Hi, with webkit/gtk 1.2.3 from Debian/unstable there are quite some crashes now on several pages when loading. Examples are https://bugs.webkit.org/enter_bug.cgi?product=WebKit http://github.com/sdroege http://www.wetter.com/deutschland/paderborn/DE0008110.html The backtraces are all different, 3 below. This just started to crash recently. Program received signal SIGILL, Illegal instruction. 0x00007ffff4d9178b in WebCore::HTMLInputElement::setChecked ( this=0x7fffda5a9870, nowChecked=true, sendChangeEvent=false) at ../WebCore/html/HTMLInputElement.cpp:1436 1436 ../WebCore/html/HTMLInputElement.cpp: No such file or directory. in ../WebCore/html/HTMLInputElement.cpp (gdb) bt #0 0x00007ffff4d9178b in WebCore::HTMLInputElement::setChecked ( this=0x7fffda5a9870, nowChecked=true, sendChangeEvent=false) at ../WebCore/html/HTMLInputElement.cpp:1436 #1 0x00007ffff4d97dcf in WebCore::HTMLInputElement::parseMappedAttribute ( this=0x7cabb2cd, attr=0x7fffda5aa630) at ../WebCore/html/HTMLInputElement.cpp:1090 #2 0x00007ffff4cca33f in WebCore::StyledElement::attributeChanged ( this=0x7fffda5a9870, attr=0x7fffda5aa630, preserveDecls=<value optimized out>) at ../WebCore/dom/StyledElement.cpp:190 #3 0x00007ffff4c93489 in WebCore::Element::setAttributeMap ( this=0x7fffda5a9870, list=<value optimized out>, scriptingPermission=<value optimized out>) at ../WebCore/dom/Element.cpp:713 #4 0x00007ffff4dab13f in WebCore::HTMLParser::parseToken ( this=0x7fffe10e8a80, t=0x7fffe10dbc38) at ../WebCore/html/HTMLParser.cpp:289 #5 0x00007ffff4dbdf65 in WebCore::HTMLTokenizer::processToken ( this=0x7fffe10dbc00) at ../WebCore/html/HTMLTokenizer.cpp:1949 #6 0x00007ffff4dc07cd in WebCore::HTMLTokenizer::parseTag ( this=0x7fffe10dbc00, src=..., state=<value optimized out>) at ../WebCore/html/HTMLTokenizer.cpp:1521 #7 0x00007ffff4dc2455 in WebCore::HTMLTokenizer::write (this=0x7fffe10dbc00, ---Type <return> to continue, or q <return> to quit--- str=<value optimized out>, appendData=<value optimized out>) at ../WebCore/html/HTMLTokenizer.cpp:1772 #8 0x00007ffff4dbcd59 in WebCore::HTMLTokenizer::executeExternalScriptsIfReady (this=0x7fffe10dbc00) at ../WebCore/html/HTMLTokenizer.cpp:2103 #9 0x00007ffff4e0346c in WebCore::CachedScript::checkNotify ( this=0x7fffda60d400) at ../WebCore/loader/CachedScript.cpp:106 #10 0x00007ffff4e5b7e4 in WebCore::Loader::Host::didFinishLoading ( this=0x7fffe0ffc6e0, loader=<value optimized out>) at ../WebCore/loader/loader.cpp:398 #11 0x00007ffff4e4c526 in WebCore::SubresourceLoader::didFinishLoading ( this=0x7fffda60b300) at ../WebCore/loader/SubresourceLoader.cpp:184 #12 0x00007ffff51a4726 in finishedCallback (session=<value optimized out>, msg=0xe7de80, data=<value optimized out>) at ../WebCore/platform/network/soup/ResourceHandleSoup.cpp:329 #13 0x00007ffff3d4c7fd in final_finished (req=0xe7de80, user_data=<value optimized out>) at soup-session-async.c:401 #14 0x00007ffff2e2150e in g_closure_invoke (closure=0x7fffdc067840, return_value=0x0, n_param_values=1, param_values=0xe8eb80, invocation_hint=0x7fffffffc7e0) at /glib2.0-2.25.12/gobject/gclosure.c:766 #15 0x00007ffff2e39be5 in signal_emit_unlocked_R (node=0xe865b0, detail=<value optimized out>, instance=<value optimized out>, emission_return=<value optimized out>, instance_and_params=<value optimized out>) ---Type <return> to continue, or q <return> to quit--- at /glib2.0-2.25.12/gobject/gsignal.c:3322 #16 0x00007ffff2e3b046 in g_signal_emit_valist (instance=0xe7de80, signal_id=<value optimized out>, detail=0, var_args=0x7fffffffc9d0) at /glib2.0-2.25.12/gobject/gsignal.c:2983 #17 0x00007ffff2e3b873 in g_signal_emit (instance=0x7cabb2cd, signal_id=0, detail=64) at /glib2.0-2.25.12/gobject/gsignal.c:3040 #18 0x00007ffff3d4242f in soup_message_io_finished (msg=0xe7de80) at soup-message-io.c:177 #19 0x00007ffff2e2150e in g_closure_invoke (closure=0x7fffdc03da30, return_value=0x0, n_param_values=1, param_values=0xe8eba0, invocation_hint=0x7fffffffcc00) at /glib2.0-2.25.12/gobject/gclosure.c:766 #20 0x00007ffff2e398c9 in signal_emit_unlocked_R (node=0x118eab0, detail=<value optimized out>, instance=<value optimized out>, emission_return=<value optimized out>, instance_and_params=<value optimized out>) at /glib2.0-2.25.12/gobject/gsignal.c:3252 #21 0x00007ffff2e3b046 in g_signal_emit_valist (instance=0x1194280, signal_id=<value optimized out>, detail=0, var_args=0x7fffffffcdf0) at /glib2.0-2.25.12/gobject/gsignal.c:2983 #22 0x00007ffff2e3b873 in g_signal_emit (instance=0x7cabb2cd, signal_id=0, detail=64) at /glib2.0-2.25.12/gobject/gsignal.c:3040 #23 0x00007ffff3d4e9a1 in socket_read_watch (chan=<value optimized out>, cond=0, user_data=<value optimized out>) at soup-socket.c:1275 ---Type <return> to continue, or q <return> to quit--- #24 0x00007ffff276d1f2 in g_main_dispatch (context=0x71bd10) at /glib2.0-2.25.12/glib/gmain.c:2119 #25 g_main_context_dispatch (context=0x71bd10) at /glib2.0-2.25.12/glib/gmain.c:2672 #26 0x00007ffff2771148 in g_main_context_iterate (context=0x71bd10, block=<value optimized out>, dispatch=<value optimized out>, self=<value optimized out>) at /glib2.0-2.25.12/glib/gmain.c:2750 #27 0x00007ffff2771655 in g_main_loop_run (loop=0x77a020) at /glib2.0-2.25.12/glib/gmain.c:2958 #28 0x00007ffff40bdca7 in IA__gtk_main () at /gtk+2.0-2.21.5/gtk/gtkmain.c:1237 #29 0x0000000000435393 in main (argc=1, argv=0x7fffffffe2b8) at ephy-main.c:741 (gdb) Program received signal SIGSEGV, Segmentation fault. WebCore::HTMLInputElement::setChecked (this=0x7fffd98a2b40, nowChecked=true, sendChangeEvent=false) at ../WebCore/html/HTMLInputElement.cpp:1414 1414 ../WebCore/html/HTMLInputElement.cpp: No such file or directory. in ../WebCore/html/HTMLInputElement.cpp (gdb) bt #0 WebCore::HTMLInputElement::setChecked (this=0x7fffd98a2b40, nowChecked=true, sendChangeEvent=false) at ../WebCore/html/HTMLInputElement.cpp:1414 #1 0x00007ffff33efdcf in WebCore::HTMLInputElement::parseMappedAttribute ( this=0x0, attr=0x7fffdb707720) at ../WebCore/html/HTMLInputElement.cpp:1090 #2 0x00007ffff332233f in WebCore::StyledElement::attributeChanged ( this=0x7fffd98a2b40, attr=0x7fffdb707720, preserveDecls=<value optimized out>) at ../WebCore/dom/StyledElement.cpp:190 #3 0x00007ffff32eb489 in WebCore::Element::setAttributeMap ( this=0x7fffd98a2b40, list=<value optimized out>, scriptingPermission=<value optimized out>) at ../WebCore/dom/Element.cpp:713 #4 0x00007ffff340313f in WebCore::HTMLParser::parseToken ( this=0x7fffdc2ae600, t=0x7fffffffbda8) at ../WebCore/html/HTMLParser.cpp:289 #5 0x00007ffff3415f65 in WebCore::HTMLTokenizer::processToken ( this=0x7fffffffbd70) at ../WebCore/html/HTMLTokenizer.cpp:1949 #6 0x00007ffff34187cd in WebCore::HTMLTokenizer::parseTag ( this=0x7fffffffbd70, src=..., state=<value optimized out>) at ../WebCore/html/HTMLTokenizer.cpp:1521 #7 0x00007ffff341a455 in WebCore::HTMLTokenizer::write (this=0x7fffffffbd70, str=<value optimized out>, appendData=<value optimized out>) ---Type <return> to continue, or q <return> to quit--- at ../WebCore/html/HTMLTokenizer.cpp:1772 #8 0x00007ffff341aa29 in WebCore::parseHTMLDocumentFragment ( source=<value optimized out>, fragment=<value optimized out>, scriptingPermission=<value optimized out>) at ../WebCore/html/HTMLTokenizer.cpp:2148 #9 0x00007ffff32eac27 in WebCore::Element::createContextualFragment ( this=0x7fffdc2b2d98, markup=..., scriptingPermission=WebCore::FragmentScriptingAllowed) at ../WebCore/dom/Element.cpp:105 #10 0x00007ffff33d2f46 in WebCore::HTMLElement::createContextualFragment ( this=0x7fffdc2b2d98, markup=..., scriptingPermission=WebCore::FragmentScriptingAllowed) at ../WebCore/html/HTMLElement.cpp:286 #11 0x00007ffff33d58ef in WebCore::HTMLElement::setInnerHTML ( this=0x7fffdc2b2d98, html=<value optimized out>, ec=@0x7fffffffca7c) at ../WebCore/html/HTMLElement.cpp:348 #12 0x00007ffff3aacff2 in WebCore::setJSHTMLElementInnerHTML ( exec=0x7fffdc61a418, thisObject=<value optimized out>, value=<value optimized out>) at DerivedSources/JSHTMLElement.cpp:364 #13 0x00007ffff3aae309 in lookupPut<WebCore::JSHTMLElement> ( this=0x7fffdc5c7cc0, exec=0x7fffdc61a418, propertyName=..., value=..., slot=...) at ../JavaScriptCore/runtime/Lookup.h:303 #14 lookupPut<WebCore::JSHTMLElement, WebCore::JSElement> ( ---Type <return> to continue, or q <return> to quit--- this=0x7fffdc5c7cc0, exec=0x7fffdc61a418, propertyName=..., value=..., slot=...) at ../JavaScriptCore/runtime/Lookup.h:317 #15 WebCore::JSHTMLElement::put (this=0x7fffdc5c7cc0, exec=0x7fffdc61a418, propertyName=..., value=..., slot=...) at DerivedSources/JSHTMLElement.cpp:307 #16 0x00007ffff3aa79ca in lookupPut<WebCore::JSHTMLDivElement, WebCore::JSHTMLElement> (this=0x7fffdc5c7cc0, exec=0x7fffdc61a418, propertyName=..., value=<value optimized out>, slot=...) at ../JavaScriptCore/runtime/Lookup.h:318 #17 WebCore::JSHTMLDivElement::put (this=0x7fffdc5c7cc0, exec=0x7fffdc61a418, propertyName=..., value=<value optimized out>, slot=...) at DerivedSources/JSHTMLDivElement.cpp:157 #18 0x00007ffff38ae9da in JSC::JSValue::put (args=<value optimized out>) at ../JavaScriptCore/runtime/JSObject.h:669 #19 cti_op_put_by_id (args=<value optimized out>) at ../JavaScriptCore/jit/JITStubs.cpp:1170 #20 0x00007fffdf23e9cc in ?? () #21 0x0000000000000000 in ?? () Program received signal SIGSEGV, Segmentation fault. WebCore::HTMLInputElement::setChecked (this=0x7fffe127a000, nowChecked=true, sendChangeEvent=false) at ../WebCore/html/HTMLInputElement.cpp:1414 1414 ../WebCore/html/HTMLInputElement.cpp: No such file or directory. in ../WebCore/html/HTMLInputElement.cpp (gdb) bt #0 WebCore::HTMLInputElement::setChecked (this=0x7fffe127a000, nowChecked=true, sendChangeEvent=false) at ../WebCore/html/HTMLInputElement.cpp:1414 #1 0x00007ffff4d97dcf in WebCore::HTMLInputElement::parseMappedAttribute ( this=0x0, attr=0x7fffe12e23c0) at ../WebCore/html/HTMLInputElement.cpp:1090 #2 0x00007ffff4cca33f in WebCore::StyledElement::attributeChanged ( this=0x7fffe127a000, attr=0x7fffe12e23c0, preserveDecls=<value optimized out>) at ../WebCore/dom/StyledElement.cpp:190 #3 0x00007ffff4c93489 in WebCore::Element::setAttributeMap ( this=0x7fffe127a000, list=<value optimized out>, scriptingPermission=<value optimized out>) at ../WebCore/dom/Element.cpp:713 #4 0x00007ffff4dab13f in WebCore::HTMLParser::parseToken ( this=0x7fffde67b580, t=0x7fffffffafd8) at ../WebCore/html/HTMLParser.cpp:289 #5 0x00007ffff4dbdf65 in WebCore::HTMLTokenizer::processToken ( this=0x7fffffffafa0) at ../WebCore/html/HTMLTokenizer.cpp:1949 #6 0x00007ffff4dc07cd in WebCore::HTMLTokenizer::parseTag ( this=0x7fffffffafa0, src=..., state=<value optimized out>) at ../WebCore/html/HTMLTokenizer.cpp:1521 #7 0x00007ffff4dc2455 in WebCore::HTMLTokenizer::write (this=0x7fffffffafa0, str=<value optimized out>, appendData=<value optimized out>) ---Type <return> to continue, or q <return> to quit--- at ../WebCore/html/HTMLTokenizer.cpp:1772 #8 0x00007ffff4dc2a29 in WebCore::parseHTMLDocumentFragment ( source=<value optimized out>, fragment=<value optimized out>, scriptingPermission=<value optimized out>) at ../WebCore/html/HTMLTokenizer.cpp:2148 #9 0x00007ffff4c92c27 in WebCore::Element::createContextualFragment ( this=0x7fffde67c8e8, markup=..., scriptingPermission=WebCore::FragmentScriptingAllowed) at ../WebCore/dom/Element.cpp:105 #10 0x00007ffff4d7af46 in WebCore::HTMLElement::createContextualFragment ( this=0x7fffde67c8e8, markup=..., scriptingPermission=WebCore::FragmentScriptingAllowed) at ../WebCore/html/HTMLElement.cpp:286 #11 0x00007ffff4d7d8ef in WebCore::HTMLElement::setInnerHTML ( this=0x7fffde67c8e8, html=<value optimized out>, ec=@0x7fffffffbcac) at ../WebCore/html/HTMLElement.cpp:348 #12 0x00007ffff5454ff2 in WebCore::setJSHTMLElementInnerHTML ( exec=0x7fffde7a4418, thisObject=<value optimized out>, value=<value optimized out>) at DerivedSources/JSHTMLElement.cpp:364 #13 0x00007ffff5456309 in lookupPut<WebCore::JSHTMLElement> ( this=0x7fffde748740, exec=0x7fffde7a4418, propertyName=..., value=..., slot=...) at ../JavaScriptCore/runtime/Lookup.h:303 #14 lookupPut<WebCore::JSHTMLElement, WebCore::JSElement> ( ---Type <return> to continue, or q <return> to quit--- this=0x7fffde748740, exec=0x7fffde7a4418, propertyName=..., value=..., slot=...) at ../JavaScriptCore/runtime/Lookup.h:317 #15 WebCore::JSHTMLElement::put (this=0x7fffde748740, exec=0x7fffde7a4418, propertyName=..., value=..., slot=...) at DerivedSources/JSHTMLElement.cpp:307 #16 0x00007ffff544f9ca in lookupPut<WebCore::JSHTMLDivElement, WebCore::JSHTMLElement> (this=0x7fffde748740, exec=0x7fffde7a4418, propertyName=..., value=<value optimized out>, slot=...) at ../JavaScriptCore/runtime/Lookup.h:318 #17 WebCore::JSHTMLDivElement::put (this=0x7fffde748740, exec=0x7fffde7a4418, propertyName=..., value=<value optimized out>, slot=...) at DerivedSources/JSHTMLDivElement.cpp:157 #18 0x00007ffff52569da in JSC::JSValue::put (args=<value optimized out>) at ../JavaScriptCore/runtime/JSObject.h:669 #19 cti_op_put_by_id (args=<value optimized out>) at ../JavaScriptCore/jit/JITStubs.cpp:1170 #20 0x00007fffdefb99cc in ?? () #21 0x000000000000002f in ?? () #22 0x00007fffde748740 in ?? () #23 0x00007fffde667708 in ?? () #24 0x00007fffde747780 in ?? () #25 0x00007fffde7437c0 in ?? () #26 0x00007fff00000004 in ?? () ---Type <return> to continue, or q <return> to quit--- #27 0x00007ffff7e14478 in ?? () #28 0x00007fffde2a4000 in ?? () #29 0x00007fffe1225a80 in ?? () #30 0x00007fffde233000 in ?? () #31 0x00007fffe1209178 in ?? () #32 0x00007fffde7a4418 in ?? () #33 0x00007fffffffbf50 in ?? () #34 0x00007ffff5bb87d0 in JSC::Profiler::s_sharedProfiler () from /usr/lib/libwebkit-1.0.so.2 #35 0x00007fffe1260a00 in ?? () #36 0x00007fffe1209160 in ?? () #37 0x00007fffe12f4960 in ?? () #38 0x00007fffde7a4000 in ?? () #39 0x00007fffde645ec8 in ?? () #40 0x00007fffde7a4048 in ?? () #41 0x00007fffe12242c8 in ?? () #42 0x00007ffff525f90d in JSC::JITCode::execute (this=0x7fffdefb9977, program=0x7fffde7a4418, callFrame=0x7fffffffbe90, scopeChain=0xffff000000000002, thisObj=<value optimized out>, exception=<value optimized out>) at ../JavaScriptCore/jit/JITCode.h:77 #43 JSC::Interpreter::execute (this=0x7fffdefb9977, program=0x7fffde7a4418, callFrame=0x7fffffffbe90, scopeChain=0xffff000000000002, thisObj=<value optimized out>, exception=<value optimized out>) ---Type <return> to continue, or q <return> to quit--- at ../JavaScriptCore/interpreter/Interpreter.cpp:621 #44 0x00007ffff53110cd in JSC::evaluate (exec=0x7fffe12242c8, scopeChain=..., source=<value optimized out>, thisValue=...) at ../JavaScriptCore/runtime/Completion.cpp:62 #45 0x00007ffff4bca581 in WebCore::ScriptController::evaluateInWorld ( this=0x7fffe1226bb0, sourceCode=..., world=<value optimized out>) at ../WebCore/bindings/js/ScriptController.cpp:127 #46 0x00007ffff4bcac72 in WebCore::ScriptController::evaluate ( this=0x7fffe1226bb0, sourceCode=...) at ../WebCore/bindings/js/ScriptController.cpp:153 #47 0x00007ffff4be0c2f in WebCore::ScriptController::executeScript ( this=0x7fffe1226bb0, sourceCode=...) at ../WebCore/bindings/ScriptControllerBase.cpp:60 #48 0x00007ffff4dbc4dd in WebCore::HTMLTokenizer::scriptExecution ( this=0x7fffe1246c00, sourceCode=..., state=<value optimized out>) at ../WebCore/html/HTMLTokenizer.cpp:580 #49 0x00007ffff4dbcd8b in WebCore::HTMLTokenizer::executeExternalScriptsIfReady (this=0x7fffe1246c00) at ../WebCore/html/HTMLTokenizer.cpp:2073 #50 0x00007ffff4e0346c in WebCore::CachedScript::checkNotify ( this=0x7fffde678400) at ../WebCore/loader/CachedScript.cpp:106 #51 0x00007ffff4e5b7e4 in WebCore::Loader::Host::didFinishLoading ( this=0x7fffde67eb40, loader=<value optimized out>) at ../WebCore/loader/loader.cpp:398 ---Type <return> to continue, or q <return> to quit--- #52 0x00007ffff4e4c526 in WebCore::SubresourceLoader::didFinishLoading ( this=0x7fffe128b900) at ../WebCore/loader/SubresourceLoader.cpp:184 #53 0x00007ffff51a4726 in finishedCallback (session=<value optimized out>, msg=0xed0140, data=<value optimized out>) at ../WebCore/platform/network/soup/ResourceHandleSoup.cpp:329 #54 0x00007ffff3d4c7fd in final_finished (req=0xed0140, user_data=<value optimized out>) at soup-session-async.c:401 #55 0x00007ffff2e2150e in g_closure_invoke (closure=0xeea890, return_value=0x0, n_param_values=1, param_values=0x11eca80, invocation_hint=0x7fffffffc7e0) at /glib2.0-2.25.12/gobject/gclosure.c:766 #56 0x00007ffff2e39be5 in signal_emit_unlocked_R (node=0xf14730, detail=<value optimized out>, instance=<value optimized out>, emission_return=<value optimized out>, instance_and_params=<value optimized out>) at /glib2.0-2.25.12/gobject/gsignal.c:3322 #57 0x00007ffff2e3b046 in g_signal_emit_valist (instance=0xed0140, signal_id=<value optimized out>, detail=0, var_args=0x7fffffffc9d0) at /glib2.0-2.25.12/gobject/gsignal.c:2983 #58 0x00007ffff2e3b873 in g_signal_emit (instance=0x0, signal_id=1, detail=0) at /glib2.0-2.25.12/gobject/gsignal.c:3040 #59 0x00007ffff3d4242f in soup_message_io_finished (msg=0xed0140) at soup-message-io.c:177 #60 0x00007ffff2e2150e in g_closure_invoke (closure=0x11e4fc0, ---Type <return> to continue, or q <return> to quit--- return_value=0x0, n_param_values=1, param_values=0x11cdf00, invocation_hint=0x7fffffffcc00) at /glib2.0-2.25.12/gobject/gclosure.c:766 #61 0x00007ffff2e398c9 in signal_emit_unlocked_R (node=0xee4f60, detail=<value optimized out>, instance=<value optimized out>, emission_return=<value optimized out>, instance_and_params=<value optimized out>) at /glib2.0-2.25.12/gobject/gsignal.c:3252 #62 0x00007ffff2e3b046 in g_signal_emit_valist (instance=0xee7100, signal_id=<value optimized out>, detail=0, var_args=0x7fffffffcdf0) at /glib2.0-2.25.12/gobject/gsignal.c:2983 #63 0x00007ffff2e3b873 in g_signal_emit (instance=0x0, signal_id=1, detail=0) at /glib2.0-2.25.12/gobject/gsignal.c:3040 #64 0x00007ffff3d4e9a1 in socket_read_watch (chan=<value optimized out>, cond=0, user_data=<value optimized out>) at soup-socket.c:1275 #65 0x00007ffff276d1f2 in g_main_dispatch (context=0x71bd10) at /glib2.0-2.25.12/glib/gmain.c:2119 #66 g_main_context_dispatch (context=0x71bd10) at /glib2.0-2.25.12/glib/gmain.c:2672 #67 0x00007ffff2771148 in g_main_context_iterate (context=0x71bd10, block=<value optimized out>, dispatch=<value optimized out>, self=<value optimized out>) at /glib2.0-2.25.12/glib/gmain.c:2750 #68 0x00007ffff2771655 in g_main_loop_run (loop=0x77a020) at /glib2.0-2.25.12/glib/gmain.c:2958 ---Type <return> to continue, or q <return> to quit--- #69 0x00007ffff40bdca7 in IA__gtk_main () at /gtk+2.0-2.21.5/gtk/gtkmain.c:1237 #70 0x0000000000435393 in main (argc=1, argv=0x7fffffffe2b8) at ephy-main.c:741
Are the crashes on the pages you listed consistently reproducible for you? I loaded all three with no problem here. The only difference I can spot without more information between our systems is I'm running GTK+ 2.21.2, and you 2.21.5. My unstable has pretty much pre-guadec versions of all packages. If we can find a consistently reproducible case, that'd be great =)
Yes, it happens always. And this started to happen after dist upgrading during GUADEC, so let's see if you have it too soon :)
Must be a bug somewhere in the build chain. Rebuilding webkit fixes it