[Webkit-unassigned] [Bug 114439] New: Crash inspecting the <input type="slider"> shadow element inside <video> controls

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Apr 11 06:51:13 PDT 2013 

https://bugs.webkit.org/show_bug.cgi?id=114439

           Summary: Crash inspecting the <input type="slider"> shadow
                    element inside <video> controls
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Unspecified
        OS/Version: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: Web Inspector
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: timothy at apple.com
                CC: timothy at apple.com, joepeck at webkit.org,
                    graouts at apple.com


Crash inspecting the <input type="slider"> shadow element inside <video> controls. The crash happens when fetching the styles.

Exception Type:  EXC_BAD_ACCESS (SIGSEGV)
Exception Codes: KERN_INVALID_ADDRESS at 0x0000000000000008

Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.WebCore                 0x0000000101de43d0 WebCore::SliderContainerElement::shadowPseudoId() const + 192 (RefPtr.h:58)
1   com.apple.WebCore                 0x0000000101531b75 WebCore::ElementRuleCollector::collectMatchingRules(WebCore::MatchRequest const&, WebCore::StyleResolver::RuleRange&) + 53 (RefPtr.h:66)
2   com.apple.WebCore                 0x00000001015327d7 WebCore::ElementRuleCollector::matchUARules(WebCore::RuleSet*) + 183 (ElementRuleCollector.cpp:369)
3   com.apple.WebCore                 0x00000001015326b5 WebCore::ElementRuleCollector::matchUARules() + 69 (ElementRuleCollector.h:75)
4   com.apple.WebCore                 0x0000000101e54c09 WebCore::StyleResolver::pseudoStyleRulesForElement(WebCore::Element*, WebCore::PseudoId, unsigned int) + 601 (StyleResolver.cpp:1671)
5   com.apple.WebCore                 0x0000000101e549a5 WebCore::StyleResolver::styleRulesForElement(WebCore::Element*, unsigned int) + 21 (StyleResolver.cpp:1650)
6   com.apple.WebCore                 0x00000001017683da WebCore::InspectorCSSAgent::getMatchedStylesForNode(WTF::String*, int, bool const*, bool const*, WTF::RefPtr<WebCore::TypeBuilder::Array<WebCore::TypeBuilder::CSS::RuleMatch> >&, WTF::RefPtr<WebCore::TypeBuilder::Array<WebCore::TypeBuilder::CSS::PseudoIdMatches> >&, WTF::RefPtr<WebCore::TypeBuilder::Array<WebCore::TypeBuilder::CSS::InheritedStyleEntry> >&) + 122 (PassRefPtr.h:105)
7   com.apple.WebCore                 0x000000010173c733 WebCore::InspectorBackendDispatcherImpl::CSS_getMatchedStylesForNode(long, WebCore::InspectorObject*) + 963 (RefPtr.h:66)

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list