[Webkit-unassigned] [Bug 14568] load event can fire prematurely for frameless documents (affects Acid3?)
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Oct 16 12:24:54 PDT 2012
https://bugs.webkit.org/show_bug.cgi?id=14568
Stephen Chenney <schenney at chromium.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |schenney at chromium.org
--- Comment #4 from Stephen Chenney <schenney at chromium.org> 2012-10-16 12:25:45 PST ---
This code still appears in a crash stack. Load http://www.speckproducts.com/ in a debug build of Chrome (and probably Safari too) and you will hit an assert due to an onload event firing during an SVG font load. I have yet to reduce it to a Layout test, and as I am unfamiliar with how all this works, I find it rather challenging.
On the other hand, just because the code goes through this path does not mean it's a problem. There should not be any onload event until after the font has loaded _and_ the calling code has finished layout, which seems impossible to track. We also believe that an SVG font externally loaded should not be able to invoke script in the first place.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list