Bug 80518

Summary: Webkit crash when loading site
Product: WebKit Reporter: Michael Becke <mbecke>
Component: WebKit Misc.Assignee: Nobody <webkit-unassigned>
Status: UNCONFIRMED ---    
Severity: Normal CC: sfalken
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: PC   
OS: Windows XP   
URL: http://public.tableausoftware.com/views/Book11_11/Sheet1?:embed=yes&:toolbar=yes&:tabs=no
Attachments:
Description Flags
Dr Watson crash dump
none
Dr Watson crash log
none
Dr Watson crash dump#2
none
Dr Watson crash log#2 none

Description Michael Becke 2012-03-07 09:37:46 PST 
Created attachment 130637 [details]
Dr Watson crash dump

To reproduce:
 - open http://public.tableausoftware.com/views/Book11_11/Sheet1?:embed=yes&:toolbar=yes&:tabs=no
 - On some machines it will immediately crash.  On others it requires a bit more work...
 - Perform some actions on the page that cause it to redraw.  For example repeatedly select different bars in the chart.  Re-sort the chart using the x-axis sorting indicator.

Unfortunately this issue does not reproduce on all machines.  Here's what I've tried that might help to narrow things down a bit:
 - I was able to reproduce on XP, Vista, and Win7 but only on machines with < 3GB RAM.  I could not reproduce this on Mac or iPad. 
 - Having the browser window full screen (or large at least) seems to cause the issue to happen more often.
 - This issue shows up in Safari (5.1.2) as well as the nightly build from 2012-03-06.

Attached are the Dr. Watson crash logs from one case.

Please let me know if I can provide any other detail.
Comment 1 Michael Becke 2012-03-07 09:38:41 PST 
Created attachment 130638 [details]
Dr Watson crash log
Comment 2 Steve Falkenburg 2012-03-07 14:47:26 PST 
The user.dmp file attached is from a crash of DefWatch.exe (Symantec AntiVirus), so that doesn't match this crash.

The attached log file has many, many crashes listed. There are several WebKit2WebProcess.exe crashes, which must be the ones you're referring to.

These crashes are under the MS C Runtime Lib malloc, likely due to a corrupt heap.
Comment 3 Steve Falkenburg 2012-03-07 14:50:50 PST 
I can't repro this on Win7 x64 with gflags full page heap enabled.
Comment 4 Michael Becke 2012-03-07 14:52:59 PST 
Created attachment 130699 [details]
Dr Watson crash dump#2
Comment 5 Michael Becke 2012-03-07 14:53:29 PST 
Created attachment 130700 [details]
Dr Watson crash log#2
Comment 6 Michael Becke 2012-03-07 14:54:45 PST 
My apologies.  Attached are corrected dump/log files.