[Webkit-unassigned] [Bug 212537] ASSERTION FAILURE (r220931): !m_function in ~CompletionHandler() after switch tabs

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri May 29 12:50:51 PDT 2020 

https://bugs.webkit.org/show_bug.cgi?id=212537

--- Comment #4 from Chris Dumez <cdumez at apple.com> ---
(In reply to Chris Dumez from comment #3)
> I suspect the issue could be related to
> WebProcess::cancelMarkAllLayersVolatile(), which I believe gets called when
> cancelling suspension. cancelMarkAllLayersVolatile() destroys
> m_pageMarkingLayersAsVolatileCounter which may not have called its
> CompletionHandler yet.

Yes, this is what I see:
Thread 0 name:  Dispatch queue: com.apple.main-thread
Thread 0 Crashed:
0   WebKit                              0x0000000101014b20 WTFCrashWithInfo(int, char const*, char const*, int) + 20
1   WebKit                              0x00000001014930c4 WTF::Detail::CallableWrapper<WebKit::WebProcess::markAllLayersVolatile(WTF::CompletionHandler<void (bool)>&&)::$_2, void, WTF::RefCounterEvent>::call(WTF::RefCounterEvent) + 0
2   WebKit                              0x0000000101493560 std::__1::unique_ptr<WTF::RefCounter<WebKit::WebProcess::PageMarkingLayersAsVolatileCounterType>, std::__1::default_delete<WTF::RefCounter<WebKit::WebProcess::PageMarkingLayersAsVolatileCounterType> > >::reset(WTF::RefCounter<WebKit::WebProcess::PageMarkingLayersAsVolatileCounterType>*) + 76
3   WebKit                              0x000000010148edfc WebKit::WebProcess::cancelMarkAllLayersVolatile() + 40
4   WebKit                              0x000000010148f080 WebKit::WebProcess::processDidResume() + 192
5   WebKit                              0x000000010102e4d0 IPC::Connection::dispatchMessage(std::__1::unique_ptr<IPC::Decoder, std::__1::default_delete<IPC::Decoder> >) + 204
6   WebKit                              0x000000010102e780 IPC::Connection::dispatchOneIncomingMessage() + 232
7   JavaScriptCore                      0x00000001039aa324 WTF::RunLoop::performWork() + 688
8   JavaScriptCore                      0x00000001039aa4e0 WTF::RunLoop::performWork(void*) + 36
9   CoreFoundation                      0x00000001b1c5bb04 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 24

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20200529/f2bb2a79/attachment.htm>

More information about the webkit-unassigned mailing list