Status: Untriaged Owner: [email protected] Labels: Type-Bug Pri-1 OS-All Area-WebKit
New issue 7775 by [email protected]: Crash on WebCore::InlineFlowBox::addToLine http://code.google.com/p/chromium/issues/detail?id=7775 This could be a regression due to WebKit Merge 40875:41017. It started to happen on the tree since r9860. URL: http://www.familyguyx.net/episode/baby_not_on_board/ Full memory dump available. http://chromebot/dump?build=buildbot_9860_ext&id=8851b06c-63b1-4305-a446- e0de09ebcf59-full Stack trace. chrome_23e0000!WebCore::InlineFlowBox::addToLine+0x1b [c:\b\slave\chromium- rel-xp\build\src\third_party\webkit\webcore\rendering\inlineflowbox.cpp @ 91] chrome_23e0000!WebCore::RenderBlock::constructLine+0x10b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\bidi.cpp @ 567] chrome_23e0000!WebCore::RenderBlock::layoutInlineChildren+0x8ba [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\bidi.cpp @ 1016] chrome_23e0000!WebCore::RenderBlock::layoutBlock+0x1b5 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 778] chrome_23e0000!WebCore::RenderBlock::layout+0x1b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 699] chrome_23e0000!WebCore::RenderBlock::layoutBlockChildren+0x3d1 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 1413] chrome_23e0000!WebCore::RenderBlock::layoutBlock+0x1c6 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 782] chrome_23e0000!WebCore::RenderBlock::layout+0x1b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 699] chrome_23e0000!WebCore::RenderBlock::layoutBlockChildren+0x3d1 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 1413] chrome_23e0000!WebCore::RenderBlock::layoutBlock+0x1c6 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 782] chrome_23e0000!WebCore::RenderBlock::layout+0x1b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 699] chrome_23e0000!WebCore::RenderBlock::layoutInlineChildren+0x2b9 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\bidi.cpp @ 858] chrome_23e0000!WebCore::RenderBlock::layoutBlock+0x1b5 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 778] chrome_23e0000!WebCore::RenderBlock::layout+0x1b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 699] chrome_23e0000!WebCore::RenderBlock::layoutBlockChildren+0x3d1 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 1413] chrome_23e0000!WebCore::RenderBlock::layoutBlock+0x1c6 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 782] chrome_23e0000!WebCore::RenderBlock::layout+0x1b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 699] chrome_23e0000!WebCore::RenderBlock::layoutBlockChildren+0x3d1 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 1413] chrome_23e0000!WebCore::RenderBlock::layoutBlock+0x1c6 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 782] chrome_23e0000!WebCore::RenderBlock::layout+0x1b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 699] chrome_23e0000!WebCore::RenderBlock::layoutBlockChildren+0x3d1 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 1413] chrome_23e0000!WebCore::RenderBlock::layoutBlock+0x1c6 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 782] chrome_23e0000!WebCore::RenderBlock::layout+0x1b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 699] chrome_23e0000!WebCore::RenderBlock::layoutBlockChildren+0x3d1 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 1413] chrome_23e0000!WebCore::RenderBlock::layoutBlock+0x1c6 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 782] chrome_23e0000!WebCore::RenderBlock::layout+0x1b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderblock.cpp @ 699] chrome_23e0000!WebCore::RenderView::layout+0xd4 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderview.cpp @ 124] chrome_23e0000!WebCore::FrameView::layout+0x417 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\page\frameview.cpp @ 554] chrome_23e0000!WebFrameImpl::Layout+0x1b [c:\b\slave\chromium-rel- xp\build\src\webkit\glue\webframe_impl.cc @ 1423] chrome_23e0000!WebViewImpl::Layout+0x55 [c:\b\slave\chromium-rel- xp\build\src\webkit\glue\webview_impl.cc @ 905] chrome_23e0000!RenderWidget::DoDeferredPaint+0x5e [c:\b\slave\chromium-rel- xp\build\src\chrome\renderer\render_widget.cc @ 406] chrome_23e0000!MessageLoop::RunTask+0x80 [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 309] chrome_23e0000!MessageLoop::DoWork+0x1ea [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 416] chrome_23e0000!base::MessagePumpDefault::Run+0x111 [c:\b\slave\chromium- rel-xp\build\src\base\message_pump_default.cc @ 50] chrome_23e0000!MessageLoop::RunInternal+0xb7 [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 197] chrome_23e0000!MessageLoop::RunHandler+0xa0 [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 181] chrome_23e0000!MessageLoop::Run+0x3d [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 155] chrome_23e0000!base::Thread::ThreadMain+0x8a [c:\b\slave\chromium-rel- xp\build\src\base\thread.cc @ 159] chrome_23e0000!`anonymous namespace'::ThreadFunc+0xd [c:\b\slave\chromium- rel-xp\build\src\base\platform_thread_win.cc @ 27] WARNING: Stack unwind information not available. Following frames may be wrong. kernel32!GetModuleFileNameA+0x1b4 -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
