[chromium-bugs] Issue 23399 in chromium: Browser crash in [RenderWidgetHostViewCocoa setToolTipAtMousePoint:] -> objc_msgSend

codesite-noreply Tue, 29 Sep 2009 18:01:32 -0700

Status: Untriaged
Owner: [email protected]
CC: [email protected],  [email protected],  [email protected],   
[email protected],  [email protected],  [email protected]
Labels: Type-Bug Pri-1 OS-Mac Area-BrowserUI Size-Medium crash


New issue 23399 by [email protected]: Browser crash in  
[RenderWidgetHostViewCocoa setToolTipAtMousePoint:] -> objc_msgSend
http://code.google.com/p/chromium/issues/detail?id=23399

Browser crash in 4.0.212.1:
http://crash/reportdetail?reportid=b47c001088aba530

Stack:
Thread 0 *CRASHED* (EXC_BAD_ACCESS / KERN_INVALID_ADDRESS @0x3bcc55a9)

0x92d0b917       [libobjc.A.dylib        + 0x00005917]   objc_msgSend
0x971d2d8b       [CoreFoundation         + 0x00011d8b]   
___CFBasicHashFindBucket1
0x971daf7b       [CoreFoundation         + 0x00019f7b]   CFBasicHashFindBucket
0x971f3762       [CoreFoundation         + 0x00032762]   CFSetGetValue
0x971f95f8       [CoreFoundation         + 0x000385f8]   __CFRunLoopFindMode
0x9724375d       [CoreFoundation         + 0x0008275d]   CFRunLoopRemoveTimer
0x97243eeb       [CoreFoundation         + 0x00082eeb]   
CFRunLoopTimerInvalidate
0x9113be01       [AppKit         + 0x0007ae01]   -[NSToolTipManager stopTimer]
0x91226e33       [AppKit         + 0x00165e33]   -[NSToolTipManager  
_stopTimerIfRunningForToolTip:]
0x911346c1       [AppKit         + 0x000736c1]   -[NSToolTipManager  
_removeToolTipsForView:passingTest:]
0x91134479       [AppKit         + 0x00073479]   -[NSToolTipManager  
removeAllToolTipsForView:]
0x91134196       [AppKit         + 0x00073196]   -[NSView removeAllToolTips]
0x002cd749       [Google Chrome Framework        -  
render_widget_host_view_mac.mm:989]      -[RenderWidgetHostViewCocoa  
setToolTipAtMousePoint:]
0x002d00f5       [Google Chrome Framework        -  
render_widget_host_view_mac.mm:321]       
RenderWidgetHostViewMac::SetTooltipText(std::basic_string<wchar_t,
std::char_traits<wchar_t>, std::allocator<wchar_t> > const&)
0x002b6ce3       [Google Chrome Framework        - render_view_host.cc:1282]    
  
RenderViewHost::OnMsgSetTooltipText(std::basic_string<wchar_t,
std::char_traits<wchar_t>, std::allocator<wchar_t> > const&,  
WebKit::WebTextDirection)
0x002ba031       [Google Chrome Framework        - ../base/tuple.h:429]   
RenderViewHost::OnMessageReceived(IPC::Message const&)
0x002a4262       [Google Chrome Framework        -  
browser_render_process_host.cc:758]       
BrowserRenderProcessHost::OnMessageReceived(IPC::Message const&)
0x008f695a       [Google Chrome Framework        - ../base/tuple.h:422]   
RunnableMethod<IPC::ChannelProxy::Context, void
(IPC::ChannelProxy::Context::*)(IPC::Message const&), Tuple1<IPC::Message>  
>::Run()
0x004520da       [Google Chrome Framework        - message_loop.cc:314]   
MessageLoop::DeferOrRunPendingTask(MessageLoop::PendingTask const&)
0x0045248a       [Google Chrome Framework        - message_loop.cc:429]   
MessageLoop::DoWork()
0x00455c0b       [Google Chrome Framework        - message_pump_mac.mm:217]     
  
base::MessagePumpCFRunLoopBase::RunWorkSource(void*)
0x971ff8ca       [CoreFoundation         + 0x0003e8ca]   __CFRunLoopDoSources0
0x971fd85e       [CoreFoundation         + 0x0003c85e]   __CFRunLoopRun
0x971fcd33       [CoreFoundation         + 0x0003bd33]   CFRunLoopRunSpecific
0x971fcb60       [CoreFoundation         + 0x0003bb60]   CFRunLoopRunInMode
0x94800feb       [HIToolbox      + 0x00034feb]   RunCurrentEventLoopInMode
0x94800da2       [HIToolbox      + 0x00034da2]   ReceiveNextEventCommon
0x94800c27       [HIToolbox      + 0x00034c27]   
BlockUntilNextEventMatchingListInMode
0x91109c94       [AppKit         + 0x00048c94]   _DPSNextEvent
0x91109509       [AppKit         + 0x00048509]   -[NSApplication  
nextEventMatchingMask:untilDate:inMode:dequeue:]
0x910cb69a       [AppKit         + 0x0000a69a]   -[NSApplication run]
0x00455272       [Google Chrome Framework        - message_pump_mac.mm:482]     
  
base::MessagePumpNSApplication::DoRun(base::MessagePump::Delegate*)
0x00455357       [Google Chrome Framework        - message_pump_mac.mm:146]     
  
base::MessagePumpCFRunLoopBase::Run(base::MessagePump::Delegate*)
0x00451cc3       [Google Chrome Framework        - message_loop.cc:199]   
MessageLoop::Run()
0x000c4ca9       [Google Chrome Framework        - browser_main.cc:190]   
BrowserMain(MainFunctionParams const&)
0x00009171       [Google Chrome Framework        - chrome_dll_main.cc:616]      
 ChromeMain
0x00001fc5       [Google Chrome  + 0x00000fc5]  
0x00000001              

snej: same as before, thought you might have some insight, freel free to  
reassign.

--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings

--~--~---------~--~----~------------~-------~--~----~
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
-~----------~----~----~----~------~----~------~--~---

[chromium-bugs] Issue 23399 in chromium: Browser crash in [RenderWidgetHostViewCocoa setToolTipAtMousePoint:] -> objc_msgSend

Reply via email to