[Webkit-unassigned] [Bug 202809] New: Various test-cases from Gecko assert with ASSERTION FAILED: !url.protocolIsData()

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Oct 10 10:51:57 PDT 2019 

https://bugs.webkit.org/show_bug.cgi?id=202809

            Bug ID: 202809
           Summary: Various test-cases from Gecko assert with ASSERTION
                    FAILED: !url.protocolIsData()
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: SVG
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: emilio at crisal.io
                CC: zimmermann at kde.org

On master (247b0314320d499ae788b6ea993aa1d98e2d607e / r250962), WebKitGTK build.

Loading these test-cases locally:

 * https://hg.mozilla.org/mozilla-central/raw-file/tip/dom/base/crashtests/658845-1.svg
 * https://hg.mozilla.org/mozilla-central/raw-file/tip/layout/svg/crashtests/732836-1.svg

Trigger the following assert:

ASSERTION FAILED: !url.protocolIsData()
../../Source/WebCore/svg/SVGURIReference.h(55) : static bool WebCore::SVGURIReference::isExternalURIReference(const WTF::String&, const WebCore::Document&)
1   0x7fe52da403d3 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18(WTFCrash+0x9) [0x7fe52da403d3]
2   0x7fe5396e95f2 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN3WTF15CrashOnOverflow10overflowedEv+0) [0x7fe5396e95f2]
3   0x7fe53c65cd2a /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore15SVGURIReference22isExternalURIReferenceERKN3WTF6StringERKNS_8DocumentE+0x7d) [0x7fe53c65cd2a]
4   0x7fe53ce7c5c7 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore13SVGUseElement22updateExternalDocumentEv+0x87) [0x7fe53ce7c5c7]
5   0x7fe53ce79e8c /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore13SVGUseElement22didFinishInsertingNodeEv+0x18) [0x7fe53ce79e8c]
6   0x7fe53ba50a64 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(+0xc942a64) [0x7fe53ba50a64]
7   0x7fe53ba4d37e /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore13ContainerNode17parserAppendChildERNS_4NodeE+0x100) [0x7fe53ba4d37e]
8   0x7fe53d00bbd8 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17XMLDocumentParser14startElementNsEPKhS2_S2_iPS2_iiS3_+0x3ce) [0x7fe53d00bbd8]
9   0x7fe53d00cd03 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(+0xdefed03) [0x7fe53d00cd03]
10  0x7fe52efef442 WebKitBuild/DependenciesGTK/Root/lib/libxml2.so.2(+0x48442) [0x7fe52efef442]
11  0x7fe52eff4f40 WebKitBuild/DependenciesGTK/Root/lib/libxml2.so.2(+0x4df40) [0x7fe52eff4f40]
12  0x7fe52eff6660 WebKitBuild/DependenciesGTK/Root/lib/libxml2.so.2(xmlParseChunk+0x290) [0x7fe52eff6660]
13  0x7fe53d00aff8 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17XMLDocumentParser7doWriteERKN3WTF6StringE+0x1c4) [0x7fe53d00aff8]
14  0x7fe53d00920e /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17XMLDocumentParser6appendEON3WTF6RefPtrINS1_10StringImplENS1_13DumbPtrTraitsIS3_EEEE+0xe0) [0x7fe53d00920e]
15  0x7fe53ba7b3ed /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore25DecodedDataDocumentParser11appendBytesERNS_14DocumentWriterEPKcm+0x9b) [0x7fe53ba7b3ed]
16  0x7fe53c1a7192 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore14DocumentWriter7addDataEPKcm+0xe4) [0x7fe53c1a7192]
17  0x7fe53c17fa29 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore14DocumentLoader10commitDataEPKcm+0x96f) [0x7fe53c17fa29]
18  0x7fe53a51b169 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN6WebKit20WebFrameLoaderClient13committedLoadEPN7WebCore14DocumentLoaderEPKci+0x45) [0x7fe53a51b169]
19  0x7fe53c17eefc /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore14DocumentLoader10commitLoadEPKci+0xbc) [0x7fe53c17eefc]
20  0x7fe53c17fc8d /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore14DocumentLoader12dataReceivedEPKci+0x1d1) [0x7fe53c17fc8d]
21  0x7fe53c17fab2 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore14DocumentLoader12dataReceivedERNS_14CachedResourceEPKci+0x74) [0x7fe53c17fab2]
22  0x7fe53c2688f6 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17CachedRawResource28notifyClientsDataWasReceivedEPKcj+0x84) [0x7fe53c2688f6]
23  0x7fe53c2684f4 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17CachedRawResource12updateBufferERNS_12SharedBufferE+0x130) [0x7fe53c2684f4]
24  0x7fe53c21db07 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17SubresourceLoader22didReceiveDataOrBufferEPKciON3WTF6RefPtrINS_12SharedBufferENS3_13DumbPtrTraitsIS5_EEEExNS_15DataPayloadTypeE+0x22f) [0x7fe53c21db07]
25  0x7fe53c21d85b /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17SubresourceLoader14didReceiveDataEPKcjxNS_15DataPayloadTypeE+0x51) [0x7fe53c21d85b]
26  0x7fe53a3e1c9a /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN6WebKit17WebResourceLoader14didReceiveDataERKN3IPC13DataReferenceEl+0x260) [0x7fe53a3e1c9a]
27  0x7fe539a728d1 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN3IPC22callMemberFunctionImplIN6WebKit17WebResourceLoaderEMS2_FvRKNS_13DataReferenceElESt5tupleIJS3_lEEJLm0ELm1EEEEvPT_T0_OT1_St16integer_sequenceImJXspT2_EEE+0x9c) [0x7fe539a728d1]
28  0x7fe539a72343 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN3IPC18callMemberFunctionIN6WebKit17WebResourceLoaderEMS2_FvRKNS_13DataReferenceElESt5tupleIJS3_lEESt16integer_sequenceImJLm0ELm1EEEEEvOT1_PT_T0_+0x3b) [0x7fe539a72343]
29  0x7fe539a71d1b /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN3IPC13handleMessageIN8Messages17WebResourceLoader14DidReceiveDataEN6WebKit17WebResourceLoaderEMS5_FvRKNS_13DataReferenceElEEEvRNS_7DecoderEPT0_T1_+0xc8) [0x7fe539a71d1b]
30  0x7fe539a7152d /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN6WebKit17WebResourceLoader34didReceiveWebResourceLoaderMessageERN3IPC10ConnectionERNS1_7DecoderE+0x23d) [0x7fe539a7152d]
31  0x7fe53a3dba18 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN6WebKit24NetworkProcessConnection17didReceiveMessageERN3IPC10ConnectionERNS1_7DecoderE+0xc4) [0x7fe53a3dba18]

Seems fundamentally the same issue (<svg:use href="data:">).

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20191010/14c09428/attachment-0001.html>

More information about the webkit-unassigned mailing list