Bug 164814

Summary: Add more assertions to ElementQueue diagnose a bug
Product: WebKit Reporter: Ryosuke Niwa <rniwa>
Component: DOMAssignee: Ryosuke Niwa <rniwa>
Status: RESOLVED FIXED    
Severity: Normal CC: ap, cdumez, commit-queue, dbates, esprehn+autocc, kangil.han, koivisto
Priority: P2    
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   
Bug Depends on:    
Bug Blocks: 162029    
Attachments:
Description Flags
Tightens assertions
none
Patch for landing
none
Set m_invoking in release builds none

Ryosuke Niwa
Reported 2016-11-15 19:37:25 PST
We seem to be sporadically hitting an assertion in CustomElementReactionStack::ElementQueue on our bots. I don’t quite understand how this is possible. We swap the vector at the beginning of the function before start invoking on elements. So the only way m_elements can be not empty is if an item was added to m_elements while we’re calling invokeAll: inline void CustomElementReactionStack::ElementQueue::invokeAll() { #if !ASSERT_DISABLED TemporaryChange<bool> invoking(m_invoking); #endif Vector<Ref<Element>> elements; elements.swap(m_elements); for (auto& element : elements) { auto* queue = element->reactionQueue(); ASSERT(queue); queue->invokeAll(element.get()); } ASSERT(m_elements.isEmpty()); } But I’ve added an assertion for m_invoking so that m_invoking is false when we’re calling add: inline void CustomElementReactionStack::ElementQueue::add(Element& element) { ASSERT(!m_invoking); // FIXME: Avoid inserting the same element multiple times. m_elements.append(element); } which isn't firing...
Attachments
Tightens assertions (2.30 KB, patch)
2016-11-15 19:40 PST, Ryosuke Niwa 		no flags
DetailsFormatted DiffDiff
Patch for landing (2.80 KB, patch)
2016-11-15 21:16 PST, Ryosuke Niwa 		no flags
DetailsFormatted DiffDiff
Set m_invoking in release builds (1.31 KB, patch)
2016-12-05 21:36 PST, Ryosuke Niwa 		no flags
DetailsFormatted DiffDiff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.
Ryosuke Niwa
Comment 1 2016-11-15 19:40:21 PST
Created attachment 294918 [details] Tightens assertions
Yusuke Suzuki
Comment 2 2016-11-15 19:42:51 PST
Comment on attachment 294918 [details] Tightens assertions r=me
Ryosuke Niwa
Comment 3 2016-11-15 21:16:13 PST
Created attachment 294923 [details] Patch for landing
WebKit Commit Bot
Comment 4 2016-11-15 22:18:21 PST
Comment on attachment 294923 [details] Patch for landing Clearing flags on attachment: 294923 Committed r208785: <http://trac.webkit.org/changeset/208785>
WebKit Commit Bot
Comment 5 2016-11-15 22:18:26 PST
All reviewed patches have been landed. Closing bug.
Ryosuke Niwa
Comment 6 2016-12-05 21:36:34 PST
Reopening to attach new patch.
Ryosuke Niwa
Comment 7 2016-12-05 21:36:37 PST
Created attachment 296267 [details] Set m_invoking in release builds
WebKit Commit Bot
Comment 8 2016-12-06 15:02:23 PST
Comment on attachment 296267 [details] Set m_invoking in release builds Clearing flags on attachment: 296267 Committed r209426: <http://trac.webkit.org/changeset/209426>
WebKit Commit Bot
Comment 9 2016-12-06 15:02:28 PST
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.