Bug 32752
| Summary: | [GTK] crash when loading new page | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Benjamin Otte <otte> |
| Component: | WebKitGTK | Assignee: | Nobody <webkit-unassigned> |
| Status: | RESOLVED FIXED | ||
| Severity: | Normal | CC: | mrobinson |
| Priority: | P2 | ||
| Version: | 528+ (Nightly build) | ||
| Hardware: | PC | ||
| OS: | OS X 10.5 | ||
Benjamin Otte
Here's an assertion failure I have with WebKit master - so you'll likely need a debug build to trigger it.
Steps to reproduce:
1) http://lwn.net/
2) Click on the: "See the full changelog for lots of details." links in the 2.6.33 story (as long as it's there)
You'll pretty much immediately get an assertion like this:
Program terminated with signal 11, Segmentation fault.
#0 0x015393ad in WebCore::FrameView::scheduleRelayout (this=0xa096a68) at ../WebCore/page/FrameView.cpp:1108
1108 ASSERT(m_frame->view() == this);
(gdb) where
#0 0x015393ad in WebCore::FrameView::scheduleRelayout (this=0xa096a68) at ../WebCore/page/FrameView.cpp:1108
#1 0x016c9197 in WebCore::RenderObject::scheduleRelayout (this=0x9fa0acc) at ../WebCore/rendering/RenderObject.cpp:2055
#2 0x01203b05 in WebCore::RenderObject::markContainingBlocksForLayout (this=0x9fa0acc, scheduleRelayout=true, newRoot=0x0)
at ../WebCore/rendering/RenderObject.h:990
#3 0x01203549 in WebCore::RenderObject::setNeedsLayout (this=0x9fa0acc, b=true, markParents=true) at ../WebCore/rendering/RenderObject.h:896
#4 0x01539977 in WebCore::FrameView::setNeedsLayout (this=0xae1a908) at ../WebCore/page/FrameView.cpp:1212
#5 0x0153c6c1 in WebCore::FrameView::contentsResized (this=0xae1a908) at ../WebCore/page/FrameView.h:223
#6 0x015999f9 in WebCore::ScrollView::updateScrollbars (this=0xae1a908, desiredOffset=...) at ../WebCore/platform/ScrollView.cpp:402
#7 0x01997346 in WebCore::ScrollView::setGtkAdjustments (this=0xae1a908, hadj=0x982eb20, vadj=0x982eb60)
at ../WebCore/platform/gtk/ScrollViewGtk.cpp:104
#8 0x00f82935 in WebKit::FrameLoaderClient::transitionToCommittedForNewPage (this=0x9d42580)
at ../WebKit/gtk/WebCoreSupport/FrameLoaderClientGtk.cpp:1115
#9 0x014d045f in WebCore::FrameLoader::transitionToCommitted (this=0x9d3e42c, cachedPage=...) at ../WebCore/loader/FrameLoader.cpp:2556
#10 0x014cfb8f in WebCore::FrameLoader::commitProvisionalLoad (this=0x9d3e42c, prpCachedPage=...) at ../WebCore/loader/FrameLoader.cpp:2427
#11 0x014b235a in WebCore::DocumentLoader::commitIfReady (this=0xb0f17c0) at ../WebCore/loader/DocumentLoader.cpp:320
#12 0x014b23f9 in WebCore::DocumentLoader::commitLoad (this=0xb0f17c0,
data=0xb8039a8 "commit 55639353a0035052d9ea6cfe4dde0ac7fcbb2c9f\nAuthor: Linus Torvalds <torvalds@linux-foundation.org>\nDate: Thu Dec 17 17:14:40 2009 -0800\n\n Linux 2.6.33-rc1\n\ncommit 55db493b65c7b6bb5d7bd3dd3c8a"..., length=1164) at ../WebCore/loader/DocumentLoader.cpp:340
#13 0x014b24ee in WebCore::DocumentLoader::receivedData (this=0xb0f17c0,
data=0xb8039a8 "commit 55639353a0035052d9ea6cfe4dde0ac7fcbb2c9f\nAuthor: Linus Torvalds <torvalds@linux-foundation.org>\nDate: Thu Dec 17 17:14:40 2009 -0800\n\n Linux 2.6.33-rc1\n\ncommit 55db493b65c7b6bb5d7bd3dd3c8a"..., length=1164) at ../WebCore/loader/DocumentLoader.cpp:354
#14 0x014ce351 in WebCore::FrameLoader::receivedData (this=0x9d3e42c,
data=0xb8039a8 "commit 55639353a0035052d9ea6cfe4dde0ac7fcbb2c9f\nAuthor: Linus Torvalds <torvalds@linux-foundation.org>\nDate: Thu Dec 17 17:14:40 2009 -0800\n\n Linux 2.6.33-rc1\n\ncommit 55db493b65c7b6bb5d7bd3dd3c8a"..., length=1164) at ../WebCore/loader/FrameLoader.cpp:2091
#15 0x014e0912 in WebCore::MainResourceLoader::addData (this=0xa0a0e50,
data=0xb8039a8 "commit 55639353a0035052d9ea6cfe4dde0ac7fcbb2c9f\nAuthor: Linus Torvalds <torvalds@linux-foundation.org>\nDate: Thu Dec 17 17:14:40 2009 -0800\n\n Linux 2.6.33-rc1\n\ncommit 55db493b65c7b6bb5d7bd3dd3c8a"..., length=1164, allAtOnce=false)
at ../WebCore/loader/MainResourceLoader.cpp:146
#16 0x014ec387 in WebCore::ResourceLoader::didReceiveData (this=0xa0a0e50,
data=0xb8039a8 "commit 55639353a0035052d9ea6cfe4dde0ac7fcbb2c9f\nAuthor: Linus Torvalds <torvalds@linux-foundation.org>\nDate: Thu Dec 17 17:14:40 2009 -0800\n\n Linux 2.6.33-rc1\n\ncommit 55db493b65c7b6bb5d7bd3dd3c8a"..., length=1164, lengthReceived=0, allAtOnce=false)
at ../WebCore/loader/ResourceLoader.cpp:248
#17 0x014e17fe in WebCore::MainResourceLoader::didReceiveData (this=0xa0a0e50,
data=0xb8039a8 "commit 55639353a0035052d9ea6cfe4dde0ac7fcbb2c9f\nAuthor: Linus Torvalds <torvalds@linux-foundation.org>\nDate: Thu Dec 17 17:14:40 2009 -0800\n\n Linux 2.6.33-rc1\n\ncommit 55db493b65c7b6bb5d7bd3dd3c8a"..., length=1164, lengthReceived=0, allAtOnce=false)
at ../WebCore/loader/MainResourceLoader.cpp:405
#18 0x014ecc28 in WebCore::ResourceLoader::didReceiveData (this=0xa0a0e50,
data=0xb8039a8 "commit 55639353a0035052d9ea6cfe4dde0ac7fcbb2c9f\nAuthor: Linus Torvalds <torvalds@linux-foundation.org>\nDate: Thu Dec 17 17:14:40 2009 -0800\n\n Linux 2.6.33-rc1\n\ncommit 55db493b65c7b6bb5d7bd3dd3c8a"..., length=1164, lengthReceived=0)
at ../WebCore/loader/ResourceLoader.cpp:398
#19 0x019b0dfa in gotChunkCallback (msg=0x9cee9d8, chunk=0x95ce998, data=0xb250368) at ../WebCore/platform/network/soup/ResourceHandleSoup.cpp:288
#20 0x00af1e06 in IA__g_cclosure_marshal_VOID__BOXED (closure=0xb2cb9b8, return_value=0x0, n_param_values=2, param_values=0xb5916478,
invocation_hint=0xbffcdaf8, marshal_data=0x0) at gmarshal.c:566
#21 0x00ad8db8 in IA__g_closure_invoke (closure=0xb2cb9b8, return_value=0x0, n_param_values=2, param_values=0xb5916478, invocation_hint=0xbffcdaf8)
at gclosure.c:767
#22 0x00af0c46 in signal_emit_unlocked_R (node=0x9ce42a0, detail=0, instance=0x9cee9d8, emission_return=0x0, instance_and_params=0xb5916478)
---Type <return> to continue, or q <return> to quit---
at gsignal.c:3247
#23 0x00aeff85 in IA__g_signal_emit_valist (instance=0x9cee9d8, signal_id=402, detail=0, var_args=0xbffcdd00 "\234\063P") at gsignal.c:2980
#24 0x00af0262 in IA__g_signal_emit (instance=0x9cee9d8, signal_id=402, detail=0) at gsignal.c:3037
#25 0x004cf625 in soup_message_got_chunk (msg=0x9cee9d8, chunk=0x95ce998) at soup-message.c:876
#26 0x004d4407 in io_handle_sniffing (msg=0x9cee9d8, done_reading=0) at soup-message-io.c:275
#27 0x004d49d3 in read_body_chunk (msg=0x9cee9d8) at soup-message-io.c:445
#28 0x004d58b5 in io_read (sock=0xa072068, msg=0x9cee9d8) at soup-message-io.c:906
#29 0x00af1428 in IA__g_cclosure_marshal_VOID__VOID (closure=0xb2bc768, return_value=0x0, n_param_values=1, param_values=0x9dcd2b0,
invocation_hint=0xbffcff38, marshal_data=0x0) at gmarshal.c:77
#30 0x00ad8db8 in IA__g_closure_invoke (closure=0xb2bc768, return_value=0x0, n_param_values=1, param_values=0x9dcd2b0, invocation_hint=0xbffcff38)
at gclosure.c:767
#31 0x00af0c46 in signal_emit_unlocked_R (node=0x9d6c2d0, detail=0, instance=0xa072068, emission_return=0x0, instance_and_params=0x9dcd2b0)
at gsignal.c:3247
#32 0x00aeff85 in IA__g_signal_emit_valist (instance=0xa072068, signal_id=409, detail=0, var_args=0xbffd013c "\200Љ") at gsignal.c:2980
#33 0x00af0262 in IA__g_signal_emit (instance=0xa072068, signal_id=409, detail=0) at gsignal.c:3037
#34 0x004e3898 in socket_read_watch (chan=0xb8c8308, cond=G_IO_IN, user_data=0xa072068) at soup-socket.c:1196
#35 0x008ac757 in g_io_unix_dispatch (source=0xb8afe80, callback=0x4e3809 <socket_read_watch>, user_data=0xa072068) at giounix.c:162
#36 0x008703d6 in g_main_dispatch (context=0x9558ac8) at gmain.c:1960
#37 0x00871633 in IA__g_main_context_dispatch (context=0x9558ac8) at gmain.c:2513
#38 0x00871a53 in g_main_context_iterate (context=0x9558ac8, block=1, dispatch=1, self=0x952b258) at gmain.c:2591
#39 0x0087215f in IA__g_main_loop_run (loop=0x956c008) at gmain.c:2799
#40 0x04a0bd46 in IA__gtk_main () at gtkmain.c:1217
#41 0x08049656 in main (argc=1, argv=0xbffd1414) at ephy-main.c:778
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
Martin Robinson
The target of that link is sadly gone forever. :( Likely this bug was fixed some time ago, but if anyone sees it again, feel free to reopen this issue.