Crash in WebCore::StyleSheetContents::checkLoadCompleted.
authorinferno@chromium.org <inferno@chromium.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Thu, 30 Aug 2012 00:42:04 +0000 (00:42 +0000)
committerinferno@chromium.org <inferno@chromium.org@268f45cc-cd09-0410-ab3c-d52691b4dbfc>
Thu, 30 Aug 2012 00:42:04 +0000 (00:42 +0000)
commitc614d6878cdd614d284ff8f9af2e710d7ad994fe
tree2a9580f828ef98a24053c360585f0915cc9334a1
parent5fd54e8750157f5dde74a4d88c6b47373cee835d
Crash in WebCore::StyleSheetContents::checkLoadCompleted.
https://bugs.webkit.org/show_bug.cgi?id=95106

Reviewed by Antti Koivisto.

Source/WebCore:

RefPtr StyleSheetContents since it can get blown away in script execution inside
sheetLoaded().

Test: fast/css/style-element-process-crash.html

* css/StyleSheetContents.cpp:
(WebCore::StyleSheetContents::checkLoadCompleted):

LayoutTests:

* fast/css/style-element-process-crash-expected.txt: Added.
* fast/css/style-element-process-crash.html: Added.

git-svn-id: https://svn.webkit.org/repository/webkit/trunk@127071 268f45cc-cd09-0410-ab3c-d52691b4dbfc
LayoutTests/ChangeLog
LayoutTests/fast/css/style-element-process-crash-expected.txt [new file with mode: 0644]
LayoutTests/fast/css/style-element-process-crash.html [new file with mode: 0755]
Source/WebCore/ChangeLog
Source/WebCore/css/StyleSheetContents.cpp