[Webkit-unassigned] [Bug 187137] New: Release assert in ScriptController::canExecuteScripts via WebCore::SVGUseElement::insertedIntoAncestor

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Jun 27 23:57:40 PDT 2018 

https://bugs.webkit.org/show_bug.cgi?id=187137

            Bug ID: 187137
           Summary: Release assert in ScriptController::canExecuteScripts
                    via WebCore::SVGUseElement::insertedIntoAncestor
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: SVG
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: rniwa at webkit.org
                CC: koivisto at iki.fi, sabouhallawa at apple.com,
                    zalan at apple.com, zimmermann at kde.org

e.g.
Thread 0 Crashed ↩:: Dispatch queue: com.apple.main-thread
0   com.apple.WebCore                   0x00007fff3fb38d4d WebCore::ScriptController::canExecuteScripts(WebCore::ReasonForCallingCanExecuteScripts) + 509
1   com.apple.WebCore                   0x00007fff406112b2 WebCore::JSEventListener::handleEvent(WebCore::ScriptExecutionContext&, WebCore::Event&) + 338
2   com.apple.WebCore                   0x00007fff408433b4 WebCore::EventTarget::fireEventListeners(WebCore::Event&, WTF::Vector<WTF::RefPtr<WebCore::RegisteredEventListener, WTF::DumbPtrTraits<WebCore::RegisteredEventListener> >, 1ul, WTF::CrashOnOverflow, 16ul>) + 836
3   com.apple.WebCore                   0x00007fff408411f0 WebCore::EventTarget::fireEventListeners(WebCore::Event&) + 512
4   com.apple.WebCore                   0x00007fff40b944c2 WebCore::DOMWindow::dispatchEvent(WebCore::Event&, WebCore::EventTarget*) + 242
5   com.apple.WebCore                   0x00007fff3fb74efa WebCore::DOMWindow::dispatchLoadEvent() + 154
6   com.apple.WebCore                   0x00007fff3fb4671f WebCore::Document::implicitClose() + 399
7   com.apple.WebCore                   0x00007fff3fb460fe WebCore::FrameLoader::checkCompleted() + 398
8   com.apple.WebCore                   0x00007fff40b6cb14 WebCore::CachedResourceLoader::loadDone(bool) + 68
9   com.apple.WebCore                   0x00007fff3fc57e0f WebCore::SubresourceLoader::didCancel(WebCore::ResourceError const&) + 127
10  com.apple.WebCore                   0x00007fff3fc57a34 WebCore::ResourceLoader::cancel(WebCore::ResourceError const&) + 468
11  com.apple.WebCore                   0x00007fff3fc577d4 WebCore::ResourceLoader::cancel() + 68
12  com.apple.WebCore                   0x00007fff40b663ae WebCore::CachedResource::removeClient(WebCore::CachedResourceClient&) + 574
13  com.apple.WebCore                   0x00007fff40afff0b WebCore::DocumentThreadableLoader::clearResource() + 59
14  com.apple.WebCore                   0x00007fff3fc5819c WebCore::DocumentThreadableLoader::cancel() + 412
15  com.apple.WebCore                   0x00007fff3fbc3732 WebCore::XMLHttpRequest::internalAbort() + 130
16  com.apple.WebCore                   0x00007fff3fb6a5ae WebCore::ScriptExecutionContext::stopActiveDOMObjects() + 494
17  com.apple.WebCore                   0x00007fff3fb69e4b WebCore::Document::prepareForDestruction() + 827
18  com.apple.WebCore                   0x00007fff40bb5cd5 WebCore::Frame::setView(WTF::RefPtr<WebCore::FrameView, WTF::DumbPtrTraits<WebCore::FrameView> >&&) + 245
19  com.apple.WebCore                   0x00007fff3fbb8d34 WebCore::FrameLoader::detachFromParent() + 436
20  com.apple.WebCore                   0x00007fff3fb2c69f WebCore::FrameLoader::detachChildren() + 351
21  com.apple.WebCore                   0x00007fff3fbb8c15 WebCore::FrameLoader::detachFromParent() + 149
22  com.apple.WebCore                   0x00007fff3fb2c69f WebCore::FrameLoader::detachChildren() + 351
23  com.apple.WebCore                   0x00007fff3fbb8c15 WebCore::FrameLoader::detachFromParent() + 149
24  com.apple.WebCore                   0x00007fff3fbfe316 WebCore::FrameLoader::frameDetached() + 70
25  com.apple.WebCore                   0x00007fff3fbfe283 WebCore::HTMLFrameOwnerElement::disconnectContentFrame() + 35
26  com.apple.WebCore                   0x00007fff407f0048 WebCore::disconnectSubframes(WebCore::ContainerNode&, WebCore::SubframeDisconnectPolicy) + 216
27  com.apple.WebCore                   0x00007fff407ec8f9 WebCore::ContainerNode::removeChild(WebCore::Node&) + 217
28  com.apple.WebCore                   0x00007fff4085aabb WebCore::Node::removeChild(WebCore::Node&) + 43
29  com.apple.WebCore                   0x00007fff3fbb2b2e WebCore::jsNodePrototypeFunctionRemoveChild(JSC::ExecState*) + 238

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20180628/1f4d0459/attachment-0001.html>

More information about the webkit-unassigned mailing list