[Webkit-unassigned] [Bug 163585] New: LayoutTest crashes in WebCore::InlineBox::InlineBoxBitfields::isHorizontal() const + 8

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Oct 17 22:59:23 PDT 2016 

https://bugs.webkit.org/show_bug.cgi?id=163585

            Bug ID: 163585
           Summary: LayoutTest crashes in
                    WebCore::InlineBox::InlineBoxBitfields::isHorizontal()
                    const + 8
    Classification: Unclassified
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: New Bugs
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: ryanhaddad at apple.com

Created attachment 291920
  --> https://bugs.webkit.org/attachment.cgi?id=291920&action=review
Crashlog

I've seen a few different tests crashing in WebCore::InlineBox::InlineBoxBitfields::isHorizontal() const + 8

imported/w3c/web-platform-tests/html/semantics/embedded-content/media-elements/interfaces/TextTrack/activeCues.html is the test that I've seen in results most often, but it is not the test that is referenced in the crashlog.

https://build.webkit.org/results/Apple%20El%20Capitan%20Debug%20WK2%20(Tests)/r207453%20(8889)/results.html

https://webkit-test-results.webkit.org/dashboards/flakiness_dashboard.html#showAllRuns=true&tests=imported%2Fw3c%2Fweb-platform-tests%2Fhtml%2Fsemantics%2Fembedded-content%2Fmedia-elements%2Finterfaces%2FTextTrack%2FactiveCues.html

Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.WebCore                 0x000000010b8c53e8 WebCore::InlineBox::InlineBoxBitfields::isHorizontal() const + 8 (InlineBox.h:341)
1   com.apple.WebCore                 0x000000010b8c4ecc WebCore::InlineBox::isHorizontal() const + 28 (InlineBox.h:104)
2   com.apple.WebCore                 0x000000010b8c4e09 WebCore::InlineBox::height() const + 25 (InlineBox.h:176)
3   com.apple.WebCore                 0x000000010cc26bd8 WebCore::RenderVTTCue::initializeLayoutParameters(WebCore::InlineFlowBox*&, WebCore::LayoutUnit&, WebCore::LayoutUnit&) + 296 (RenderVTTCue.cpp:89)
4   com.apple.WebCore                 0x000000010cc267ce WebCore::RenderVTTCue::repositionCueSnapToLinesSet() + 62 (RenderVTTCue.cpp:314)
5   com.apple.WebCore                 0x000000010cc26756 WebCore::RenderVTTCue::layout() + 358 (RenderVTTCue.cpp:61)
6   com.apple.WebCore                 0x000000010b342a0c WebCore::RenderElement::layoutIfNeeded() + 60 (RenderElement.h:131)
7   com.apple.WebCore                 0x000000010c880af4 WebCore::RenderBlock::layoutPositionedObject(WebCore::RenderBox&, bool, bool) + 548 (RenderBlock.cpp:1486)
8   com.apple.WebCore                 0x000000010c880569 WebCore::RenderBlock::layoutPositionedObjects(bool, bool) + 185 (RenderBlock.cpp:1506)
9   com.apple.WebCore                 0x000000010c8bb7e1 WebCore::RenderBlockFlow::layoutBlock(bool, WebCore::LayoutUnit) + 2305 (RenderBlockFlow.cpp:526)
10  com.apple.WebCore                 0x000000010c87ed49 WebCore::RenderBlock::layout() + 105 (RenderBlock.cpp:1079)
11  com.apple.WebCore                 0x000000010cc09291 WebCore::RenderView::layoutContent(WebCore::LayoutState const&) + 97 (RenderView.cpp:245)
12  com.apple.WebCore                 0x000000010cc0a331 WebCore::RenderView::layout() + 2097 (RenderView.cpp:372)
13  com.apple.WebCore                 0x000000010b4a7194 WebCore::FrameView::layout(bool) + 3812 (FrameView.cpp:1464)
14  com.apple.WebCore                 0x000000010b4b3dd9 WebCore::FrameView::updateLayoutAndStyleIfNeededRecursive() + 121 (FrameView.cpp:4288)
15  com.apple.WebKit                  0x00000001041bf19b WebKit::WebPage::layoutIfNeeded() + 107 (WebPage.cpp:1358)
16  com.apple.WebKit                  0x0000000103f7528c WebKit::TiledCoreAnimationDrawingArea::flushLayers() + 124 (TiledCoreAnimationDrawingArea.mm:406)
17  com.apple.WebKit                  0x0000000103f75aec non-virtual thunk to WebKit::TiledCoreAnimationDrawingArea::flushLayers() + 28 (TiledCoreAnimationDrawingArea.mm:397)
18  com.apple.WebCore                 0x000000010c4899b5 WebCore::LayerFlushScheduler::layerFlushCallback() + 101 (LayerFlushSchedulerMac.cpp:77)
19  com.apple.WebCore                 0x000000010c48acbb WebCore::LayerFlushScheduler::LayerFlushScheduler(WebCore::LayerFlushSchedulerClient*)::$_0::operator()() const + 59 (LayerFlushSchedulerMac.cpp:65)
20  com.apple.WebCore                 0x000000010c48ac6d _ZNSt3__128__invoke_void_return_wrapperIvE6__callIJRZN7WebCore19LayerFlushSchedulerC1EPNS3_25LayerFlushSchedulerClientEE3$_0EEEvDpOT_ + 45 (__functional_base:441)
21  com.apple.WebCore                 0x000000010c48ac0c std::__1::__function::__func<WebCore::LayerFlushScheduler::LayerFlushScheduler(WebCore::LayerFlushSchedulerClient*)::$_0, std::__1::allocator<WebCore::LayerFlushScheduler::LayerFlushScheduler(WebCore::LayerFlushSchedulerClient*)::$_0>, void ()>::operator()() + 44 (functional:1407)
22  com.apple.WebCore                 0x000000010aa10b3a std::__1::function<void ()>::operator()() const + 26 (functional:1793)
23  com.apple.WebCore                 0x000000010ccb279e WebCore::RunLoopObserver::runLoopObserverFired() + 110 (RunLoopObserver.cpp:45)
24  com.apple.WebCore                 0x000000010ccb2720 WebCore::RunLoopObserver::runLoopObserverFired(__CFRunLoopObserver*, unsigned long, void*) + 32 (RunLoopObserver.cpp:39)
25  com.apple.CoreFoundation          0x00007fff92705067 __CFRUNLOOP_IS_CALLING_OUT_TO_AN_OBSERVER_CALLBACK_FUNCTION__ + 23
26  com.apple.CoreFoundation          0x00007fff92704fd7 __CFRunLoopDoObservers + 391
27  com.apple.CoreFoundation          0x00007fff926e3ef8 CFRunLoopRunSpecific + 328
28  com.apple.HIToolbox               0x00007fff9402c935 RunCurrentEventLoopInMode + 235
29  com.apple.HIToolbox               0x00007fff9402c76f ReceiveNextEventCommon + 432
30  com.apple.HIToolbox               0x00007fff9402c5af _BlockUntilNextEventMatchingListInModeWithFilter + 71
31  com.apple.AppKit                  0x00007fff98ef4df6 _DPSNextEvent + 1067
32  com.apple.AppKit                  0x00007fff98ef4226 -[NSApplication _nextEventMatchingEventMask:untilDate:inMode:dequeue:] + 454
33  com.apple.AppKit                  0x00007fff98ee8d80 -[NSApplication run] + 682
34  com.apple.AppKit                  0x00007fff98eb2368 NSApplicationMain + 1176
35  libxpc.dylib                      0x00007fff9d97a194 _xpc_objc_main + 795
36  libxpc.dylib                      0x00007fff9d978bbe xpc_main + 494
37  com.apple.WebKit.WebContent       0x0000000103a58080 main + 800
38  libdyld.dylib                     0x00007fff8b2445ad start + 1

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20161018/e97b92ae/attachment.html>

More information about the webkit-unassigned mailing list