Closed
Bug 1716714
Opened 3 years ago
Closed 3 years ago
Crash in [@ mozilla::TextEditor::SelectEntireDocument] [@ mozilla::TextEditor::SetTextAsSubAction] [@ mozilla::TextEditor::SetTextWithoutTransaction]
Categories
(Core :: DOM: Editor, defect)
Core
DOM: Editor
Tracking
()
RESOLVED
DUPLICATE
of bug 1713334
| Tracking | Status | |
|---|---|---|
| firefox-esr78 | --- | unaffected |
| firefox89 | --- | unaffected |
| firefox90 | --- | unaffected |
| firefox91 | + | fixed |
People
(Reporter: aryx, Assigned: saschanaz)
References
(Regression)
Details
(Keywords: crash, regression)
Crash Data
Attachments
(2 obsolete files)
22 affected installations for [@ mozilla::TextEditor::SelectEntireDocument] as the most frequent signature.
Crash report: https://crash-stats.mozilla.org/report/index/4d9b22a3-5c70-4a7f-831f-bc5af0210616
Reason: EXCEPTION_ACCESS_VIOLATION_READ
Top 10 frames of crashing thread:
0 xul.dll mozilla::TextEditor::SelectEntireDocument editor/libeditor/TextEditor.cpp:574
1 xul.dll mozilla::TextEditor::SetTextAsSubAction editor/libeditor/TextEditor.cpp:314
2 xul.dll mozilla::EditorBase::ReplaceTextAsAction editor/libeditor/EditorBase.cpp:5359
3 xul.dll mozilla::TextControlState::SetValueWithTextEditor dom/html/TextControlState.cpp:2740
4 xul.dll mozilla::TextControlState::SetValue dom/html/TextControlState.cpp:2654
5 xul.dll mozilla::dom::HTMLInputElement::SetValueInternal dom/html/HTMLInputElement.cpp:2656
6 xul.dll mozilla::dom::HTMLInputElement::SetUserInput dom/html/HTMLInputElement.cpp:2246
7 xul.dll nsFormFillController::SetTextValue toolkit/components/satchel/nsFormFillController.cpp:535
8 xul.dll nsAutoCompleteController::SetValueOfInputTo toolkit/components/autocomplete/nsAutoCompleteController.cpp:67
9 xul.dll nsAutoCompleteController::EnterMatch toolkit/components/autocomplete/nsAutoCompleteController.cpp:1278
Severity: -- → S2
Flags: needinfo?(krosylight)
|
Reporter | |
Updated•3 years ago
|
Crash Signature: [@ mozilla::TextEditor::SelectEntireDocument]
[@ mozilla::TextEditor::SetTextAsSubAction]
[@ mozilla::TextEditor::SetTextWithoutTransaction] → [@ mozilla::EditorBase::SetTextNodeWithoutTransaction]
[@ mozilla::TextEditor::SelectEntireDocument]
[@ mozilla::TextEditor::SetTextAsSubAction]
[@ mozilla::TextEditor::SetTextWithoutTransaction]
Summary: Crash in [@ mozilla::TextEditor::SelectEntireDocument] [@ mozilla::TextEditor::SetTextAsSubAction] [@ mozilla::TextEditor::SetTextWithoutTransaction] → Crash in [@ mozilla::EditorBase::SetTextNodeWithoutTransaction] [@ mozilla::TextEditor::SelectEntireDocument] [@ mozilla::TextEditor::SetTextAsSubAction] [@ mozilla::TextEditor::SetTextWithoutTransaction]
|
|
Reporter | |
Updated•3 years ago
|
|
||
Updated•3 years ago
|
Has Regression Range: --- → yes
|
Assignee | |
Updated•3 years ago
|
Assignee: nobody → krosylight
Flags: needinfo?(krosylight)
|
|
Assignee | |
Comment 1•3 years ago
•
|
||
Note for myself: It seems some chrome code calls No, it was a test which is expected... 🤔.textContent setter directly on an editor root node.
|
|
Assignee | |
Updated•3 years ago
|
Crash Signature: [@ mozilla::EditorBase::SetTextNodeWithoutTransaction]
[@ mozilla::TextEditor::SelectEntireDocument]
[@ mozilla::TextEditor::SetTextAsSubAction]
[@ mozilla::TextEditor::SetTextWithoutTransaction] → [@ mozilla::TextEditor::SelectEntireDocument]
[@ mozilla::TextEditor::SetTextAsSubAction]
[@ mozilla::TextEditor::SetTextWithoutTransaction]
|
|
Reporter | |
Updated•3 years ago
|
Crash Signature: [@ mozilla::TextEditor::SelectEntireDocument]
[@ mozilla::TextEditor::SetTextAsSubAction]
[@ mozilla::TextEditor::SetTextWithoutTransaction] → [@ mozilla::EditorBase::SetTextNodeWithoutTransaction]
[@ mozilla::TextEditor::SelectEntireDocument]
[@ mozilla::TextEditor::SetTextAsSubAction]
[@ mozilla::TextEditor::SetTextWithoutTransaction]
|
|
Reporter | |
Comment 2•3 years ago
|
||
Should [@ mozilla::EditorBase::SetTextNodeWithoutTransaction] be tracked in a different bug?
Summary: Crash in [@ mozilla::EditorBase::SetTextNodeWithoutTransaction] [@ mozilla::TextEditor::SelectEntireDocument] [@ mozilla::TextEditor::SetTextAsSubAction] [@ mozilla::TextEditor::SetTextWithoutTransaction] → Crash in [@ mozilla::TextEditor::SelectEntireDocument] [@ mozilla::TextEditor::SetTextAsSubAction] [@ mozilla::TextEditor::SetTextWithoutTransaction]
|
|
Assignee | |
Comment 3•3 years ago
•
|
||
I think it belongs to here. 👍
|
|
Assignee | |
Comment 4•3 years ago
|
||
|
|
Assignee | |
Updated•3 years ago
|
Keywords: leave-open
|
||
Updated•3 years ago
|
|
|
Assignee | |
Comment 5•3 years ago
|
||
Pushed by krosylight@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/2f69dc403886 Temporarily convert text node assertion as diagnostic r=masayuki
|
||
Comment 7•3 years ago
|
||
| bugherder | ||
Pushed by krosylight@mozilla.com: https://hg.mozilla.org/integration/autoland/rev/e96a8ebb3e32 Insert text node as the first child r=masayuki
|
||
Comment 9•3 years ago
|
||
(In reply to Natalia Csoregi [:nataliaCs] from comment #7)
Backed out for causing bug 1717007.
https://hg.mozilla.org/mozilla-central/rev/f5a661c93a88561340ecfb9ef7e627aaa6183be9
|
|
||
Comment 10•3 years ago
|
||
(In reply to Pulsebot from comment #8)
Pushed by krosylight@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/e96a8ebb3e32
Insert text node as the first child r=masayuki
Backed out as part of the bigger set of backouts from this bug and bug 1713334.
https://hg.mozilla.org/integration/autoland/rev/cc47cecd042cfa2ee87ea7dace62e8bfaa6a381f
|
||
Updated•3 years ago
|
Attachment #9227622 -
Attachment is obsolete: true
|
|
||
Updated•3 years ago
|
Attachment #9227465 -
Attachment is obsolete: true
|
|
Assignee | |
Comment 11•3 years ago
|
||
Fixed in bug 1713334.
Status: NEW → RESOLVED
Closed: 3 years ago
Resolution: --- → DUPLICATE
|
||
Updated•3 years ago
|
Keywords: leave-open
|
||
Comment 12•3 years ago
|
||
You need to log in
before you can comment on or make changes to this bug.
Description
•