[Webkit-unassigned] [Bug 223379] Crash viewing any stock on finance.google.com in WebCore::TranslateTransformOperation::~TranslateTransformOperation

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon May 3 08:36:42 PDT 2021 

https://bugs.webkit.org/show_bug.cgi?id=223379

--- Comment #4 from Michael Catanzaro <mcatanzaro at gnome.org> ---
Another variant on the same issue:

gdb) bt

   #0  std::__uniq_ptr_impl<WebCore::CalcExpressionNode, std::default_delete<WebCore::CalcExpressionNode> >::_M_ptr() const
    (this=0x45c057e) at /usr/include/c++/10.2.0/bits/unique_ptr.h:421
#1  std::unique_ptr<WebCore::CalcExpressionNode, std::default_delete<WebCore::CalcExpressionNode> >::get() const
    (this=0x45c057e) at /usr/include/c++/10.2.0/bits/unique_ptr.h:422
#2  std::unique_ptr<WebCore::CalcExpressionNode, std::default_delete<WebCore::CalcExpressionNode> >::operator*() const (this=0x45c057e) at /usr/include/c++/10.2.0/bits/unique_ptr.h:407
#3  WebCore::CalculationValue::expression() const (this=0x45c0576)
    at ../Source/WebCore/platform/CalculationValue.h:193
#4  WebCore::CalcExpressionBlendLength::CalcExpressionBlendLength(WebCore::Length, WebCore::Length, float)
    (this=0x7f57cc008780, from=..., to=..., progress=<optimized out>)
    at ../Source/WebCore/platform/CalculationValue.cpp:233
#5  0x00007f599627f9e7 in std::make_unique<WebCore::CalcExpressionBlendLength, WebCore::Length const&, WebCore::Length const&, double&>(WebCore::Length const&, WebCore::Length const&, double&) ()
    at ../Source/WebCore/platform/CalculationValue.h:67
#6  WTF::makeUnique<WebCore::CalcExpressionBlendLength, WebCore::Length const&, WebCore::Length const&, double&>(WebCore::Length const&, WebCore::Length const&, double&) () at DerivedSources/ForwardingHeaders/wtf/StdLibExtras.h:507
#7  WebCore::blendMixedTypes(WebCore::Length const&, WebCore::Length const&, double)
    (from=..., to=..., progress=<optimized out>) at ../Source/WebCore/platform/Length.cpp:305
#8  0x00007f599627fd27 in WebCore::blend(WebCore::Length const&, WebCore::Length const&, double)
    (from=..., to=..., progress=progress at entry=0.38128000497817993) at ../Source/WebCore/platform/Length.cpp:318
#9  0x00007f59963b1286 in WebCore::TranslateTransformOperation::blend(WebCore::TransformOperation const*, double, bool) (this=0x7f57cc035d70, from=<optimized out>, progress=<optimized out>, blendToIdentity=<optimized out>)
    at /usr/include/x86_64-linux-gnu/bits/string_fortified.h:34
#10 0x00007f5994ff55bb in Nicosia::applyTransformAnimation
    (listsMatch=<optimized out>, boxSize=..., progress=<optimized out>, to=..., from=...)
    at ../Source/WebCore/platform/graphics/transforms/TransformOperations.h:84
#11 Nicosia::Animation::applyInternal(Nicosia::Animation::ApplicationResult&, WebCore::AnimationValue const&, WebCore::AnimationValue const&, float)
    (this=0x7f57acaf1690, applicationResults=..., from=..., to=..., progress=<optimized out>)
    at ../Source/WebCore/platform/graphics/nicosia/NicosiaAnimation.cpp:314
#12 0x00007f5994ff683c in Nicosia::Animations::apply(Nicosia::Animation::ApplicationResult&, WTF::MonotonicTime)
    (this=this at entry=0x7f57a54d3a60, applicationResults=..., time=...)
    at ../Source/WebCore/platform/graphics/nicosia/NicosiaAnimation.cpp:377
#13 0x00007f5994ffa6c1 in WebCore::TextureMapperLayer::syncAnimations(WTF::MonotonicTime)
    (this=this at entry=0x7f57a54d3800, time=...)
    at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:748
#14 0x00007f5994ffaccb in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime)
    (this=0x7f57a54d3800, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:735
#15 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime)
    (this=<optimized out>, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#16 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime)
    (this=<optimized out>, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#17 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime)
    (this=<optimized out>, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#18 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime)
    (this=<optimized out>, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#19 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime)
    (this=<optimized out>, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#20 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime)
    (this=<optimized out>, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#21 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime)
    (this=<optimized out>, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#22 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime)
--Type <RET> for more, q to quit, c to continue without paging--c
    (this=<optimized out>, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#23 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime) (this=<optimized out>, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#24 0x00007f5994ffad33 in WebCore::TextureMapperLayer::applyAnimationsRecursively(WTF::MonotonicTime) (this=this at entry=0x7f5985e34000, time=...) at ../Source/WebCore/platform/graphics/texmap/TextureMapperLayer.cpp:741
#25 0x00007f5994c49773 in WebKit::CoordinatedGraphicsScene::paintToCurrentGLContext(WebCore::TransformationMatrix const&, WebCore::FloatRect const&, unsigned int) (this=this at entry=0x7f588c6fd000, matrix=..., clipRect=..., PaintFlags=PaintFlags at entry=1) at ../Source/WebKit/Shared/CoordinatedGraphics/CoordinatedGraphicsScene.cpp:71
#26 0x00007f5994c49d57 in WebKit::ThreadedCompositor::renderLayerTree() (this=0x7f58ac205b80) at DerivedSources/ForwardingHeaders/WebCore/FloatRect.h:71
#27 WebKit::ThreadedCompositor::renderLayerTree() (this=0x7f58ac205b80) at ../Source/WebKit/Shared/CoordinatedGraphics/threadedcompositor/ThreadedCompositor.cpp:179
#28 0x00007f599386b605 in operator() (__closure=0x0, userData=0x7f58ac2185a8) at ../Source/WTF/wtf/glib/RunLoopGLib.cpp:176
#29 _FUN(gpointer) () at ../Source/WTF/wtf/glib/RunLoopGLib.cpp:181
#30 0x00007f599386b883 in operator() (__closure=0x0, userData=0x7f58ac2185a8, callback=0x7f599386b5a0 <_FUN(gpointer)>, source=0x559e46f00dc0) at ../Source/WTF/wtf/glib/RunLoopGLib.cpp:53
#31 _FUN(GSource*, GSourceFunc, gpointer) () at ../Source/WTF/wtf/glib/RunLoopGLib.cpp:56
#32 0x00007f5993c7c1af in g_main_dispatch (context=0x7f57b8000b60) at ../glib/gmain.c:3337
#33 g_main_context_dispatch (context=0x7f57b8000b60) at ../glib/gmain.c:4055
#34 0x00007f5993c7c558 in g_main_context_iterate (context=0x7f57b8000b60, block=block at entry=1, dispatch=dispatch at entry=1, self=<optimized out>) at ../glib/gmain.c:4131
#35 0x00007f5993c7c873 in g_main_loop_run (loop=loop at entry=0x7f57b8001b10) at ../glib/gmain.c:4329
#36 0x00007f599386b9e0 in WTF::RunLoop::run() () at ../Source/WTF/wtf/glib/RunLoopGLib.cpp:108
#37 0x00007f599381bf3d in WTF::Function<void ()>::operator()() const (this=<synthetic pointer>) at ../Source/WTF/wtf/Function.h:80
#38 WTF::Thread::entryPoint(WTF::Thread::NewThreadContext*) (newThreadContext=0x7f58ac22fee8) at ../Source/WTF/wtf/Threading.cpp:181
#39 0x00007f599386dc4d in WTF::wtfThreadEntryPoint(void*) (context=<optimized out>) at ../Source/WTF/wtf/posix/ThreadingPOSIX.cpp:241
#40 0x00007f59904024d2 in start_thread (arg=<optimized out>) at pthread_create.c:477
#41 0x00007f59941b4323 in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:95

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20210503/9d98aa27/attachment.htm>

More information about the webkit-unassigned mailing list