Context Navigation

← Previous Changeset
Next Changeset →

Changeset 117658 in webkit

Timestamp:

May 18, 2012 4:47:08 PM (12 years ago)

Author:

eric@webkit.org

Message:

Assertion failure in BidiResolver::commitExplicitEmbedding() (!inIsolate()

m_currentExplicitEmbeddingSequence.isEmpty()) at wikipedia.org

https://bugs.webkit.org/show_bug.cgi?id=76574

Reviewed by Levi Weintraub.

Source/WebCore:

Consider this example:
<span style="unicode-bidi: embed"><span style="unicode-bidi: isolate">a</span></span>
Before this patch, we would ASSERT when computing the text runs, as we would have encountered
the "embed LTR" directive from the outer span, but not try to "commit" this embedding until
we encountered the first charater (an optimization to avoid creating unnecessary bidi embedding contexts).
The ASSERT we were hitting was to ensure that embedding directives inside an isolated span
did not bleed out and effect the surrounding text.

bidi "isolate" support uses a multi-pass Unicode Bidi Algorithm (UBA), which when encountering
"isolated" sections of text ignores them in the first pass, and then goes back and runs
a separate instance of the UBA on those isolated sections.

Once we scan into an "isolate" section (during an outer UBA application) we should not respect
any embedding directives inside that "isolate" section.

However, in the above example, our "don't commit embeddings until we need them" and
"assert we don't respect embeddings inside isolated spans" were conflicting.
The fix is to make sure we always commit any pending embedding directives *before*
we enter an isolate section.

Luckly there was no functional bug here as we were still respecting
the embedding directives we were belatedly committing. After this change we're commiting
those directives at a more appropriate time, thus avoiding the ASSERT.

Test: fast/text/bidi-isolate-embedding-crash.html

platform/text/BidiResolver.h:

(WebCore::::commitExplicitEmbedding):

rendering/InlineIterator.h:

(WebCore::notifyObserverEnteredObject):
(WebCore::IsolateTracker::commitExplicitEmbedding):

LayoutTests:

fast/text/bidi-isolate-embedding-crash-expected.txt: Added.
fast/text/bidi-isolate-embedding-crash.html: Added.

Location:

trunk

Files:

: 2 added
: 4 edited

LayoutTests/ChangeLog (modified) (1 diff)
LayoutTests/fast/text/bidi-isolate-embedding-crash-expected.txt (added)
LayoutTests/fast/text/bidi-isolate-embedding-crash.html (added)
Source/WebCore/ChangeLog (modified) (1 diff)
Source/WebCore/platform/text/BidiResolver.h (modified) (1 diff)
Source/WebCore/rendering/InlineIterator.h (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

trunk/LayoutTests/ChangeLog

-                      r117657
+                      r117658
+-05-18  Eric Seidel  <eric@webkit.org>
+        Assertion failure in BidiResolver::commitExplicitEmbedding() (!inIsolate() || m_currentExplicitEmbeddingSequence.isEmpty()) at wikipedia.org
+        https://bugs.webkit.org/show_bug.cgi?id=76574
+        Reviewed by Levi Weintraub.
+        * fast/text/bidi-isolate-embedding-crash-expected.txt: Added.
+        * fast/text/bidi-isolate-embedding-crash.html: Added.
 -05-18  Levi Weintraub  <leviw@chromium.org>

trunk/Source/WebCore/ChangeLog

-                      r117656
+                      r117658
+-05-18  Eric Seidel  <eric@webkit.org>
+        Assertion failure in BidiResolver::commitExplicitEmbedding() (!inIsolate() || m_currentExplicitEmbeddingSequence.isEmpty()) at wikipedia.org
+        https://bugs.webkit.org/show_bug.cgi?id=76574
+        Reviewed by Levi Weintraub.
+        Consider this example:
+        <span style="unicode-bidi: embed"><span style="unicode-bidi: isolate">a</span></span>
+        Before this patch, we would ASSERT when computing the text runs, as we would have encountered
+        the "embed LTR" directive from the outer span, but not try to "commit" this embedding until
+        we encountered the first charater (an optimization to avoid creating unnecessary bidi embedding contexts).
+        The ASSERT we were hitting was to ensure that embedding directives inside an isolated span
+        did not bleed out and effect the surrounding text.
+        bidi "isolate" support uses a multi-pass Unicode Bidi Algorithm (UBA), which when encountering
+        "isolated" sections of text ignores them in the first pass, and then goes back and runs
+        a separate instance of the UBA on those isolated sections.
+        Once we scan into an "isolate" section (during an outer UBA application) we should not respect
+        any embedding directives inside that "isolate" section.
+        However, in the above example, our "don't commit embeddings until we need them" and
+        "assert we don't respect embeddings inside isolated spans" were conflicting.
+        The fix is to make sure we always commit any pending embedding directives *before*
+        we enter an isolate section.
+        Luckly there was no functional bug here as we were still respecting
+        the embedding directives we were belatedly committing. After this change we're commiting
+        those directives at a more appropriate time, thus avoiding the ASSERT.
+        Test: fast/text/bidi-isolate-embedding-crash.html
+        * platform/text/BidiResolver.h:
+        (WebCore::::commitExplicitEmbedding):
+        * rendering/InlineIterator.h:
+        (WebCore::notifyObserverEnteredObject):
+        (WebCore::IsolateTracker::commitExplicitEmbedding):
 -05-18  Pratik Solanki  <psolanki@apple.com>

trunk/Source/WebCore/platform/text/BidiResolver.h

-                      r116691
+                      r117658
 bool BidiResolver<Iterator, Run>::commitExplicitEmbedding()
+{
+    // This gets called from bidiFirst when setting up our start position.
+    // FIXME: Re-enable this assert once https://bugs.webkit.org/show_bug.cgi?id=76574 is fixed.
+    // ASSERT(!inIsolate() || m_currentExplicitEmbeddingSequence.isEmpty());
+    // When we're "inIsolate()" we're resolving the parent context which
+    // ignores (skips over) the isolated content, including embedding levels.
+    // We should never accrue embedding levels while skipping over isolated content.
+    ASSERT(!inIsolate() || m_currentExplicitEmbeddingSequence.isEmpty());
     using namespace WTF::Unicode;

trunk/Source/WebCore/rendering/InlineIterator.h

-                      r107000
+                      r117658
+    }
     if (isIsolated(unicodeBidi)) {
+        // Make sure that explicit embeddings are committed before we enter the isolated content.
+        observer->commitExplicitEmbedding();
         observer->enterIsolate();
         // Embedding/Override characters implied by dir= are handled when
+        // Embedding/Override characters implied by dir= will be handled when
         // we process the isolated span, not when laying out the "parent" run.
         return;
 …
     // We don't care if we encounter bidi directional overrides.
     void embed(WTF::Unicode::Direction, BidiEmbeddingSource) { }
+    void commitExplicitEmbedding() { }
     void addFakeRunIfNecessary(RenderObject* obj, unsigned pos, InlineBidiResolver& resolver)

Note: See TracChangeset for help on using the changeset viewer.