Bug 19845

Summary: REGRESSION?: Safari crashes when browsing GMail
Product: WebKit Reporter: Ismail Donmez <ismail>
Component: New BugsAssignee: Nobody <webkit-unassigned>
Status: RESOLVED DUPLICATE    
Severity: Normal Keywords: InRadar
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: Mac   
OS: OS X 10.5   

Description Ismail Donmez 2008-07-01 08:45:02 PDT
This is a regression introduced in last 24 hours, crash is randomly happening when trying to open mail messages in GMail.

Backtrace :

Thread 0 Crashed:
0   com.apple.JavaScriptCore      	0x004291b2 KJS::Machine::privateExecute(KJS::Machine::ExecutionFlag, KJS::ExecState*, KJS::RegisterFile*, KJS::Register*, KJS::ScopeChainNode*, KJS::CodeBlock*, KJS::JSValue**) + 12578 (JSValue.h:505)
1   com.apple.JavaScriptCore      	0x0042ecda KJS::Machine::execute(KJS::FunctionBodyNode*, KJS::ExecState*, KJS::JSFunction*, KJS::JSObject*, KJS::ArgList const&, KJS::ScopeChainNode*, KJS::JSValue**) + 682 (Machine.cpp:751)
2   com.apple.JavaScriptCore      	0x003d7fa5 KJS::JSFunction::call(KJS::ExecState*, KJS::JSValue*, KJS::ArgList const&) + 101 (JSFunction.cpp:87)
3   com.apple.JavaScriptCore      	0x003d917c KJS::functionProtoFuncCall(KJS::ExecState*, KJS::JSObject*, KJS::JSValue*, KJS::ArgList const&) + 252 (JSValue.cpp:314)
4   com.apple.JavaScriptCore      	0x0042dd1f KJS::Machine::privateExecute(KJS::Machine::ExecutionFlag, KJS::ExecState*, KJS::RegisterFile*, KJS::Register*, KJS::ScopeChainNode*, KJS::CodeBlock*, KJS::JSValue**) + 31887 (Machine.cpp:2270)
5   com.apple.JavaScriptCore      	0x0042ecda KJS::Machine::execute(KJS::FunctionBodyNode*, KJS::ExecState*, KJS::JSFunction*, KJS::JSObject*, KJS::ArgList const&, KJS::ScopeChainNode*, KJS::JSValue**) + 682 (Machine.cpp:751)
6   com.apple.JavaScriptCore      	0x003d7fa5 KJS::JSFunction::call(KJS::ExecState*, KJS::JSValue*, KJS::ArgList const&) + 101 (JSFunction.cpp:87)
7   com.apple.JavaScriptCore      	0x003d917c KJS::functionProtoFuncCall(KJS::ExecState*, KJS::JSObject*, KJS::JSValue*, KJS::ArgList const&) + 252 (JSValue.cpp:314)
8   com.apple.JavaScriptCore      	0x0042dd1f KJS::Machine::privateExecute(KJS::Machine::ExecutionFlag, KJS::ExecState*, KJS::RegisterFile*, KJS::Register*, KJS::ScopeChainNode*, KJS::CodeBlock*, KJS::JSValue**) + 31887 (Machine.cpp:2270)
9   com.apple.JavaScriptCore      	0x0042ecda KJS::Machine::execute(KJS::FunctionBodyNode*, KJS::ExecState*, KJS::JSFunction*, KJS::JSObject*, KJS::ArgList const&, KJS::ScopeChainNode*, KJS::JSValue**) + 682 (Machine.cpp:751)
10  com.apple.JavaScriptCore      	0x003d7fa5 KJS::JSFunction::call(KJS::ExecState*, KJS::JSValue*, KJS::ArgList const&) + 101 (JSFunction.cpp:87)
11  com.apple.JavaScriptCore      	0x003d8a50 KJS::functionProtoFuncApply(KJS::ExecState*, KJS::JSObject*, KJS::JSValue*, KJS::ArgList const&) + 560 (JSValue.cpp:314)
12  com.apple.JavaScriptCore      	0x0042dd1f KJS::Machine::privateExecute(KJS::Machine::ExecutionFlag, KJS::ExecState*, KJS::RegisterFile*, KJS::Register*, KJS::ScopeChainNode*, KJS::CodeBlock*, KJS::JSValue**) + 31887 (Machine.cpp:2270)
13  com.apple.JavaScriptCore      	0x0042ecda KJS::Machine::execute(KJS::FunctionBodyNode*, KJS::ExecState*, KJS::JSFunction*, KJS::JSObject*, KJS::ArgList const&, KJS::ScopeChainNode*, KJS::JSValue**) + 682 (Machine.cpp:751)
14  com.apple.JavaScriptCore      	0x003d7fa5 KJS::JSFunction::call(KJS::ExecState*, KJS::JSValue*, KJS::ArgList const&) + 101 (JSFunction.cpp:87)
15  com.apple.JavaScriptCore      	0x003d917c KJS::functionProtoFuncCall(KJS::ExecState*, KJS::JSObject*, KJS::JSValue*, KJS::ArgList const&) + 252 (JSValue.cpp:314)
16  com.apple.JavaScriptCore      	0x0042dd1f KJS::Machine::privateExecute(KJS::Machine::ExecutionFlag, KJS::ExecState*, KJS::RegisterFile*, KJS::Register*, KJS::ScopeChainNode*, KJS::CodeBlock*, KJS::JSValue**) + 31887 (Machine.cpp:2270)
17  com.apple.JavaScriptCore      	0x0042ecda KJS::Machine::execute(KJS::FunctionBodyNode*, KJS::ExecState*, KJS::JSFunction*, KJS::JSObject*, KJS::ArgList const&, KJS::ScopeChainNode*, KJS::JSValue**) + 682 (Machine.cpp:751)
18  com.apple.JavaScriptCore      	0x003d7fa5 KJS::JSFunction::call(KJS::ExecState*, KJS::JSValue*, KJS::ArgList const&) + 101 (JSFunction.cpp:87)
19  com.apple.JavaScriptCore      	0x003d8a50 KJS::functionProtoFuncApply(KJS::ExecState*, KJS::JSObject*, KJS::JSValue*, KJS::ArgList const&) + 560 (JSValue.cpp:314)
20  com.apple.JavaScriptCore      	0x0042dd1f KJS::Machine::privateExecute(KJS::Machine::ExecutionFlag, KJS::ExecState*, KJS::RegisterFile*, KJS::Register*, KJS::ScopeChainNode*, KJS::CodeBlock*, KJS::JSValue**) + 31887 (Machine.cpp:2270)
21  com.apple.JavaScriptCore      	0x0042ecda KJS::Machine::execute(KJS::FunctionBodyNode*, KJS::ExecState*, KJS::JSFunction*, KJS::JSObject*, KJS::ArgList const&, KJS::ScopeChainNode*, KJS::JSValue**) + 682 (Machine.cpp:751)
22  com.apple.JavaScriptCore      	0x003d7fa5 KJS::JSFunction::call(KJS::ExecState*, KJS::JSValue*, KJS::ArgList const&) + 101 (JSFunction.cpp:87)
23  com.apple.JavaScriptCore      	0x003d917c KJS::functionProtoFuncCall(KJS::ExecState*, KJS::JSObject*, KJS::JSValue*, KJS::ArgList const&) + 252 (JSValue.cpp:314)
24  com.apple.JavaScriptCore      	0x0042dd1f KJS::Machine::privateExecute(KJS::Machine::ExecutionFlag, KJS::ExecState*, KJS::RegisterFile*, KJS::Register*, KJS::ScopeChainNode*, KJS::CodeBlock*, KJS::JSValue**) + 31887 (Machine.cpp:2270)
25  com.apple.JavaScriptCore      	0x0042ecda KJS::Machine::execute(KJS::FunctionBodyNode*, KJS::ExecState*, KJS::JSFunction*, KJS::JSObject*, KJS::ArgList const&, KJS::ScopeChainNode*, KJS::JSValue**) + 682 (Machine.cpp:751)
26  com.apple.JavaScriptCore      	0x003d7fa5 KJS::JSFunction::call(KJS::ExecState*, KJS::JSValue*, KJS::ArgList const&) + 101 (JSFunction.cpp:87)
27  com.apple.WebCore             	0x016227e5 WebCore::JSAbstractEventListener::handleEvent(WebCore::Event*, bool) + 1893 (JSEventListener.cpp:93)
28  com.apple.WebCore             	0x011e5b26 WebCore::EventTarget::handleLocalEvents(WebCore::EventTargetNode*, WebCore::Event*, bool) + 182 (EventTarget.cpp:325)
29  com.apple.WebCore             	0x011e65ff WebCore::EventTargetNode::handleLocalEvents(WebCore::Event*, bool) + 79 (EventTargetNode.cpp:117)
30  com.apple.WebCore             	0x011e5cf6 WebCore::EventTarget::dispatchGenericEvent(WebCore::EventTargetNode*, WTF::PassRefPtr<WebCore::Event>, int&, bool) + 454 (DeprecatedPtrList.h:104)
31  com.apple.WebCore             	0x011e6eaf WebCore::EventTargetNode::dispatchEvent(WTF::PassRefPtr<WebCore::Event>, int&, bool) + 255 (PassRefPtr.h:44)
32  com.apple.WebCore             	0x011e777d WebCore::EventTargetNode::dispatchMouseEvent(WebCore::AtomicString const&, int, int, int, int, int, int, bool, bool, bool, bool, bool, WebCore::Node*, WTF::PassRefPtr<WebCore::Event>) + 717 (PassRefPtr.h:44)
33  com.apple.WebCore             	0x011e7fc5 WebCore::EventTargetNode::dispatchMouseEvent(WebCore::PlatformMouseEvent const&, WebCore::AtomicString const&, int, WebCore::Node*) + 165 (PassRefPtr.h:44)
34  com.apple.WebCore             	0x011dcd35 WebCore::EventHandler::dispatchMouseEvent(WebCore::AtomicString const&, WebCore::Node*, bool, int, WebCore::PlatformMouseEvent const&, bool) + 101 (EventHandler.cpp:1280)
35  com.apple.WebCore             	0x011e1107 WebCore::EventHandler::handleMousePressEvent(WebCore::PlatformMouseEvent const&) + 551 (EventHandler.cpp:875)
36  com.apple.WebCore             	0x011e4bf6 WebCore::EventHandler::mouseDown(NSEvent*) + 534 (EventHandlerMac.mm:493)
37  com.apple.WebKit              	0x001d540e -[WebHTMLView mouseDown:] + 462 (WebHTMLView.mm:3119)
38  com.apple.WebCore             	0x011e3d39 WebCore::EventHandler::passMouseDownEventToWidget(WebCore::Widget*) + 329 (EventHandlerMac.mm:284)
39  com.apple.WebCore             	0x011e3f0b WebCore::EventHandler::passWidgetMouseDownEventToWidget(WebCore::RenderWidget*) + 27 (EventHandlerMac.mm:219)
40  com.apple.WebCore             	0x011e40d2 WebCore::EventHandler::passSubframeEventToSubframe(WebCore::MouseEventWithHitTestResults&, WebCore::Frame*, WebCore::HitTestResult*) + 450 (EventHandlerMac.mm:413)
41  com.apple.WebCore             	0x011e4297 WebCore::EventHandler::passMousePressEventToSubframe(WebCore::MouseEventWithHitTestResults&, WebCore::Frame*) + 39 (EventHandlerMac.mm:636)
42  com.apple.WebCore             	0x011e1024 WebCore::EventHandler::handleMousePressEvent(WebCore::PlatformMouseEvent const&) + 324 (EventHandler.cpp:853)
43  com.apple.WebCore             	0x011e4bf6 WebCore::EventHandler::mouseDown(NSEvent*) + 534 (EventHandlerMac.mm:493)
44  com.apple.WebKit              	0x001d540e -[WebHTMLView mouseDown:] + 462 (WebHTMLView.mm:3119)
45  com.apple.AppKit              	0x91a2a88b -[NSWindow sendEvent:] + 5381
46  com.apple.Safari              	0x000296d3 0x1000 + 165587
47  com.apple.AppKit              	0x919f7431 -[NSApplication sendEvent:] + 2941
48  com.apple.Safari              	0x00029250 0x1000 + 164432
49  com.apple.AppKit              	0x91954e27 -[NSApplication run] + 847
50  com.apple.AppKit              	0x91922030 NSApplicationMain + 574
51  com.apple.Safari              	0x000b4de6 0x1000 + 736742
Comment 1 Mark Rowe (bdash) 2008-07-01 15:45:19 PDT
<rdar://problem/6048094>
Comment 2 Ismail Donmez 2008-07-02 13:19:57 PDT
This must be a regression since its constantly crashing now (Browsing Google Reader & GMail to reproduce).
Comment 3 Cameron Zwarich (cpst) 2008-07-02 19:57:52 PDT
This is probably the same issue as bug 19862. Do you remember which revision caused it?
Comment 4 Cameron Zwarich (cpst) 2008-07-02 20:05:02 PDT
I am marking this a duplicate of bug 19862. It seems unlikely that we introduced two distinct frequent crashes on Google sites in the same small set of revisions. Your report also provides better information about the revision that introduced this issue.

*** This bug has been marked as a duplicate of 19862 ***