Closed
Bug 1949958
Opened 21 days ago
Closed 18 days ago
Assertion failure: false, at dom/security/DOMSecurityMonitor.cpp:107 (DOMSecurityMonitor::AuditParsingOfHTMLXMLFragments)
Categories
(DevTools :: about:debugging, defect)
DevTools
about:debugging
Tracking
(firefox-esr128 unaffected, firefox135 unaffected, firefox136 unaffected, firefox137 fixed)
RESOLVED
FIXED
137 Branch
| Tracking | Status | |
|---|---|---|
| firefox-esr128 | --- | unaffected |
| firefox135 | --- | unaffected |
| firefox136 | --- | unaffected |
| firefox137 | --- | fixed |
People
(Reporter: robwu, Assigned: robwu)
References
(Regression)
Details
(Keywords: regression)
Attachments
(1 file)
When I tried to inspect a local Fenix debug build via about:debugging, Fenix crashed.
adb logcat shows Assertion failure: false, at /path/to/dom/security/DOMSecurityMonitor.cpp:107
This is https://searchfox.org/mozilla-central/rev/af5960c7041d895174ea6bceb1822773e0c9b350/dom/security/DOMSecurityMonitor.cpp#107
The function is DOMSecurityMonitor::AuditParsingOfHTMLXMLFragments, and considering the patch from bug 1931651, it is pretty obvious what is going on. There is a disallowed .innerHTML assignment at https://searchfox.org/mozilla-central/rev/af5960c7041d895174ea6bceb1822773e0c9b350/devtools/server/actors/targets/parent-process.js#120-121
|
Assignee | |
Comment 1•21 days ago
|
||
|
||
Comment 2•21 days ago
|
||
Set release status flags based on info from the regressing bug 1931651
status-firefox135:
--- → unaffected
status-firefox136:
--- → unaffected
status-firefox137:
--- → affected
status-firefox-esr128:
--- → unaffected
Pushed by rob@robwu.nl:
https://hg.mozilla.org/integration/autoland/rev/72177bec7c42
Replace disallowed use of innerHTML in devtools' parent-proces.js r=devtools-reviewers,jdescottes
|
||
Comment 4•18 days ago
|
||
| bugherder | ||
Status: NEW → RESOLVED
Closed: 18 days ago
Resolution: --- → FIXED
Target Milestone: --- → 137 Branch
You need to log in
before you can comment on or make changes to this bug.
Description
•