[Webkit-unassigned] [Bug 224260] [MSE][GStreamer] Crash in WebCore::PlaybackPipeline::addSourceBuffer when loading particular vimeo video
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Tue Apr 6 20:11:20 PDT 2021
https://bugs.webkit.org/show_bug.cgi?id=224260
Michael Catanzaro <mcatanzaro at gnome.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |mcatanzaro at gnome.org
--- Comment #1 from Michael Catanzaro <mcatanzaro at gnome.org> ---
(In reply to Michael Catanzaro from comment #0)
> I'll attach a full backtrace for this critical
Um, it seems one of the stack frames exceeded my terminal scrollback. O_O Will attach a "full" backtrace for the first few frames. Truncated backtrace for the critical:
#0 g_logv
(log_domain=0x7f8e23844510 <g_log_domain_gstreamer> "GStreamer", log_level=G_LOG_LEVEL_CRITICAL, format=<optimized out>, args=<optimized out>) at ../glib/gmessages.c:1413
#1 0x00007f8e2638cd73 in g_log
(log_domain=<optimized out>, log_level=log_level at entry=G_LOG_LEVEL_CRITICAL, format=format at entry=0x7f8e263e4ad0 "%s: assertion '%s' failed") at ../glib/gmessages.c:1451
#2 0x00007f8e2638d59d in g_return_if_fail_warning
(log_domain=<optimized out>, pretty_function=pretty_function at entry=0x7f8e2384e850 <__func__.23> "gst_element_post_message", expression=expression at entry=0x7f8e23845699 "GST_IS_ELEMENT (element)") at ../glib/gmessages.c:2883
#3 0x00007f8e237c3bad in gst_element_post_message (element=0x0, message=0x558ab8755d90 [GstMessage])
at ../gst/gstelement.c:2035
#4 0x00007f8e290f859b in WebCore::PlaybackPipeline::notifyDurationChanged() (this=<optimized out>)
at DerivedSources/ForwardingHeaders/wtf/glib/GRefPtr.h:104
#5 0x00007f8e290f577d in WebCore::MediaPlayerPrivateGStreamerMSE::durationChanged() (this=0x7f8c47003a80)
at DerivedSources/ForwardingHeaders/wtf/RawPtrTraits.h:43
#6 0x00007f8e290f5bfd in WebCore::MediaSourcePrivateGStreamer::durationChanged(WTF::MediaTime const&)
(this=0x7f8c6c08f8c0) at ../Source/WebCore/platform/graphics/gstreamer/mse/MediaSourcePrivateGStreamer.cpp:107
#7 0x00007f8e27ea1748 in WebCore::MediaSource::setDurationInternal(WTF::MediaTime const&)
(this=this at entry=0x7f8d4c7e4680, duration=...) at DerivedSources/ForwardingHeaders/wtf/RawPtrTraits.h:43
#8 0x00007f8e27ea1f71 in WebCore::MediaSource::setDuration(double)
(this=this at entry=0x7f8d4c7e4680, duration=<optimized out>)
at ../Source/WebCore/Modules/mediasource/MediaSource.cpp:523
#9 0x00007f8e279fa104 in operator() (__closure=<optimized out>) at DerivedSources/WebCore/JSMediaSource.cpp:354
#10 WebCore::AttributeSetter::call<WebCore::setJSMediaSource_durationSetter(JSC::JSGlobalObject&, WebCore::JSMediaSource&, JSC::JSValue)::<lambda()> > (functor=..., functor=..., throwScope=..., lexicalGlobalObject=...)
at ../Source/WebCore/bindings/js/JSDOMAttribute.h:99
#11 WebCore::setJSMediaSource_durationSetter (value=..., thisObject=..., lexicalGlobalObject=...)
at DerivedSources/WebCore/JSMediaSource.cpp:353
#12 WebCore::IDLAttribute<WebCore::JSMediaSource>::set<WebCore::setJSMediaSource_durationSetter>
(attributeName=0x7f8e293ca4c5 "duration", encodedValue=4639633856514973412, thisValue=<error reading variable: value has been optimized out>, lexicalGlobalObject=...) at ../Source/WebCore/bindings/js/JSDOMAttribute.h:50
#13 WebCore::setJSMediaSource_duration(JSC::JSGlobalObject*, JSC::EncodedJSValue, JSC::EncodedJSValue)
(lexicalGlobalObject=0x7f8cac0dc068,
lexicalGlobalObject at entry=<error reading variable: value has been optimized out>, thisValue=<error reading variable: value has been optimized out>, encodedValue=4639633856514973412,
encodedValue at entry=<error reading variable: value has been optimized out>)
at DerivedSources/WebCore/JSMediaSource.cpp:361
#14 0x00007f8e25aa7a23 in JSC::callCustomSetter(JSC::JSGlobalObject*, bool (*)(JSC::JSGlobalObject*, long, long), bool, JSC::JSObject*, JSC::JSValue, JSC::JSValue)
(globalObject=<optimized out>, setter=<optimized out>, isAccessor=<optimized out>, slotBase=<optimized out>, thisValue=..., value=...) at ../Source/JavaScriptCore/runtime/JSCJSValueInlines.h:219
#15 0x00007f8e25bb9b41 in JSC::JSObject::putInlineSlow(JSC::JSGlobalObject*, JSC::PropertyName, JSC::JSValue, JSC::PutPropertySlot&)
(this=0x7f8c462e2338, globalObject=globalObject at entry=0x7f8cac0dc068, propertyName=..., value=..., slot=...)
at ../Source/JavaScriptCore/runtime/PutPropertySlot.h:111
#16 0x00007f8e258fe9a5 in JSC::JSObject::putInlineForJSObject(JSC::JSCell*, JSC::JSGlobalObject*, JSC::PropertyName, JSC::JSValue, JSC::PutPropertySlot&)
(slot=..., value=..., propertyName=..., globalObject=0x7f8cac0dc068, cell=<optimized out>)
at ../Source/JavaScriptCore/runtime/JSObjectInlines.h:277
#17 JSC::JSCell::putInline(JSC::JSGlobalObject*, JSC::PropertyName, JSC::JSValue, JSC::PutPropertySlot&)
(slot=..., value=..., propertyName=..., globalObject=0x7f8cac0dc068, this=<optimized out>)
at ../Source/JavaScriptCore/runtime/JSCellInlines.h:447
#18 JSC::JSValue::putInline(JSC::JSGlobalObject*, JSC::PropertyName, JSC::JSValue, JSC::PutPropertySlot&)
(slot=..., value=..., propertyName=..., globalObject=0x7f8cac0dc068, this=0x7ffc0c3c0be8)
at ../Source/JavaScriptCore/runtime/JSCJSValueInlines.h:1060
#19 JSC::LLInt::llint_slow_path_put_by_id(JSC::CallFrame*, JSC::Instruction const*) (callFrame=<optimized out>, pc=0x7f8cac2b4576) at ../Source/JavaScriptCore/llint/LLIntSlowPaths.cpp:907
#20 0x00007f8e24f2fe2d in llint_op_put_by_id () at /usr/lib/debug/source/sdk/webkitgtk.bst/Source/JavaScriptCore/llint/LowLevelInterpreter64.asm:97
#21 0x00007ffc0c3c0d00 in ()
#22 0x00007f8e24f40b6c in llint_op_call () at /usr/lib/debug/source/sdk/webkitgtk.bst/Source/JavaScriptCore/llint/LowLevelInterpreter.asm:1093
#23 0x0000000000000000 in ()
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20210407/70ba91e2/attachment-0001.htm>
More information about the webkit-unassigned
mailing list