[Webkit-unassigned] [Bug 230109] [ BigSur arm64 EWS ] ASSERTION FAILED: m_globalScope->hasOneRef() ./workers/WorkerOrWorkletThread.cpp(155) : void WebCore::WorkerOrWorkletThread::workerOrWorkletThread()

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Mar 2 15:36:15 PST 2022 

https://bugs.webkit.org/show_bug.cgi?id=230109

--- Comment #6 from Chris Dumez <cdumez at apple.com> ---
I found a recent crash (Feb/24) but the crash looked like:
Thread 0 Crashed:: Dispatch queue: com.apple.main-thread
0   com.apple.JavaScriptCore            0x000000013c2f8324 WTFCrash + 20 (Assertions.cpp:322)
1   com.apple.WebCore                   0x0000000116f26930 WTFCrashWithInfo(int, char const*, char const*, int) + 32 (Assertions.h:741)
2   com.apple.WebCore                   0x000000011a88076c WebCore::JSEventListener::ensureJSFunction(WebCore::ScriptExecutionContext&) const + 596 (JSEventListener.h:157)
3   com.apple.WebCore                   0x000000011963e2e8 WebCore::JSEventListener::handleEvent(WebCore::ScriptExecutionContext&, WebCore::Event&) + 192 (JSEventListener.cpp:140)
4   com.apple.WebCore                   0x0000000119fbbb3c WebCore::EventTarget::innerInvokeEventListeners(WebCore::Event&, WTF::Vector<WTF::RefPtr<WebCore::RegisteredEventListener, WTF::RawPtrTraits<WebCore::RegisteredEventListener>, WTF::DefaultRefDerefTraits<WebCore::RegisteredEventListener> >, 1ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>, WebCore::EventTarget::EventInvokePhase) + 968 (EventTarget.cpp:363)
5   com.apple.WebCore                   0x0000000119fbb604 WebCore::EventTarget::fireEventListeners(WebCore::Event&, WebCore::EventTarget::EventInvokePhase) + 328 (EventTarget.cpp:295)
6   com.apple.WebCore                   0x0000000119fbb4a8 WebCore::EventTarget::dispatchEvent(WebCore::Event&) + 348 (EventTarget.cpp:253)
7   com.apple.WebCore                   0x000000011c2c0660 WebCore::Worker::dispatchEvent(WebCore::Event&) + 56 (Worker.cpp:226)
8   com.apple.WebCore                   0x0000000119de8350 WebCore::ActiveDOMObject::queueTaskToDispatchEventInternal(WebCore::EventTarget&, WebCore::TaskSource, WTF::Ref<WebCore::Event, WTF::RawPtrTraits<WebCore::Event> >&&)::$_3::operator()() const + 80 (ActiveDOMObject.cpp:176)
9   com.apple.WebCore                   0x0000000119de81cc WTF::Detail::CallableWrapper<WebCore::ActiveDOMObject::queueTaskToDispatchEventInternal(WebCore::EventTarget&, WebCore::TaskSource, WTF::Ref<WebCore::Event, WTF::RawPtrTraits<WebCore::Event> >&&)::$_3, void>::call() + 28 (Function.h:53)
10  com.apple.WebCore                   0x00000001168e0de4 WTF::Function<void ()>::operator()() const + 124 (Function.h:82)
11  com.apple.WebCore                   0x0000000119de8a98 WebCore::ActiveDOMObjectEventDispatchTask::execute() + 52 (ActiveDOMObject.cpp:160)

Looks like we're firing an event at the Worker object but its JS wrapper is already gone.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20220302/5784b4c6/attachment-0001.htm>

More information about the webkit-unassigned mailing list