Reviewed by Darin.
http://bugs.webkit.org/show_bug.cgi?id=11575
Bug 11575: REGRESSION: WebCore crash in CSSParser/HTMLTokenizer
Test: fast/css/css-imports.html
* css/CSSImportRule.cpp:
(WebCore::CSSImportRule::insertedIntoParent):
Fix the crash by testing for null pointer.
git-svn-id: https://svn.webkit.org/repository/webkit/trunk@17761
268f45cc-cd09-0410-ab3c-
d52691b4dbfc
+2006-11-14 Mitz Pettel <mitz@webkit.org>
+
+ http://bugs.webkit.org/show_bug.cgi?id=11575
+ Bug 11575: REGRESSION: WebCore crash in CSSParser/HTMLTokenizer
+
+ * fast/css/css-imports-expected.checksum: Added.
+ * fast/css/css-imports-expected.png: Added.
+ * fast/css/css-imports-expected.txt: Added.
+ * fast/css/css-imports.html: Added.
+ * fast/css/resources/css-imports-2.css: Added.
+ * fast/css/resources/css-imports.css: Added.
+
2006-11-13 Justin Garcia <justin.garcia@apple.com>
Reviewed by harrison
--- /dev/null
+ae3c11f7d0d3498c558ff9fabec5bbd4
\ No newline at end of file
--- /dev/null
+layer at (0,0) size 800x600
+ RenderView at (0,0) size 800x600
+layer at (0,0) size 800x600
+ RenderBlock {HTML} at (0,0) size 800x600
+ RenderBody {BODY} at (8,8) size 784x584
+ RenderBlock {P} at (0,0) size 784x18
+ RenderText {#text} at (0,0) size 53x18
+ text run at (0,0) width 53: "Test for "
+ RenderInline {A} at (0,0) size 68x18 [color=#0000EE]
+ RenderText {#text} at (53,0) size 68x18
+ text run at (53,0) width 68: "bug 11575"
+ RenderText {#text} at (121,0) size 421x18
+ text run at (121,0) width 421: ": REGRESSION: WebCore crash in CSSParser/HTMLTokenizer."
+ RenderBlock {P} at (0,34) size 784x36
+ RenderText {#text} at (0,0) size 750x36
+ text run at (0,0) width 750: "All four sides of the square below should be present for this test to really pass, and WebKit shouldn't crash for it to pass"
+ text run at (0,18) width 55: "partially."
+ RenderBlock {DIV} at (0,86) size 106x106 [border: (3px solid #000000)]
--- /dev/null
+<p>Test for <a href="http://bugs.webkit.org/show_bug.cgi?id=11575">bug 11575</a>:
+REGRESSION: WebCore crash in CSSParser/HTMLTokenizer.</p>
+<p>All four sides of the square below should be present for this test to really pass,
+and WebKit shouldn't crash for it to pass partially.</p>
+<link rel="stylesheet" type="text/css" href="resources/style.css">
+<style>@import "resources/css-imports.css";</style>
+<div style="border-top: solid; width: 100px; height: 100px;"></div>
--- /dev/null
+div { border-left: solid; }
--- /dev/null
+@import "css-imports-2.css";
+@import "data:text/css,div { border-right: solid; }";
+div { border-bottom: solid; }
+2006-11-14 Rob Buis <buis@kde.org>
+
+ Reviewed by Darin.
+
+ http://bugs.webkit.org/show_bug.cgi?id=11575
+ Bug 11575: REGRESSION: WebCore crash in CSSParser/HTMLTokenizer
+
+ Test: fast/css/css-imports.html
+
+ * css/CSSImportRule.cpp:
+ (WebCore::CSSImportRule::insertedIntoParent):
+ Fix the crash by testing for null pointer.
+
2006-11-14 Alexey Proskuryakov <ap@webkit.org>
Reviewed by Tim H.
// if the import rule is issued dynamically, the sheet may be
// removed from the pending sheet count, so let the doc know
// the sheet being imported is pending.
- if (parentSheet && parentSheet->loadCompleted())
+ if (parentSheet && parentSheet->loadCompleted() && parentSheet->doc())
parentSheet->doc()->addPendingSheet();
m_loading = true;
m_cachedSheet->ref(this);
git://git.webkit.org / WebKit-https.git / commitdiff
