Nullptr crash under RenderTreeBuilder::Inline::splitInlines while transitioning to fullscreen by anttijk · Pull Request #35857 · WebKit/WebKit

anttijk · 2024-10-29T10:46:08Z

`30fb035`

Nullptr crash under RenderTreeBuilder::Inline::splitInlines while transitioning to fullscreen
https://bugs.webkit.org/show_bug.cgi?id=282231
rdar://137177522

Reviewed by Alan Baradlay.

* LayoutTests/fast/css/fullscreen-style-sharing-crash-expected.txt: Added.
* LayoutTests/fast/css/fullscreen-style-sharing-crash.html: Added.
* Source/WebCore/style/StyleSharingResolver.cpp:
(WebCore::Style::SharingResolver::canShareStyleWithElement const):

We were improperly sharing style between elements that had different top layer status and fullscreen flags.
This led to illegal render tree structure.

Canonical link: https://commits.webkit.org/285832@main

67fa0f9

Misc	iOS, visionOS, tvOS & watchOS	macOS	Linux	Windows
✅ 🧪 style	✅ 🛠 ios	✅ 🛠 mac	✅ 🛠 wpe	✅ 🛠 win
✅ 🧪 bindings	✅ 🛠 ios-sim	✅ 🛠 mac-AS-debug	❌ 🧪 wpe-wk2	✅ 🧪 win-tests
✅ 🧪 webkitperl	✅ 🧪 ios-wk2	❌ 🧪 api-mac	✅ 🧪 api-wpe
	✅ 🧪 ios-wk2-wpt	✅ 🧪 mac-wk1	✅ 🛠 wpe-cairo
	✅ 🧪 api-ios	✅ 🧪 mac-wk2	✅ 🛠 gtk
	✅ 🛠 vision	✅ 🧪 mac-AS-debug-wk2	✅ 🧪 gtk-wk2
	❌ 🛠 vision-sim	✅ 🧪 mac-wk2-stress	✅ 🧪 api-gtk
✅ 🛠 🧪 merge	⏳ 🧪 vision-wk2	✅ 🧪 mac-intel-wk2
	✅ 🛠 tv	❌ 🛠 mac-safer-cpp
	✅ 🛠 tv-sim
	✅ 🛠 watch
	✅ 🛠 watch-sim

webkit-early-warning-system · 2024-10-29T10:46:16Z

EWS run on previous version of this PR (hash ea18c9a)

Details

Misc	iOS, visionOS, tvOS & watchOS	macOS	Linux	Windows
✅ 🧪 style	✅ 🛠 ios	✅ 🛠 mac	✅ 🛠 wpe	✅ 🛠 win
✅ 🧪 bindings	✅ 🛠 ios-sim	✅ 🛠 mac-AS-debug	⏳ 🧪 wpe-wk2	❌ 🧪 win-tests
✅ 🧪 webkitperl	✅ 🧪 ios-wk2	✅ 🧪 api-mac	✅ 🧪 api-wpe
	✅ 🧪 ios-wk2-wpt	✅ 🧪 mac-wk1	✅ 🛠 wpe-cairo
	✅ 🧪 api-ios	✅ 🧪 mac-wk2	✅ 🛠 gtk
	✅ 🛠 vision	✅ 🧪 mac-AS-debug-wk2	~~🧪 gtk-wk2~~
	✅ 🛠 vision-sim	❌ 🧪 mac-wk2-stress	⏳ 🧪 api-gtk
	✅ 🧪 vision-wk2	⏳ 🧪 mac-intel-wk2
	✅ 🛠 tv	~~🛠 mac-safer-cpp~~
	✅ 🛠 tv-sim
	✅ 🛠 watch
	✅ 🛠 watch-sim

webkit-early-warning-system · 2024-10-29T11:35:11Z

EWS run on previous version of this PR (hash 25c05e0)

Details

Misc	iOS, visionOS, tvOS & watchOS	macOS	Linux	Windows
✅ 🧪 style	✅ 🛠 ios	✅ 🛠 mac	~~🛠 wpe~~	✅ 🛠 win
✅ 🧪 bindings	✅ 🛠 ios-sim	✅ 🛠 mac-AS-debug	~~🧪 wpe-wk2~~	~~🧪 win-tests~~
✅ 🧪 webkitperl	~~🧪 ios-wk2~~	~~🧪 api-mac~~	~~🧪 api-wpe~~
	~~🧪 ios-wk2-wpt~~	~~🧪 mac-wk1~~	✅ 🛠 wpe-cairo
	~~🧪 api-ios~~	~~🧪 mac-wk2~~	✅ 🛠 gtk
	✅ 🛠 vision	~~🧪 mac-AS-debug-wk2~~	~~🧪 gtk-wk2~~
	✅ 🛠 vision-sim	~~🧪 mac-wk2-stress~~	⏳ 🧪 api-gtk
	~~🧪 vision-wk2~~	⏳ 🧪 mac-intel-wk2
	✅ 🛠 tv	~~🛠 mac-safer-cpp~~
	✅ 🛠 tv-sim
	✅ 🛠 watch
	✅ 🛠 watch-sim

webkit-early-warning-system · 2024-10-29T11:37:52Z

EWS run on current version of this PR (hash 67fa0f9)

Details

Misc	iOS, visionOS, tvOS & watchOS	macOS	Linux	Windows
✅ 🧪 style	✅ 🛠 ios	✅ 🛠 mac	✅ 🛠 wpe	✅ 🛠 win
✅ 🧪 bindings	✅ 🛠 ios-sim	✅ 🛠 mac-AS-debug	❌ 🧪 wpe-wk2	✅ 🧪 win-tests
✅ 🧪 webkitperl	✅ 🧪 ios-wk2	❌ 🧪 api-mac	✅ 🧪 api-wpe
	✅ 🧪 ios-wk2-wpt	✅ 🧪 mac-wk1	✅ 🛠 wpe-cairo
	✅ 🧪 api-ios	✅ 🧪 mac-wk2	✅ 🛠 gtk
	✅ 🛠 vision	✅ 🧪 mac-AS-debug-wk2	✅ 🧪 gtk-wk2
	❌ 🛠 vision-sim	✅ 🧪 mac-wk2-stress	✅ 🧪 api-gtk
✅ 🛠 🧪 merge	⏳ 🧪 vision-wk2	✅ 🧪 mac-intel-wk2
	✅ 🛠 tv	❌ 🛠 mac-safer-cpp
	✅ 🛠 tv-sim
	✅ 🛠 watch
	✅ 🛠 watch-sim

…nsitioning to fullscreen https://bugs.webkit.org/show_bug.cgi?id=282231 rdar://137177522 Reviewed by Alan Baradlay. * LayoutTests/fast/css/fullscreen-style-sharing-crash-expected.txt: Added. * LayoutTests/fast/css/fullscreen-style-sharing-crash.html: Added. * Source/WebCore/style/StyleSharingResolver.cpp: (WebCore::Style::SharingResolver::canShareStyleWithElement const): We were improperly sharing style between elements that had different top layer status and fullscreen flags. This led to illegal render tree structure. Canonical link: https://commits.webkit.org/285832@main

webkit-commit-queue · 2024-10-29T14:49:35Z

Committed 285832@main (30fb035): https://commits.webkit.org/285832@main

Reviewed commits have been landed. Closing PR #35857 and removing active labels.

anttijk self-assigned this Oct 29, 2024

anttijk added the CSS Cascading Style Sheets implementation label Oct 29, 2024

anttijk force-pushed the fullscreen-style-sharing-crash branch from ea18c9a to 25c05e0 Compare October 29, 2024 11:35

anttijk force-pushed the fullscreen-style-sharing-crash branch from 25c05e0 to 67fa0f9 Compare October 29, 2024 11:37

alanbaradlay approved these changes Oct 29, 2024

View reviewed changes

anttijk added the merge-queue Applied to send a pull request to merge-queue label Oct 29, 2024

webkit-ews-buildbot added merging-blocked Applied to prevent a change from being merged and removed merge-queue Applied to send a pull request to merge-queue labels Oct 29, 2024

anttijk added merge-queue Applied to send a pull request to merge-queue and removed merging-blocked Applied to prevent a change from being merged merge-queue Applied to send a pull request to merge-queue labels Oct 29, 2024

webkit-commit-queue force-pushed the fullscreen-style-sharing-crash branch from 67fa0f9 to 30fb035 Compare October 29, 2024 14:49

webkit-commit-queue merged commit 30fb035 into WebKit:main Oct 29, 2024

webkit-commit-queue removed the merge-queue Applied to send a pull request to merge-queue label Oct 29, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Nullptr crash under RenderTreeBuilder::Inline::splitInlines while transitioning to fullscreen#35857

Nullptr crash under RenderTreeBuilder::Inline::splitInlines while transitioning to fullscreen#35857
webkit-commit-queue merged 1 commit into
WebKit:mainfrom
anttijk:fullscreen-style-sharing-crash

anttijk commented Oct 29, 2024 •

edited by webkit-early-warning-system

Loading

Uh oh!

webkit-early-warning-system commented Oct 29, 2024 •

edited

Loading

Uh oh!

webkit-early-warning-system commented Oct 29, 2024 •

edited

Loading

Uh oh!

webkit-early-warning-system commented Oct 29, 2024 •

edited

Loading

Uh oh!

webkit-commit-queue commented Oct 29, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

Conversation

anttijk commented Oct 29, 2024 • edited by webkit-early-warning-system Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

30fb035

Uh oh!

webkit-early-warning-system commented Oct 29, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

webkit-early-warning-system commented Oct 29, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

webkit-early-warning-system commented Oct 29, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

webkit-commit-queue commented Oct 29, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

anttijk commented Oct 29, 2024 •

edited by webkit-early-warning-system

Loading

`30fb035`

webkit-early-warning-system commented Oct 29, 2024 •

edited

Loading

webkit-early-warning-system commented Oct 29, 2024 •

edited

Loading

webkit-early-warning-system commented Oct 29, 2024 •

edited

Loading