Bug 16607

Summary: Random crashes in FrameView::scheduleRelayout while surfing Thinkgeek
Product: WebKit Reporter: Cameo Wood <cameowood>
Component: New BugsAssignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Normal CC: aroben, dev+webkit
Priority: P2 Keywords: InRadar
Version: 528+ (Nightly build)   
Hardware: PC   
OS: Windows XP   
URL: http://www.thinkgeek.com
Bug Depends on: 16808    
Bug Blocks:    
Attachments:
Description Flags
crash dump none

Cameo Wood
Reported 2007-12-25 13:04:12 PST
After surfing about 8 pages on thinkgeek (using the back button to navigate back to the main page occasionally, I've had safari crash nearly every 10 minutes. I'm including a crash dump here in case it has any useful information
Attachments
crash dump (38.54 KB, application/octet-stream)
2007-12-25 13:04 PST, Cameo Wood 		no flags
Details
View All Add attachment proposed patch, testcase, etc.
Cameo Wood
Comment 1 2007-12-25 13:04:35 PST
Created attachment 18112 [details] crash dump
Matt Lilek
Comment 2 2007-12-26 10:55:35 PST
According to the user.dmp file, it's crashing in FrameView::scheduleRelayout: WebKit!WebCore::FrameView::scheduleRelayout+0x38 [c:\cygwin\home\buildbot\slave\win32-release-archive\build\opensource\webcore\page\frameview.cpp @ 708] WebKit!WebCore::Document::finishedParsing+0x23 [c:\cygwin\home\buildbot\slave\win32-release-archive\build\opensource\webcore\dom\document.cpp @ 3519] WebKit!WebCore::HTMLParser::finished+0x99 [c:\cygwin\home\buildbot\slave\win32-release-archive\build\opensource\webcore\html\htmlparser.cpp @ 1436] WebKit!WebCore::HTMLTokenizer::end+0x95 [c:\cygwin\home\buildbot\slave\win32-release-archive\build\opensource\webcore\html\htmltokenizer.cpp @ 1554] WebKit!WebCore::HTMLTokenizer::finish+0x418 [c:\cygwin\home\buildbot\slave\win32-release-archive\build\opensource\webcore\html\htmltokenizer.cpp @ 1592] WebKit!WTF::RefCounter<WTF::PairBaseHashTraits<WTF::HashTraits<WebCore::String>,WTF::HashTraits<WTF::HashSet<WebCore::Page *,WTF::PtrHash<WebCore::Page *>,WTF::HashTraits<WebCore::Page *> > *> >,WTF::PairHashTraits<WTF::HashTraits<WebCore::StringImpl *>,WTF::HashTraits<int> > >::deref+0x37 [c:\cygwin\home\buildbot\slave\win32-release-archive\build\build-release\include\javascriptcore\hashtable.h @ 1173] WebKit!WebCore::FrameLoader::write+0x2ae [c:\cygwin\home\buildbot\slave\win32-release-archive\build\opensource\webcore\loader\frameloader.cpp @ 1000] WebKit!WebFrame::committedLoad+0x46 [c:\cygwin\home\buildbot\slave\win32-release-archive\build\opensource\webkit\win\webframe.cpp @ 2022] WebKit!WebCore::FrameLoader::endIfNotLoadingMainResource+0x5f [c:\cygwin\home\buildbot\slave\win32-release-archive\build\opensource\webcore\loader\frameloader.cpp @ 1042]
Matt Lilek
Comment 3 2007-12-26 11:07:48 PST
See bug 16612 for an ASSERT I hit while trying to reproduce this.
David Kilzer (:ddkilzer)
Comment 4 2007-12-26 20:57:51 PST
<rdar://problem/5663654>
Adam Roben (:aroben)
Comment 5 2008-01-07 11:50:23 PST
Comment on attachment 18112 [details] crash dump Was this dump created while running a nightly? If so, which nightly?
Matt Lilek
Comment 6 2008-01-07 12:03:41 PST
(In reply to comment #5) > (From update of attachment 18112 [details] [edit]) > Was this dump created while running a nightly? If so, which nightly? > I believe this was from the r28899 nightly.
Cameo Wood
Comment 7 2008-01-07 12:08:05 PST
Yes, mine was from the r28899 nightly
Adam Roben (:aroben)
Comment 8 2008-01-10 13:25:20 PST
Fixed by r29369
Note You need to log in before you can comment on or make changes to this bug.