Closed Bug 353897 Opened 19 years ago Closed 19 years ago

[FIX]Crash [@ nsMathMLContainerFrame::FixInterFrameSpacing] using position:fixed when position: static rule in mathml.css is removed

Tracking

()

Status:

RESOLVED FIXED

Milestone:

mozilla1.9alpha1

People

(Reporter: martijn.martijn, Assigned: bzbarsky)

References

Details

(4 keywords)

Crash Data

Attachments

(3 files)

testcase 19 years ago Martijn Wargers (dead) 458 bytes, application/xhtml+xml		Details
Disable floating and positioning of MathML frames. 19 years ago Boris Zbarsky [:bzbarsky] 1.82 KB, patch	rbs : review+ rbs : superreview+ dveditz : approval1.8.0.8+ mtschrep : approval1.8.1+	Details \| Diff \| Splinter Review
Branch version of patch 19 years ago Boris Zbarsky [:bzbarsky] 1.88 KB, patch		Details \| Diff \| Splinter Review

Martijn Wargers (dead)

Reporter

Description

•

19 years ago

See upcoming testcase, which crashes current trunk build when the following rule in mathml.css is removed: /* MathML doesn't permit positioning */ *, * > *|* { position: static !important; } Talkback ID: TB23627768X nsMathMLContainerFrame::FixInterFrameSpacing [mozilla\layout\mathml\base\src\nsmathmlcontainerframe.cpp, line 1408] nsMathMLContainerFrame::FinalizeReflow [mozilla\layout\mathml\base\src\nsmathmlcontainerframe.cpp, line 530] nsMathMLContainerFrame::Reflow [mozilla\layout\mathml\base\src\nsmathmlcontainerframe.cpp, line 1136] nsAbsoluteContainingBlock::ReflowAbsoluteFrame [mozilla\layout\generic\nsabsolutecontainingblock.cpp, line 563]

Martijn Wargers (dead)

Reporter

Comment 1

•

19 years ago

Attached file testcase — Details

Boris Zbarsky [:bzbarsky]

Assignee

Comment 2

•

19 years ago

So the issue here is that 1404 nsMathMLContainerFrame::FixInterFrameSpacing(nsHTMLReflowMetrics& aDesiredSize) 1405 { 1406 nscoord gap = 0; 1407 nsIContent* parentContent = mParent->GetContent(); 1408 nsIAtom *parentTag = parentContent->Tag(); crashes because mParent is the viewport, so parentContent is null.

Depends on: 322625

Boris Zbarsky [:bzbarsky]

Assignee

Comment 3

•

19 years ago

Attached patch Disable floating and positioning of MathML frames. — Details — Splinter Review

This should do what we want.

Attachment #239922 - Flags: superreview?(rbs)

Attachment #239922 - Flags: review?(rbs)

Boris Zbarsky [:bzbarsky]

Assignee

Comment 4

•

19 years ago

Again, I'd like to land this on branches.

Assignee: rbs → bzbarsky

OS: Windows XP → All

Priority: -- → P1

Hardware: PC → All

Summary: Crash [@ nsMathMLContainerFrame::FixInterFrameSpacing] using position:fixed when position: static rule in mathml.css is removed → [FIX]Crash [@ nsMathMLContainerFrame::FixInterFrameSpacing] using position:fixed when position: static rule in mathml.css is removed

Target Milestone: --- → mozilla1.9alpha

Boris Zbarsky [:bzbarsky]

Assignee

Updated

•

19 years ago

Blocks: 322625

No longer depends on: 322625

rbs

Comment 5

•

19 years ago

Comment on attachment 239922 [details] [diff] [review] Disable floating and positioning of MathML frames. I wouldn't care if <math> didn't float too, but it doesn't cost us much to have this isMath test.

Attachment #239922 - Flags: superreview?(rbs)

Attachment #239922 - Flags: superreview+

Attachment #239922 - Flags: review?(rbs)

Attachment #239922 - Flags: review+

Boris Zbarsky [:bzbarsky]

Assignee

Comment 6

•

19 years ago

Fixed on trunk.

Status: NEW → RESOLVED

Closed: 19 years ago

Resolution: --- → FIXED

Boris Zbarsky [:bzbarsky]

Assignee

Comment 7

•

19 years ago

Comment on attachment 239922 [details] [diff] [review] Disable floating and positioning of MathML frames. Requesting branch approvals. This is MathML-only and should be pretty safe -- we have CSS that _should_ mostly prevent us hitting these cases anyway, but if we do hit them all this patch does is disallow mathml-namespaced nodes other than <math> from being floated or absolutely positioned or fixed-positioned.

Attachment #239922 - Flags: approval1.8.1?

Attachment #239922 - Flags: approval1.8.0.8?

Mike Schroepfer

Comment 8

•

19 years ago

Comment on attachment 239922 [details] [diff] [review] Disable floating and positioning of MathML frames. Approved for RC2.

Attachment #239922 - Flags: approval1.8.1? → approval1.8.1+

Boris Zbarsky [:bzbarsky]

Assignee

Comment 9

•

19 years ago

Attached patch Branch version of patch — Details — Splinter Review

Boris Zbarsky [:bzbarsky]

Assignee

Comment 10

•

19 years ago

Fixed on the 1.8.1 branch.

Keywords: fixed1.8.1

Reed Loden [:reed]

Updated

•

19 years ago

Target Milestone: mozilla1.9alpha → mozilla1.8.1

Boris Zbarsky [:bzbarsky]

Assignee

Updated

•

19 years ago

Target Milestone: mozilla1.8.1 → mozilla1.9alpha

Daniel Veditz [:dveditz]

Updated

•

19 years ago

Flags: blocking1.8.0.8+

Daniel Veditz [:dveditz]

Comment 11

•

19 years ago

Comment on attachment 239922 [details] [diff] [review] Disable floating and positioning of MathML frames. approved for 1.8.0 branch, a=dveditz for drivers

Attachment #239922 - Flags: approval1.8.0.8? → approval1.8.0.8+

Boris Zbarsky [:bzbarsky]

Assignee

Comment 12

•

19 years ago

Fixed in 1.8.0.8

Keywords: fixed1.8.0.8

Carsten Book [:Tomcat]

Comment 13

•

19 years ago

verified fixed with Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.8.1) Gecko/20061002 Firefox/2.0

Keywords: fixed1.8.1 → verified1.8.1

Marcia Knous [:marcia]

Comment 14

•

19 years ago

verified fixed on the 1.8.0 branch using Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.8) Gecko/20061025 Firefox/1.5.0.8. I do not crash with the testcase in Comment 1. Adding keyword.

Keywords: fixed1.8.0.8 → verified1.8.0.8

Nobody; OK to take it and work on it

Updated

•

14 years ago

Crash Signature: [@ nsMathMLContainerFrame::FixInterFrameSpacing]

You need to log in before you can comment on or make changes to this bug.