[Webkit-unassigned] [Bug 94472] [CSSRegions]Add support for text-shadow in region styling

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Aug 30 09:35:15 PDT 2012


https://bugs.webkit.org/show_bug.cgi?id=94472





--- Comment #25 from Julien Chaffraix <jchaffraix at webkit.org>  2012-08-30 09:35:21 PST ---
Here is a crash report running valgrind on Chromium linux: valgrind out/Debug/DumpRenderTree --no-timeout LayoutTests/fast/regions/bottom-overflow-out-of-first-region.html

==7220== Memcheck, a memory error detector
==7220== Copyright (C) 2002-2009, and GNU GPL'd, by Julian Seward et al.
==7220== Using Valgrind-3.6.0.SVN-Debian and LibVEX; rerun with -h for copyright info
==7220== Command: out/Debug/DumpRenderTree --no-timeout LayoutTests/fast/regions/bottom-overflow-out-of-first-region.html
==7220==
==7220== Warning: set address range perms: large range [0x3815cfafb000, 0x3815efafb000) (noaccess)
==7220== Invalid read of size 2
==7220==    at 0x520E46: WebCore::Font::letterSpacing() const (Font.h:117)
==7220==    by 0x1620D2B: WebCore::RenderStyle::letterSpacing() const (RenderStyle.cpp:1210)
==7220==    by 0x142AFDF: WebCore::InlineFlowBox::addToLine(WebCore::InlineBox*) (InlineFlowBox.cpp:163)
==7220==    by 0x1495818: WebCore::RenderBlock::createLineBoxes(WebCore::RenderObject*, WebCore::LineInfo const&, WebCore::InlineBox*) (RenderBlockLineLayout.cpp:487)
==7220==    by 0x1495BDD: WebCore::RenderBlock::constructLine(WebCore::BidiRunList<WebCore::BidiRun>&, WebCore::LineInfo const&) (RenderBlockLineLayout.cpp:556)
==7220==    by 0x14983E6: WebCore::RenderBlock::createLineBoxesFromBidiRuns(WebCore::BidiRunList<WebCore::BidiRun>&, WebCore::InlineIterator const&, WebCore::LineInfo&, WebCore::VerticalPositionCache&, WebCore::BidiRun*) (RenderBlockLineLayout.cpp:1078)
==7220==    by 0x149950B: WebCore::RenderBlock::layoutRunsAndFloatsInRange(WebCore::LineLayoutState&, WebCore::BidiResolver<WebCore::InlineIterator, WebCore::BidiRun>&, WebCore::InlineIterator const&, WebCore::BidiStatus const&, unsigned int) (RenderBlockLineLayout.cpp:1370)
==7220==    by 0x1498AB8: WebCore::RenderBlock::layoutRunsAndFloats(WebCore::LineLayoutState&, bool) (RenderBlockLineLayout.cpp:1271)
==7220==    by 0x149AF2D: WebCore::RenderBlock::layoutInlineChildren(bool, WebCore::FractionalLayoutUnit&, WebCore::FractionalLayoutUnit&) (RenderBlockLineLayout.cpp:1600)
==7220==    by 0x144A99D: WebCore::RenderBlock::layoutBlock(bool, WebCore::FractionalLayoutUnit) (RenderBlock.cpp:1531)
==7220==    by 0x1449ED7: WebCore::RenderBlock::layout() (RenderBlock.cpp:1374)
==7220==    by 0x144FAA1: WebCore::RenderBlock::layoutBlockChild(WebCore::RenderBox*, WebCore::RenderBlock::MarginInfo&, WebCore::FractionalLayoutUnit&, WebCore::FractionalLayoutUnit&) (RenderBlock.cpp:2452)
==7220==  Address 0x363636363636369e is not stack'd, malloc'd or (recently) free'd
==7220==
[7220:7220:1477808315938:ERROR:process_util_posix.cc(143)] Received signal 11
        base::debug::StackTrace::StackTrace() [0x1419e1a]
        base::(anonymous namespace)::StackDumpSignalHandler() [0x13c68b5]
        0xccccaf0
        WebCore::Font::letterSpacing() [0x520e46]
        WebCore::RenderStyle::letterSpacing() [0x1620d2c]
        WebCore::InlineFlowBox::addToLine() [0x142afe0]
        WebCore::RenderBlock::createLineBoxes() [0x1495819]
        WebCore::RenderBlock::constructLine() [0x1495bde]
        WebCore::RenderBlock::createLineBoxesFromBidiRuns() [0x14983e7]
        WebCore::RenderBlock::layoutRunsAndFloatsInRange() [0x149950c]
        WebCore::RenderBlock::layoutRunsAndFloats() [0x1498ab9]
        WebCore::RenderBlock::layoutInlineChildren() [0x149af2e]
        WebCore::RenderBlock::layoutBlock() [0x144a99e] 
        WebCore::RenderBlock::layout() [0x1449ed8]
        WebCore::RenderBlock::layoutBlockChild() [0x144faa2]
        WebCore::RenderBlock::layoutBlockChildren() [0x144f619]
        WebCore::RenderBlock::layoutBlock() [0x144a9bf] 
        WebCore::RenderBlock::layout() [0x1449ed8]
        WebCore::RenderBlock::layoutBlockChild() [0x144faa2]
        WebCore::RenderBlock::layoutBlockChildren() [0x144f619]
        WebCore::RenderBlock::layoutBlock() [0x144a9bf] 
        WebCore::RenderBlock::layout() [0x1449ed8]
        WebCore::RenderBlock::layoutBlockChild() [0x144faa2]
        WebCore::RenderBlock::layoutBlockChildren() [0x144f619]
        WebCore::RenderBlock::layoutBlock() [0x144a9bf] 
        WebCore::RenderBlock::layout() [0x1449ed8]
        WebCore::RenderBlock::layoutBlockChild() [0x144faa2]
        WebCore::RenderBlock::layoutBlockChildren() [0x144f619]
        WebCore::RenderBlock::layoutBlock() [0x144a9bf] 
        WebCore::RenderBlock::layout() [0x1449ed8]
        WebCore::RenderFlowThread::layout() [0x1503a88] 
        WebCore::RenderObject::layoutIfNeeded() [0x141e45b]
        WebCore::FlowThreadController::layoutRenderNamedFlowThreads() [0x141dfee]
        WebCore::RenderView::layout() [0x15f79ee]
        WebCore::FrameView::layout() [0x2493160]
        WebCore::FrameView::layoutTimerFired() [0x2496a23]
        WebCore::Timer<>::fired() [0x24a39ee]
        WebCore::ThreadTimers::sharedTimerFiredInternal() [0x63aa10]

Here is the crash under gdb:

Program received signal SIGSEGV, Segmentation fault.
0x0000000000520e46 in WebCore::Font::letterSpacing (this=0x363636363636366e) at ../../Source/WebCore/platform/graphics/Font.h:117
117         short letterSpacing() const { return m_letterSpacing; }
(gdb) f 1
#1  0x0000000001620d2c in WebCore::RenderStyle::letterSpacing (this=0x7fffeb36dd80) at ../../Source/WebCore/rendering/style/RenderStyle.cpp:1210
1210    int RenderStyle::letterSpacing() const { return inherited->font.letterSpacing(); }

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.


More information about the webkit-unassigned mailing list