Closed
Bug 681905
Opened 13 years ago
Closed 13 years ago
Crash [@ nsDocAccessible::ProcessContentInserted]
Categories
(Core :: Disability Access APIs, defect)
Tracking
()
RESOLVED
FIXED
mozilla9
People
(Reporter: martijn.martijn, Assigned: surkov)
Details
(Keywords: crash)
Crash Data
Attachments
(1 file)
3.17 KB,
patch
|
davidb
:
review+
|
Details | Diff | Splinter Review |
I got this crash while testing: https://crash-stats.mozilla.com/report/index/bp-e232c518-b605-4a20-b1d5-9a24a2110825 0 xul.dll nsDocAccessible::ProcessContentInserted accessible/src/base/nsDocAccessible.cpp:1805 1 xul.dll NotificationController::TextEnumerator accessible/src/base/NotificationController.cpp:687 2 xul.dll nsTHashtable<mozilla::plugins::PluginModuleChild::NPObjectData>::s_EnumStub obj-firefox/dist/include/nsTHashtable.h:420 3 xul.dll PL_DHashTableEnumerate obj-firefox/xpcom/build/pldhash.cpp:754 4 xul.dll nsTHashtable<NotificationController::nsCOMPtrHashKey<nsIContent> >::EnumerateEntries obj-firefox/dist/include/nsTHashtable.h:241 5 xul.dll NotificationController::WillRefresh accessible/src/base/NotificationController.cpp:244 6 xul.dll nsRefreshDriver::Notify layout/base/nsRefreshDriver.cpp:326 7 xul.dll nsTimerImpl::Fire xpcom/threads/nsTimerImpl.cpp:427 8 xul.dll nsTimerEvent::Run xpcom/threads/nsTimerImpl.cpp:520 9 xul.dll nsThread::ProcessNextEvent xpcom/threads/nsThread.cpp:631 10 xul.dll mozilla::ipc::MessagePump::Run ipc/glue/MessagePump.cpp:110 11 xul.dll MessageLoop::RunHandler ipc/chromium/src/base/message_loop.cc:201 12 xul.dll MessageLoop::Run ipc/chromium/src/base/message_loop.cc:175 13 xul.dll nsBaseAppShell::Run widget/src/xpwidgets/nsBaseAppShell.cpp:189 14 xul.dll nsAppShell::Run widget/src/windows/nsAppShell.cpp:261 15 xul.dll nsAppStartup::Run toolkit/components/startup/nsAppStartup.cpp:224 16 xul.dll XRE_main toolkit/xre/nsAppRunner.cpp:3545 17 firefox.exe wmain toolkit/xre/nsWindowsWMain.cpp:107 18 firefox.exe __tmainCRTStartup obj-firefox/memory/jemalloc/crtsrc/crtexe.c:591 19 kernel32.dll BaseThreadInitThunk 20 ntdll.dll __RtlUserThreadStart 21 ntdll.dll _RtlUserThreadStart
Assignee | ||
Comment 1•13 years ago
|
||
Make sure GetContainerAccessible and GetAccessibleOrContainer aren't used without null check in cases when DOM node may not belong to accessible document.
Assignee: nobody → surkov.alexander
Status: NEW → ASSIGNED
Attachment #556585 -
Flags: review?(trev.saunders)
Comment 2•13 years ago
|
||
Comment on attachment 556585 [details] [diff] [review] patch Review of attachment 556585 [details] [diff] [review]: ----------------------------------------------------------------- r=me. If we're going to assert something we know happens we should probably have a plan to fix it - is there a bug filed? ::: accessible/src/base/NotificationController.cpp @@ +685,3 @@ > nsAccessible* container = document->GetAccessibleOrContainer(containerNode); > + NS_ASSERTION(container, > + "Text node having rendered text hasn't accessible document!"); When does this happen?
Attachment #556585 -
Flags: review+
Assignee | ||
Comment 3•13 years ago
|
||
(In reply to David Bolter [:davidb] from comment #2) > r=me. If we're going to assert something we know happens we should probably > have a plan to fix it - is there a bug filed? iirc there's something, see example below. In general having a bug for assertion that you're not able to reproduce is just bugzilla spamming. I often use assertions for something that crashes but have no idea why, hoping to be lucky to catch it in a wild. > ::: accessible/src/base/NotificationController.cpp > @@ +685,3 @@ > > nsAccessible* container = document->GetAccessibleOrContainer(containerNode); > > + NS_ASSERTION(container, > > + "Text node having rendered text hasn't accessible document!"); > > When does this happen? for example, we don't create document accessible for initial documents, while these documents may be mutated and contain content that should be exposed to AT.
Comment 4•13 years ago
|
||
Comment on attachment 556585 [details] [diff] [review] patch nothing jumps out at me, David's review seems enough, reask if you still want me to look at something
Attachment #556585 -
Flags: review?(trev.saunders)
Comment 5•13 years ago
|
||
(In reply to alexander surkov from comment #3) > (In reply to David Bolter [:davidb] from comment #2) > > > r=me. If we're going to assert something we know happens we should probably > > have a plan to fix it - is there a bug filed? > > iirc there's something, see example below. In general having a bug for > assertion that you're not able to reproduce is just bugzilla spamming. I > often use assertions for something that crashes but have no idea why, hoping > to be lucky to catch it in a wild. It seems reasonable to me to do this to prevent crashes for now, and hopefully fuzzing or something will find us a test case eventually
Comment 6•13 years ago
|
||
(In reply to alexander surkov from comment #3) > (In reply to David Bolter [:davidb] from comment #2) > > > r=me. If we're going to assert something we know happens we should probably > > have a plan to fix it - is there a bug filed? > > iirc there's something, see example below. In general having a bug for > assertion that you're not able to reproduce is just bugzilla spamming. I > often use assertions for something that crashes but have no idea why, hoping > to be lucky to catch it in a wild. This is reasonable thinking. I'm tired of the assertion spam in my console but hopefully this case is really rare.
Assignee | ||
Comment 7•13 years ago
|
||
inbound land: http://hg.mozilla.org/integration/mozilla-inbound/rev/e2a69e20bbc5
Comment 8•13 years ago
|
||
http://hg.mozilla.org/mozilla-central/rev/e2a69e20bbc5
Status: ASSIGNED → RESOLVED
Closed: 13 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla9
You need to log in
before you can comment on or make changes to this bug.
Description
•