[Webkit-unassigned] [Bug 153435] New: History.pushState causes intense memory pressure

Mon Jan 25 12:06:22 PST 2016

https://bugs.webkit.org/show_bug.cgi?id=153435

            Bug ID: 153435
           Summary: History.pushState causes intense memory pressure
    Classification: Unclassified
           Product: WebKit
           Version: Safari 9
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit2
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: stefan at arentz.ca

(This was previously added as a comment at https://bugs.webkit.org/show_bug.cgi?id=145953#c3 but was asked to file a separate bug)

This has been one of the top crashers for Firefox for iOS.

We narrowed our crash down to our usage of history.pushState() to simulate history restore for tabs. (Which is not an awesome hack and a workaround for the lack of a mutable BackForwardList)

Here is a simple POC that makes both Safari and Firefox for iOS crash:

  https://people.mozilla.org/~sarentz/t/boom.html

Tested on an iPad Mini running 9.1. Has been reported on 9.2 too. Including high end devices like 6s. May depend on memory usage in general. It is more reliable to reproduce if you open a lot of apps first.

This causes a memory pressure on the device that results in the OS killing us.

(People have been reporting this bug to us as 'my whole device reboots' because they see the white apple on black screen appear, but now we know that due to the high memory pressure Springboard is also simply killed, which looks like a reboot)

Update: this seems to be the same bug that http://crashsafari.com is triggering

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20160125/8c3f6526/attachment.html>