Bug 119557

Summary: fast/frames/seamless/seamless-custom-font-pruning-crash.html asserts
Product: WebKit Reporter: Antti Koivisto <koivisto>
Component: CSSAssignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Normal    
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   

Antti Koivisto
Reported 2013-08-07 11:49:28 PDT
VM Regions Near 0xbbadbeef: --> __TEXT 000000010dbc1000-000000010dc4b000 [ 552K] r-x/rwx SM=COW /Build/* Application Specific Information: CRASHING TEST: fast/frames/seamless/seamless-custom-font-pruning-crash.html Thread 0 Crashed:: Dispatch queue: com.apple.main-thread 0 com.apple.JavaScriptCore 0x000000010e24a51a WTFCrash + 42 (Assertions.cpp:342) 1 com.apple.WebCore 0x000000010f86d9d0 WebCore::Style::resolveTree(WebCore::Element*, WebCore::Style::Change) + 64 (StyleResolveTree.cpp:222) 2 com.apple.WebCore 0x000000010fb4affd WebCore::Document::recalcStyle(WebCore::Style::Change) + 1149 (Document.cpp:1805) 3 com.apple.WebCore 0x000000010ff6663a WebCore::HTMLIFrameElement::didRecalcStyle(WebCore::Style::Change) + 138 (HTMLIFrameElement.cpp:115) 4 com.apple.WebCore 0x000000010f86dd7b WebCore::Style::resolveTree(WebCore::Element*, WebCore::Style::Change) + 1003 (StyleResolveTree.cpp:284) 5 com.apple.WebCore 0x000000010f86dcb9 WebCore::Style::resolveTree(WebCore::Element*, WebCore::Style::Change) + 809 (StyleResolveTree.cpp:271) 6 com.apple.WebCore 0x000000010f86dcb9 WebCore::Style::resolveTree(WebCore::Element*, WebCore::Style::Change) + 809 (StyleResolveTree.cpp:271) 7 com.apple.WebCore 0x000000010fb4affd WebCore::Document::recalcStyle(WebCore::Style::Change) + 1149 (Document.cpp:1805) 8 com.apple.WebCore 0x000000010fb47413 WebCore::Document::updateStyleIfNeeded() + 355 (Document.cpp:1853) 9 com.apple.WebCore 0x000000010fb4b504 WebCore::Document::implicitClose() + 868 (Document.cpp:2448) 10 com.apple.WebCore 0x000000010fdbc15b WebCore::FrameLoader::checkCallImplicitClose() + 155 (FrameLoader.cpp:844) 11 com.apple.WebCore 0x000000010fdbbdd6 WebCore::FrameLoader::checkCompleted() + 358 (FrameLoader.cpp:789) 12 com.apple.WebCore 0x000000010fdbc229 WebCore::FrameLoader::completed() + 185 (FrameLoader.cpp:1095) 13 com.apple.WebCore 0x000000010fdbbdf3 WebCore::FrameLoader::checkCompleted() + 387 (FrameLoader.cpp:792) 14 com.apple.WebCore 0x000000010fb4d2b0 WebCore::Document::explicitClose() + 160 (Document.cpp:2353) 15 com.apple.WebCore 0x000000010fb4d209 WebCore::Document::cancelParsing() + 73 (Document.cpp:2251) 16 com.apple.WebCore 0x000000010fdb863b WebCore::FrameLoader::init() + 315 (FrameLoader.cpp:265) 17 com.apple.WebKit 0x000000010f0afb6c WebCore::Frame::init() + 28 (Frame.h:261) 18 com.apple.WebKit 0x000000010f0a7b81 +[WebFrame(WebInternal)
Attachments
Add attachment proposed patch, testcase, etc.
Antti Koivisto
Comment 1 2013-08-07 12:12:33 PDT
http://trac.webkit.org/changeset/153796
Note You need to log in before you can comment on or make changes to this bug.