1365362 - stylo: Gecko_AtomAttrValue usage is a bit bogus

Status: RESOLVED FIXED

(Core :: CSS Parsing and Computation, enhancement)

Description

[Boris Zbarsky [:bzbarsky]]

Testcase:

  <style type="text/css">
    #foo {}
  </style>
  <body id>
  </body>

This triggers: 

  ###!!! ASSERTION: wrong type: 'Type() == eAtom', file ../../../mozilla/dom/base/nsAttrValue.h, line 494

with a callstack pointing to Gecko_AtomAttrValue.

In Gecko, id attributes are stored as atoms _except_ if the value is empty; that case is stored as a string, effectively.  Now it happens to be the case that an empty string is stored as a null pointer in nsAttrValue, so when that gets returned as nsIAtom* servo sees a null there and treats that as None.

Anyway, in terms of fixes, seems like we should just check attr->Type() == nsAttrValue::eAtom and return null if so.

Comment 1

[Boris Zbarsky [:bzbarsky]]

Attachment: Make Gecko_AtomAttrValue work correctly when the attr's value is not an atom

MozReview-Commit-ID: Btf7ZI4ZdMX

Comment 2

[Emilio Cobos Álvarez (:emilio)]

Comment on attachment 8868253 [details] [diff] [review]
Make Gecko_AtomAttrValue work correctly when the attr's value is not an atom

Review of attachment 8868253 [details] [diff] [review]:
-----------------------------------------------------------------

Thanks for catching this :)

Comment 3

[Boris Zbarsky [:bzbarsky]]

Well, the assert got hit a bunch when I loaded <https://addons.mozilla.org/en-US/firefox/>...  ;)

Comment 4

[Pulsebot]

Pushed by bzbarsky@mozilla.com:
https://hg.mozilla.org/integration/mozilla-inbound/rev/159f82e6813c
Make Gecko_AtomAttrValue work correctly when the attr's value is not an atom.  r=emilio

Comment 5

[Carsten Book [:Tomcat]]

https://hg.mozilla.org/mozilla-central/rev/159f82e6813c