Bug 17882

Summary: Crash in WebCore::CSSStyleSelector::hasSelectorForAttribute
Product: WebKit Reporter: Dave Marquard <dave>
Component: WebCore Misc.Assignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Critical CC: ap, aroben, mkerr, slowking, webkit
Priority: P1    
Version: 528+ (Nightly build)   
Hardware: Mac   
OS: OS X 10.5   
Attachments:
Description Flags
r31081 crash log
none
r31084 crash log none

Dave Marquard
Reported 2008-03-16 14:28:18 PDT
On r31081, I've gotten a reproducible crash in WebCore::CSSStyleSelector::hasSelectorForAttribute. You can reproduce the crash when loading http://www.freebsd.org/java/newsflash.html
Attachments
r31081 crash log (27.00 KB, text/plain)
2008-03-16 14:29 PDT, Dave Marquard 		no flags
Details
r31084 crash log (26.75 KB, text/plain)
2008-03-16 14:53 PDT, Dave Marquard 		no flags
Details
View All Add attachment proposed patch, testcase, etc.
Dave Marquard
Comment 1 2008-03-16 14:29:20 PDT
Created attachment 19807 [details] r31081 crash log crash log from r31081
Matt Lilek
Comment 2 2008-03-16 14:39:47 PDT
Darin fixed this in r31080, a new nightly with the fix is available. *** This bug has been marked as a duplicate of 17876 ***
Dave Marquard
Comment 3 2008-03-16 14:45:04 PDT
The crash happens with the latest nightly, r31084, so this looks like a different bug than 17876. Note that the attached crash log actually comes from r31084... r31081 mentioned before was a typo.
Matt Lilek
Comment 4 2008-03-16 14:50:17 PDT
(In reply to comment #3) > The crash happens with the latest nightly, r31084, so this looks like a > different bug than 17876. > > Note that the attached crash log actually comes from r31084... r31081 mentioned > before was a typo. > Oops! You're right, I should have looked closer.
Dave Marquard
Comment 5 2008-03-16 14:53:38 PDT
Created attachment 19809 [details] r31084 crash log The crash log from r31084 looks slightly different actually. My bad. Added a new attachment for it.
Nick Poulos
Comment 6 2008-03-17 02:31:43 PDT
*** Bug 17891 has been marked as a duplicate of this bug. ***
Robert Blaut
Comment 7 2008-03-17 07:02:47 PDT
*** Bug 17892 has been marked as a duplicate of this bug. ***
Alexey Proskuryakov
Comment 8 2008-03-18 02:04:50 PDT
I think this was fixed in r31095 (additional fix for bug 17876) - can someone still reproduce the crash?
Robert Blaut
Comment 9 2008-03-18 02:17:02 PDT
(In reply to comment #8) > I think this was fixed in r31095 (additional fix for bug 17876) - can someone > still reproduce the crash? > I've got no crash in Webkit r31114 on Mac OS X 10.5. So it's probably fixed.
Marc K
Comment 10 2008-03-18 04:31:20 PDT
Webkit r31114 seems to resolve the issue for me.
Robert Blaut
Comment 11 2008-03-18 05:02:18 PDT
Per comment #9, #10 and #11 resolved as fixed.
Note You need to log in before you can comment on or make changes to this bug.