[Webkit-unassigned] [Bug 42561] Crash when computing pseudo-style of a vanished scrollbar

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Jul 28 13:26:51 PDT 2010 

https://bugs.webkit.org/show_bug.cgi?id=42561





--- Comment #3 from Pavel Feldman <pfeldman at chromium.org>  2010-07-28 13:26:51 PST ---
Reproduces on latest nightly. Adding the client check late does not help, it crashes in other event handlers.

     chrome.dll!WTF::RefCountedBase::ref()  Line 36 + 0x24 bytes    C++
     chrome.dll!WTF::refIfNotNull<WebCore::RenderStyle>(WebCore::RenderStyle * ptr=0x0a20a060)  Line 53    C++
     chrome.dll!WTF::RefPtr<WebCore::RenderStyle>::operator=(WebCore::RenderStyle * optr=0x0a20a060)  Line 129 + 0x9 bytes    C++
     chrome.dll!WebCore::CSSStyleSelector::pseudoStyleForElement(WebCore::PseudoId pseudo=SCROLLBAR_THUMB, WebCore::Element * e=0x0a1fb820, WebCore::RenderStyle * parentStyle=0x0a20a060, bool matchVisitedPseudoClass=false)  Line 1503    C++
     chrome.dll!WebCore::RenderObject::getUncachedPseudoStyle(WebCore::PseudoId pseudo=SCROLLBAR_THUMB, WebCore::RenderStyle * parentStyle=0x0a20a060, WebCore::RenderStyle * ownStyle=0x00000000)  Line 2381 + 0x28 bytes    C++
     chrome.dll!WebCore::RenderScrollbar::getScrollbarPseudoStyle(WebCore::ScrollbarPart partType=ThumbPart, WebCore::PseudoId pseudoId=SCROLLBAR_THUMB)  Line 135 + 0x27 bytes    C++
     chrome.dll!WebCore::RenderScrollbar::updateScrollbarPart(WebCore::ScrollbarPart partType=ThumbPart, bool destroy=false)  Line 202 + 0x25 bytes    C++
     chrome.dll!WebCore::RenderScrollbar::setHoveredPart(WebCore::ScrollbarPart part=NoPart)  Line 100    C++
     chrome.dll!WebCore::Scrollbar::mouseExited()  Line 379 + 0x11 bytes    C++
>	chrome.dll!WebCore::EventHandler::updateLastScrollbarUnderMouse(WebCore::Scrollbar * scrollbar=0x00000000, bool setLast=true)  Line 2805	C++
     chrome.dll!WebCore::EventHandler::handleMouseMoveEvent(const WebCore::PlatformMouseEvent &

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list