZVBvc2l0aW9uRm9yUG9pbnRJZ25vcmluZ0NsaXBw aW5nKToKLS0tCiBTb3VyY2UvV2ViS2l0L2JsYWNrYmVycnkvQ2hhbmdlTG9nICAgICAgICAgICAg ICAgICB8ICAgMTQgKysrKysrKysrKysrKysKIC4uLi9ibGFja2JlcnJ5L1dlYktpdFN1cHBvcnQv U2VsZWN0aW9uSGFuZGxlci5jcHAgIHwgICAgMiArLQogMiBmaWxlcyBjaGFuZ2VkLCAxNSBpbnNl cnRpb25zKCspLCAxIGRlbGV0aW9uKC0pCgpkaWZmIC0tZ2l0IGEvU291cmNlL1dlYktpdC9ibGFj a2JlcnJ5L0NoYW5nZUxvZyBiL1NvdXJjZS9XZWJLaXQvYmxhY2tiZXJyeS9DaGFuZ2VMb2cKaW5k ZXggZTcwNGRhZS4uNjBjYTM0MiAxMDA2NDQKLS0tIGEvU291cmNlL1dlYktpdC9ibGFja2JlcnJ5 L0NoYW5nZUxvZworKysgYi9Tb3VyY2UvV2ViS2l0L2JsYWNrYmVycnkvQ2hhbmdlTG9nCkBAIC0x LDMgKzEsMTcgQEAKKzIwMTItMDYtMTQgIFNlYW4gV2FuZyAgPFh1ZXdlbi5XYW5nQHRvcmNobW9i aWxlLmNvbS5jbj4KKworICAgICAgICBbQmxhY2tCZXJyeV0gU2VsZWN0aW9uIC0gQ3Jhc2ggd2hl biBtYW5pcHVsYXRpbmcgc2VsZWN0aW9uIGJ5IGRyYWdnaW5nIGhhbmRsZQorICAgICAgICBodHRw czovL2J1Z3Mud2Via2l0Lm9yZy9zaG93X2J1Zy5jZ2k/aWQ9ODkxNjAKKworICAgICAgICBSSU1C VUc6MTY0OTcwCisgICAgICAgIEF2b2lkIHRvIHNldCBwb3NpdGlvbiBpbiBzaGFkb3cgdHJlZSB0 byB0aGUgbmV3IHNlbGVjdGlvbidzIGJhc2UuIEl0CisgICAgICAgIGNyYXNoZXMgd2hlbiBzZXR0 aW5nIGEgc2hhZG93IHBvc2l0aW9uIHRvIGEgc2VsZWN0aW9uJyBiYXNlLgorCisgICAgICAgIFJl dmlld2VkIGJ5IEFudG9uaW8gR29tZXMuCisKKyAgICAgICAgKiBXZWJLaXRTdXBwb3J0L1NlbGVj dGlvbkhhbmRsZXIuY3BwOgorICAgICAgICAoQmxhY2tCZXJyeTo6V2ViS2l0Ojp2aXNpYmxlUG9z aXRpb25Gb3JQb2ludElnbm9yaW5nQ2xpcHBpbmcpOgorCiAyMDEyLTA2LTE0ICBHZW5ldmlldmUg TWFrICA8Z21ha0ByaW0uY29tPgogCiAgICAgICAgIEFsd2F5cyBjb252ZXJ0IHRvdWNoIGV2ZW50 cyB0byBtb3VzZSBldmVudHMgaWYgdGhlCmRpZmYgLS1naXQgYS9Tb3VyY2UvV2ViS2l0L2JsYWNr YmVycnkvV2ViS2l0U3VwcG9ydC9TZWxlY3Rpb25IYW5kbGVyLmNwcCBiL1NvdXJjZS9XZWJLaXQv YmxhY2tiZXJyeS9XZWJLaXRTdXBwb3J0L1NlbGVjdGlvbkhhbmRsZXIuY3BwCmluZGV4IDUxYzli NzIuLjlkY2VjMWUgMTAwNjQ0Ci0tLSBhL1NvdXJjZS9XZWJLaXQvYmxhY2tiZXJyeS9XZWJLaXRT dXBwb3J0L1NlbGVjdGlvbkhhbmRsZXIuY3BwCisrKyBiL1NvdXJjZS9XZWJLaXQvYmxhY2tiZXJy eS9XZWJLaXRTdXBwb3J0L1NlbGVjdGlvbkhhbmRsZXIuY3BwCkBAIC0xNTIsNyArMTUyLDcgQEAg c3RhdGljIFZpc2libGVQb3NpdGlvbiB2aXNpYmxlUG9zaXRpb25Gb3JQb2ludElnbm9yaW5nQ2xp cHBpbmcoY29uc3QgRnJhbWUmIGZyYW0KICAgICAvLyBvdXRzaWRlIHRoZSB2aXNpYmxlIHJlY3Qu IFRvIHdvcmsgYXJvdW5kIHRoZSBidWcsIHRoaXMgaXMgYSBjb3B5IG9mCiAgICAgLy8gdmlzaWJs ZVBvc2l0aW9uQXRQb2ludCB3aGljaCB3aGljaCBwYXNzZXMgaWdub3JlQ2xpcHBpbmc9dHJ1ZS4K ICAgICAvLyBTZWUgUklNIEJ1ZyAjNDMxNS4KLSAgICBIaXRUZXN0UmVzdWx0IHJlc3VsdCA9IGZy YW1lLmV2ZW50SGFuZGxlcigpLT5oaXRUZXN0UmVzdWx0QXRQb2ludChmcmFtZVBvaW50LCB0cnVl IC8qIGFsbG93U2hhZG93Q29udGVudCAqLywgdHJ1ZSAvKiBpZ25vcmVDbGlwcGluZyAqLyk7Cisg ICAgSGl0VGVzdFJlc3VsdCByZXN1bHQgPSBmcmFtZS5ldmVudEhhbmRsZXIoKS0+aGl0VGVzdFJl c3VsdEF0UG9pbnQoZnJhbWVQb2ludCwgZmFsc2UgLyogYWxsb3dTaGFkb3dDb250ZW50ICovLCB0 cnVlIC8qIGlnbm9yZUNsaXBwaW5nICovKTsKIAogICAgIE5vZGUqIG5vZGUgPSByZXN1bHQuaW5u ZXJOb2RlKCk7CiAgICAgaWYgKCFub2RlIHx8IG5vZGUtPmRvY3VtZW50KCkgIT0gZnJhbWUuZG9j dW1lbnQoKSkKLS0gCjEuNy45LjUKCg==