[Webkit-unassigned] [Bug 151037] New: Should never be reached failure in WebCore::VisibleSelection::adjustSelectionToAvoidCrossingEditingBoundaries

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Nov 9 09:45:12 PST 2015 

https://bugs.webkit.org/show_bug.cgi?id=151037

            Bug ID: 151037
           Summary: Should never be reached failure in
                    WebCore::VisibleSelection::adjustSelectionToAvoidCross
                    ingEditingBoundaries
    Classification: Unclassified
           Product: WebKit
           Version: WebKit Local Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: HTML Editing
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: rhodovan.u-szeged at partner.samsung.com
                CC: rniwa at webkit.org
            Blocks: 116980

Created attachment 265065
  --> https://bugs.webkit.org/attachment.cgi?id=265065&action=review
Test

Load the attached test with debug MiniBrowser:

<style>
*  {
    display: table;
     -webkit-flow-into:flow_0;
}
</style>
<script>
    document.designMode = 'on';
    document.execCommand("selectAll", false, null); 
</script>


OS: Ubuntu 14.10 x86_64
Checked build: debug EFL
Checked version: 9fa8210


Backtrace:

SHOULD NEVER BE REACHED
../../Source/WebCore/editing/VisibleSelection.cpp(595) : void WebCore::VisibleSelection::adjustSelectionToAvoidCrossingEditingBoundaries()
1   0x7f69d1beee17 WTFCrash
2   0x7f69d7ed044a WebCore::VisibleSelection::adjustSelectionToAvoidCrossingEditingBoundaries()
3   0x7f69d7ecf798 WebCore::VisibleSelection::validate(WebCore::TextGranularity)
4   0x7f69d7ecce4c WebCore::VisibleSelection::VisibleSelection(WebCore::Range const&, WebCore::EAffinity, bool)
5   0x7f69d871268c WebCore::SelectionSubtreeRoot::adjustForVisibleSelection(WebCore::Document&)
6   0x7f69d86ee5d6 WebCore::RenderView::updateSelectionForSubtrees(WTF::HashMap<WebCore::SelectionSubtreeRoot*, WebCore::SelectionSubtreeRoot::SelectionSubtreeData, WTF::PtrHash<WebCore::SelectionSubtreeRoot*>, WTF::HashTraits<WebCore::SelectionSubtreeRoot*>, WTF::HashTraits<WebCore::SelectionSubtreeRoot::SelectionSubtreeData> >&, WebCore::RenderView::SelectionRepaintMode)
7   0x7f69d86ee406 WebCore::RenderView::splitSelectionBetweenSubtrees(WebCore::RenderObject const*, int, WebCore::RenderObject const*, int, WebCore::RenderView::SelectionRepaintMode)
8   0x7f69d86edfb5 WebCore::RenderView::setSelection(WebCore::RenderObject*, int, WebCore::RenderObject*, int, WebCore::RenderView::SelectionRepaintMode)
9   0x7f69d7e8fe34 WebCore::FrameSelection::updateAppearance()
10  0x7f69d7e85c12 WebCore::FrameSelection::updateAndRevealSelection(WebCore::AXTextStateChangeIntent const&)
11  0x7f69d7e85b42 WebCore::FrameSelection::setSelection(WebCore::VisibleSelection const&, unsigned int, WebCore::AXTextStateChangeIntent, WebCore::FrameSelection::CursorAlignOnScroll, WebCore::TextGranularity)
12  0x7f69d7e8f335 WebCore::FrameSelection::selectAll()
13  0x7f69d7e7dd2e
14  0x7f69d7e7fcde WebCore::Editor::Command::execute(WTF::String const&, WebCore::Event*) const
15  0x7f69d7d2446d WebCore::Document::execCommand(WTF::String const&, bool, WTF::String const&)
16  0x7f69d945606b WebCore::jsDocumentPrototypeFunctionExecCommand(JSC::ExecState*)
17  0x7f697b7ff0c8
Aborted (core dumped)

Program terminated with signal SIGSEGV, Segmentation fault.
#0  0x00007f69d1beee1c in WTFCrash () at ../../Source/WTF/wtf/Assertions.cpp:321
321     *(int *)(uintptr_t)0xbbadbeef = 0;
#0  0x00007f69d1beee1c in WTFCrash () at ../../Source/WTF/wtf/Assertions.cpp:321
#1  0x00007f69d7ed044a in WebCore::VisibleSelection::adjustSelectionToAvoidCrossingEditingBoundaries (this=0x7ffc74dfb7b0) at ../../Source/WebCore/editing/VisibleSelection.cpp:595
#2  0x00007f69d7ecf798 in WebCore::VisibleSelection::validate (this=0x7ffc74dfb7b0, granularity=WebCore::CharacterGranularity) at ../../Source/WebCore/editing/VisibleSelection.cpp:426
#3  0x00007f69d7ecce4c in WebCore::VisibleSelection::VisibleSelection (this=0x7ffc74dfb7b0, range=..., affinity=WebCore::DOWNSTREAM, isDirectional=false) at ../../Source/WebCore/editing/VisibleSelection.cpp:93
#4  0x00007f69d871268c in WebCore::SelectionSubtreeRoot::adjustForVisibleSelection (this=0x7f69bbae5568, document=...) at ../../Source/WebCore/rendering/SelectionSubtreeRoot.cpp:60
#5  0x00007f69d86ee5d6 in WebCore::RenderView::updateSelectionForSubtrees (this=0x7f69bbade228, renderSubtreesMap=..., blockRepaintMode=WebCore::RenderView::RepaintNewXOROld) at ../../Source/WebCore/rendering/RenderView.cpp:953
#6  0x00007f69d86ee406 in WebCore::RenderView::splitSelectionBetweenSubtrees (this=0x7f69bbade228, start=0x7f69bbaab000, startPos=0, end=0x7f69bbaab000, endPos=1, blockRepaintMode=WebCore::RenderView::RepaintNewXOROld) at ../../Source/WebCore/rendering/RenderView.cpp:938
#7  0x00007f69d86edfb5 in WebCore::RenderView::setSelection (this=0x7f69bbade228, start=0x7f69bbaab000, startPos=0, end=0x7f69bbaab000, endPos=1, blockRepaintMode=WebCore::RenderView::RepaintNewXOROld) at ../../Source/WebCore/rendering/RenderView.cpp:897
#8  0x00007f69d7e8fe34 in WebCore::FrameSelection::updateAppearance (this=0x7f69bbaea230) at ../../Source/WebCore/editing/FrameSelection.cpp:1948
#9  0x00007f69d7e85c12 in WebCore::FrameSelection::updateAndRevealSelection (this=0x7f69bbaea230, intent=...) at ../../Source/WebCore/editing/FrameSelection.cpp:378
#10 0x00007f69d7e85b42 in WebCore::FrameSelection::setSelection (this=0x7f69bbaea230, selection=..., options=7, intent=..., align=WebCore::FrameSelection::AlignCursorOnScrollIfNeeded, granularity=WebCore::CharacterGranularity) at ../../Source/WebCore/editing/FrameSelection.cpp:352
#11 0x00007f69d7e8f335 in WebCore::FrameSelection::selectAll (this=0x7f69bbaea230) at ../../Source/WebCore/editing/FrameSelection.cpp:1792
#12 0x00007f69d7e7dd2e in WebCore::executeSelectAll (frame=...) at ../../Source/WebCore/editing/EditorCommand.cpp:988
#13 0x00007f69d7e7fcde in WebCore::Editor::Command::execute (this=0x7ffc74dfc090, parameter=..., triggeringEvent=0x0) at ../../Source/WebCore/editing/EditorCommand.cpp:1703
#14 0x00007f69d7d2446d in WebCore::Document::execCommand (this=0x7f69bb826a40, commandName=..., userInterface=false, value=...) at ../../Source/WebCore/dom/Document.cpp:4657
#15 0x00007f69d945606b in WebCore::jsDocumentPrototypeFunctionExecCommand (state=0x7ffc74dfc160) at DerivedSources/WebCore/JSDocument.cpp:5066
#16 0x00007f697b7ff0c8 in ?? ()
#17 0x00007ffc74dfc1e0 in ?? ()
#18 0x00007f69d1b975e4 in llint_entry () from webkit/WebKitBuild/Debug/lib/libjavascriptcore_efl.so.1

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20151109/cf741880/attachment.html>

More information about the webkit-unassigned mailing list