[Webkit-unassigned] [Bug 210153] New: Crash in StoreKitUIService: WebCore: gl::FramebufferManager::getFramebuffer const

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Apr 7 13:54:58 PDT 2020 

https://bugs.webkit.org/show_bug.cgi?id=210153

            Bug ID: 210153
           Summary: Crash in StoreKitUIService: WebCore:
                    gl::FramebufferManager::getFramebuffer const
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebGL
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: dino at apple.com
                CC: dino at apple.com

Unfortunately this one is on an internal iOS build and doesn't have reproduction steps.


Exception Type:  EXC_BAD_ACCESS (SIGSEGV)
Exception Subtype: KERN_INVALID_ADDRESS at 0x0000000000000068
VM Region Info: 0x68 is not in any region.  Bytes before following region: 4337565592
      REGION TYPE                      START - END             [ VSIZE] PRT/MAX SHRMOD  REGION DETAIL
      UNUSED SPACE AT START
--->  
      __TEXT                 00000001028a0000-00000001028d0000 [  192K] r-x/r-x SM=COW  ...eKitUIService

Termination Signal: Segmentation fault: 11
Termination Reason: Namespace SIGNAL, Code 0xb
Terminating Process: exc handler [2021]
Triggered by Thread:  4

Thread 4 name:  WebThread
Thread 4 Crashed:
0   WebCore                             0x000000019c8cdb3c gl::FramebufferManager::getFramebuffer(gl::FramebufferID) const + 16 (ResourceMap.h:29)
1   WebCore                             0x000000019c774fc0 gl::Context::unsetDefaultFramebuffer() + 36 (Context.cpp:8505)
2   WebCore                             0x000000019c774fc0 gl::Context::unsetDefaultFramebuffer() + 36 (Context.cpp:8505)
3   WebCore                             0x000000019c773db4 gl::Context::unMakeCurrent(egl::Display const*) + 36 (Context.cpp:705)
4   WebCore                             0x000000019c7b9b50 egl::Display::makeCurrent(egl::Thread const*, egl::Surface*, egl::Surface*, gl::Context*) + 68 (Display.cpp:1066)
5   WebCore                             0x000000019c7c34ec EGL_MakeCurrent + 208 (entry_points_egl.cpp:448)
6   WebCore                             0x000000019b2ea26c WebCore::GraphicsContextGLOpenGL::GraphicsContextGLOpenGL(WebCore::GraphicsContextGLAttributes, WebCore::HostWindow*, WebCore::GraphicsContextGL::Destination, WebCore::GraphicsContextGLOpenGL*) + 1404 (GraphicsContextGLOpenGLCocoa.mm:366)
7   WebCore                             0x000000019b2e988c WebCore::GraphicsContextGLOpenGL::create(WebCore::GraphicsContextGLAttributes, WebCore::HostWindow*, WebCore::GraphicsContextGL::Destination) + 472 (GraphicsContextGLOpenGLCocoa.mm:188)
8   WebCore                             0x000000019bc77990 WebCore::WebGLRenderingContextBase::create(WebCore::CanvasBase&, WebCore::GraphicsContextGLAttributes&, WTF::String const&) + 1036 (WebGLRenderingContextBase.cpp:580)
9   WebCore                             0x000000019bb21e80 WebCore::HTMLCanvasElement::getContext(JSC::JSGlobalObject&, WTF::String const&, WTF::Vector<JSC::Strong<JSC::Unknown, (JSC::ShouldStrongDestructorGrabLock)0>, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&) + 852 (HTMLCanvasElement.cpp:413)
10  WebCore                             0x000000019ad21cf0 WebCore::jsHTMLCanvasElementPrototypeFunctionGetContext(JSC::JSGlobalObject*, JSC::CallFrame*) + 504 (JSHTMLCanvasElement.cpp:310)
11  ???                                 0x0000000dd37b01fc 0 + 59382628860

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20200407/c8b4c360/attachment-0001.htm>

More information about the webkit-unassigned mailing list