Bug 64530

Summary: [GTK] crash in editing/selection/editable-html-element.html
Product: WebKit Reporter: Xan Lopez <xan.lopez>
Component: WebKitGTKAssignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Normal CC: mrobinson
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   

Description Xan Lopez 2011-07-14 07:02:51 PDT
Trace:

Core dump file: core-when_1310650697-_-who_DumpRenderTree-_-why_11 
Executable crashed: /home/slave/webkitgtk/gtk-linux-64-debug/build/WebKitBuild/Debug/Programs/DumpRenderTree 

StackTrace for DumpRenderTree from svn rev 90993:

[New Thread 18701]
[New Thread 18705]

warning: Can't read pathname for load map: Input/output error.
Core was generated by `/home/slave/webkitgtk/gtk-linux-64-debug/build/WebKitBuild/Debug/Programs/DumpR'.
Program terminated with signal 11, Segmentation fault.
#0  0x00002affc890cdfc in ?? () from /lib/libc.so.6

Thread 2 (Thread 18705):
#0  0x00002affc86894d9 in pthread_cond_timedwait@@GLIBC_2.3.2 () from /lib/libpthread.so.0
#1  0x00002affc705a452 in g_cond_timed_wait_posix_impl (cond=<value optimized out>, entered_mutex=<value optimized out>, abs_time=<value optimized out>) at /tmp/buildd/glib2.0-2.28.6/./gthread/gthread-posix.c:242
#2  0x00002affc747f8ff in g_async_queue_pop_intern_unlocked (queue=0x1e75c50, try=0, end_time=0x2affd05c4bf0) at /tmp/buildd/glib2.0-2.28.6/./glib/gasyncqueue.c:423
#3  0x00002affc74d4419 in g_thread_pool_wait_for_new_task (data=<value optimized out>) at /tmp/buildd/glib2.0-2.28.6/./glib/gthreadpool.c:274
#4  g_thread_pool_thread_proxy (data=<value optimized out>) at /tmp/buildd/glib2.0-2.28.6/./glib/gthreadpool.c:308
#5  0x00002affc74d1cf6 in g_thread_create_proxy (data=0x1e75cc0) at /tmp/buildd/glib2.0-2.28.6/./glib/gthread.c:1897
#6  0x00002affc86848ba in start_thread () from /lib/libpthread.so.0
#7  0x00002affc896a02d in clone () from /lib/libc.so.6
warning: (Internal error: pc 0x0 in read in psymtab, but not in symtab.)

#8  0x0000000000000000 in ?? ()

Thread 1 (Thread 18701):
#0  0x00002affc890cdfc in ?? () from /lib/libc.so.6
#1  0x00002affc890f254 in ?? () from /lib/libc.so.6
#2  0x00002affc8911930 in malloc () from /lib/libc.so.6
#3  0x00002affc198e5d3 in WTF::fastMalloc (n=2048) at ../../Source/JavaScriptCore/wtf/FastMalloc.cpp:248
#4  0x00002affc198e3fc in WTF::fastZeroedMalloc (n=2048) at ../../Source/JavaScriptCore/wtf/FastMalloc.cpp:176
#5  0x00002affc298b5fa in WTF::HashTable<WebCore::Node const*, std::pair<WebCore::Node const*, WebCore::NodeRareData*>, WTF::PairFirstExtractor<std::pair<WebCore::Node const*, WebCore::NodeRareData*> >, WTF::PtrHash<WebCore::Node const*>, WTF::PairHashTraits<WTF::HashTraits<WebCore::Node const*>, WTF::HashTraits<WebCore::NodeRareData*> >, WTF::HashTraits<WebCore::Node const*> >::allocateTable (size=128) at ../../Source/JavaScriptCore/wtf/HashTable.h:880
#6  0x00002affc298a16a in WTF::HashTable<WebCore::Node const*, std::pair<WebCore::Node const*, WebCore::NodeRareData*>, WTF::PairFirstExtractor<std::pair<WebCore::Node const*, WebCore::NodeRareData*> >, WTF::PtrHash<WebCore::Node const*>, WTF::PairHashTraits<WTF::HashTraits<WebCore::Node const*>, WTF::HashTraits<WebCore::NodeRareData*> >, WTF::HashTraits<WebCore::Node const*> >::rehash (this=0x2484f20, newTableSize=128) at ../../Source/JavaScriptCore/wtf/HashTable.h:928
#7  0x00002affc298a34d in WTF::HashTable<WebCore::Node const*, std::pair<WebCore::Node const*, WebCore::NodeRareData*>, WTF::PairFirstExtractor<std::pair<WebCore::Node const*, WebCore::NodeRareData*> >, WTF::PtrHash<WebCore::Node const*>, WTF::PairHashTraits<WTF::HashTraits<WebCore::Node const*>, WTF::HashTraits<WebCore::NodeRareData*> >, WTF::HashTraits<WebCore::Node const*> >::shrink (this=0x2484f20) at ../../Source/JavaScriptCore/wtf/HashTable.h:382
#8  0x00002affc298842e in WTF::HashTable<WebCore::Node const*, std::pair<WebCore::Node const*, WebCore::NodeRareData*>, WTF::PairFirstExtractor<std::pair<WebCore::Node const*, WebCore::NodeRareData*> >, WTF::PtrHash<WebCore::Node const*>, WTF::PairHashTraits<WTF::HashTraits<WebCore::Node const*>, WTF::HashTraits<WebCore::NodeRareData*> >, WTF::HashTraits<WebCore::Node const*> >::remove (this=0x2484f20, pos=0x2847340) at ../../Source/JavaScriptCore/wtf/HashTable.h:836
#9  0x00002affc2985025 in WTF::HashTable<WebCore::Node const*, std::pair<WebCore::Node const*, WebCore::NodeRareData*>, WTF::PairFirstExtractor<std::pair<WebCore::Node const*, WebCore::NodeRareData*> >, WTF::PtrHash<WebCore::Node const*>, WTF::PairHashTraits<WTF::HashTraits<WebCore::Node const*>, WTF::HashTraits<WebCore::NodeRareData*> >, WTF::HashTraits<WebCore::Node const*> >::removeAndInvalidateWithoutEntryConsistencyCheck (this=0x2484f20, pos=0x2847340) at ../../Source/JavaScriptCore/wtf/HashTable.h:813
#10 0x00002affc2981d35 in WTF::HashTable<WebCore::Node const*, std::pair<WebCore::Node const*, WebCore::NodeRareData*>, WTF::PairFirstExtractor<std::pair<WebCore::Node const*, WebCore::NodeRareData*> >, WTF::PtrHash<WebCore::Node const*>, WTF::PairHashTraits<WTF::HashTraits<WebCore::Node const*>, WTF::HashTraits<WebCore::NodeRareData*> >, WTF::HashTraits<WebCore::Node const*> >::removeWithoutEntryConsistencyCheck (this=0x2484f20, it=...) at ../../Source/JavaScriptCore/wtf/HashTable.h:856
#11 0x00002affc297fd96 in WTF::HashMap<WebCore::Node const*, WebCore::NodeRareData*, WTF::PtrHash<WebCore::Node const*>, WTF::HashTraits<WebCore::Node const*>, WTF::HashTraits<WebCore::NodeRareData*> >::remove (this=0x2484f20, it=...) at ../../Source/JavaScriptCore/wtf/HashMap.h:289
#12 0x00002affc29753a6 in WebCore::Node::clearRareData (this=0x26ab4e0) at ../../Source/WebCore/dom/Node.cpp:550
#13 0x00002affc2974407 in WebCore::Node::~Node (this=0x26ab4e0, __in_chrg=<value optimized out>) at ../../Source/WebCore/dom/Node.cpp:393
#14 0x00002affc2944c46 in WebCore::DocumentType::~DocumentType (this=0x26ab4e0, __in_chrg=<value optimized out>) at ../../Source/WebCore/dom/DocumentType.h:33
#15 0x00002affc28f0052 in WebCore::removeAllChildrenInContainer<WebCore::Node, WebCore::ContainerNode> (container=0x25488c0) at ../../Source/WebCore/dom/ContainerNodeAlgorithms.h:64
#16 0x00002affc28eae42 in WebCore::ContainerNode::removeAllChildren (this=0x25488c0) at ../../Source/WebCore/dom/ContainerNode.cpp:81
#17 0x00002affc29023b7 in WebCore::Document::removedLastRef (this=0x25488c0) at ../../Source/WebCore/dom/Document.cpp:580
#18 0x00002affc25ca7a1 in WebCore::TreeShared<WebCore::ContainerNode>::deref (this=0x25488c8) at ../../Source/WebCore/platform/TreeShared.h:79
#19 0x00002affc25def69 in WTF::derefIfNotNull<WebCore::Node> (ptr=0x25488c0) at ../../Source/JavaScriptCore/wtf/PassRefPtr.h:59
#20 0x00002affc25de3b1 in WTF::RefPtr<WebCore::Node>::~RefPtr (this=0x27df1c0, __in_chrg=<value optimized out>) at ../../Source/JavaScriptCore/wtf/RefPtr.h:58
#21 0x00002affc29496ad in WebCore::DynamicNodeList::~DynamicNodeList (this=0x27df1b0, __in_chrg=<value optimized out>) at ../../Source/WebCore/dom/DynamicNodeList.cpp:50
#22 0x00002affc29c53da in WebCore::TagNodeList::~TagNodeList (this=0x27df1b0, __in_chrg=<value optimized out>) at ../../Source/WebCore/dom/TagNodeList.cpp:46
#23 0x00002affc25df4b2 in WTF::RefCounted<WebCore::NodeList>::deref (this=0x27df1b8) at ../../Source/JavaScriptCore/wtf/RefCounted.h:141
#24 0x00002affc25df101 in WTF::derefIfNotNull<WebCore::NodeList> (ptr=0x27df1b0) at ../../Source/JavaScriptCore/wtf/PassRefPtr.h:59
#25 0x00002affc25dec01 in WTF::RefPtr<WebCore::NodeList>::~RefPtr (this=0x2b00186de3b0, __in_chrg=<value optimized out>) at ../../Source/JavaScriptCore/wtf/RefPtr.h:58
#26 0x00002affc33f5976 in WebCore::JSNodeList::~JSNodeList (this=0x2b00186de380, __in_chrg=<value optimized out>) at DerivedSources/WebCore/JSNodeList.h:34
#27 0x00002affc1859693 in JSC::MarkedBlock::sweep (this=0x2b00186dc000) at ../../Source/JavaScriptCore/heap/MarkedBlock.cpp:82
#28 0x00002affc184a9ec in JSC::(anonymous namespace)::Sweep::operator() (this=0x7fffaadf97cf, block=0x2b00186dc000) at ../../Source/JavaScriptCore/heap/Heap.cpp:120
#29 0x00002affc184c900 in JSC::Heap::forEachBlock<JSC::<unnamed>::Sweep>(JSC::(anonymous namespace)::Sweep &) (this=0x1ec43b0, functor=...) at ../../Source/JavaScriptCore/heap/Heap.h:277
#30 0x00002affc184c48b in JSC::Heap::forEachBlock<JSC::<unnamed>::Sweep>(void) (this=0x1ec43b0) at ../../Source/JavaScriptCore/heap/Heap.h:284
#31 0x00002affc184bf86 in JSC::Heap::sweep (this=0x1ec43b0) at ../../Source/JavaScriptCore/heap/Heap.cpp:504
#32 0x00002affc184c1f3 in JSC::Heap::collect (this=0x1ec43b0, sweepToggle=JSC::Heap::DoSweep) at ../../Source/JavaScriptCore/heap/Heap.cpp:575
#33 0x00002affc184c0ca in JSC::Heap::collectAllGarbage (this=0x1ec43b0) at ../../Source/JavaScriptCore/heap/Heap.cpp:552
#34 0x00002affc26fd875 in WebCore::collect () at ../../Source/WebCore/bindings/js/GCController.cpp:42
#35 0x00002affc26fd9c8 in WebCore::GCController::gcTimerFired (this=0x254fab0) at ../../Source/WebCore/bindings/js/GCController.cpp:65
#36 0x00002affc26fdc00 in WebCore::Timer<WebCore::GCController>::fired (this=0x254fab0) at ../../Source/WebCore/platform/Timer.h:100
#37 0x00002affc2e7e7e0 in WebCore::ThreadTimers::sharedTimerFiredInternal (this=0x1ec92f0) at ../../Source/WebCore/platform/ThreadTimers.cpp:112
#38 0x00002affc2e7e717 in WebCore::ThreadTimers::sharedTimerFired () at ../../Source/WebCore/platform/ThreadTimers.cpp:90
#39 0x00002affc35ef8b6 in WebCore::timeout_cb () at ../../Source/WebCore/platform/gtk/SharedTimerGtk.cpp:49
#40 0x00002affc74abddb in g_timeout_dispatch (source=0x25dd5c0, callback=<value optimized out>, user_data=<value optimized out>) at /tmp/buildd/glib2.0-2.28.6/./glib/gmain.c:3882
#41 0x00002affc74aa4a3 in g_main_dispatch (context=0x1e17a40) at /tmp/buildd/glib2.0-2.28.6/./glib/gmain.c:2440
#42 g_main_context_dispatch (context=0x1e17a40) at /tmp/buildd/glib2.0-2.28.6/./glib/gmain.c:3013
#43 0x00002affc74aac80 in g_main_context_iterate (context=0x1e17a40, block=1, dispatch=1, self=<value optimized out>) at /tmp/buildd/glib2.0-2.28.6/./glib/gmain.c:3091
#44 0x00002affc74aaf1d in g_main_context_iteration (context=0x1e17a40, may_block=1) at /tmp/buildd/glib2.0-2.28.6/./glib/gmain.c:3154
#45 0x00002affc53e64c1 in gtk_main_iteration () from /usr/lib/libgtk-x11-2.0.so.0
#46 0x000000000042d437 in dump () at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:548
#47 0x000000000042dee7 in webViewLoadFinished (view=0x1e8a090, frame=0x1e33000) at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:790
#48 0x00002affc6c12e7e in g_closure_invoke (closure=0x1edec00, return_value=0x0, n_param_values=2, param_values=0x2540550, invocation_hint=0x7fffaadf9c40) at /tmp/buildd/glib2.0-2.28.6/./gobject/gclosure.c:767
#49 0x00002affc6c248d7 in signal_emit_unlocked_R (node=<value optimized out>, detail=0, instance=0x1e8a090, emission_return=0x0, instance_and_params=0x2540550) at /tmp/buildd/glib2.0-2.28.6/./gobject/gsignal.c:3252
#50 0x00002affc6c2dd05 in g_signal_emit_valist (instance=<value optimized out>, signal_id=<value optimized out>, detail=<value optimized out>, var_args=<value optimized out>) at /tmp/buildd/glib2.0-2.28.6/./gobject/gsignal.c:2983
#51 0x00002affc6c2e092 in g_signal_emit_by_name (instance=<value optimized out>, detailed_signal=0x2affc360efaf "load-finished") at /tmp/buildd/glib2.0-2.28.6/./gobject/gsignal.c:3077
#52 0x00002affc25e7616 in WebKit::FrameLoaderClient::postProgressFinishedNotification (this=0x1e99a80) at ../../Source/WebKit/gtk/WebCoreSupport/FrameLoaderClientGtk.cpp:443
#53 0x00002affc2cb083e in WebCore::ProgressTracker::finalProgressComplete (this=0x1e944d0) at ../../Source/WebCore/loader/ProgressTracker.cpp:154
#54 0x00002affc2cb06ec in WebCore::ProgressTracker::progressCompleted (this=0x1e944d0, frame=0x1e33800) at ../../Source/WebCore/loader/ProgressTracker.cpp:133
#55 0x00002affc2c777fa in WebCore::FrameLoader::checkLoadCompleteForThisFrame (this=0x1e338a0) at ../../Source/WebCore/loader/FrameLoader.cpp:2248
#56 0x00002affc2c77f09 in WebCore::FrameLoader::checkLoadComplete (this=0x1e338a0) at ../../Source/WebCore/loader/FrameLoader.cpp:2361
#57 0x00002affc2c76cf4 in WebCore::FrameLoader::finishedLoading (this=0x1e338a0) at ../../Source/WebCore/loader/FrameLoader.cpp:2043
#58 0x00002affc2cab634 in WebCore::MainResourceLoader::didFinishLoading (this=0x27f8cb0, finishTime=0) at ../../Source/WebCore/loader/MainResourceLoader.cpp:485
#59 0x00002affc2cb8093 in WebCore::ResourceLoader::didFinishLoading (this=0x27f8cb0, finishTime=0) at ../../Source/WebCore/loader/ResourceLoader.cpp:444
#60 0x00002affc2e4be52 in WebCore::readCallback (source=0x259a760, asyncResult=0x261bcc0, data=0x0) at ../../Source/WebCore/platform/network/soup/ResourceHandleSoup.cpp:792
#61 0x00002affc692cb59 in async_ready_callback_wrapper (source_object=0x259a760, res=0x261bcc0, user_data=0x0) at /tmp/buildd/glib2.0-2.28.6/./gio/ginputstream.c:470
#62 0x00002affc693ca68 in complete_in_idle_cb_for_thread (_data=0x2884890) at /tmp/buildd/glib2.0-2.28.6/./gio/gsimpleasyncresult.c:812
#63 0x00002affc74aa4a3 in g_main_dispatch (context=0x1e17a40) at /tmp/buildd/glib2.0-2.28.6/./glib/gmain.c:2440
#64 g_main_context_dispatch (context=0x1e17a40) at /tmp/buildd/glib2.0-2.28.6/./glib/gmain.c:3013
#65 0x00002affc74aac80 in g_main_context_iterate (context=0x1e17a40, block=1, dispatch=1, self=<value optimized out>) at /tmp/buildd/glib2.0-2.28.6/./glib/gmain.c:3091
#66 0x00002affc74ab2f2 in g_main_loop_run (loop=0x275d6d0) at /tmp/buildd/glib2.0-2.28.6/./glib/gmain.c:3299
#67 0x00002affc53e62b7 in gtk_main () from /usr/lib/libgtk-x11-2.0.so.0
#68 0x000000000042dba0 in runTest (testPathOrURL=...) at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:707
#69 0x000000000042d23d in runTestingServerLoop () at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:499
#70 0x000000000042f4f8 in main (argc=2, argv=0x7fffaadfafa8) at ../../Tools/DumpRenderTree/gtk/DumpRenderTree.cpp:1187
Comment 1 Martin Robinson 2012-04-06 11:50:49 PDT
Committed r113469: <http://trac.webkit.org/changeset/113469>