WebKit Bugzilla
New
Browse
Log In
×
Sign in with GitHub
or
Remember my login
Create Account
·
Forgot Password
Forgotten password account recovery
RESOLVED FIXED
96530
Assert hit in is multiSelectable()
https://bugs.webkit.org/show_bug.cgi?id=96530
Summary
Assert hit in is multiSelectable()
chris fleizach
Reported
2012-09-12 09:20:25 PDT
I think this is a regression from the recent node change made a few minutes ago Program received signal EXC_BAD_ACCESS, Could not access memory. Reason: KERN_INVALID_ADDRESS at address: 0x00000000bbadbeef 0x0000000103630d3e in WebCore::toHTMLSelectElement (node=0x7fe9882d4a00) at HTMLSelectElement.h:207 207 ASSERT(!node || isHTMLSelectElement(node)); (gdb) bt #0 0x0000000103630d3e in WebCore::toHTMLSelectElement (node=0x7fe9882d4a00) at HTMLSelectElement.h:207 #1 0x00000001036140b7 in WebCore::AccessibilityNodeObject::isMultiSelectable (this=0x7fe9838b32f0) at AccessibilityNodeObject.cpp:625 #2 0x000000010362829d in WebCore::AccessibilityRenderObject::ariaSelectedRows (this=0x7fe9838b32f0, result=@0x7fff5e4de0a0) at AccessibilityRenderObject.cpp:2820 Problem looks like we're not verifying that the node is a Select element bool AccessibilityNodeObject::isMultiSelectable() const { const AtomicString& ariaMultiSelectable = getAttribute(aria_multiselectableAttr); if (equalIgnoringCase(ariaMultiSelectable, "true")) return true; if (equalIgnoringCase(ariaMultiSelectable, "false")) return false; return node() && toHTMLSelectElement(node())->multiple(); }
Attachments
Patch
(1.35 KB, patch)
2012-09-12 09:49 PDT
,
Dominic Mazzoni
cfleizach
: review+
Details
Formatted Diff
Diff
View All
Add attachment
proposed patch, testcase, etc.
chris fleizach
Comment 1
2012-09-12 09:21:35 PDT
Looks like we lost this if (!m_renderer->isBoxModelObject() || !toRenderBoxModelObject(m_renderer)->isListBox()) 713 return false;
Dominic Mazzoni
Comment 2
2012-09-12 09:34:22 PDT
I'll roll out and fix.
chris fleizach
Comment 3
2012-09-12 09:37:53 PDT
i would just fix this one rather than rolling out if you can get to it quickly enough
Dominic Mazzoni
Comment 4
2012-09-12 09:49:05 PDT
Created
attachment 163650
[details]
Patch
chris fleizach
Comment 5
2012-09-12 09:50:24 PDT
Comment on
attachment 163650
[details]
Patch thanks for quick turn-around. you might want to mention in ChangeLog where this breakage came from (ie refactoring...)
Dominic Mazzoni
Comment 6
2012-09-12 09:56:43 PDT
Committed
r128332
: <
http://trac.webkit.org/changeset/128332
>
Dominic Mazzoni
Comment 7
2012-09-12 11:38:35 PDT
***
Bug 96534
has been marked as a duplicate of this bug. ***
Note
You need to
log in
before you can comment on or make changes to this bug.
Top of Page
Format For Printing
XML
Clone This Bug