Bug 131296

Summary:

REGRESSION: Crash when the spellchecker pop-up appears

Product:

WebKit

Reporter:

Philippe Wittenbergh <phiw2>

Component:

Forms

Assignee:

Nobody <webkit-unassigned>

Status:

RESOLVED DUPLICATE

Severity:

Major

Priority:

Version:

528+ (Nightly build)

Hardware:

Unspecified

OS:

OS X 10.9

Attachments:

Description	Flags
crash log	none

Description Philippe Wittenbergh 2014-04-07 02:08:22 PDT

Created attachment 228724 [details]
crash log

Since r166847	(? could be older), when the spellchecker pop-up appears under misspelled word, the web process crashes.

STR: in any textarea, type something misspelled (or a not-yet-complete word), the little pop-up appears, the web process crashes:

Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.WebCore             	0x000000010debd951 WebCore::TextIterator::range() const + 49
1   com.apple.WebCore             	0x000000010debe73e WebCore::CharacterIterator::range() const + 30
2   com.apple.WebCore             	0x000000010debf31f WebCore::characterSubrange(WebCore::CharacterIterator&, int, int) + 47
3   com.apple.WebCore             	0x000000010debf2c6 WebCore::TextIterator::subrange(WebCore::Range*, int, int) + 134
4   com.apple.WebCore             	0x000000010d12e4fa WebCore::AlternativeTextController::applyAlternativeTextToRange(WebCore::Range const*, WTF::String const&, WebCore::AlternativeTextType, WTF::Vector<WebCore::DocumentMarker::MarkerType, 0ul, WTF::CrashOnOverflow> const&) + 1754
5   com.apple.WebCore             	0x000000010d12da6f WebCore::AlternativeTextController::handleAlternativeTextUIResult(WTF::String const&) + 703
6   com.apple.WebKit2             	0x000000010c79aaa2 void IPC::handleMessage<Messages::WebPage::HandleAlternativeTextUIResult, WebKit::WebPage, void (WebKit::WebPage::*)(WTF::String const&)>(IPC::MessageDecoder&, WebKit::WebPage*, void (WebKit::WebPage::*)(WTF::String const&)) + 67
7   com.apple.WebKit2             	0x000000010c79875f WebKit::WebPage::didReceiveWebPageMessage(IPC::Connection*, IPC::MessageDecoder&) + 9043
8   com.apple.WebKit2             	0x000000010c6a0675 IPC::MessageReceiverMap::dispatchMessage(IPC::Connection*, IPC::MessageDecoder&) + 125
9   com.apple.WebKit2             	0x000000010c7de04e WebKit::WebProcess::didReceiveMessage(IPC::Connection*, IPC::MessageDecoder&) + 28
10  com.apple.WebKit2             	0x000000010c64d43a IPC::Connection::dispatchMessage(std::__1::unique_ptr<IPC::MessageDecoder, std::__1::default_delete<IPC::MessageDecoder> >) + 94
11  com.apple.WebKit2             	0x000000010c64f4a6 IPC::Connection::dispatchOneMessage() + 106
12  com.apple.JavaScriptCore      	0x000000010cf49855 WTF::RunLoop::performWork() + 421
13  com.apple.JavaScriptCore      	0x000000010cf49f32 WTF::RunLoop::performWork(void*) + 34
14  com.apple.CoreFoundation      	0x00007fff8d4d5731 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17
15  com.apple.CoreFoundation      	0x00007fff8d4c6ea2 __CFRunLoopDoSources0 + 242
16  com.apple.CoreFoundation      	0x00007fff8d4c662f __CFRunLoopRun + 831
17  com.apple.CoreFoundation      	0x00007fff8d4c60b5 CFRunLoopRunSpecific + 309
18  com.apple.HIToolbox           	0x00007fff8f1d8a0d RunCurrentEventLoopInMode + 226
19  com.apple.HIToolbox           	0x00007fff8f1d87b7 ReceiveNextEventCommon + 479
20  com.apple.HIToolbox           	0x00007fff8f1d85bc _BlockUntilNextEventMatchingListInModeWithFilter + 65
21  com.apple.AppKit              	0x00007fff8ffd63de _DPSNextEvent + 1434
22  com.apple.AppKit              	0x00007fff8ffd5a2b -[NSApplication nextEventMatchingMask:untilDate:inMode:dequeue:] + 122
23  com.apple.AppKit              	0x00007fff8ffc9b2c -[NSApplication run] + 553
24  com.apple.AppKit              	0x00007fff8ffb4913 NSApplicationMain + 940
25  com.apple.XPCService          	0x00007fff8c0a4c0f _xpc_main + 385
26  libxpc.dylib                  	0x00007fff8afe6bde xpc_main + 399
27  com.apple.WebKit.WebContent.Development	0x0000000108f796a0 main + 16
28  libdyld.dylib                 	0x00007fff8a4b65fd start + 1

Comment 1 Alexey Proskuryakov 2014-04-14 09:59:57 PDT

This was fixed a few days ago. Unfortunately, we didn't have new nightly builds available since then.

*** This bug has been marked as a duplicate of bug 131475 ***