Summary: | Crash when using XMLSerializer.serializeToString() on documentless, DocumentType nodes. | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|
Product: | WebKit | Reporter: | Sam Weinig <sam> | ||||||||
Component: | DOM | Assignee: | Sam Weinig <sam> | ||||||||
Status: | RESOLVED FIXED | ||||||||||
Severity: | Critical | CC: | cdumez | ||||||||
Priority: | P1 | ||||||||||
Version: | 420+ | ||||||||||
Hardware: | Mac | ||||||||||
OS: | OS X 10.4 | ||||||||||
Attachments: |
|
Description
Sam Weinig
2006-12-07 12:59:56 PST
Created attachment 11765 [details]
testcase
Testcase. This will cause your browser to crash!
Created attachment 11766 [details]
another testcase
Another testcase that will crash ToT.
Created attachment 11767 [details]
patch
Comment on attachment 11767 [details]
patch
+ if (node->nodeType() == Node::DOCUMENT_TYPE_NODE && !node->document()) {
It's true that only the DocumentType node can have a NULL document, but I don't see any need to test for the node being a DocumentType node. !node->document() should do.
r=me
Mass moving XML DOM bugs to the "DOM" Component. |