NEW 123970
Assertion failure when obtaining computed value of calc 
https://bugs.webkit.org/show_bug.cgi?id=123970
Summary Assertion failure when obtaining computed value of calc
Ryosuke Niwa
Reported 2013-11-07 00:38:52 PST
e.g. open the test added in https://chromium.googlesource.com/chromium/blink/+/c3c4239ab835e2177a563ea1a294adbcaf42d802 SHOULD NEVER BE REACHED /Volumes/Data/webkit/Source/WebCore/css/CSSPrimitiveValue.cpp(383) : void WebCore::CSSPrimitiveValue::init(const WebCore::Length &) 1 0x103ca0700 WTFCrash 2 0x104f8db59 WebCore::CSSPrimitiveValue::init(WebCore::Length const&) 3 0x104f8d706 WebCore::CSSPrimitiveValue::CSSPrimitiveValue(WebCore::Length const&) 4 0x104f8d6bd WebCore::CSSPrimitiveValue::CSSPrimitiveValue(WebCore::Length const&) 5 0x104ed5b3b WTF::PassRefPtr<WebCore::CSSPrimitiveValue> WebCore::CSSPrimitiveValue::create<WebCore::Length>(WebCore::Length) 6 0x104ec6cbc WTF::PassRefPtr<WebCore::CSSPrimitiveValue> WebCore::CSSValuePool::createValue<WebCore::Length>(WebCore::Length) 7 0x104ec0293 WebCore::zoomAdjustedPixelValueForLength(WebCore::Length const&, WebCore::RenderStyle const*) 8 0x104ebe9a2 WebCore::createPositionListForLayer(WebCore::CSSPropertyID, WebCore::FillLayer const*, WebCore::RenderStyle const*) 9 0x104eb24bb WebCore::ComputedStyleExtractor::propertyValue(WebCore::CSSPropertyID, WebCore::EUpdateLayout) const 10 0x104eb11d1 WebCore::CSSComputedStyleDeclaration::getPropertyCSSValue(WebCore::CSSPropertyID, WebCore::EUpdateLayout) const 11 0x104ec4307 WebCore::CSSComputedStyleDeclaration::getPropertyCSSValueInternal(WebCore::CSSPropertyID) 12 0x10585d3e1 WebCore::cssPropertyGetter(JSC::ExecState*, WebCore::JSCSSStyleDeclaration*, unsigned int) 13 0x10585c636 WebCore::cssPropertyGetterCallback(JSC::ExecState*, JSC::JSValue, unsigned int) 14 0x10362c7ad JSC::PropertySlot::getValue(JSC::ExecState*, JSC::PropertyName) const 15 0x103646ca3 JSC::JSValue::get(JSC::ExecState*, JSC::PropertyName, JSC::PropertySlot&) const 16 0x103a73e0b llint_slow_path_get_by_id 17 0x103a7eaae llint_op_get_by_id 18 0x103935fcd JSC::JITCode::execute(JSC::JSStack*, JSC::ExecState*, JSC::VM*) 19 0x10391973f JSC::Interpreter::executeCall(JSC::ExecState*, JSC::JSObject*, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&) 20 0x103695efe JSC::call(JSC::ExecState*, JSC::JSValue, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&) 21 0x10580574b WebCore::JSMainThreadExecState::call(JSC::ExecState*, JSC::JSValue, JSC::CallType, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&) 22 0x10593ea0f WebCore::JSEventListener::handleEvent(WebCore::ScriptExecutionContext*, WebCore::Event*) 23 0x10529df61 WebCore::EventTarget::fireEventListeners(WebCore::Event*, WebCore::EventTargetData*, WTF::Vector<WebCore::RegisteredEventListener, 1ul, WTF::CrashOnOverflow>&) 24 0x10529d8ae WebCore::EventTarget::fireEventListeners(WebCore::Event*) 25 0x1051e40f0 WebCore::DOMWindow::dispatchEvent(WTF::PassRefPtr<WebCore::Event>, WTF::PassRefPtr<WebCore::EventTarget>) 26 0x1051eaef8 WebCore::DOMWindow::dispatchLoadEvent() 27 0x1050d8d0d WebCore::Document::dispatchWindowLoadEvent() 28 0x1050d69d2 WebCore::Document::implicitClose() 29 0x10536aa2b WebCore::FrameLoader::checkCallImplicitClose() 30 0x10536a6a6 WebCore::FrameLoader::checkCompleted() 31 0x105368fc8 WebCore::FrameLoader::finishedParsing() LEAK: 1 WebPageProxy LEAK: 1 WebContext
Attachments
Add attachment proposed patch, testcase, etc.
Ahmad Saleem
Comment 1 2023-06-03 20:35:18 PDT
Similar assertion seems to be fixed in this commit: https://src.chromium.org/viewvc/blink?view=revision&revision=158790
Note You need to log in before you can comment on or make changes to this bug.