Bug 144629

Summary: Navigating to www.apple.com hits assertion in WebCore::TextIteratorCopyableText::set()
Product: WebKit Reporter: alan <zalan>
Component: Layout and RenderingAssignee: alan <zalan>
Status: RESOLVED FIXED    
Severity: Normal CC: commit-queue, joepeck, koivisto
Priority: P2 Keywords: InRadar
Version: 528+ (Nightly build)   
Hardware: Unspecified   
OS: Unspecified   
Attachments:
Description Flags
Patch
none
Patch
none
Patch none

alan
Reported 2015-05-05 09:34:20 PDT
1. Load apple.com 2. Wait a few seconds. 1 com.apple.JavaScriptCore 0x113e9d3f7 WTFCrash + 0x27 2 com.apple.WebCore 0x1174d62b2 WebCore::TextIteratorCopyableText::set(WTF::String&&, unsigned int, unsigned int) + 0x92 (TextIterator.cpp:292) 3 com.apple.WebCore 0x1174d0684 WebCore::TextIterator::emitText(WebCore::Text&, WebCore::RenderText&, int, int) + 0x1e4 (TextIterator.cpp:1128) 4 com.apple.WebCore 0x1174cf66b WebCore::TextIterator::handleTextNode() + 0xfbb (TextIterator.cpp:601) 5 com.apple.WebCore 0x1174cd67b WebCore::TextIterator::advance() + 0x2fb (TextIterator.cpp:437) 6 com.apple.WebCore 0x1174d44a7 WebCore::plainText(WebCore::Range const*, unsigned short, bool) + 0x107 (TextIterator.cpp:2567) 7 com.apple.WebKit 0x110a6c985 WebKit::WebFrame::contentsAsString() const + 0x265 (WebFrame.cpp:355) 8 com.apple.WebKit 0x110b81fc3 WebKit::WebPage::getContentsAsString(unsigned long long) + 0x33 (WebPage.cpp:2500)
Attachments
Patch (5.68 KB, patch)
2015-05-05 11:23 PDT, alan 		no flags
DetailsFormatted DiffDiff
Patch (5.74 KB, patch)
2015-05-05 11:25 PDT, alan 		no flags
DetailsFormatted DiffDiff
Patch (6.41 KB, patch)
2015-05-05 14:19 PDT, alan 		no flags
DetailsFormatted DiffDiff
Show Obsolete (2) View All Add attachment proposed patch, testcase, etc.
alan
Comment 1 2015-05-05 09:34:43 PDT
rdar://problem/20689877
alan
Comment 2 2015-05-05 11:23:45 PDT
Created attachment 252389 [details] Patch
alan
Comment 3 2015-05-05 11:25:37 PDT
Created attachment 252390 [details] Patch
Said Abou-Hallawa
Comment 4 2015-05-05 11:48:57 PDT
Comment on attachment 252390 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=252390&action=review > Source/WebCore/editing/TextIterator.cpp:620 > + } Should not we have a loop here to collect all the prefix tabs and newlines in one emitText() instead of emitting each one in emitCharacter()?
alan
Comment 5 2015-05-05 11:55:51 PDT
Comment on attachment 252390 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=252390&action=review >> Source/WebCore/editing/TextIterator.cpp:620 >> + } > > Should not we have a loop here to collect all the prefix tabs and newlines in one emitText() instead of emitting each one in emitCharacter()? Whitespace is usually collapsed.
alan
Comment 6 2015-05-05 12:41:09 PDT
Comment on attachment 252390 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=252390&action=review >>> Source/WebCore/editing/TextIterator.cpp:620 >>> + } >> >> Should not we have a loop here to collect all the prefix tabs and newlines in one emitText() instead of emitting each one in emitCharacter()? > > Whitespace is usually collapsed. Non-collapsed case is handled separately. (see TextIterator::handleTextNode -> if (!renderer.style().collapseWhiteSpace()))
alan
Comment 7 2015-05-05 14:19:26 PDT
Created attachment 252406 [details] Patch
Andreas Kling
Comment 8 2015-05-05 14:35:10 PDT
Comment on attachment 252406 [details] Patch r=me
WebKit Commit Bot
Comment 9 2015-05-05 15:45:51 PDT
Comment on attachment 252406 [details] Patch Clearing flags on attachment: 252406 Committed r183835: <http://trac.webkit.org/changeset/183835>
WebKit Commit Bot
Comment 10 2015-05-05 15:45:55 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.