Bug 105312

How to reproduce 1. Enable Clutter backend AC and build 2. Visit http://www.webkit.org/blog-files/3d-transforms/poster-circle.html 3. And then go to www.google.com Backtrace: Program received signal SIGSEGV, Segmentation fault. 0x00007ffff553b798 in WebCore::GraphicsLayer::~GraphicsLayer (this=0x189c1a0, __in_chrg=<optimized out>) at ../../Source/WebCore/platform/graphics/GraphicsLayer.cpp:112 112 ASSERT(!m_parent); // willBeDestroyed should have been called already. (gdb) bt #0 0x00007ffff553b798 in WebCore::GraphicsLayer::~GraphicsLayer (this=0x189c1a0, __in_chrg=<optimized out>) at ../../Source/WebCore/platform/graphics/GraphicsLayer.cpp:112 #1 0x00007ffff51f71dc in WebCore::GraphicsLayerClutter::~GraphicsLayerClutter ( this=0x189c1a0, __in_chrg=<optimized out>) at ../../Source/WebCore/platform/graphics/clutter/GraphicsLayerClutter.cpp:87 #2 0x00007ffff51f721c in WebCore::GraphicsLayerClutter::~GraphicsLayerClutter ( this=0x189c1a0, __in_chrg=<optimized out>) at ../../Source/WebCore/platform/graphics/clutter/GraphicsLayerClutter.cpp:98 #3 0x00007ffff45c8fa5 in WTF::deleteOwnedPtr<WebCore::GraphicsLayer> ( ptr=0x189c1a0) at ../../Source/WTF/wtf/OwnPtrCommon.h:60 #4 0x00007ffff45c8ffa in WTF::OwnPtr<WebCore::GraphicsLayer>::clear ( this=0x163a358) at ../../Source/WTF/wtf/OwnPtr.h:119 #5 0x00007ffff45c8f2c in WTF::OwnPtr<WebCore::GraphicsLayer>::operator= ( this=0x163a358) at ../../Source/WTF/wtf/OwnPtr.h:81 #6 0x00007ffff45c7f30 in WebKit::AcceleratedCompositingContext::setRootCompositingLayer (this=0x163a330, graphicsLayer=0x0) at ../../Source/WebKit/gtk/WebCoreSupport/AcceleratedCompositingContextClutter.cpp:101 #7 0x00007ffff45ccd24 in WebKit::ChromeClient::attachRootGraphicsLayer ( this=0x15d1c80, frame=0x15ff400, rootLayer=0x0) at ../../Source/WebKit/gtk/WebCoreSupport/ChromeClientGtk.cpp:998 #8 0x00007ffff5084dff in WebCore::RenderLayerCompositor::detachRootLayer ( this=0x181d9c0) at ../../Source/WebCore/rendering/RenderLayerCompositor.cpp:2489 #9 0x00007ffff50816ec in WebCore::RenderLayerCompositor::willMoveOffscreen ( this=0x181d9c0) at ../../Source/WebCore/rendering/RenderLayerCompositor.cpp:1466 #10 0x00007ffff512e38d in WebCore::RenderView::willMoveOffscreen (this=0x16208e8) at ../../Source/WebCore/rendering/RenderView.cpp:975 #11 0x00007ffff4930224 in WebCore::Document::documentWillBecomeInactive ( this=0x17bdcc0) at ../../Source/WebCore/dom/Document.cpp:4062 #12 0x00007ffff4929399 in WebCore::Document::detach (this=0x17bdcc0) at ../../Source/WebCore/dom/Document.cpp:2101 #13 0x00007ffff492953c in WebCore::Document::prepareForDestruction (this=0x17bdcc0) at ../../Source/WebCore/dom/Document.cpp:2150 #14 0x00007ffff4e80348 in WebCore::Frame::setView (this=0x15ff400, view=...) at ../../Source/WebCore/page/Frame.cpp:266 #15 0x00007ffff4e8291d in WebCore::Frame::createView (this=0x15ff400, viewportSize=..., backgroundColor=..., transparent=false, fixedLayoutSize=..., fixedVisibleContentRect=..., useFixedLayout=false, horizontalScrollbarMode=WebCore::ScrollbarAuto, horizontalLock=false, verticalScrollbarMode=WebCore::ScrollbarAuto, verticalLock=false) at ../../Source/WebCore/page/Frame.cpp:783 #16 0x00007ffff45e7541 in WebKit::FrameLoaderClient::transitionToCommittedForNewPage (this=0x15ef3e0) at ../../Source/WebKit/gtk/WebCoreSupport/FrameLoaderClientGtk.cpp:1254 #17 0x00007ffff4db7b17 in WebCore::FrameLoader::transitionToCommitted ( this=0x15ff480, cachedPage=...) at ../../Source/WebCore/loader/FrameLoader.cpp:1855 #18 0x00007ffff4db6f68 in WebCore::FrameLoader::commitProvisionalLoad ( this=0x15ff480) at ../../Source/WebCore/loader/FrameLoader.cpp:1697 #19 0x00007ffff4d9b3fb in WebCore::DocumentLoader::commitIfReady (this=0x2ddc400) at ../../Source/WebCore/loader/DocumentLoader.cpp:277 #20 0x00007ffff4d9b558 in WebCore::DocumentLoader::commitLoad (this=0x2ddc400, data=0x2d139a0 "<!doctype html><html itemscope=\"itemscope\" itemtype=\"http://schema.org/WebPage\"><head><meta itemprop=\"image\" content=\"/images/google_favicon_128.png\"><title>Google</title><script>(function(){\nwindow.g"..., length=512) at ../../Source/WebCore/loader/DocumentLoader.cpp:310 #21 0x00007ffff4d9bb32 in WebCore::DocumentLoader::receivedData (this=0x2ddc400, data=0x2d139a0 "<!doctype html><html itemscope=\"itemscope\" itemtype=\"http://schema.org/WebPage\"><head><meta itemprop=\"image\" content=\"/images/google_favicon_128.png\"><title>Google</title><script>(function(){\nwindow.g"..., length=512) at ../../Source/WebCore/loader/DocumentLoader.cpp:387 #22 0x00007ffff4de8ee1 in WebCore::MainResourceLoader::dataReceived ( this=0x2d049d0, resource=0x2d02e90, data=0x2d139a0 "<!doctype html><html itemscope=\"itemscope\" itemtype=\"http://schema.org/WebPage\"><head><meta itemprop=\"image\" content=\"/images/google_favicon_128.png\"><title>Google</title><script>(function(){\nwindow.g"..., length=512) at ../../Source/WebCore/loader/MainResourceLoader.cpp:487 #23 0x00007ffff4d7a40b in WebCore::CachedRawResource::data (this=0x2d02e90, data=..., allDataReceived=false) at ../../Source/WebCore/loader/cache/CachedRawResource.cpp:69 #24 0x00007ffff4dffe9b in WebCore::SubresourceLoader::sendDataToResource ( this=0x2d03450, data=0x2d0aeb0 "<!doctype html><html itemscope=\"itemscope\" itemtype=\"http://schema.org/WebPage\"><head><meta itemprop=\"image\" content=\"/images/google_favicon_128.png\"><title>Google</title><script>(function(){\nwindow.g"..., length=512) at ../../Source/WebCore/loader/SubresourceLoader.cpp:252 #25 0x00007ffff4dffbeb in WebCore::SubresourceLoader::didReceiveData ( this=0x2d03450, data=0x2d0aeb0 "<!doctype html><html itemscope=\"itemscope\" itemtype=\"http://schema.org/WebPage\"><head><meta itemprop=\"image\" content=\"/images/google_favicon_128.png\"><title>Google</title><script>(function(){\nwindow.g"..., length=512, encodedDataLength=512, allAtOnce=false) at ../../Source/WebCore/loader/SubresourceLoader.cpp:224 #26 0x00007ffff4df57aa in WebCore::ResourceLoader::didReceiveData (this=0x2d03450, data=0x2d0aeb0 "<!doctype html><html itemscope=\"itemscope\" itemtype=\"http://schema.org/WebPage\"><head><meta itemprop=\"image\" content=\"/images/google_favicon_128.png\"><title>Google</title><script>(function(){\nwindow.g"..., length=512, encodedDataLength=512) at ../../Source/WebCore/loader/ResourceLoader.cpp:450 #27 0x00007ffff55c1bca in WebCore::readCallback (asyncResult=0x16c8590, data=0x1a7a8b0) at ../../Source/WebCore/platform/network/soup/ResourceHandleSoup.cpp:1272 #28 0x00007ffff342b065 in async_ready_callback_wrapper (source_object=0x1821200, res=0x16c8590, user_data=0x1a7a8b0) at ginputstream.c:529 #29 0x00007ffff343fe7d in g_simple_async_result_complete (simple=0x16c8590) at gsimpleasyncresult.c:777 #30 0x00007ffff343ffac in complete_in_idle_cb (data=0x16c8590) at gsimpleasyncresult.c:789 #31 0x00007ffff2bae263 in g_main_dispatch (context=0x622280) at gmain.c:2784 #32 g_main_context_dispatch (context=0x622280) at gmain.c:3288 #33 0x00007ffff2bae5a8 in g_main_context_iterate (dispatch=1, block=<optimized out>, context=0x622280, self=<optimized out>) at gmain.c:3359 #34 g_main_context_iterate (context=0x622280, block=<optimized out>, dispatch=1, self=<optimized out>) at gmain.c:3296 #35 0x00007ffff2bae9ea in g_main_loop_run (loop=0x16e81e0) at gmain.c:3553 #36 0x00007ffff3b6742d in gtk_main () at /build/buildd/gtk+3.0-3.4.2/./gtk/gtkmain.c:1165 #37 0x0000000000405598 in main (argc=1, argv=0x7fffffffdfb8) at ../../Tools/GtkLauncher/main.c:541