Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(72)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 302083005: Don't leave stale pointers into m_grid (Closed)

Created:
6 years, 6 months ago by svillar
Modified:
6 years, 6 months ago
CC:
blink-reviews, blink-reviews-rendering, eae+blinkwatch, jchaffraix+rendering, jfernandez, leviw+renderwatch, pdr., Manuel Rego, rune+blink, svillar, zoltan1
Base URL:
https://chromium.googlesource.com/chromium/blink.git@master
Visibility:
Public.

Description

Don't leave stale pointers into m_grid Sometimes grid children are wrapped into an anonymous blocks to become grid items. Those anonymous blocks could be eventually removed by RenderBlock::removeLeftoverAnonymousBlock() (called for example when adding a new child to the grid). That method does not notify the hierarchy about the removal since those anonymous blocks are not part of the DOM. This means that further accesses to the m_grid contents will trigger invalid accesses to the already deleted RenderObjects (the anonymous blocks). To fix it we invalidate the contents of m_grid by setting the dirty flag in the grid. Based on the previous work in r161127 by <jchaffraix@chromium.org>; BUG=313293 Committed: https://src.chromium.org/viewvc/blink?view=rev&revision=175912

Patch Set 1 #

Total comments: 2

Patch Set 2 : Patch for landing #

Unified diffs Side-by-side diffs Delta from patch set Stats (+55 lines, -0 lines) Patch
A LayoutTests/fast/css-grid-layout/stale-grid-layout.html View 1 1 chunk +28 lines, -0 lines 0 comments Download
A LayoutTests/fast/css-grid-layout/stale-grid-layout-2.html View 1 chunk +16 lines, -0 lines 0 comments Download
A LayoutTests/fast/css-grid-layout/stale-grid-layout-2-expected.txt View 1 chunk +3 lines, -0 lines 0 comments Download
A LayoutTests/fast/css-grid-layout/stale-grid-layout-expected.txt View 1 1 chunk +3 lines, -0 lines 0 comments Download
M Source/core/rendering/RenderBlock.cpp View 1 2 chunks +5 lines, -0 lines 0 comments Download

Messages

Total messages: 11 (0 generated)
svillar
6 years, 6 months ago (2014-05-30 15:27:29 UTC) #1
esprehn
jchaffraix is your best reviewer here. jchaffraix@ can you take a look at this?
6 years, 6 months ago (2014-06-04 18:51:50 UTC) #2
Julien - ping for review
lgtm, it's annoying that we have so many different ways of removing an object from ...
6 years, 6 months ago (2014-06-10 00:18:32 UTC) #3
svillar
The CQ bit was checked by svillar@igalia.com
6 years, 6 months ago (2014-06-10 16:25:26 UTC) #4
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-status.appspot.com/cq/svillar@igalia.com/302083005/20001
6 years, 6 months ago (2014-06-10 16:26:12 UTC) #5
commit-bot: I haz the power
FYI, CQ is re-trying this CL (attempt #1). The failing builders are: win_blink_rel on tryserver.blink ...
6 years, 6 months ago (2014-06-10 17:31:12 UTC) #6
commit-bot: I haz the power
The CQ bit was unchecked by commit-bot@chromium.org
6 years, 6 months ago (2014-06-10 18:12:18 UTC) #7
commit-bot: I haz the power
Try jobs failed on following builders: win_blink_rel on tryserver.blink (http://build.chromium.org/p/tryserver.blink/builders/win_blink_rel/builds/11460)
6 years, 6 months ago (2014-06-10 18:12:19 UTC) #8
svillar
The CQ bit was checked by svillar@igalia.com
6 years, 6 months ago (2014-06-10 18:38:38 UTC) #9
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-status.appspot.com/cq/svillar@igalia.com/302083005/20001
6 years, 6 months ago (2014-06-10 18:39:30 UTC) #10
commit-bot: I haz the power
6 years, 6 months ago (2014-06-10 19:20:18 UTC) #11
Message was sent while issue was closed. 
Change committed as 175912

Powered by Google App Engine
This is Rietveld 408576698