[Webkit-unassigned] [Bug 42806] Crash when CSS selector is very long.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed Jul 21 23:12:37 PDT 2010
https://bugs.webkit.org/show_bug.cgi?id=42806
--- Comment #2 from Hayato Ito <hayato at chromium.org> 2010-07-21 23:12:37 PST ---
https://bugs.webkit.org/show_bug.cgi?id=41129 is a similar bug which was already fixed.
We have to use an iterative approach instead of recursive one in order to avoid stack overflow.
I found the following functions use recursion:
- CSSSelector::specifity()
- CSSStyleSelector::SelectorChecker::checkSelector()
We need to investige further. There might be other functions which use recursion.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list