"ASSERTION: Invalid offset" with RLE, astral char, wrapping

RESOLVED FIXED in mozilla12

Status

()

Core
Layout: Text
RESOLVED FIXED
6 years ago
5 years ago

People

(Reporter: Jesse Ruderman, Assigned: smontagu)

Tracking

(Blocks: 1 bug, {assertion, testcase})

Trunk
mozilla12
assertion, testcase
Points:
---
Dependency tree / graph
Bug Flags:
in-testsuite +

Firefox Tracking Flags

(firefox-esr10 unaffected)

Details

Attachments

(4 attachments)

(Reporter)

Description

6 years ago
Created attachment 592477 [details]
testcase

###!!! ASSERTION: Invalid offset: 'aOffset <= mSkipChars->mCharCount', file gfx/thebes/gfxSkipChars.cpp, line 92

###!!! ASSERTION: Text run does not map enough text for our reflow: 'gfxSkipCharsIterator(iter).ConvertOriginalToSkipped(offset + length) <= mTextRun->GetLength()', file layout/generic/nsTextFrameThebes.cpp, line 7399
(Reporter)

Comment 1

6 years ago
Created attachment 592478 [details]
stack traces
(Assignee)

Comment 2

6 years ago
Created attachment 592784 [details] [diff] [review]
Patch

The patch from bug 698335 should have used GetNextInFlow instead of GetNextSibling.
Attachment #592784 - Flags: review?(roc)
(Assignee)

Comment 3

6 years ago
Created attachment 592785 [details] [diff] [review]
Test
Assignee: nobody → smontagu
Attachment #592785 - Flags: review?(roc)
Attachment #592784 - Flags: review?(roc) → review+
Attachment #592785 - Flags: review?(roc) → review+
(Assignee)

Comment 4

6 years ago
https://hg.mozilla.org/integration/mozilla-inbound/rev/159c690b5aa5
https://hg.mozilla.org/integration/mozilla-inbound/rev/7b5995e5d551
Flags: in-testsuite+
OS: Mac OS X → All
Hardware: x86_64 → All
Target Milestone: --- → mozilla12

Comment 5

6 years ago
https://hg.mozilla.org/mozilla-central/rev/159c690b5aa5
https://hg.mozilla.org/mozilla-central/rev/7b5995e5d551
Status: NEW → RESOLVED
Last Resolved: 6 years ago
Resolution: --- → FIXED

Updated

6 years ago
status-firefox-esr10: --- → unaffected
Depends on: 818454
Group: core-security
You need to log in before you can comment on or make changes to this bug.