Bug 291391

Summary:

RenderInline::imageChanged repaints even when there's no layer

Product:

WebKit

Reporter:

Pedro Varangot <pvarangot>

Component:

New Bugs

Assignee:

alan <zalan>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

simon.fraser, webkit-bug-importer, zalan

Priority:

Keywords:

InRadar

Version:

WebKit Nightly Build

Hardware:

Unspecified

OS:

Unspecified

Attachments:

Description	Flags
Patch	none
[fast-cq]Patch	none

Pedro Varangot

Reported 2025-04-10 15:59:01 PDT

This leads to a crash. See rdar://147939623 ([SU+Main] [f84cfd071643b1ed] ASAN_SEGV | WebCore::RenderInline::offsetForInFlowPositionedInline; WebCore::RenderBox::computeVisibleRectsInContainer; WebCore::RenderObject::clippedOverflowRect)

Attachments
Patch (3.81 KB, patch) 2025-04-23 10:35 PDT, alan	no flags	Details Formatted Diff Diff
[fast-cq]Patch (3.81 KB, patch) 2025-04-23 10:44 PDT, alan	no flags	Details Formatted Diff Diff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.

Pedro Varangot

Comment 1 2025-04-10 16:06:22 PDT

Pull request: https://github.com/WebKit/WebKit/pull/43924

alan

Comment 2 2025-04-23 10:35:54 PDT

Created attachment 475031 [details] Patch

Simon Fraser (smfr)

Comment 3 2025-04-23 10:37:15 PDT

Comment on attachment 475031 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=475031&action=review > Source/WebCore/rendering/RenderInline.cpp:855 > + if (!layer()) { hasLayer()

alan

Comment 4 2025-04-23 10:44:25 PDT

Created attachment 475032 [details] [fast-cq]Patch

EWS

Comment 5 2025-04-23 12:58:54 PDT

Committed 294021@main (71a3ca51f4bf): <https://commits.webkit.org/294021@main> All reviewed patches have been landed. Closing bug and clearing flags on attachment 475032 [details].

Note You need to log in before you can comment on or make changes to this bug.