182185 – REGRESSiON (r226492): Crash under Element::absoluteEventBounds() on a SVGPathElement which has not been laid out yet

RESOLVED FIXED 182185

REGRESSiON (r226492): Crash under Element::absoluteEventBounds() on a SVGPathElement which has not been laid out yet

https://bugs.webkit.org/show_bug.cgi?id=182185

Summary REGRESSiON (r226492): Crash under Element::absoluteEventBounds() on a SVGPath...

Simon Fraser (smfr)

Reported 2018-01-26 14:03:49 PST

REGRESSiON (r226492): Crash under Element::absoluteEventBounds() on a SVGPathElement which has not been laid out yet

Attachments
Patch (1.80 KB, patch) 2018-01-26 14:06 PST, Simon Fraser (smfr)	no flags	Details Formatted Diff Diff
Patch (1.83 KB, patch) 2018-01-26 14:07 PST, Simon Fraser (smfr)	zalan: review+	Details Formatted Diff Diff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.

Simon Fraser (smfr)

Comment 1 2018-01-26 14:06:14 PST

Simon Fraser (smfr)

Comment 2 2018-01-26 14:06:46 PST

Simon Fraser (smfr)

Comment 3 2018-01-26 14:07:28 PST

zalan

Comment 4 2018-01-26 14:13:04 PST

Comment on attachment 332415 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=332415&action=review > Source/WebCore/svg/SVGPathElement.cpp:424 > + if (!renderer || !renderer->hasPath()) > + return { }; Please add a FIXME here that it's an invalid state.

Simon Fraser (smfr)

Comment 5 2018-01-26 14:37:49 PST Comment hidden (obsolete)

Simon Fraser (smfr)

Comment 6 2018-01-26 14:38:40 PST

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version WebKit Nightly Build

Hardware Unspecified

OS Unspecified

Product WebKit

Component New Bugs

Assignee

Simon Fraser (smfr)

Reported

2018-01-26 14:03 PST

Modified

2018-01-26 14:38 PST History

CC List

3 users Show

URL

Keywords InRadar

Depends on

Blocks