RESOLVED FIXED 165034
Reproducible crash when you define css custom properties with value '%'
https://bugs.webkit.org/show_bug.cgi?id=165034
Summary Reproducible crash when you define css custom properties with value '%'
Matteo Gilardoni
Reported 2016-11-22 12:51:03 PST
Created attachment 295339 [details] Error you see Issue found on: - iPhone 5 Safari 9 - MacOs 10.12.1 Safari 9/10 to replicate the issue create an html page and add this: <div style="--size:%;width:calc(var(--size));"></div> The page will crash and report an error.
Attachments
Error you see (466.60 KB, image/png)
2016-11-22 12:51 PST, Matteo Gilardoni
no flags
test case (53 bytes, text/html)
2016-11-23 00:28 PST, Alexey Proskuryakov
no flags
reproducible bug on safari 10 (178 bytes, text/html)
2016-11-27 10:17 PST, Matteo Gilardoni
no flags
Matteo Gilardoni
Comment 1 2016-11-22 15:03:22 PST
I did some other test: this code <div style="--size:%;"></div> is enough to break safari, it looks like it has got problem evaluating % it does not matter if you use it.
Alexey Proskuryakov
Comment 2 2016-11-23 00:28:46 PST
Created attachment 295357 [details] test case
David Kilzer (:ddkilzer)
Comment 3 2016-11-27 08:34:57 PST
Matteo Gilardoni
Comment 4 2016-11-27 10:16:04 PST
(In reply to comment #1) > I did some other test: > > this code > <div style="--size:%;"></div> > > is enough to break safari, it looks like it has got problem evaluating % it > does not matter if you use it. the previous case happen only if you open the debugger. this one happen even with the debugger close <div style="--size:%;width:var(--size);"></div>
Matteo Gilardoni
Comment 5 2016-11-27 10:17:52 PST
Created attachment 295456 [details] reproducible bug on safari 10 added test case number 2
Dave Hyatt
Comment 6 2016-11-28 11:48:48 PST
This works fine in the new parser FYI.
Matteo Gilardoni
Comment 7 2016-11-30 10:21:24 PST
(In reply to comment #6) > This works fine in the new parser FYI. cool thank you. Next release should include this new parser? do you know when is going to happen?
Dave Hyatt
Comment 8 2016-12-06 09:31:54 PST
Fixed with new parser turning on: https://trac.webkit.org/changeset/209396
Note You need to log in before you can comment on or make changes to this bug.