Bug 130777

Summary: Fix a crash caused by track insertion after load()
Product: WebKit Reporter: Brent Fulgham <bfulgham>
Component: MediaAssignee: Brent Fulgham <bfulgham>
Status: RESOLVED FIXED    
Severity: Normal CC: calvaris, commit-queue, eric.carlson, esprehn+autocc, glenn, gyuyoung.kim, jer.noble, philipj, sergio
Priority: P2    
Version: 528+ (Nightly build)   
Hardware: All   
OS: All   
Attachments:
Description Flags
Patch none

Brent Fulgham
Reported 2014-03-26 09:25:39 PDT
Merge the following Blink change: Fix a crash caused by track insertion after load(). This patch fixes a crash caused by stale LoadMediaResource flag in m_pendingActionFlags when load() is explicitly called on a media element. The insertion of a <track> element triggers the crash by triggering the scheduling of the m_loadTimer, which ends up using the stale flag data when the timer fires. The fix is to clear the LoadMediaResource flag from m_pendingActionFlags when a new load is initiated. BUG=356352 TEST=LayoutTests/media/track/track-insert-after-load-crash.html Committed: https://src.chromium.org/viewvc/blink?view=rev&revision=170003
Attachments
Patch (3.76 KB, patch)
2014-03-26 09:41 PDT, Brent Fulgham 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
Brent Fulgham
Comment 1 2014-03-26 09:41:07 PDT
Created attachment 227853 [details] Patch
WebKit Commit Bot
Comment 2 2014-03-27 10:51:20 PDT
Comment on attachment 227853 [details] Patch Clearing flags on attachment: 227853 Committed r166362: <http://trac.webkit.org/changeset/166362>
WebKit Commit Bot
Comment 3 2014-03-27 10:51:25 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.