[Webkit-unassigned] [Bug 13938] REGRESSION: Difficult to repro crash in RenderBlock::layoutBlock using iGoogle

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu May 31 10:01:23 PDT 2007 

http://bugs.webkit.org/show_bug.cgi?id=13938


mitz at webkit.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |hyatt at apple.com




------- Comment #3 from mitz at webkit.org  2007-05-31 10:01 PDT -------
So this bug turned out to be fixed already, but Beth added the midLayout guard
around invalidateSelection() is
<http://trac.webkit.org/projects/webkit/changeset/21905> and just now going to
maps.google.com I hit the ASSERT(!d->midLayout), with this backtrace:

0   com.apple.WebCore                   0x01101a68
WebCore::FrameView::layout(bool) + 100 (FrameView.cpp:290)
1   com.apple.WebCore                   0x01106110
WebCore::Document::updateLayout() + 260 (Document.cpp:1060)
2   com.apple.WebCore                   0x0111576c
WebCore::Document::updateLayoutIgnorePendingStylesheets() + 200
(Document.cpp:1087)
3   com.apple.WebCore                   0x012851b4
WebCore::VisiblePosition::canonicalPosition(WebCore::Position const&) + 104
(VisiblePosition.cpp:143)
4   com.apple.WebCore                   0x01285730
WebCore::VisiblePosition::init(WebCore::Position const&, WebCore::EAffinity) +
68 (VisiblePosition.cpp:58)
5   com.apple.WebCore                   0x012859a0
WebCore::VisiblePosition::VisiblePosition[in-charge](WebCore::Position const&,
WebCore::EAffinity) + 60 (VisiblePosition
.cpp:46)
6   com.apple.WebCore                   0x0127173c
WebCore::SelectionController::layout() + 648 (SelectionController.cpp:839)
7   com.apple.WebCore                   0x01271960
WebCore::SelectionController::caretRect() const + 56
(SelectionController.cpp:858)
8   com.apple.WebCore                   0x01271d84
WebCore::SelectionController::recomputeCaretRect() + 276
(SelectionController.cpp:896)
9   com.apple.WebCore                   0x010eff04
WebCore::Frame::selectionLayoutChanged() + 52 (Frame.cpp:584)
10  com.apple.WebCore                   0x010f01a8
WebCore::Frame::invalidateSelection() + 56 (Frame.cpp:523)
11  com.apple.WebCore                   0x011023e8
WebCore::FrameView::layout(bool) + 2532 (FrameView.cpp:433)

The FrameView being the same in frames #0 and #11.

Also regarding the original problem (at iGoogle), if this is something that can
legitimately happen within WebCore, isn't an ASSERT too harsh? I mean, does the
iGoogle bug still need to be fixed some other way?


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list