[Webkit-unassigned] [Bug 256189] New: New-Test [ wk2 Debug iOS, Monterey+ x86_64] ASSERTION FAILED: decontaminate()

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon May 1 17:08:08 PDT 2023 

https://bugs.webkit.org/show_bug.cgi?id=256189

            Bug ID: 256189
           Summary: New-Test [ wk2 Debug iOS, Monterey+ x86_64] ASSERTION
                    FAILED: decontaminate()
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: New Bugs
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: Jenner at apple.com

ipc/wait-for-video-output-will-change.html 

is a constant crash/assertion on Debug for iOS, and Monterey+ wk2 but only on Intel Macs.

HISTORY:
https://results.webkit.org/?suite=layout-tests&test=ipc%2Fwait-for-video-output-will-change.html

ASSERTION/CRASH TEXT:
ASSERTION FAILED: decontaminate()
./runtime/StructureID.h(132) : JSC::Structure *JSC::StructureID::decode() const
1   0x7d827d979 WTFCrash
2   0x7d9e669fb WTFCrashWithInfo(int, char const*, char const*, int)
3   0x7d9d79c3e JSC::StructureID::decode() const
4   0x7d9cc35f5 JSC::JSCell::structure() const
5   0x7d9cc36c6 JSC::JSCell::classInfo() const
6   0x7d8402609 JSC::JSCell::inherits(JSC::ClassInfo const*) const
7   0x7d9fd7790 JSC::ScriptExecutable const* JSC::jsCast<JSC::ScriptExecutable const*, JSC::ExecutableBase const>(JSC::ExecutableBase const*)
8   0x7d9fc1ef8 JSC::ExecutableBase::hasJITCodeForCall() const
9   0x7d9665d90 JSC::ExecutableBase::hasJITCodeFor(JSC::CodeSpecializationKind) const
10  0x7d963b2a3 void JSC::ScriptExecutable::prepareForExecution<JSC::FunctionExecutable>(JSC::VM&, JSC::JSFunction*, JSC::JSScope*, JSC::CodeSpecializationKind, JSC::CodeBlock*&)
11  0x7d9a7a213 JSC::Interpreter::executeCallImpl(JSC::VM&, JSC::JSObject*, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&)
12  0x7d9a7a5c0 JSC::Interpreter::executeCall(JSC::JSObject*, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&)
13  0x7d9d2065d JSC::call(JSC::JSGlobalObject*, JSC::JSValue, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&)
14  0x7d9d20915 JSC::profiledCall(JSC::JSGlobalObject*, JSC::ProfilingReason, JSC::JSValue, JSC::CallData const&, JSC::JSValue, JSC::ArgList const&)
15  0x7d8c35f85 JSObjectCallAsFunction
16  0x7b3f541a5 WebKit::IPCTestingAPI::JSMessageListener::willSendMessage(IPC::Encoder const&, WTF::OptionSet<IPC::SendOption>)
17  0x7b4650acc IPC::Connection::sendMessage(WTF::UniqueRef<IPC::Encoder>&&, WTF::OptionSet<IPC::SendOption>, std::__1::optional<WTF::Thread::QOS>)
18  0x7b3cbc8d6 bool IPC::Connection::send<Messages::RemoteSampleBufferDisplayLayerManager::ReleaseLayer>(Messages::RemoteSampleBufferDisplayLayerManager::ReleaseLayer&&, unsigned long long, WTF::OptionSet<IPC::SendOption>, std::__1::optional<WTF::Thread::QOS>)
19  0x7b3cbc768 WebKit::SampleBufferDisplayLayer::~SampleBufferDisplayLayer()
20  0x7b3cbcb65 WebKit::SampleBufferDisplayLayer::~SampleBufferDisplayLayer()
21  0x7b3cbcbc9 WebKit::SampleBufferDisplayLayer::~SampleBufferDisplayLayer()
22  0x78d4bffdc std::__1::default_delete<WebCore::SampleBufferDisplayLayer>::operator()[abi:v15006](WebCore::SampleBufferDisplayLayer*) const
23  0x78d4bff5c std::__1::unique_ptr<WebCore::SampleBufferDisplayLayer, std::__1::default_delete<WebCore::SampleBufferDisplayLayer> >::reset[abi:v15006](WebCore::SampleBufferDisplayLayer*)
24  0x78d4a0ef1 std::__1::unique_ptr<WebCore::SampleBufferDisplayLayer, std::__1::default_delete<WebCore::SampleBufferDisplayLayer> >::operator=[abi:v15006](std::nullptr_t)
25  0x78d49f12c WebCore::MediaPlayerPrivateMediaStreamAVFObjC::destroyLayers()
26  0x78d4b5d65 WebCore::MediaPlayerPrivateMediaStreamAVFObjC::renderVideoWillBeDestroyed()
27  0x78fb8a8f5 WebCore::MediaPlayer::renderVideoWillBeDestroyed()
28  0x7902d2675 WebCore::RenderVideo::willBeDestroyed()
29  0x79024a2b5 WebCore::RenderObject::destroy()
30  0x79024a0f9 WebCore::RenderObjectDeleter::operator()(WebCore::RenderObject*) const
31  0x7901325ec std::__1::unique_ptr<WebCore::RenderObject, WebCore::RenderObjectDeleter>::reset[abi:v15006](WebCore::RenderObject*)
com.apple.WebKit.WebContent.Development terminated (pid 42962) for reason: crash
LEAK: 1 WebPageProxy

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20230502/9e41f31e/attachment.htm>

More information about the webkit-unassigned mailing list