[Webkit-unassigned] [Bug 136064] New: ASSERTION FAILED: anchorType() == PositionIsOffsetInAnchor in WebCore::Position::offsetInContainerNode

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Aug 19 02:13:06 PDT 2014 

https://bugs.webkit.org/show_bug.cgi?id=136064

           Summary: ASSERTION FAILED: anchorType() ==
                    PositionIsOffsetInAnchor in
                    WebCore::Position::offsetInContainerNode
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: Unspecified
        OS/Version: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: New Bugs
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: mhodovan.u-szeged at partner.samsung.com
                CC: eric at webkit.org, darin at apple.com, rniwa at webkit.org


Created an attachment (id=236807)
 --> (https://bugs.webkit.org/attachment.cgi?id=236807&action=review)
Test

Test:
<script>
function dom_manipulation () {
  document.execCommand("selectall", false, null);
  document.execCommand("removeformat", true, null);
}
</script>
<body onload="dom_manipulation()" contenteditable>
<wbr "><svg></svg><samp></samp><s><script></script>">

Output:
ASSERTION FAILED: anchorType() == PositionIsOffsetInAnchor
Source/WebCore/dom/Position.h(108) : int WebCore::Position::offsetInContainerNode() const

Backtrace:
#0  in WTFCrash () at Source/WTF/wtf/Assertions.cpp:329
#1  in WebCore::Position::offsetInContainerNode (this=0x7fffffffc470) at Source/WebCore/dom/Position.h:108
#2  in WebCore::ApplyStyleCommand::removeInlineStyle (this=0x836490, style=0x8365c0, start=..., end=...) at Source/WebCore/editing/ApplyStyleCommand.cpp:1146
#3  in WebCore::ApplyStyleCommand::applyInlineStyle (this=0x836490, style=0x8365c0) at Source/WebCore/editing/ApplyStyleCommand.cpp:635
#4  in WebCore::ApplyStyleCommand::doApply (this=0x836490) at Source/WebCore/editing/ApplyStyleCommand.cpp:218
#5  in WebCore::CompositeEditCommand::applyCommandToComposite (this=0x84e600, prpCommand=...) at Source/WebCore/editing/CompositeEditCommand.cpp:278
#6  in WebCore::RemoveFormatCommand::doApply (this=0x84e600) at Source/WebCore/editing/RemoveFormatCommand.cpp:93
#7  in WebCore::CompositeEditCommand::apply (this=0x84e600) at Source/WebCore/editing/CompositeEditCommand.cpp:227
#8  in WebCore::applyCommand (command=...) at Source/WebCore/editing/CompositeEditCommand.cpp:182
#9  in WebCore::Editor::removeFormattingAndStyle (this=0x727ea0) at Source/WebCore/editing/Editor.cpp:903
#10 in WebCore::executeRemoveFormat (frame=...) at Source/WebCore/editing/EditorCommand.cpp:985
#11 in WebCore::Editor::Command::execute (this=0x7fffffffc7e0, parameter=..., triggeringEvent=0x0) at Source/WebCore/editing/EditorCommand.cpp:1740
#12 in WebCore::Document::execCommand (this=0x765f20, commandName=..., userInterface=true, value=...) at Source/WebCore/dom/Document.cpp:4276
#13 in WebCore::jsDocumentPrototypeFunctionExecCommand (exec=0x7fffffffc8d0) at WebKitBuild/Debug/DerivedSources/WebCore/JSDocument.cpp:4526
#14 in ?? ()
#15 in ?? ()
#16 in llint_entry () from WebKitBuild/Debug/lib/libjavascriptcore_efl.so.1

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

More information about the webkit-unassigned mailing list