161733 – Regression(r186020): Null dereference in getStartDate()

Bug 161733 - Regression(r186020): Null dereference in getStartDate()

Summary: Regression(r186020): Null dereference in getStartDate()

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	Media (show other bugs)
Version:	WebKit Nightly Build
Hardware:	Unspecified OS X 10.11

Importance:	P2 Normal
Assignee:	Chris Dumez

URL:
Keywords:

Duplicates (1):	161898 (view as bug list)
Depends on:
Blocks:	145676
	Show dependency tree / graph

Reported:	2016-09-07 22:34 PDT by tybohan
Modified:	2019-08-15 11:53 PDT (History)
CC List:	9 users (show)

See Also:

Attachments
WIP patch (6.55 KB, patch) 2016-09-08 11:03 PDT, Chris Dumez	no flags	Details \| Formatted Diff \| Diff
Archive of layout-test-results from ews103 for mac-yosemite (744.32 KB, application/zip) 2016-09-08 12:05 PDT, Build Bot	no flags	Details
Archive of layout-test-results from ews104 for mac-yosemite-wk2 (1.01 MB, application/zip) 2016-09-08 12:12 PDT, Build Bot	no flags	Details
Archive of layout-test-results from ews126 for ios-simulator-elcapitan-wk2 (deleted) 2016-09-08 12:16 PDT, Build Bot	no flags	Details
Patch (11.50 KB, patch) 2016-09-08 12:20 PDT, Chris Dumez	no flags	Details \| Formatted Diff \| Diff
Show Obsolete (4) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description tybohan 2016-09-07 22:34:07 PDT

There exists a null dereference in WebKit when the following DOM code is executed:

document.createElement("AUDIO").getStartDate()


This bug is present in the latest versions of WebKit Nightly Build.

Comment 1 Chris Dumez 2016-09-08 11:03:26 PDT

Created attachment 288281 [details]
WIP patch

Comment 2 Build Bot 2016-09-08 12:05:53 PDT

Comment on attachment 288281 [details]
WIP patch

Attachment 288281 [details] did not pass mac-ews (mac):
Output: http://webkit-queues.webkit.org/results/2035650

New failing tests:
imported/w3c/web-platform-tests/html/semantics/forms/the-input-element/text.html
imported/w3c/web-platform-tests/html/semantics/forms/the-input-element/hidden.html

Comment 3 Build Bot 2016-09-08 12:05:57 PDT

Created attachment 288296 [details]
Archive of layout-test-results from ews103 for mac-yosemite

The attached test failures were seen while running run-webkit-tests on the mac-ews.
Bot: ews103  Port: mac-yosemite  Platform: Mac OS X 10.10.5

Comment 4 Build Bot 2016-09-08 12:12:15 PDT

Comment on attachment 288281 [details]
WIP patch

Attachment 288281 [details] did not pass mac-wk2-ews (mac-wk2):
Output: http://webkit-queues.webkit.org/results/2035664

New failing tests:
imported/w3c/web-platform-tests/html/semantics/forms/the-input-element/text.html
imported/w3c/web-platform-tests/html/semantics/forms/the-input-element/hidden.html

Comment 5 Build Bot 2016-09-08 12:12:18 PDT

Created attachment 288298 [details]
Archive of layout-test-results from ews104 for mac-yosemite-wk2

The attached test failures were seen while running run-webkit-tests on the mac-wk2-ews.
Bot: ews104  Port: mac-yosemite-wk2  Platform: Mac OS X 10.10.5

Comment 6 Build Bot 2016-09-08 12:16:20 PDT

Comment on attachment 288281 [details]
WIP patch

Attachment 288281 [details] did not pass ios-sim-ews (ios-simulator-wk2):
Output: http://webkit-queues.webkit.org/results/2035643

New failing tests:
fast/forms/week/input-valueasdate-week.html
fast/forms/datetimelocal/input-valueasdate-datetimelocal.html
fast/forms/month/input-valueasdate-month.html
fast/forms/time/time-valueasdate.html
fast/forms/month/input-valueasdate.html
imported/w3c/web-platform-tests/html/semantics/forms/the-input-element/hidden.html
fast/forms/date/input-valueasdate-date.html
imported/w3c/web-platform-tests/html/semantics/forms/the-input-element/text.html

Comment 7 Build Bot 2016-09-08 12:16:25 PDT

Created attachment 288300 [details]
Archive of layout-test-results from ews126 for ios-simulator-elcapitan-wk2

The attached test failures were seen while running run-webkit-tests on the ios-sim-ews.
Bot: ews126  Port: ios-simulator-elcapitan-wk2  Platform: Mac OS X 10.11.5

Comment 8 Chris Dumez 2016-09-08 12:20:57 PDT

Created attachment 288303 [details]
Patch

Comment 9 WebKit Commit Bot 2016-09-09 09:19:21 PDT

Comment on attachment 288303 [details]
Patch

Clearing flags on attachment: 288303

Committed r205744: <http://trac.webkit.org/changeset/205744>

Comment 10 WebKit Commit Bot 2016-09-09 09:19:27 PDT

All reviewed patches have been landed.  Closing bug.

Comment 11 Darin Adler 2016-09-11 09:32:06 PDT

I suggest we move to Optional<double> for nullable date types, and get rid of the special handling for NaN.

Comment 12 Chris Dumez 2016-09-11 10:37:33 PDT

(In reply to comment #11)
> I suggest we move to Optional<double> for nullable date types, and get rid
> of the special handling for NaN.

Yes, I agree but I did not want to make the change in the same patch. Another issue is that Date was dropped from WebIDL. The specs are now using object type instead and it is update to the implementation to return a Date object. The thing is that I know we do not like to use JS types in our DOM implementation. I asked Sam what he thought about dropping Date support in the bindings generator and update the implementation to return Date object instead of double values but he did not come back to me on this matter yet. Let me know if you have an opinion on this.

Comment 13 Ross Kirsling 2019-08-15 11:53:35 PDT

*** Bug 161898 has been marked as a duplicate of this bug. ***