RESOLVED INVALID 23491
WebKit crashes on Select All with attached document 
https://bugs.webkit.org/show_bug.cgi?id=23491
Summary WebKit crashes on Select All with attached document
Thomas Sutton
Reported 2009-01-22 19:12:27 PST
The attached document/s makes WebKit r40102 unstable. In particular, Select All causes the browser to crash almost every time. The crash is repeatable every time with the original document (a code review report automatically generated by the Drupal coder module), and this is as stripped down as I can get it. Removing one or more <li> element seems to prevent or reduce the likelyhood of the crash, as does removing all <img> elements. Removing all <img> elements from the original document with sed also prevents the crash. Steps to reproduce (on 2.1GHz G5, 10.4.11, r40102): 1) Start WebKit 2) Wait for the "thanks" page, etc. to load and close it. 3) Open crash.html. 4) Select all. 5) Crash. Report and the documents to be attached.
Attachments
The complete original file (74.81 KB, text/html)
2009-01-22 19:14 PST, Thomas Sutton 		no flags
Details
Somewhat trimmer version of original.html (12.18 KB, application/xhtml+xml)
2009-01-22 19:16 PST, Thomas Sutton 		no flags
Details
Crash report 1 (23.20 KB, text/plain)
2009-01-22 19:20 PST, Thomas Sutton 		no flags
Details
View All Add attachment proposed patch, testcase, etc.
Thomas Sutton
Comment 1 2009-01-22 19:14:36 PST
Created attachment 26951 [details] The complete original file The file crashes WebKit r40102 every time. Load it and use Command-A.
Thomas Sutton
Comment 2 2009-01-22 19:16:45 PST
Created attachment 26952 [details] Somewhat trimmer version of original.html This file is much smaller but still exhibits the crash. It is not 100% reproducible, but I can generally crash WebKit by loading it and using Command-A a few times.
Thomas Sutton
Comment 3 2009-01-22 19:20:01 PST
Created attachment 26953 [details] Crash report 1
Mark Rowe (bdash)
Comment 4 2009-01-22 19:29:36 PST
I cannot reproduce this crash on 10.5. The backtrace shows that the crash point is inside AppKit, so this may be an OS bug that has been fixed since 10.4.
Mark Rowe (bdash)
Comment 5 2009-01-22 19:36:32 PST
After looking at similar crash reports I can confirm that this crash is specific to 10.4. Based on that fact, and the fact that the crash point is inside AppKit, I believe that this is not a WebKit bug. This bug report will be closed as INVALID to indicate that the problem was determined to be outside of WebKit.
Note You need to log in before you can comment on or make changes to this bug.