[Webkit-unassigned] [Bug 202811] New: Gecko test-case asserts with ASSERTION FAILED: std::isfinite(num)

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Oct 10 10:54:15 PDT 2019


https://bugs.webkit.org/show_bug.cgi?id=202811

            Bug ID: 202811
           Summary: Gecko test-case asserts with ASSERTION FAILED:
                    std::isfinite(num)
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: CSS
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: emilio at crisal.io

On master (247b0314320d499ae788b6ea993aa1d98e2d607e / r250962), WebKitGTK build.

Loading https://hg.mozilla.org/mozilla-central/raw-file/tip/layout/style/crashtests/873260-2.html locally (need to download so it's not blocked by CSP), crashes with:

ASSERTION FAILED: std::isfinite(num)
../../Source/WebCore/css/CSSPrimitiveValue.cpp(290) : WebCore::CSSPrimitiveValue::CSSPrimitiveValue(double, WebCore::CSSPrimitiveValue::UnitType)
1   0x7f82543703d3 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18(WTFCrash+0x9) [0x7f82543703d3]
2   0x7f82600195f2 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN3WTF15CrashOnOverflow10overflowedEv+0) [0x7f82600195f2]
3   0x7f82621cddd2 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17CSSPrimitiveValueC2EdNS0_8UnitTypeE+0x7e) [0x7f82621cddd2]
4   0x7f82619804e9 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17CSSPrimitiveValue6createEdNS0_8UnitTypeE+0x38) [0x7f82619804e9]
5   0x7f826214de38 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore27CSSCalcExpressionNodeParser10parseValueERNS_19CSSParserTokenRangeEPNS0_5ValueE+0x138) [0x7f826214de38]
6   0x7f826214dfd4 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore27CSSCalcExpressionNodeParser14parseValueTermERNS_19CSSParserTokenRangeEiPNS0_5ValueE+0x150) [0x7f826214dfd4]
7   0x7f826214e037 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore27CSSCalcExpressionNodeParser34parseValueMultiplicativeExpressionERNS_19CSSParserTokenRangeEiPNS0_5ValueE+0x5f) [0x7f826214e037]
8   0x7f826214e1ce /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore27CSSCalcExpressionNodeParser28parseAdditiveValueExpressionERNS_19CSSParserTokenRangeEiPNS0_5ValueE+0x5e) [0x7f826214e1ce]
9   0x7f826214e596 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore27CSSCalcExpressionNodeParser20parseValueExpressionERNS_19CSSParserTokenRangeEiPNS0_5ValueE+0x2e) [0x7f826214e596]
10  0x7f826214dc24 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore27CSSCalcExpressionNodeParser9parseCalcENS_19CSSParserTokenRangeENS_10CSSValueIDE+0x62) [0x7f826214dc24]
11  0x7f8262126977 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore12CSSCalcValue6createENS_10CSSValueIDERKNS_19CSSParserTokenRangeENS_19CalculationCategoryENS_10ValueRangeE+0x55) [0x7f8262126977]
12  0x7f82623145cf /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore24CSSPropertyParserHelpers10CalcParserC2ERNS_19CSSParserTokenRangeENS_19CalculationCategoryENS_10ValueRangeE+0xc7) [0x7f82623145cf]
13  0x7f82623031a4 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore24CSSPropertyParserHelpers22consumeLengthOrPercentERNS_19CSSParserTokenRangeENS_13CSSParserModeENS_10ValueRangeENS0_13UnitlessQuirkE+0xf9) [0x7f82623031a4]
14  0x7f82622e8967 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(+0xc8aa967) [0x7f82622e8967]
15  0x7f82622f6fc4 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17CSSPropertyParser16parseSingleValueENS_13CSSPropertyIDES1_+0x68c) [0x7f82622f6fc4]
16  0x7f82622e42ea /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17CSSPropertyParser15parseValueStartENS_13CSSPropertyIDEb+0xd0) [0x7f82622e42ea]
17  0x7f82622e3fc9 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore17CSSPropertyParser10parseValueENS_13CSSPropertyIDEbRKNS_19CSSParserTokenRangeERKNS_16CSSParserContextERN3WTF6VectorINS_11CSSPropertyELm256ENS8_15CrashOnOverflowELm16EEENS_13StyleRuleBase4TypeE+0x83) [0x7f82622e3fc9]
18  0x7f82622d6745 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore13CSSParserImpl23consumeDeclarationValueENS_19CSSParserTokenRangeENS_13CSSPropertyIDEbNS_13StyleRuleBase4TypeE+0x5b) [0x7f82622d6745]
19  0x7f82622d219d /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore13CSSParserImpl10parseValueEPNS_22MutableStylePropertiesENS_13CSSPropertyIDERKN3WTF6StringEbRKNS_16CSSParserContextE+0xb1) [0x7f82622d219d]
20  0x7f82622ceeab /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore9CSSParser10parseValueERNS_22MutableStylePropertiesENS_13CSSPropertyIDERKN3WTF6StringEb+0x41) [0x7f82622ceeab]
21  0x7f82622cee02 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore9CSSParser10parseValueERNS_22MutableStylePropertiesENS_13CSSPropertyIDERKN3WTF6StringEbRKNS_16CSSParserContextE+0x1ac) [0x7f82622cee02]
22  0x7f826228646d /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore22MutableStyleProperties11setPropertyENS_13CSSPropertyIDERKN3WTF6StringEbNS_16CSSParserContextE+0x95) [0x7f826228646d]
23  0x7f8262265e9b /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore30PropertySetCSSStyleDeclaration19setPropertyInternalENS_13CSSPropertyIDERKN3WTF6StringEb+0xe7) [0x7f8262265e9b]
24  0x7f82621de08e /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore19CSSStyleDeclaration12setNamedItemERKN3WTF10AtomStringENS1_6StringERb+0x16a) [0x7f82621de08e]
25  0x7f8263aec542 /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libwebkit2gtk-4.0.so.37(_ZN7WebCore21JSCSSStyleDeclaration3putEPN3JSC6JSCellEPNS1_9CallFrameENS1_12PropertyNameENS1_7JSValueERNS1_15PutPropertySlotE+0x33c) [0x7f8263aec542]
26  0x7f82536dbd5f /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18(_ZN3JSC6JSCell9putInlineEPNS_9CallFrameENS_12PropertyNameENS_7JSValueERNS_15PutPropertySlotE+0xa5) [0x7f82536dbd5f]
27  0x7f82536ddbed /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18(_ZN3JSC7JSValue9putInlineEPNS_9CallFrameENS_12PropertyNameES0_RNS_15PutPropertySlotE+0x83) [0x7f82536ddbed]
28  0x7f8253d124fa /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18(+0x2d144fa) [0x7f8253d124fa]
29  0x7f8253cfadcc /home/emilio/src/WebKit/WebKitBuild/Debug/lib/libjavascriptcoregtk-4.0.so.18(+0x2cfcdcc) [0x7f8253cfadcc]

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20191010/3744eee6/attachment.html>


More information about the webkit-unassigned mailing list