Crash on Linux [@ nsNativeTheme::IsIndeterminateProgress]

RESOLVED FIXED in mozilla8

Status

()

Core
Widget: Gtk
--
critical
RESOLVED FIXED
6 years ago
6 years ago

People

(Reporter: Jesse Ruderman, Assigned: arno renevier)

Tracking

(Blocks: 1 bug, {crash, testcase})

Trunk
mozilla8
x86_64
Linux
crash, testcase
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

(Whiteboard: [inbound])

Attachments

(3 attachments)

(Reporter)

Description

6 years ago
Created attachment 547665 [details]
testcase (crashes Firefox when loaded on Linux)
(Reporter)

Comment 1

6 years ago
Created attachment 547666 [details]
stack trace
(Assignee)

Comment 2

6 years ago
Created attachment 547902 [details] [diff] [review]
patch v1

This happens because as div is fixed, it's parent is a ViewPortFrame which a null content. Then, call to  aFrame->GetContent()->IsHTML(nsWidgetAtoms::progress) crashes mozilla.
Assignee: nobody → arno
Attachment #547902 - Flags: review?(roc)
(Assignee)

Comment 3

6 years ago
I've also checked (at least in the gtk port) that there is no other moz-appearance property which exhibits the same bug, but I wonder if it's better, for more safety, to make all methods in nsNativeTheme.cpp handle frames with null content
Comment on attachment 547902 [details] [diff] [review]
patch v1

Review of attachment 547902 [details] [diff] [review]:
-----------------------------------------------------------------

Lovely!
Attachment #547902 - Flags: review?(roc) → review+
(Assignee)

Updated

6 years ago
Keywords: checkin-needed

Updated

6 years ago
Keywords: checkin-needed
Whiteboard: [inbound]
http://hg.mozilla.org/mozilla-central/rev/d8a5ef7806ec
Status: NEW → RESOLVED
Last Resolved: 6 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla8
You need to log in before you can comment on or make changes to this bug.