[Webkit-unassigned] [Bug 114807] Division by zero in CSSGradientValue::addStops()
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Thu Apr 18 23:47:16 PDT 2013
https://bugs.webkit.org/show_bug.cgi?id=114807
--- Comment #5 from Carlos Garcia Campos <cgarcia at igalia.com> 2013-04-18 23:45:33 PST ---
(In reply to comment #3)
> (From update of attachment 198718 [details])
> This is common code, not blackberry code.
> How can this be tested? A division by zero should be reproducible on any platform.
The problem is that for some reason the division by zero doesn't fail, but the offset is set to a 'nan' value. I don't know why, maybe it depends on the compiler. The thing is that platform gradients receive color stops at invalid positions. The fact that this crashes in the BlackBerry port is just coincidence, because it requires that gradients have a color stop at positions 0 and 1 and the platform code has an assert to check it. The code that ensures gradients are correctly passed to the platform doesn't deal correctly with those 'nan' values. I've checked that the same happens in cairo backend, but those values are passed directly to cairo that internally handles them.
In any case, I'll see how we can test it.
--
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
More information about the webkit-unassigned
mailing list