[Webkit-unassigned] [Bug 54897] chrome.dll!WebCore::RenderBlock::deleteLineBoxTree ReadAV at NULL (1dcc16082f96d7624e2b8335a06633d2)
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Feb 22 01:59:12 PST 2011
https://bugs.webkit.org/show_bug.cgi?id=54897
--- Comment #1 from SkyLined <skylined at chromium.org> 2011-02-22 01:59:12 PST ---
Created an attachment (id=83288)
--> (https://bugs.webkit.org/attachment.cgi?id=83288&action=review)
Variation repro
I've found a variation:
http://codesearch.google.com/codesearch/p?hl=en#OAMlx_jo-ck/src/third_party/WebKit/Source/WebCore/rendering/RenderBox.cpp&q=availableLogicalHeightUsing%20renderbox.cpp&exact_package=chromium&sa=N&cd=1&ct=rc&l=1993
int RenderBox::availableLogicalHeightUsing(const Length& h) const
<snip>
return containingBlock()->availableLogicalHeight();
It might make sense to check all calls to "containingBlock": it's obvious that there are many places in the code that do not expect it to return NULL:
http://codesearch.google.com/codesearch?hl=en&vert=chromium&lr=&q=\bcontainingBlock\(\)&sbtn=Search
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list