[Webkit-unassigned] [Bug 207303] New: ASSERTION FAILED: !needsLayout() [ macOS wk2 ] loader/stateobjects/pushstate-size-iframe.html is flaky crashing

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Feb 5 15:35:51 PST 2020 

https://bugs.webkit.org/show_bug.cgi?id=207303

            Bug ID: 207303
           Summary: ASSERTION FAILED: !needsLayout() [ macOS wk2 ]
                    loader/stateobjects/pushstate-size-iframe.html is
                    flaky crashing
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: New Bugs
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: jacob_uphoff at apple.com

loader/stateobjects/pushstate-size-iframe.html

This test has been crashing for all visible history on Catalina debug

I ran the test 200x in iterations and did not reproduce the failure. The test takes about 20 seconds per, so high iteration runs will take some time to do.

History:

https://results.webkit.org/?suite=layout-tests&test=loader%2Fstateobjects%2Fpushstate-size-iframe.html&limit=50000

Crash:

No crash log found for com.apple.WebKit.WebContent.Development:16600.

stdout:

stderr:
ASSERTION FAILED: !needsLayout()
./rendering/RenderView.cpp(306) : virtual void WebCore::RenderView::paint(WebCore::PaintInfo &, const WebCore::LayoutPoint &)
1   0x34fa87759 WTFCrash
2   0x33416841b WTFCrashWithInfo(int, char const*, char const*, int)
3   0x33821651b WebCore::RenderView::paint(WebCore::PaintInfo&, WebCore::LayoutPoint const&)
4   0x3380b12f2 WebCore::RenderLayer::paintBackgroundForFragments(WTF::Vector<WebCore::LayerFragment, 1ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc> const&, WebCore::GraphicsContext&, WebCore::GraphicsContext&, WebCore::LayoutRect const&, bool, WebCore::RenderLayer::LayerPaintingInfo const&, WTF::OptionSet<WebCore::PaintBehavior>, WebCore::RenderObject*)
5   0x3380add60 WebCore::RenderLayer::paintLayerContents(WebCore::GraphicsContext&, WebCore::RenderLayer::LayerPaintingInfo const&, WTF::OptionSet<WebCore::RenderLayer::PaintLayerFlag>)
6   0x3380cdc3c WebCore::RenderLayerBacking::paintIntoLayer(WebCore::GraphicsLayer const*, WebCore::GraphicsContext&, WebCore::IntRect const&, WTF::OptionSet<WebCore::PaintBehavior>, WebCore::EventRegionContext*)::$_10::operator()(WebCore::RenderLayer&, WTF::OptionSet<WebCore::RenderLayer::PaintLayerFlag>) const
7   0x3380cd555 WebCore::RenderLayerBacking::paintIntoLayer(WebCore::GraphicsLayer const*, WebCore::GraphicsContext&, WebCore::IntRect const&, WTF::OptionSet<WebCore::PaintBehavior>, WebCore::EventRegionContext*)
8   0x3380cede2 WebCore::RenderLayerBacking::paintContents(WebCore::GraphicsLayer const*, WebCore::GraphicsContext&, WebCore::FloatRect const&, unsigned int)
9   0x337b09f90 WebCore::GraphicsLayer::paintGraphicsLayerContents(WebCore::GraphicsContext&, WebCore::FloatRect const&, unsigned int)
10  0x337b9378d WebCore::GraphicsLayerCA::platformCALayerPaintContents(WebCore::PlatformCALayer*, WebCore::GraphicsContext&, WebCore::FloatRect const&, unsigned int)
11  0x33589a831 WebCore::PlatformCALayer::drawLayerContents(WebCore::GraphicsContext&, WebCore::PlatformCALayer*, WTF::Vector<WebCore::FloatRect, 5ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&, unsigned int)
12  0x337bb247e WebCore::TileGrid::platformCALayerPaintContents(WebCore::PlatformCALayer*, WebCore::GraphicsContext&, WebCore::FloatRect const&, unsigned int)
13  0x335a7a996 -[WebSimpleLayer drawInContext:]
14  0x7fff3c741d34 CABackingStoreUpdate_
15  0x7fff3c7a1985 invocation function for block in CA::Layer::display_()
16  0x7fff3c741242 -[CALayer _display]
17  0x335a7a77b -[WebSimpleLayer display]
18  0x7fff3c7402c3 CA::Layer::display_if_needed(CA::Transaction*)
19  0x7fff3c71eba6 CA::Context::commit_transaction(CA::Transaction*, double)
20  0x7fff3c71d7ce CA::Transaction::commit()
21  0x7fff2e27cba7 __62+[CATransaction(NSCATransaction) NS_setFlushesWithDisplayLink]_block_invoke
22  0x7fff2e99865d ___NSRunLoopObserverCreateWithHandler_block_invoke
23  0x7fff30f170ee __CFRUNLOOP_IS_CALLING_OUT_TO_AN_OBSERVER_CALLBACK_FUNCTION__
24  0x7fff30f17014 __CFRunLoopDoObservers
25  0x7fff30f1670b __CFRunLoopRun
26  0x7fff30f15bd3 CFRunLoopRunSpecific
27  0x7fff335b91a8 -[NSRunLoop(NSRunLoop) runMode:beforeDate:]
28  0x7fff3366cd8b -[NSRunLoop(NSRunLoop) run]
29  0x7fff6880a0e1 _xpc_objc_main.cold.4
30  0x7fff6880a027 _xpc_objc_main
31  0x7fff68809b5a _xpc_copy_xpcservice_dictionary
LEAK: 2 WebPageProxy

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20200205/482a5220/attachment.htm>

More information about the webkit-unassigned mailing list