[Webkit-unassigned] [Bug 25567] HTML document.write and document.title NULL ptr
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue May 5 08:55:24 PDT 2009
https://bugs.webkit.org/show_bug.cgi?id=25567
------- Comment #1 from eric at webkit.org 2009-05-05 08:55 PDT -------
This bug is definitely real. But it's more complicated than my little brain
can handle at this hour.
#0 0x03a743ae in WebCore::Node::createRendererIfNeeded at Node.cpp:1261
#1 0x03cce5b7 in WebCore::Text::attach at Text.cpp:250
#2 0x037f228e in WebCore::HTMLParser::insertNode at HTMLParser.cpp:377
#3 0x037f298e in WebCore::HTMLParser::parseToken at HTMLParser.cpp:243
#4 0x03809280 in WebCore::HTMLTokenizer::processToken at
HTMLTokenizer.cpp:1887
#5 0x038095f0 in WebCore::HTMLTokenizer::end at HTMLTokenizer.cpp:1805
#6 0x03809a51 in WebCore::HTMLTokenizer::finish at HTMLTokenizer.cpp:1856
is the call stack. The TextNode is detached by the time the parser gets along
to the point in insertNode where it tries to attach it. we hit
ASSERT(parentNode()) or just crash after that in release builds.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list