[Webkit-unassigned] [Bug 227194] ResizeObserver / IntersectionObserver memory leak on detached & out of reference elements
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Jul 2 02:06:59 PDT 2021
https://bugs.webkit.org/show_bug.cgi?id=227194
--- Comment #3 from Ryosuke Niwa <rniwa at webkit.org> ---
Oh, intersting. I think I misunderstood the semantics of ResizeObserver / InteractionObserver when I was advising Cathie to keep JS wrapper alive for these objects. We can't use GCReachableRef in these observers since m_pendingTargets aren't really transient entires but rather persistent entires that are always there while an element is being observed. Instead, we need to make visitChildren of JSResizeObserver and JSInteractionObserver each visit the opaque root of the observed nodes. This in turn implies that we need a lock for these data structures since visitChildren will be called concurrently to the main thread.
--
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20210702/41178b44/attachment-0001.htm>
More information about the webkit-unassigned
mailing list