Status: Untriaged Owner: ---- CC: [email protected], [email protected], [email protected], [email protected] Labels: Type-Bug Pri-1 OS-All Area-WebKit Size-Medium Crash
New issue 17367 by [email protected]: Crash in WebCore::FrameLoader::dispatchWillSendRequest http://code.google.com/p/chromium/issues/detail?id=17367 Started to see the crash since build r21127. Possible URL to repro: http://www.spawn.com/toys/media.aspx chrome_2400000!WTF::HashTable<WebCore::String,WebCore::String,WTF::Identity Extractor<WebCore::String>,WebCore::StringHash,WTF::HashTraits<WebCore::Str ing>,WTF::HashTraits<WebCore::String> > ::add<WebCore::String,WebCore::String,WTF::IdentityHashTranslator<WebCore: :String,WebCore::String,WebCore::StringHash> >+0x43 [c:\b\slave\chromium- rel-xp\build\src\third_party\webkit\javascriptcore\wtf\hashtable.h @ 634] chrome_2400000!WebCore::FrameLoader::dispatchWillSendRequest+0x40 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 5132] chrome_2400000!WebCore::FrameLoader::willSendRequest+0x2a [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 3715] chrome_2400000!WebCore::ResourceLoader::willSendRequest+0x76 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\resourceloader.cpp @ 221] chrome_2400000!WebCore::MainResourceLoader::willSendRequest+0x5f [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\mainresourceloader.cpp @ 178] chrome_2400000!WebCore::MainResourceLoader::loadNow+0x6a [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\mainresourceloader.cpp @ 469] chrome_2400000!WebCore::MainResourceLoader::load+0x6a [c:\b\slave\chromium- rel-xp\build\src\third_party\webkit\webcore\loader\mainresourceloader.cpp @ 523] chrome_2400000!WebCore::DocumentLoader::startLoadingMainResource+0xa7 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\documentloader.cpp @ 819] chrome_2400000!WebCore::FrameLoader::continueLoadAfterWillSubmitForm+0x6f [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 3379] chrome_2400000!WebCore::FrameLoader::continueLoadAfterNavigationPolicy+0x24 0 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 4023] chrome_2400000!WebCore::FrameLoader::callContinueLoadAfterNavigationPolicy+ 0x1b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 3954] chrome_2400000!WebCore::PolicyCheck::call+0x36 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 4985] chrome_2400000!WebCore::FrameLoader::continueAfterNavigationPolicy+0x100 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 3947] chrome_2400000!WebFrameLoaderClient::dispatchDecidePolicyForNavigationActio n+0x240 [c:\b\slave\chromium-rel- xp\build\src\webkit\glue\webframeloaderclient_impl.cc @ 972] chrome_2400000!WebCore::FrameLoader::checkNavigationPolicy+0x1b5 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 3917] chrome_2400000!WebCore::FrameLoader::loadWithDocumentLoader+0x1c8 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 2362] chrome_2400000!WebCore::FrameLoader::loadWithNavigationAction+0x16d [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 2297] chrome_2400000!WebCore::FrameLoader::loadURL+0x300 [c:\b\slave\chromium- rel-xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 2240] chrome_2400000!WebCore::FrameLoader::loadURLIntoChildFrame+0x19c [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 1516] chrome_2400000!WebFrameImpl::CreateChildFrame+0x19b [c:\b\slave\chromium- rel-xp\build\src\webkit\glue\webframe_impl.cc @ 1664] chrome_2400000!WebFrameLoaderClient::createFrame+0xc0 [c:\b\slave\chromium- rel-xp\build\src\webkit\glue\webframeloaderclient_impl.cc @ 1309] chrome_2400000!WebCore::FrameLoader::loadSubframe+0x116 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 458] chrome_2400000!WebCore::FrameLoader::requestObject+0x13f [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\frameloader.cpp @ 1626] chrome_2400000!WebCore::RenderPartObject::updateWidget+0xbe5 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\rendering\renderpartobject.cpp @ 345] chrome_2400000!WebCore::HTMLEmbedElement::updateWidget+0x31 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\html\htmlembedelement.cpp @ 185] chrome_2400000!WebCore::ContainerNode::dispatchPostAttachCallbacks+0x20 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\dom\containernode.cpp @ 572] chrome_2400000!WebCore::ContainerNode::resumePostAttachCallbacks+0x1a [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\dom\containernode.cpp @ 545] chrome_2400000!WebCore::HTMLEmbedElement::attach+0x28 [c:\b\slave\chromium- rel-xp\build\src\third_party\webkit\webcore\html\htmlembedelement.cpp @ 171] chrome_2400000!WebCore::HTMLParser::insertNode+0x1d1 [c:\b\slave\chromium- rel-xp\build\src\third_party\webkit\webcore\html\htmlparser.cpp @ 379] chrome_2400000!WebCore::HTMLParser::parseToken+0x2e6 [c:\b\slave\chromium- rel-xp\build\src\third_party\webkit\webcore\html\htmlparser.cpp @ 274] chrome_2400000!WebCore::HTMLTokenizer::processToken+0x13b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\html\htmltokenizer.cpp @ 1917] chrome_2400000!WebCore::HTMLTokenizer::parseTag+0x12c8 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\html\htmltokenizer.cpp @ 1502] chrome_2400000!WebCore::HTMLTokenizer::write+0x414 [c:\b\slave\chromium- rel-xp\build\src\third_party\webkit\webcore\html\htmltokenizer.cpp @ 1748] chrome_2400000!WebCore::HTMLTokenizer::notifyFinished+0x280 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\html\htmltokenizer.cpp @ 2055] chrome_2400000!WebCore::CachedScript::checkNotify+0x3a [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\cachedscript.cpp @ 105] chrome_2400000!WebCore::CachedScript::data+0x99 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\cachedscript.cpp @ 95] chrome_2400000!WebCore::Loader::Host::didFinishLoading+0xb5 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\loader.cpp @ 367] chrome_2400000!WebCore::SubresourceLoader::didFinishLoading+0x2b [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\subresourceloader.cpp @ 183] chrome_2400000!WebCore::ResourceLoader::didFinishLoading+0x7 [c:\b\slave\chromium-rel- xp\build\src\third_party\webkit\webcore\loader\resourceloader.cpp @ 417] chrome_2400000!WebCore::ResourceHandleInternal::didFinishLoading+0x16 [c:\b\slave\chromium-rel-xp\build\src\webkit\api\src\resourcehandle.cpp @ 144] chrome_2400000!webkit_glue::WebURLLoaderImpl::Context::OnCompletedRequest+0 x10a [c:\b\slave\chromium-rel-xp\build\src\webkit\glue\weburlloader_impl.cc @ 484] chrome_2400000!ResourceDispatcher::OnRequestComplete+0x8a [c:\b\slave\chromium-rel-xp\build\src\chrome\common\resource_dispatcher.cc @ 433] chrome_2400000!IPC::MessageWithTuple<Tuple3<int,URLRequestStatus,std::basic _string<char,std::char_traits<char>,std::allocator<char> > > > ::Dispatch<ResourceDispatcher,void (__thiscall ResourceDispatcher::*)(int,URLRequestStatus const &,std::basic_string<char,std::char_traits<char>,std::allocator<char> > const &)>+0x51 [c:\b\slave\chromium-rel- xp\build\src\chrome\common\ipc_message_utils.h @ 1247] chrome_2400000!ResourceDispatcher::DispatchMessageW+0x97 [c:\b\slave\chromium-rel-xp\build\src\chrome\common\resource_dispatcher.cc @ 487] chrome_2400000!ResourceDispatcher::OnMessageReceived+0x191 [c:\b\slave\chromium-rel-xp\build\src\chrome\common\resource_dispatcher.cc @ 293] chrome_2400000!ChildThread::OnMessageReceived+0x19 [c:\b\slave\chromium- rel-xp\build\src\chrome\common\child_thread.cc @ 70] chrome_2400000!RunnableMethod<ExtensionsService,void (__thiscall ExtensionsService::*)(FilePath const &),Tuple1<FilePath> >::Run+0x17 [c:\b\slave\chromium-rel-xp\build\src\base\task.h @ 307] chrome_2400000!MessageLoop::RunTask+0x7e [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 314] chrome_2400000!MessageLoop::DoWork+0x1ea [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 435] chrome_2400000!base::MessagePumpDefault::Run+0x111 [c:\b\slave\chromium- rel-xp\build\src\base\message_pump_default.cc @ 50] chrome_2400000!MessageLoop::RunInternal+0xb7 [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 198] chrome_2400000!MessageLoop::RunHandler+0xa0 [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 182] chrome_2400000!MessageLoop::Run+0x3d [c:\b\slave\chromium-rel- xp\build\src\base\message_loop.cc @ 156] chrome_2400000!base::Thread::ThreadMain+0x8a [c:\b\slave\chromium-rel- xp\build\src\base\thread.cc @ 159] chrome_2400000!`anonymous namespace'::ThreadFunc+0xd [c:\b\slave\chromium- rel-xp\build\src\base\platform_thread_win.cc @ 27] -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings --~--~---------~--~----~------------~-------~--~----~ Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs -~----------~----~----~----~------~----~------~--~---
