[Webkit-unassigned] [Bug 258171] New: Infinite mutual recursion in SVGRenderSupport::layoutDifferentRootIfNeeded

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Jun 15 15:55:09 PDT 2023 

https://bugs.webkit.org/show_bug.cgi?id=258171

            Bug ID: 258171
           Summary: Infinite mutual recursion in
                    SVGRenderSupport::layoutDifferentRootIfNeeded
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: SVG
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: rniwa at webkit.org
                CC: sabouhallawa at apple.com, zimmermann at kde.org

Created attachment 466710

  --> https://bugs.webkit.org/attachment.cgi?id=466710&action=review

Test

e.g.
#12     0x0000000285809e2c in WebCore::RenderSVGResourceContainer::layout() at Source/WebCore/rendering/svg/RenderSVGResourceContainer.cpp:58
#13     0x0000000284616d6c in WebCore::RenderElement::layoutIfNeeded() at Source/WebCore/rendering/RenderElement.h:160
#14     0x000000028584cbd4 in WebCore::SVGResources::layoutDifferentRootIfNeeded(WebCore::LegacyRenderSVGRoot const*) at Source/WebCore/rendering/svg/SVGResources.cpp:317
#15     0x000000028584cb30 in WebCore::SVGRenderSupport::layoutDifferentRootIfNeeded(WebCore::RenderElement const&) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:238
#16     0x000000028584cf68 in WebCore::SVGRenderSupport::layoutChildren(WebCore::RenderElement&, bool) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:280
#17     0x00000002857e1f38 in WebCore::LegacyRenderSVGContainer::layout() at Source/WebCore/rendering/svg/LegacyRenderSVGContainer.cpp:71
#18     0x000000028581f778 in WebCore::RenderSVGResourceMarker::layout() at Source/WebCore/rendering/svg/RenderSVGResourceMarker.cpp:54
#19     0x0000000284616d6c in WebCore::RenderElement::layoutIfNeeded() at Source/WebCore/rendering/RenderElement.h:160
#20     0x000000028584cca0 in WebCore::SVGResources::layoutDifferentRootIfNeeded(WebCore::LegacyRenderSVGRoot const*) at Source/WebCore/rendering/svg/SVGResources.cpp:326
#21     0x000000028584cb30 in WebCore::SVGRenderSupport::layoutDifferentRootIfNeeded(WebCore::RenderElement const&) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:238
#22     0x000000028584cf68 in WebCore::SVGRenderSupport::layoutChildren(WebCore::RenderElement&, bool) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:280
#23     0x00000002857e4930 in WebCore::LegacyRenderSVGHiddenContainer::layout() at Source/WebCore/rendering/svg/LegacyRenderSVGHiddenContainer.cpp:39
#24     0x0000000285809e2c in WebCore::RenderSVGResourceContainer::layout() at Source/WebCore/rendering/svg/RenderSVGResourceContainer.cpp:58
#25     0x0000000284616d6c in WebCore::RenderElement::layoutIfNeeded() at Source/WebCore/rendering/RenderElement.h:160
#26     0x000000028584cbd4 in WebCore::SVGResources::layoutDifferentRootIfNeeded(WebCore::LegacyRenderSVGRoot const*) at Source/WebCore/rendering/svg/SVGResources.cpp:317
#27     0x000000028584cb30 in WebCore::SVGRenderSupport::layoutDifferentRootIfNeeded(WebCore::RenderElement const&) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:238
#28     0x000000028584cf68 in WebCore::SVGRenderSupport::layoutChildren(WebCore::RenderElement&, bool) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:280
#29     0x00000002857e1f38 in WebCore::LegacyRenderSVGContainer::layout() at Source/WebCore/rendering/svg/LegacyRenderSVGContainer.cpp:71
#30     0x000000028581f778 in WebCore::RenderSVGResourceMarker::layout() at Source/WebCore/rendering/svg/RenderSVGResourceMarker.cpp:54
#31     0x0000000284616d6c in WebCore::RenderElement::layoutIfNeeded() at Source/WebCore/rendering/RenderElement.h:160
#32     0x000000028584cca0 in WebCore::SVGResources::layoutDifferentRootIfNeeded(WebCore::LegacyRenderSVGRoot const*) at Source/WebCore/rendering/svg/SVGResources.cpp:326
#33     0x000000028584cb30 in WebCore::SVGRenderSupport::layoutDifferentRootIfNeeded(WebCore::RenderElement const&) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:238
#34     0x000000028584cf68 in WebCore::SVGRenderSupport::layoutChildren(WebCore::RenderElement&, bool) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:280
#35     0x00000002857e4930 in WebCore::LegacyRenderSVGHiddenContainer::layout() at Source/WebCore/rendering/svg/LegacyRenderSVGHiddenContainer.cpp:39
#36     0x0000000285809e2c in WebCore::RenderSVGResourceContainer::layout() at Source/WebCore/rendering/svg/RenderSVGResourceContainer.cpp:58
#37     0x0000000284616d6c in WebCore::RenderElement::layoutIfNeeded() at Source/WebCore/rendering/RenderElement.h:160
#38     0x000000028584cbd4 in WebCore::SVGResources::layoutDifferentRootIfNeeded(WebCore::LegacyRenderSVGRoot const*) at Source/WebCore/rendering/svg/SVGResources.cpp:317
#39     0x000000028584cb30 in WebCore::SVGRenderSupport::layoutDifferentRootIfNeeded(WebCore::RenderElement const&) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:238
#40     0x000000028584cf68 in WebCore::SVGRenderSupport::layoutChildren(WebCore::RenderElement&, bool) at Source/WebCore/rendering/svg/SVGRenderSupport.cpp:280
#41     0x00000002857e1f38 in WebCore::LegacyRenderSVGContainer::layout() at Source/WebCore/rendering/svg/LegacyRenderSVGContainer.cpp:71
#42     0x000000028581f778 in WebCore::RenderSVGResourceMarker::layout() at Source/WebCore/rendering/svg/RenderSVGResourceMarker.cpp:54

<rdar://110440389>

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20230615/f293ff2e/attachment.htm>

More information about the webkit-unassigned mailing list