Closed
Bug 897399
Opened 11 years ago
Closed 11 years ago
Crash with showModalDialog in beforescriptexecute handler
Categories
(Core :: DOM: Core & HTML, defect)
Core
DOM: Core & HTML
Tracking
()
VERIFIED
FIXED
mozilla26
People
(Reporter: jruderman, Assigned: Gavin)
References
Details
(4 keywords)
Crash Data
Attachments
(3 files, 1 obsolete file)
596 bytes,
text/html
|
Details | |
35.00 KB,
text/plain
|
Details | |
963 bytes,
patch
|
sicking
:
review+
akeybl
:
approval-mozilla-aurora+
|
Details | Diff | Splinter Review |
###!!! ASSERTION: shouldn't be called with a null inner window: 'pwin', file ../../../../content/base/src/nsScriptLoader.cpp, line 815 ###!!! ASSERTION: windows must be global objects: 'globalObject', file ../../../../content/base/src/nsScriptLoader.cpp, line 818 Probably a regression from bug 883592.
Reporter | ||
Comment 1•11 years ago
|
||
Reporter | ||
Comment 2•11 years ago
|
||
bp-f1285b8b-eb8f-446a-b4bd-211412130724
Updated•11 years ago
|
Crash Signature: [@ nsScriptLoader::EvaluateScript(nsScriptLoadRequest*, nsString const&)]
Assignee | ||
Comment 3•11 years ago
|
||
I imagine something like this is needed, but this might not be quite right (not sure what the behavior should be in this case).
Assignee | ||
Comment 4•11 years ago
|
||
(attached the wrong patch)
Attachment #780697 -
Attachment is obsolete: true
Assignee | ||
Updated•11 years ago
|
Attachment #780698 -
Flags: review?(jonas)
Assignee | ||
Comment 5•11 years ago
|
||
The other alternative would be to restore the null check in EvaluateScript (i.e. undo the second hunk of revision 19d5caf61217), but that leads to more unnecessary work being done.
Assignee | ||
Updated•11 years ago
|
Assignee: nobody → gavin.sharp
OS: Mac OS X → All
Hardware: x86_64 → All
Attachment #780698 -
Flags: review?(jonas) → review+
Assignee | ||
Updated•11 years ago
|
status-firefox25:
--- → affected
tracking-firefox25:
--- → +
Assignee | ||
Comment 6•11 years ago
|
||
https://hg.mozilla.org/integration/fx-team/rev/bfdaf248533b
Flags: in-testsuite?
Target Milestone: --- → mozilla26
Assignee | ||
Comment 7•11 years ago
|
||
Comment on attachment 780698 [details] [diff] [review] patch [Approval Request Comment] Bug caused by (feature/regressing bug #): bug 883592 User impact if declined: non-security crashes in some edge cases Testing completed (on m-c, etc.): Risk to taking this patch (and alternatives if risky): just a null check, low risk String or IDL/UUID changes made by this patch: none
Attachment #780698 -
Flags: approval-mozilla-aurora?
Comment 8•11 years ago
|
||
https://hg.mozilla.org/mozilla-central/rev/bfdaf248533b
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
Comment 9•11 years ago
|
||
Comment on attachment 780698 [details] [diff] [review] patch Sorry for the delayed approval, extremely low risk fix for a new regression.
Attachment #780698 -
Flags: approval-mozilla-aurora? → approval-mozilla-aurora+
Assignee | ||
Comment 10•11 years ago
|
||
https://hg.mozilla.org/releases/mozilla-aurora/rev/29075d7c93cf
Updated•11 years ago
|
status-firefox26:
--- → fixed
Comment 11•11 years ago
|
||
Reproduced in 2013-07-24-mozilla-central-debug Mac OS X 10.8.4. Verified fixed FF 25 2013-10-01-mozilla-beta-debug.
Comment 12•11 years ago
|
||
Mozilla/5.0 (Windows NT 6.1; WOW64; rv:26.0) Gecko/20100101 Firefox/26.0 Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:26.0) Gecko/20100101 Firefox/26.0 Mozilla/5.0 (X11; Linux i686; rv:26.0) Gecko/20100101 Firefox/26.0 Verified as fixed on latest Aurora 26.0a2 (buildID: 20131011004001).
Status: RESOLVED → VERIFIED
Updated•5 years ago
|
Component: DOM → DOM: Core & HTML
You need to log in
before you can comment on or make changes to this bug.
Description
•