Bug 53680

Summary: [GTK] fast/frames/sandboxed-iframe-scripting.html is flaky
Product: WebKit Reporter: Philippe Normand <pnormand>
Component: WebKitGTKAssignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Normal CC: jianli, mrobinson
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: PC   
OS: OS X 10.5   

Description Philippe Normand 2011-02-03 06:54:27 PST
Crashing sometimes on 64-bits Debug:

http://webkit-bots.igalia.com/amd64/svn_77474.core-when_1296735359-_-who_DumpRenderTree-_-why_11.trace.html

I can't locally reproduce this issue, but will skip the test.
Comment 1 Philippe Normand 2011-02-03 06:58:41 PST
Skipped in http://trac.webkit.org/changeset/77486

Note, this bug could be related with bug 53673. Both crashes are malloc errors
Comment 2 Martin Robinson 2011-02-03 10:31:11 PST
I'm pasting in the stack trace here and CCing relevant people. I think we should try to do this for all new bugs otherwise the stack link will break and no one will fix this.

Thread 5 (Thread 11667):
#0  0x00007fa8c9c4cafe in ?? () from /lib/libc.so.6
#1  0x00007fa8c9be9458 in ?? () from /lib/libc.so.6
#2  0x00007fa8c9be7841 in free () from /lib/libc.so.6
#3  0x00007fa8ceddd684 in WTF::fastFree (p=0x51059c0) at ../../Source/JavaScriptCore/wtf/FastMalloc.cpp:327
#4  0x00007fa8cddcf508 in WTF::StringImplBase::operator delete (p=0x51059c0) at ../../Source/JavaScriptCore/wtf/text/StringImplBase.h:34
#5  0x00007fa8cddcf563 in WTF::StringImpl::deref (this=0x51059c0) at ../../Source/JavaScriptCore/wtf/text/StringImpl.h:244
#6  0x00007fa8cddcf801 in WTF::derefIfNotNull<WTF::StringImpl> (ptr=0x51059c0) at ../../Source/JavaScriptCore/wtf/PassRefPtr.h:59
#7  0x00007fa8cddcf7ad in WTF::RefPtr<WTF::StringImpl>::~RefPtr (this=0x7942440, __in_chrg=<value optimized out>) at ../../Source/JavaScriptCore/wtf/RefPtr.h:58
#8  0x00007fa8cddcf57e in WTF::String::~String (this=0x7942440, __in_chrg=<value optimized out>) at ../../Source/JavaScriptCore/wtf/text/WTFString.h:110
#9  0x00007fa8ce5edcd8 in std::pair<WTF::String, WTF::RefPtr<WebCore::BlobStorageData> >::~pair (this=0x7942440, __in_chrg=<value optimized out>) at /usr/include/c++/4.4/bits/stl_pair.h:68
#10 0x00007fa8ce5ef5ff in WTF::HashTable<WTF::String, std::pair<WTF::String, WTF::RefPtr<WebCore::BlobStorageData> >, WTF::PairFirstExtractor<std::pair<WTF::String, WTF::RefPtr<WebCore::BlobStorageData> > >, WTF::StringHash, WTF::PairHashTraits<WTF::HashTraits<WTF::String>, WTF::HashTraits<WTF::RefPtr<WebCore::BlobStorageData> > >, WTF::HashTraits<WTF::String> >::deleteBucket (bucket=...) at ../../Source/JavaScriptCore/wtf/HashTable.h:386
#11 0x00007fa8ce5ef2de in WTF::HashTable<WTF::String, std::pair<WTF::String, WTF::RefPtr<WebCore::BlobStorageData> >, WTF::PairFirstExtractor<std::pair<WTF::String, WTF::RefPtr<WebCore::BlobStorageData> > >, WTF::StringHash, WTF::PairHashTraits<WTF::HashTraits<WTF::String>, WTF::HashTraits<WTF::RefPtr<WebCore::BlobStorageData> > >, WTF::HashTraits<WTF::String> >::remove (this=0x19d8828, pos=0x7942440) at ../../Source/JavaScriptCore/wtf/HashTable.h:829
#12 0x00007fa8ce5eef91 in WTF::HashTable<WTF::String, std::pair<WTF::String, WTF::RefPtr<WebCore::BlobStorageData> >, WTF::PairFirstExtractor<std::pair<WTF::String, WTF::RefPtr<WebCore::BlobStorageData> > >, WTF::StringHash, WTF::PairHashTraits<WTF::HashTraits<WTF::String>, WTF::HashTraits<WTF::RefPtr<WebCore::BlobStorageData> > >, WTF::HashTraits<WTF::String> >::removeAndInvalidateWithoutEntryConsistencyCheck (this=0x19d8828, pos=0x7942440) at ../../Source/JavaScriptCore/wtf/HashTable.h:811
#13 0x00007fa8ce5eebb7 in WTF::HashTable<WTF::String, std::pair<WTF::String, WTF::RefPtr<WebCore::BlobStorageData> >, WTF::PairFirstExtractor<std::pair<WTF::String, WTF::RefPtr<WebCore::BlobStorageData> > >, WTF::StringHash, WTF::PairHashTraits<WTF::HashTraits<WTF::String>, WTF::HashTraits<WTF::RefPtr<WebCore::BlobStorageData> > >, WTF::HashTraits<WTF::String> >::removeWithoutEntryConsistencyCheck (this=0x19d8828, it=...) at ../../Source/JavaScriptCore/wtf/HashTable.h:854
#14 0x00007fa8ce5ee2f0 in WTF::HashMap<WTF::String, WTF::RefPtr<WebCore::BlobStorageData>, WTF::StringHash, WTF::HashTraits<WTF::String>, WTF::HashTraits<WTF::RefPtr<WebCore::BlobStorageData> > >::remove (this=0x19d8828, it=...) at ../../Source/JavaScriptCore/wtf/HashMap.h:289
#15 0x00007fa8ce5edba6 in WTF::HashMap<WTF::String, WTF::RefPtr<WebCore::BlobStorageData>, WTF::StringHash, WTF::HashTraits<WTF::String>, WTF::HashTraits<WTF::RefPtr<WebCore::BlobStorageData> > >::remove (this=0x19d8828, key=...) at ../../Source/JavaScriptCore/wtf/HashMap.h:295
#16 0x00007fa8ce5ed171 in WebCore::BlobRegistryImpl::unregisterBlobURL (this=0x19d8820, url=...) at ../../Source/WebCore/platform/network/BlobRegistryImpl.cpp:167
#17 0x00007fa8ce2c08d5 in WebCore::unregisterBlobURLTask (context=0x7fd1fe0) at ../../Source/WebCore/fileapi/ThreadableBlobRegistry.cpp:102
#18 0x00007fa8cedddbf9 in WTF::dispatchFunctionsFromMainThread () at ../../Source/JavaScriptCore/wtf/MainThread.cpp:155
#19 0x00007fa8ceddd9cb in WTF::timeoutFired () at ../../Source/JavaScriptCore/wtf/gtk/MainThreadGtk.cpp:43
#20 0x00007fa8cb057dbb in g_timeout_dispatch (source=0x792b8f0, callback=0x80, user_data=0x51059b0) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:3877
#21 0x00007fa8cb057362 in g_main_dispatch (context=0x5671e0) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:2440
#22 g_main_context_dispatch (context=0x5671e0) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:3013
#23 0x00007fa8cb05ba28 in g_main_context_iterate (context=0x5671e0, block=<value optimized out>, dispatch=<value optimized out>, self=<value optimized out>) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:3091
#24 0x00007fa8cb05bf35 in g_main_loop_run (loop=0x8092670) at /tmp/buildd/glib2.0-2.27.91/./glib/gmain.c:3299
#25 0x00007fa8ccf90657 in gtk_main () from /usr/lib/libgtk-x11-2.0.so.0
#26 0x000000000041cd18 in runTest (testPathOrURL=...) at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:653
#27 0x000000000041c3e8 in runTestingServerLoop () at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:467
#28 0x000000000041e31b in main (argc=2, argv=0x7fff9f98cac8) at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:1094
Comment 3 Jian Li 2011-02-07 16:15:03 PST
This might be related to 53104 (https://bugs.webkit.org/show_bug.cgi?id=53104). Could you please check if this test is still flaky after 53104 is fixed?
Comment 4 Martin Robinson 2011-02-08 07:47:03 PST
Unskipped the test and closing this. Will re-open if the failures reappear.