I develop a web application, that uses lots of javascript (jQuery, GWT) and recently we observerd IE10 crashes when working on pages that use textarea tag. This happens when the browser uses document mode: Quirks Mode (IE5) or IE7-8 Standards.
I do the following:
- open the page with textbox
- type something in textbox (it seems important, as dropping text or just placing a focus do not trigger a problem)
- navigate to other site using a button
And the browser crashes in mshtml.dll.
Here is the stacktrace I managed to prepare from a minidump. It seems browser tries to do the cleanup after leaving the page.
(cf8.121c): Access violation - code c0000005 (first/second chance not available) eax=0bf78068 ebx=00000000 ecx=00000000 edx=0385c400 esi=0b3dd108 edi=00000000 eip=6a533fa9 esp=0385c3e4 ebp=0385c404 iopl=0 nv up ei pl zr na pe nc cs=0023 ss=002b ds=002b es=002b fs=0053 gs=002b efl=00010246 mshtml!CElement::ReleaseImageCtxts+0xc7: 6a533fa9 394f04 cmp dword ptr [edi+4],ecx ds:002b:00000004=???????? mshtml!CElement::ReleaseImageCtxts+0xc7 mshtml!CElement::Passivate+0x4fa mshtml!CBase::PrivateRelease+0x64 mshtml!CElement::PrivateRelease+0x18 jscript9!HostVariant::FinalizeDispatch+0x15 jscript9!HostVariant::Dispose+0x2a jscript9!SmallHeapBlock::DisposeObjects+0x62 jscript9!HeapInfo::DisposeObjects+0x78 jscript9!Recycler::DisposeObjects+0x46 jscript9!Recycler::FinishDisposeObjects+0x1a jscript9!Recycler::FinishCollection+0x3c jscript9!Recycler::CollectOnConcurrentThread+0x9b jscript9!Recycler::DoCollect+0x146 jscript9!ThreadContext::ExecuteRecyclerCollectionFunctionCommon+0x35 jscript9!ThreadContext::ExecuteRecyclerCollectionFunction+0xf4 msvcrt!free+0xec mshtml!CActiveScriptHolder::Close+0x59 mshtml!CScriptCollection::~CScriptCollection+0x25 mshtml!CScriptCollection::SubRelease+0xb0b2ba mshtml!CMarkup::RequestReadystateInteractive+0x98
Here is the minidump: http://sdrv.ms/1cXhExm
My IE10 version:
10.0.9200.16660
10.0.8 (KB2862772)
We plan to migrate the webapplication doctype to render it in Standards mode, but it will take time. So I am looking for any other workarounds. Maybe somebody experienced this already and have an idea for a workaround?
Best regards
Tomasz Poręba