[Webkit-unassigned] [Bug 83889] Crash in WebKit!WebCore::RenderBoxModelObject::paddingLeft+0x5c.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Apr 26 15:48:52 PDT 2012
https://bugs.webkit.org/show_bug.cgi?id=83889
--- Comment #16 from Takashi Sakamoto <tasak at google.com> 2012-04-26 15:48:52 PST ---
(In reply to comment #13)
> (From update of attachment 138412 [details])
> View in context: https://bugs.webkit.org/attachment.cgi?id=138412&action=review
>
> r- on the premises that it should be tested.
>
> > Source/WebCore/ChangeLog:9
> > + RenderScrllbarPart instances, set owningRenderer(creating)/0
>
> typo: RenderScrollbarPart.
>
> > Source/WebCore/ChangeLog:14
> > + No new tests.
>
> OK, normally you would explain here why you couldn't make a DRT test case out of the posted one (timing dependent or whatever the explination). Not providing at test case is frown upon and most reviewers will just r- your patch based on that.
>
> Now, it's your lucky day as it turns out that cluster fuzz has a reduced test case for that. I will post it.
Thank you.
I think, DumpRenderTree doesn't render any scrollbars, i.e. doesn't call WebCore::RenderScrollbarPart::paintIntRect(). I used gdb and added breakpoints to the method.
However I found that ref test can easily reproduce this crash.
So I added one new ref test to LayoutTests/scrollbars.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list