Closed
Bug 945048
Opened 11 years ago
Closed 11 years ago
crash in nsINode::GetBoolFlag(nsINode::BooleanFlag)
Categories
(Core :: Layout, defect)
Tracking
()
RESOLVED
FIXED
mozilla28
People
(Reporter: guijoselito, Assigned: heycam)
References
Details
(Keywords: crash)
Crash Data
Attachments
(1 file)
6.81 KB,
patch
|
bzbarsky
:
review+
|
Details | Diff | Splinter Review |
This bug was filed from the Socorro interface and is report bp-a903b6d3-9ab6-461e-ad58-14d592131201. ============================================================= I'm constantly crashing trying to load any lyrics page on http://letras.mus.br/ other crash reports: https://crash-stats.mozilla.com/report/index/b09821dd-2816-441c-8c43-6a40b2131201 https://crash-stats.mozilla.com/report/index/32c314fe-2ca8-4faa-84f4-ec02a2131201 https://crash-stats.mozilla.com/report/index/ef658389-ce29-4135-a19b-e1a462131130 It started crashing for me with the build from Oct 29th. I don't have the exactly data because I don't visit the site very often.
Comment 1•11 years ago
|
||
I see this starting in regression range http://hg.mozilla.org/mozilla-central/pushloghtml?fromchange=6ecf0c4dfcbe&tochange=3c44c1f43a67. There is pseudo-element stuff in the crash-stats stack, so I suspect bug 922669 or one of its friends and relations.
Component: General → Layout
Flags: needinfo?(cam)
Product: Firefox → Core
Reporter | ||
Comment 2•11 years ago
|
||
Ah, yeah, I meant Nov 29th of course.
Assignee | ||
Updated•11 years ago
|
Assignee: nobody → cam
Status: NEW → ASSIGNED
Flags: needinfo?(cam)
Assignee | ||
Comment 4•11 years ago
|
||
It looks like the issue is that the page has a style rule with a |button::-moz-focus-inner:active| selector, and in nsButtonFrameRenderer::ReResolveStyle, we don't pass in a content node for the pseudo-element to ProbePseudoStyle, since there isn't one (these are extra style contexts just used for rendering). Then in ContentEnumFunc, we pass the null pseudo-element into StateSelectorMatches. I think we should just assume that the state never matches here by returning if pdata->mPseudoElement is null.
Comment 5•11 years ago
|
||
Makes sense to me.
Comment 6•11 years ago
|
||
Wait, why did "button::-moz-focus-inner:active" parse at all?
Assignee | ||
Comment 7•11 years ago
|
||
Oh, great question. The flag I added in nsCSSPseudoElementList.h must not be working?
Assignee | ||
Comment 8•11 years ago
|
||
I'm not calling nsCSSPseudoElements::PseudoElementSupportsUserActionState anywhere in nsCSSParser.cpp. :/
Assignee | ||
Comment 9•11 years ago
|
||
Attachment #8340830 -
Flags: review?(bzbarsky)
Assignee | ||
Comment 10•11 years ago
|
||
https://tbpl.mozilla.org/?tree=Try&rev=8b4e3f5d3ead
Comment 11•11 years ago
|
||
Comment on attachment 8340830 [details] [diff] [review] patch >+ if (!pdata->mPseudoElement || Do we still need this now that we've fixed the parser bug? >+ if (!aData->mPseudoElement) { Likewise. r=me modulo those.
Attachment #8340830 -
Flags: review?(bzbarsky) → review+
Assignee | ||
Comment 12•11 years ago
|
||
No we shouldn't strictly need those; all of the times we're calling ProbePseudoElementStyle or ResolvePseudoElementStyle for pseudo-elements with the flag allowing the pseudo-classes after them we're passing in an element.
Assignee | ||
Comment 13•11 years ago
|
||
https://hg.mozilla.org/integration/mozilla-inbound/rev/54a8c5aae115
Assignee | ||
Comment 14•11 years ago
|
||
Thanks Guilherme for the prompt bug report!
Comment 15•11 years ago
|
||
https://hg.mozilla.org/mozilla-central/rev/54a8c5aae115
Status: ASSIGNED → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla28
You need to log in
before you can comment on or make changes to this bug.
Description
•