Status: Untriaged Owner: [email protected] CC: [email protected], [email protected] Labels: Type-Bug Pri-1 OS-All Area-WebKit Webkit-Specific
New issue 8413 by [email protected]: CRASH @ WebCore::ApplyStyleCommand::splitTextElementAtStartIfNeeded http://code.google.com/p/chromium/issues/detail?id=8413 Chrome 2.0.168.0 (10885) What steps will reproduce the problem? 1. Sign into your hotmail account 2. Create a new email 3. Click on the textarea where you enter your email message so the cursor is positioned at the very first space of the textarea. (Don't type anything or enter any spaces) 4. Click on any of the paragraph formatting icons (i.e. justify left, justify center or justify right) What is the expected output? What do you see instead? Crash Please use labels and text to provide additional information. This is working ok with Chrome stable build 1.0.154.48 Safari with latest webkit (41379): not ok, also a crash Dump is at http://go/crashDumps/hotmail.dmp Here's the stacktrace: ChildEBP RetAddr 00dcecd4 016abdd8 chrome_1000000!WebCore::ApplyStyleCommand::splitTextElementAtStartIfNeeded+0xd [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\applystylecommand.cpp @ 1317] 00dced50 016ad80c chrome_1000000!WebCore::ApplyStyleCommand::applyInlineStyle+0x148 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\applystylecommand.cpp @ 725] 00dced70 016807a1 chrome_1000000!WebCore::ApplyStyleCommand::doApply+0xfc [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\applystylecommand.cpp @ 381] 00dced80 0177f2a9 chrome_1000000!WebCore::EditCommand::apply+0x61 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\editcommand.cpp @ 93] 00dced90 0177f329 chrome_1000000!WebCore::CompositeEditCommand::applyCommandToComposite+0x19 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\compositeeditcommand.cpp @ 99] 00dceda4 017824e0 chrome_1000000!WebCore::CompositeEditCommand::applyStyle+0x39 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\compositeeditcommand.cpp @ 105] 00dcee90 01782edd chrome_1000000!WebCore::CompositeEditCommand::moveParagraphs+0xb80 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\compositeeditcommand.cpp @ 859] 00dcef18 016aa0b2 chrome_1000000!WebCore::CompositeEditCommand::moveParagraphContentsToNewBlockIfNecessary+0x35d [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\compositeeditcommand.cpp @ 686] 00dcf014 016ad739 chrome_1000000!WebCore::ApplyStyleCommand::applyBlockStyle+0x5c2 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\applystylecommand.cpp @ 431] 00dcf02c 016807a1 chrome_1000000!WebCore::ApplyStyleCommand::doApply+0x29 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\applystylecommand.cpp @ 386] 00dcf03c 016809ce chrome_1000000!WebCore::EditCommand::apply+0x61 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\editcommand.cpp @ 93] 00dcf048 01664e7c chrome_1000000!WebCore::applyCommand+0xe [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\editcommand.cpp @ 228] 00dcf05c 01682fde chrome_1000000!WebCore::Editor::applyParagraphStyle+0x4c [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\editor.cpp @ 741] 00dcf070 01684349 chrome_1000000!WebCore::executeApplyParagraphStyle+0x4e [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\editorcommand.cpp @ 162] 00dcf090 01683600 chrome_1000000!WebCore::executeJustifyLeft+0x29 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\editorcommand.cpp @ 535] 00dcf0b0 015f05a7 chrome_1000000!WebCore::Editor::Command::execute+0x90 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\editing\editorcommand.cpp @ 1450] 00dcf0d8 0123eb58 chrome_1000000!WebCore::Document::execCommand+0x57 [c:\b\slave\chromium-rel-xp\build\src\third_party\webkit\webcore\dom\document.cpp @ 3390] 00dcf104 0136ce4f chrome_1000000!WebCore::DocumentInternal::execCommandCallback+0xd8 [c:\b\slave\chromium-rel-xp\build\src\chrome\release\obj\v8bindings\derivedsources\v8document.cpp @ 654] 00dcf204 01c6016c chrome_1000000!v8::internal::Builtin_HandleApiCall+0x1cf [c:\b\slave\chromium-rel-xp\build\src\v8\src\builtins.cc @ 380] WARNING: Frame IP not in any known module. Following frames may be wrong. 00dcf21c 01d85b0d 0x1c6016c -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
