[Webkit-unassigned] [Bug 194578] New: REGRESSION(STP 75): Crash in reconcileLayerPositionForViewportRect

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Feb 12 18:08:02 PST 2019 

https://bugs.webkit.org/show_bug.cgi?id=194578

            Bug ID: 194578
           Summary: REGRESSION(STP 75): Crash in
                    reconcileLayerPositionForViewportRect
           Product: WebKit
           Version: Safari Technology Preview
          Hardware: Macintosh
                OS: macOS 10.14
            Status: NEW
          Severity: Major
          Priority: P2
         Component: Scrolling
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: jon at jonshier.com

Created attachment 361881

  --> https://bugs.webkit.org/attachment.cgi?id=361881&action=review

Full crash log.

As of STP 75, I'm experiencing an intermittent crash that seems to be caused by attempting to scroll during page load (or perhaps just back navigation). Full log is attached, but here's the crash stack:

Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.WebCore                   0x0000000105c9a56c WebCore::ScrollingStateFixedNode::reconcileLayerPositionForViewportRect(WebCore::LayoutRect const&, WebCore::ScrollingLayerPositionAction) + 284
1   com.apple.WebCore                   0x0000000105c9a5cf WebCore::ScrollingStateNode::reconcileLayerPositionForViewportRect(WebCore::LayoutRect const&, WebCore::ScrollingLayerPositionAction) + 63
2   com.apple.WebCore                   0x0000000105c9361b WebCore::AsyncScrollingCoordinator::reconcileScrollingState(WebCore::FrameView&, WebCore::FloatPoint const&, WTF::Variant<WTF::Optional<WebCore::FloatPoint>, WTF::Optional<WebCore::FloatRect> > const&, bool, WebCore::ViewportRectStability, WebCore::ScrollingLayerPositionAction) + 731
3   com.apple.WebCore                   0x0000000105c92d9c WebCore::AsyncScrollingCoordinator::updateScrollPositionAfterAsyncScroll(unsigned long long, WebCore::FloatPoint const&, WTF::Optional<WebCore::FloatPoint>, bool, WebCore::ScrollingLayerPositionAction) + 172
4   com.apple.WebCore                   0x0000000105c9221c WebCore::AsyncScrollingCoordinator::updateScrollPositionAfterAsyncScrollTimerFired() + 60
5   com.apple.WebCore                   0x00000001049e1ccd WebCore::ThreadTimers::sharedTimerFiredInternal() + 173
6   com.apple.WebCore                   0x00000001049e1c0f WebCore::timerFired(__CFRunLoopTimer*, void*) + 31
7   com.apple.CoreFoundation            0x00007fff324b9dfd __CFRUNLOOP_IS_CALLING_OUT_TO_A_TIMER_CALLBACK_FUNCTION__ + 20
8   com.apple.CoreFoundation            0x00007fff324b99b0 __CFRunLoopDoTimer + 859
9   com.apple.CoreFoundation            0x00007fff324b94f0 __CFRunLoopDoTimers + 333
10  com.apple.CoreFoundation            0x00007fff3249a737 __CFRunLoopRun + 2176
11  com.apple.CoreFoundation            0x00007fff32499c64 CFRunLoopRunSpecific + 463
12  com.apple.Foundation                0x00007fff348004aa -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 280
13  com.apple.Foundation                0x00007fff3480037f -[NSRunLoop(NSRunLoop) run] + 76
14  libxpc.dylib                        0x00007fff5f923ebe _xpc_objc_main + 555
15  libxpc.dylib                        0x00007fff5f9239bd xpc_main + 433
16  com.apple.WebKit.WebContent         0x0000000103b61630 0x103b60000 + 5680
17  com.apple.WebKit.WebContent         0x0000000103b617b7 0x103b60000 + 6071
18  libdyld.dylib                       0x00007fff5f6ebed9 start + 1

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20190213/ba0bc12c/attachment.html>

More information about the webkit-unassigned mailing list