[Webkit-unassigned] [Bug 56393] Without checking existence of the renderer of the element, tries to access the enclosing layer.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Mon May 9 13:31:33 PDT 2011
https://bugs.webkit.org/show_bug.cgi?id=56393
Joe Wild <joseph.wild at nokia.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |joseph.wild at nokia.com
--- Comment #12 from Joe Wild <joseph.wild at nokia.com> 2011-05-09 13:31:33 PST ---
This is not resetting on Linux because it allows calling a nonvirtual function with a null this pointer.
If I add this assert statement it will reset on Linux too.
Source/WebCore/page/FrameView.cpp
ASSERT(elt->renderer());
layer = elt->renderer()->enclosingLayer();
The Sample html files to reproduce the crash in
https://bugs.webkit.org/show_bug.cgi?id=59684
show a small test case.
We should be able add a layout test now.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list