Bug 123970
| Summary: | Assertion failure when obtaining computed value of calc | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Ryosuke Niwa <rniwa> |
| Component: | CSS | Assignee: | Nobody <webkit-unassigned> |
| Status: | NEW | ||
| Severity: | Normal | CC: | ahmad.saleem792, dino, jonlee, kling, koivisto, simon.fraser |
| Priority: | P2 | ||
| Version: | 528+ (Nightly build) | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
Ryosuke Niwa
e.g. open the test added in https://chromium.googlesource.com/chromium/blink/+/c3c4239ab835e2177a563ea1a294adbcaf42d802
SHOULD NEVER BE REACHED
/Volumes/Data/webkit/Source/WebCore/css/CSSPrimitiveValue.cpp(383) : void WebCore::CSSPrimitiveValue::init(const WebCore::Length &)
1 0x103ca0700 WTFCrash
2 0x104f8db59 WebCore::CSSPrimitiveValue::init(WebCore::Length const&)
3 0x104f8d706 WebCore::CSSPrimitiveValue::CSSPrimitiveValue(WebCore::Length const&)
4 0x104f8d6bd WebCore::CSSPrimitiveValue::CSSPrimitiveValue(WebCore::Length const&)
5 0x104ed5b3b WTF::PassRefPtr<WebCore::CSSPrimitiveValue> WebCore::CSSPrimitiveValue::create<WebCore::Length>(WebCore::Length)
6 0x104ec6cbc WTF::PassRefPtr<WebCore::CSSPrimitiveValue> WebCore::CSSValuePool::createValue<WebCore::Length>(WebCore::Length)
7 0x104ec0293 WebCore::zoomAdjustedPixelValueForLength(WebCore::Length const&, WebCore::RenderStyle const*)
8 0x104ebe9a2 WebCore::createPositionListForLayer(WebCore::CSSPropertyID, WebCore::FillLayer const*, WebCore::RenderStyle const*)
9 0x104eb24bb WebCore::ComputedStyleExtractor::propertyValue(WebCore::CSSPropertyID, WebCore::EUpdateLayout) const
10 0x104eb11d1 WebCore::CSSComputedStyleDeclaration::getPropertyCSSValue(WebCore::CSSPropertyID, WebCore::EUpdateLayout) const
11 0x104ec4307 WebCore::CSSComputedStyleDeclaration::getPropertyCSSValueInternal(WebCore::CSSPropertyID)
12 0x10585d3e1 WebCore::cssPropertyGetter(JSC::ExecState*, WebCore::JSCSSStyleDeclaration*, unsigned int)
13 0x10585c636 WebCore::cssPropertyGetterCallback(JSC::ExecState*, JSC::JSValue, unsigned int)
14 0x10362c7ad JSC::PropertySlot::getValue(JSC::ExecState*, JSC::PropertyName) const
15 0x103646ca3 JSC::JSValue::get(JSC::ExecState*, JSC::PropertyName, JSC::PropertySlot&) const
16 0x103a73e0b llint_slow_path_get_by_id
17 0x103a7eaae llint_op_get_by_id
18 0x103935fcd JSC::JITCode::execute(JSC::JSStack*, JSC::ExecState*, JSC::VM*)
19 0x10391973f JSC::Interpreter::executeCall(JSC::ExecState*, JSC::JSObject*, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&)
20 0x103695efe JSC::call(JSC::ExecState*, JSC::JSValue, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&)
21 0x10580574b WebCore::JSMainThreadExecState::call(JSC::ExecState*, JSC::JSValue, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&)
22 0x10593ea0f WebCore::JSEventListener::handleEvent(WebCore::ScriptExecutionContext*, WebCore::Event*)
23 0x10529df61 WebCore::EventTarget::fireEventListeners(WebCore::Event*, WebCore::EventTargetData*, WTF::Vector<WebCore::RegisteredEventListener, 1ul, WTF::CrashOnOverflow>&)
24 0x10529d8ae WebCore::EventTarget::fireEventListeners(WebCore::Event*)
25 0x1051e40f0 WebCore::DOMWindow::dispatchEvent(WTF::PassRefPtr<WebCore::Event>, WTF::PassRefPtr<WebCore::EventTarget>)
26 0x1051eaef8 WebCore::DOMWindow::dispatchLoadEvent()
27 0x1050d8d0d WebCore::Document::dispatchWindowLoadEvent()
28 0x1050d69d2 WebCore::Document::implicitClose()
29 0x10536aa2b WebCore::FrameLoader::checkCallImplicitClose()
30 0x10536a6a6 WebCore::FrameLoader::checkCompleted()
31 0x105368fc8 WebCore::FrameLoader::finishedParsing()
LEAK: 1 WebPageProxy
LEAK: 1 WebContext
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
Ahmad Saleem
Similar assertion seems to be fixed in this commit: https://src.chromium.org/viewvc/blink?view=revision&revision=158790