[Webkit-unassigned] [Bug 77786] NULL ptr in WebCore::RenderBlock::layoutRunsAndFloatsInRange
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue May 15 15:17:04 PDT 2012
https://bugs.webkit.org/show_bug.cgi?id=77786
Levi Weintraub <leviw at chromium.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
AssignedTo|webkit-unassigned at lists.web |leviw at chromium.org
|kit.org |
--- Comment #5 from Levi Weintraub <leviw at chromium.org> 2012-05-15 15:16:08 PST ---
Created an attachment (id=142074)
--> (https://bugs.webkit.org/attachment.cgi?id=142074&action=review)
Repro 2
The test case attached to this bug doesn't repro the problem for me, but those on crbug.com/123438 and crbug.com/126607 do. The issue comes from an assumption that we'll have BiDi runs inside the isolate to populate the fake run created in the first UBA pass. In the new test case attached, the early return from https://bugs.webkit.org/show_bug.cgi?id=58176 causes us to avoid creating a BiDi run for the contained positioned div.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list