[Webkit-unassigned] [Bug 18282] WebKit crashes with deeply nested divs

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Apr 2 11:12:05 PDT 2008 

http://bugs.webkit.org/show_bug.cgi?id=18282


webkit at mattlilek.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Keywords|                            |HasReduction, PlatformOnly




------- Comment #3 from webkit at mattlilek.com  2008-04-02 11:12 PDT -------
This only happens on Windows and VS tells me that it does indeed blow out the
stack:

>	WebKit.dll!WebCore::WidthIterator::advance(int offset=3, WebCore::GlyphBuffer * glyphBuffer=0x00000000)  Line 111 + 0x6 bytes	C++
        WebKit.dll!WebCore::Font::floatWidthForSimpleText(const
WebCore::TextRun & run={...}, WebCore::GlyphBuffer * glyphBuffer=0x00000000) 
Line 729  C++
        WebKit.dll!WebCore::Font::floatWidth(const WebCore::TextRun &
run={...})  Line 707 + 0xe bytes  C++
        WebKit.dll!WebCore::Font::width(const WebCore::TextRun & run={...}) 
Line 512 + 0xc bytes       C++
        WebKit.dll!WebCore::RenderText::widthFromCache(const WebCore::Font &
f={...}, int start=0, int len=3, int xPos=0)  Line 448     C++
        WebKit.dll!WebCore::RenderText::calcPrefWidths(int leadWidth=0)  Line
648 + 0x1b bytes  C++
        WebKit.dll!WebCore::RenderText::maxPrefWidth()  Line 546 + 0x14 bytes  
C++
        WebKit.dll!WebCore::RenderText::width(unsigned int from=0, unsigned int
len=3, const WebCore::Font & f={...}, int xPos=0)  Line 1062 + 0x12 bytes      
C++
       
WebKit.dll!WebCore::RenderBlock::findNextLineBreak(WebCore::BidiResolver<WebCore::BidiIterator,WebCore::BidiRun>
& start={...}, WebCore::EClear * clear=0x00033560)  Line 1891 + 0x31 bytes    
C++
        WebKit.dll!WebCore::RenderBlock::layoutInlineChildren(bool
relayoutChildren=true, int & repaintTop=0, int & repaintBottom=0)  Line 890 +
0x1d bytes     C++
        WebKit.dll!WebCore::RenderBlock::layoutBlock(bool
relayoutChildren=true)  Line 581      C++
        WebKit.dll!WebCore::RenderBlock::layout()  Line 491 + 0x14 bytes       
C++
        WebKit.dll!WebCore::RenderBlock::layoutBlockChildren(bool
relayoutChildren=true, int & maxFloatBottom=0)  Line 1228 + 0x12 bytes       
C++
        WebKit.dll!WebCore::RenderBlock::layoutBlock(bool
relayoutChildren=true)  Line 585      C++
        [snip]


-- 
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the webkit-unassigned mailing list