Closed
Bug 81728
Opened 24 years ago
Closed 24 years ago
crash after clicking on link in an Image Map - Trunk [@ NS_MakeAbsoluteURI][@ gklayout!nsQueryReferent::operator=]
Categories
(Core :: Layout, defect, P1)
Core
Layout
Tracking
()
VERIFIED
FIXED
mozilla0.9.1
People
(Reporter: dev+mozilla, Assigned: attinasi)
References
()
Details
(Keywords: crash, dataloss, topcrash, Whiteboard: has r=,sr= and a=. ready for checkin to 0.9.1)
Crash Data
Attachments
(4 files)
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9+) Gecko/20010517
BuildID: 2001051720
Reproducible: Always
Steps to Reproduce:
1. visit URL
2. click on "Fach- und Führungskräfte"
Actual Results: crash in ntdll!RtlTraceDatabaseEnumerate which is called by
gklayout!nsQueryReferent::operator=
Expected Results: no crash
|
Reporter | |
Updated•24 years ago
|
Keywords: crash,
mozilla0.9.2
|
|
Reporter | |
Comment 1•24 years ago
|
||
|
|
Reporter | |
Comment 2•24 years ago
|
||
After I tried again, I had a different crash (in gklayout!NS_NewFrameImageLoader).
|
|
Reporter | |
Comment 3•24 years ago
|
||
|
Assignee | |
Comment 4•24 years ago
|
||
I'll take this for now: I can reproduce the problem, though my crash is in a
different spot, and I have a patch. I'm not at the root of the problem yet.
Basically, what I see is that the imageFrame loses it base URI after it is
clicked, and we are not checking that the base URI is null. My change is to
simply check for a base URI that is null before processing it in the mouse
handler code - this prevents the crash, but I need to figure out why this is
happening. Patch coming...
BTW: I fear that there is something more heinous happening, like maybe the
imageFrame has lost its document or something. CC'ing Pavlov in case he knows
about this.
Status: NEW → ASSIGNED
Priority: -- → P1
Target Milestone: --- → mozilla0.9.2
|
|
Assignee | |
Comment 5•24 years ago
|
||
|
|
Assignee | |
Comment 6•24 years ago
|
||
|
|
Assignee | |
Comment 7•24 years ago
|
||
Oliver, can you try the testcase I attached and tell me if it causes the same
problem for you? Thanks.
|
|
Reporter | |
Comment 8•24 years ago
|
||
Yep, same problem (as the 2nd stacktrace).
|
||
Comment 9•24 years ago
|
||
r=pavlov
|
|
Assignee | |
Comment 10•24 years ago
|
||
Moving this up to 0.9.1 and taking it over. This is happening in other sites too
(click the powerbook picture at
http://store.apple.com/1-800-MY-APPLE/WebObjects/AppleStore) - probably any
image map...
I think the problem is simply that the mouse-move is being handled after the map
has been partially torn down due to the click. Whenever I see the bad baseURI,
it is on a MOUSE_MOVE not a MOUSE_UP. This is happening now because the image
frame is now being kept around after the click has caused the navigation to the
new page since we now hold around the frames until the new page is loaded.
cc'ing hyatt since that is stuff he put together I think.
The fix is easy enough, safe enough, and the crash common enough to merit
consideration for 0.9.1 (IMO).
Assignee: karnaze → attinasi
Status: ASSIGNED → NEW
Keywords: mozilla0.9.2 → mozilla0.9.1
OS: Windows 2000 → All
Hardware: PC → All
Summary: crash after clicking on link [@ gklayout!nsQueryReferent::operator=] → crash after clicking on link in an Image Map [@ gklayout!nsQueryReferent::operator=]
Target Milestone: mozilla0.9.2 → mozilla0.9.1
|
|
||
Comment 11•24 years ago
|
||
*** Bug 79114 has been marked as a duplicate of this bug. ***
|
|
||
Comment 12•24 years ago
|
||
Dude, that is the most brilliant test case since the one on Bug 79114 !!
http://bugzilla.mozilla.org/showattachment.cgi?attach_id=35905
|
|
Assignee | |
Comment 13•24 years ago
|
||
;) - I really should search for dups before I go fixin' things...
Status: NEW → ASSIGNED
|
|
||
Updated•24 years ago
|
Whiteboard: patch reviewed. need sr.
|
|
||
Comment 14•24 years ago
|
||
sr=hyatt
|
|
||
Comment 15•24 years ago
|
||
adding topcrash keyword and Trunk [@ NS_MakeAbsoluteURI] to summary for
tracking...since bug 79114 was marked a dup.
Keywords: topcrash
Summary: crash after clicking on link in an Image Map [@ gklayout!nsQueryReferent::operator=] → crash after clicking on link in an Image Map - Trunk [@ NS_MakeAbsoluteURI][@ gklayout!nsQueryReferent::operator=]
|
|
Reporter | |
Comment 16•24 years ago
|
||
*** Bug 82594 has been marked as a duplicate of this bug. ***
|
|
Reporter | |
Comment 17•24 years ago
|
||
Copying keywords from duplicate bug 82594: dataloss, nsbeta1
|
||
Comment 18•24 years ago
|
||
a= asa@mozilla.org for checkin to 0.9.1
|
|
||
Comment 19•24 years ago
|
||
*** Bug 82743 has been marked as a duplicate of this bug. ***
|
|
||
Updated•24 years ago
|
Whiteboard: patch reviewed. need sr. → has r=,sr= and a=. ready for checkin to 0.9.1
|
|
||
Comment 20•24 years ago
|
||
*** Bug 82559 has been marked as a duplicate of this bug. ***
|
|
Assignee | |
Comment 21•24 years ago
|
||
Fix in:
/cvsroot/mozilla/layout/html/base/src/nsImageFrame.cpp,v <-- nsImageFrame.cpp
new revision: 1.177; previous revision: 1.176
done
Status: ASSIGNED → RESOLVED
Closed: 24 years ago
Resolution: --- → FIXED
|
|
Reporter | |
Comment 22•24 years ago
|
||
*** Bug 82923 has been marked as a duplicate of this bug. ***
|
||
Updated•14 years ago
|
Crash Signature: [@ NS_MakeAbsoluteURI]
[@ gklayout!nsQueryReferent::operator=]
You need to log in
before you can comment on or make changes to this bug.
Description
•