ladybird/Tests/LibWeb/Text/expected/viewport-scroll-after-layout-tree-invalidation.txt at 34d954e2d70402cbc71d39f9d618d1a131452fca - ladybird - lab48

eliott/ladybird

mirror of https://github.com/LadybirdBrowser/ladybird synced 2026-04-25 17:25:08 +02:00

Files

Andreas Kling 7b0d818f8e LibWeb: Update layout before accessing paintables in viewport scroll

perform_a_scroll_of_the_viewport() accesses paintable_box() without
ensuring layout is up to date. This can lead to a null dereference
if the paintable tree was torn down (e.g. by adding a dialog to the top
layer via showModal()) between the last layout update and the scroll.

One concrete path: Window::scroll() has an optimization that skips
update_layout when scrolling to (0, 0), but still calls
perform_a_scroll_of_the_viewport if the viewport is at a non-zero
position.

Fix by adding an update_layout call at the top of
perform_a_scroll_of_the_viewport.

2026-02-25 10:18:08 +01:00

2 lines

20 B

Plaintext

Raw Blame History

PASS (didn't crash)