<html>
<head>
<base href="https://bugs.webkit.org/" />
</head>
<body><table border="1" cellspacing="0" cellpadding="8">
<tr>
<th>Bug ID</th>
<td><a class="bz_bug_link
bz_status_NEW "
title="NEW - Invalid FrameView::m_viewportRenderer after layout is finished."
href="https://bugs.webkit.org/show_bug.cgi?id=147848">147848</a>
</td>
</tr>
<tr>
<th>Summary</th>
<td>Invalid FrameView::m_viewportRenderer after layout is finished.
</td>
</tr>
<tr>
<th>Classification</th>
<td>Unclassified
</td>
</tr>
<tr>
<th>Product</th>
<td>WebKit
</td>
</tr>
<tr>
<th>Version</th>
<td>528+ (Nightly build)
</td>
</tr>
<tr>
<th>Hardware</th>
<td>Unspecified
</td>
</tr>
<tr>
<th>OS</th>
<td>Unspecified
</td>
</tr>
<tr>
<th>Status</th>
<td>NEW
</td>
</tr>
<tr>
<th>Severity</th>
<td>Normal
</td>
</tr>
<tr>
<th>Priority</th>
<td>P2
</td>
</tr>
<tr>
<th>Component</th>
<td>Layout and Rendering
</td>
</tr>
<tr>
<th>Assignee</th>
<td>webkit-unassigned@lists.webkit.org
</td>
</tr>
<tr>
<th>Reporter</th>
<td>zalan@apple.com
</td>
</tr></table>
<p>
<div>
<pre>0 WebCore 0x000000019680c128 WebCore::FrameView::contentsSizeRespectingOverflow() const + 128 (RenderStyle.h:306)
1 WebCore 0x000000019680c120 WebCore::FrameView::contentsSizeRespectingOverflow() const + 120 (FrameView.cpp:629)
2 WebKit 0x000000018acb73e0 WebKit::WebPage::mainFrameDidLayout() + 128 (WebPage.cpp:3522)
3 WebCore 0x00000001963bf3f0 WebCore::FrameView::performPostLayoutTasks() + 164 (FrameView.cpp:3045)
4 WebCore 0x00000001963ba964 WebCore::FrameView::layout(bool) + 496 (TemporaryChange.h:55)
5 WebCore 0x00000001966c32c8 WebCore::Document::updateLayoutIfDimensionsOutOfDate(WebCore::Element&, WebCore::DimensionsCheck) + 1312 (Document.cpp:2036)
6 WebCore 0x0000000196475a50 WebCore::Element::clientWidth() + 40 (Node.h:395)
7 WebCore 0x0000000196a7d39c WebCore::jsElementClientWidth(JSC::ExecState*, JSC::JSObject*, long long, JSC::PropertyName) + 48 (JSCJSValueInlines.h:141)
8 JavaScriptCore 0x000000018608d590 JSC::LLInt::getByVal(JSC::ExecState*, JSC::JSValue, JSC::JSValue) + 3284 (PropertySlot.h:257)
9 JavaScriptCore 0x000000018606c110 llint_slow_path_get_by_val + 180 (LLIntSlowPaths.cpp:749)
10 JavaScriptCore 0x00000001864b331c llint_entry + 12620
11 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
12 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
13 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
14 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
15 ??? 0x000000014b09cbc0 0 + 5553900480
16 JavaScriptCore 0x00000001864b5dd0 llint_entry + 23552
17 JavaScriptCore 0x00000001864b6004 llint_entry + 24116
18 JavaScriptCore 0x00000001864b5dd0 llint_entry + 23552
19 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
20 JavaScriptCore 0x00000001864b6004 llint_entry + 24116
21 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
22 JavaScriptCore 0x00000001864b6004 llint_entry + 24116
23 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
24 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
25 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
26 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
27 JavaScriptCore 0x00000001864b5e34 llint_entry + 23652
28 JavaScriptCore 0x00000001864affb8 vmEntryToJavaScript + 312
29 JavaScriptCore 0x00000001863dcd04 JSC::JITCode::execute(JSC::VM*, JSC::ProtoCallFrame*) + 180 (VM.h:384)
30 JavaScriptCore 0x000000018605e39c JSC::Interpreter::execute(JSC::ProgramExecutable*, JSC::ExecState*, JSC::JSObject*) + 8204 (Interpreter.cpp:901)
31 JavaScriptCore 0x00000001861b65e8 JSC::evaluate(JSC::ExecState*, JSC::SourceCode const&, JSC::JSValue, WTF::NakedPtr<JSC::Exception>&) + 440 (Completion.cpp:82)
32 WebCore 0x0000000196f1ad28 WebCore::ScriptController::evaluateInWorld(WebCore::ScriptSourceCode const&, WebCore::DOMWrapperWorld&) + 292 (JSMainThreadExecState.h:62)
33 WebCore 0x000000019636aa54 WebCore::ScriptElement::executeScript(WebCore::ScriptSourceCode const&) + 340 (ScriptElement.cpp:309)
34 WebCore 0x00000001964a89bc WebCore::ScriptElement::execute(WebCore::CachedScript*) + 188 (StdLibExtras.h:374)
35 WebCore 0x0000000196f2134c WebCore::ScriptRunner::timerFired() + 468 (ScriptRunner.cpp:122)
36 WebCore 0x0000000196342ca8 WebCore::ThreadTimers::sharedTimerFiredInternal() + 148 (ThreadTimers.cpp:135)
37 WebCore 0x0000000196342be8 WebCore::timerFired(__CFRunLoopTimer*, void*) + 36 (SharedTimerCF.cpp:82)
38 CoreFoundation 0x00000001849c97d4 __CFRUNLOOP_IS_CALLING_OUT_TO_A_TIMER_CALLBACK_FUNCTION__ + 28 (CFRunLoop.c:1630)
39 CoreFoundation 0x00000001849c9478 __CFRunLoopDoTimer + 884 (CFRunLoop.c:2168)
40 CoreFoundation 0x00000001849c6b8c __CFRunLoopRun + 1520 (CFRunLoop.c:2306)
41 CoreFoundation 0x00000001848f58a0 CFRunLoopRunSpecific + 384 (CFRunLoop.c:2814)
42 Foundation 0x000000018586894c -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 308 (NSRunLoop.m:367)
43 Foundation 0x00000001858bdf74 -[NSRunLoop(NSRunLoop) run] + 88 (NSRunLoop.m:388)
44 libxpc.dylib 0x0000000199eccd4c _xpc_objc_main + 660 (main.m:177)
45 libxpc.dylib 0x0000000199ecea80 xpc_main + 200 (init.c:1395)
46 com.apple.WebKit.WebContent 0x00000001000ab924 main + 56 (XPCServiceMain.mm:89)
47 libdyld.dylib 0x0000000199caa8b8 start + 4 (start_glue.s:80)</pre>
</div>
</p>
<hr>
<span>You are receiving this mail because:</span>
<ul>
<li>You are the assignee for the bug.</li>
</ul>
</body>
</html>