[Webkit-unassigned] [Bug 83889] Crash in WebKit!WebCore::RenderBoxModelObject::paddingLeft+0x5c.
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Wed May 2 10:08:50 PDT 2012
https://bugs.webkit.org/show_bug.cgi?id=83889
--- Comment #26 from Abhishek Arya <inferno at chromium.org> 2012-05-02 10:08:50 PST ---
> >
> > I could not reproduce this ref-test failure without your patch. Did it work for you ?.
>
> I would like to confirm what happens. Did you mean that my patch causes new failure?
>
> I ran ./webkit/tools/layout_tests/run_webkit_tests.sh --debug scrollbars/scrollbar-percent-padding-crash\* on master branch (I copied the ref-test) and obtained the following:
> -----
> scrollbars/scrollbar-percent-padding-crash.html -> unexpected crash
> 0 tests ran as expected, 1 didn't:
>
> Regressions: Unexpected crashes : (1)
> scrollbars/scrollbar-percent-padding-crash.html = CRASH
> -----
>
> And after applying the patch, I ran the same command and obtained the following:
> -----
> All 1 tests ran as expected.
> -----
I was testing on webkit mac, looks like this is only reproducible through the chromium pipeline. I was able to reproduce this on chromium linux. Btw Julien's trick of dumpAsText(true) works and it does cause the crash. dumpAsText(true) triggers the pixel result generation, keeping the result as still text. e.g. http://code.google.com/codesearch#OAMlx_jo-ck/src/third_party/WebKit/LayoutTests/css3/flexbox/repaint.html&exact_package=chromium&q=%22dumpAstext(true%22&type=cs&l=44. you don't need a ref test.
void LayoutTestController::dumpAsText(const CppArgumentList& arguments, CppVariant* result)
{
m_dumpAsText = true;
m_generatePixelResults = false;
// Optional paramater, describing whether it's allowed to dump pixel results in dumpAsText mode.
if (arguments.size() > 0 && arguments[0].isBool())
m_generatePixelResults = arguments[0].value.boolValue;
result->setNull();
}
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list