Bug 139049 - [GTK]ASSERTION FAILED: prop >= firstCSSProperty && prop < (firstCSSProperty + numCSSProperties) in WebCore::CompositeAnimation::updateTransitions in
Summary: [GTK]ASSERTION FAILED: prop >= firstCSSProperty && prop < (firstCSSProperty +...
Status: RESOLVED CONFIGURATION CHANGED
Alias: None
Product: WebKit
Classification: Unclassified
Component: Animations (show other bugs)
Version: 528+ (Nightly build)
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Dean Jackson
URL:
Keywords:
Depends on:
Blocks: 116980
  Show dependency treegraph
 
Reported: 2014-11-25 10:39 PST by Renata Hodovan
Modified: 2023-05-10 02:13 PDT (History)
4 users (show)

See Also:

Attachments
Test case (222 bytes, text/html)
2014-11-25 10:39 PST, Renata Hodovan 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Renata Hodovan 2014-11-25 10:39:16 PST 
Created attachment 242202 [details]
Test case

Run this test with debug WebKit:

<!DOCTYPE html>
<style>
*{
    -webkit-margin-end:9vh;
    -webkit-transition-delay:inherit;
}
ul {
    -webkit-transition: -webkit-transform linear 1s;
}
</style>
<marquee>
    <ul>
        <li>a</li>
    </ul>
</marquee>


Backtrace:


ASSERTION FAILED: prop >= firstCSSProperty && prop < (firstCSSProperty + numCSSProperties)
../../Source/WebCore/page/animation/CompositeAnimation.cpp(123) : void WebCore::CompositeAnimation::updateTransitions(WebCore::RenderElement*, WebCore::RenderStyle*, WebCore::RenderStyle*)

Program received signal SIGSEGV, Segmentation fault.
[Switching to Thread 0x7fff98c4e700 (LWP 19630)]
0x00007fffedc7ea89 in WTFCrash () at ../../Source/WTF/wtf/Assertions.cpp:321
321	    *(int *)(uintptr_t)0xbbadbeef = 0;
#0  0x00007fffedc7ea89 in WTFCrash () at ../../Source/WTF/wtf/Assertions.cpp:321
#1  0x00007ffff37a8c93 in WebCore::CompositeAnimation::updateTransitions (this=0x84efb0, renderer=0x84eed0, currentStyle=0x7689f0, targetStyle=0x84a1f0) at ../../Source/WebCore/page/animation/CompositeAnimation.cpp:123
#2  0x00007ffff37aa240 in WebCore::CompositeAnimation::animate (this=0x84efb0, renderer=..., currentStyle=0x7689f0, targetStyle=...) at ../../Source/WebCore/page/animation/CompositeAnimation.cpp:301
#3  0x00007ffff3788e44 in WebCore::AnimationController::updateAnimations (this=0x6c2c90, renderer=..., newStyle=...) at ../../Source/WebCore/page/animation/AnimationController.cpp:520
#4  0x00007ffff3cab82a in WebCore::RenderElement::setAnimatableStyle (this=0x84eed0, style=...) at ../../Source/WebCore/rendering/RenderElement.h:288
#5  0x00007ffff3caa0db in WebCore::Style::resolveLocal (current=..., inheritedStyle=..., renderTreePosition=..., inheritedChange=WebCore::Style::Inherit) at ../../Source/WebCore/style/StyleResolveTree.cpp:764
#6  0x00007ffff3caa7a7 in WebCore::Style::resolveTree (current=..., inheritedStyle=..., renderTreePosition=..., change=WebCore::Style::Inherit) at ../../Source/WebCore/style/StyleResolveTree.cpp:918
#7  0x00007ffff3caaa16 in WebCore::Style::resolveTree (current=..., inheritedStyle=..., renderTreePosition=..., change=WebCore::Style::Inherit) at ../../Source/WebCore/style/StyleResolveTree.cpp:955
#8  0x00007ffff3caaa16 in WebCore::Style::resolveTree (current=..., inheritedStyle=..., renderTreePosition=..., change=WebCore::Style::Inherit) at ../../Source/WebCore/style/StyleResolveTree.cpp:955
#9  0x00007ffff3caaa16 in WebCore::Style::resolveTree (current=..., inheritedStyle=..., renderTreePosition=..., change=WebCore::Style::Inherit) at ../../Source/WebCore/style/StyleResolveTree.cpp:955
#10 0x00007ffff3caaa16 in WebCore::Style::resolveTree (current=..., inheritedStyle=..., renderTreePosition=..., change=WebCore::Style::Inherit) at ../../Source/WebCore/style/StyleResolveTree.cpp:955
#11 0x00007ffff3caad11 in WebCore::Style::resolveTree (document=..., change=WebCore::Style::NoChange) at ../../Source/WebCore/style/StyleResolveTree.cpp:997
#12 0x00007ffff30d999f in WebCore::Document::recalcStyle (this=0x61e030, change=WebCore::Style::NoChange) at ../../Source/WebCore/dom/Document.cpp:1796
#13 0x00007ffff30d9caa in WebCore::Document::updateStyleIfNeeded (this=0x61e030) at ../../Source/WebCore/dom/Document.cpp:1841
#14 0x00007ffff37110b3 in WebCore::FrameView::layout (this=0x65b630, allowSubtree=true) at ../../Source/WebCore/page/FrameView.cpp:1198
#15 0x00007ffff3715177 in WebCore::FrameView::visibleContentsResized (this=0x65b630) at ../../Source/WebCore/page/FrameView.cpp:2306
#16 0x00007ffff37de91c in WebCore::ScrollView::updateScrollbars (this=0x65b630, desiredOffset=...) at ../../Source/WebCore/platform/ScrollView.cpp:656
#17 0x00007ffff37dd1c3 in WebCore::ScrollView::setContentsSize (this=0x65b630, newSize=...) at ../../Source/WebCore/platform/ScrollView.cpp:385
#18 0x00007ffff370f61e in WebCore::FrameView::setContentsSize (this=0x65b630, size=...) at ../../Source/WebCore/page/FrameView.cpp:563
#19 0x00007ffff370f875 in WebCore::FrameView::adjustViewSize (this=0x65b630) at ../../Source/WebCore/page/FrameView.cpp:596
#20 0x00007ffff3711992 in WebCore::FrameView::layout (this=0x65b630, allowSubtree=true) at ../../Source/WebCore/page/FrameView.cpp:1344
#21 0x00007ffff30dbf65 in WebCore::Document::implicitClose (this=0x61e030) at ../../Source/WebCore/dom/Document.cpp:2486
#22 0x00007ffff35bbdb3 in WebCore::FrameLoader::checkCallImplicitClose (this=0x6c1c48) at ../../Source/WebCore/loader/FrameLoader.cpp:899
#23 0x00007ffff35bbb1f in WebCore::FrameLoader::checkCompleted (this=0x6c1c48) at ../../Source/WebCore/loader/FrameLoader.cpp:845
#24 0x00007ffff35bb888 in WebCore::FrameLoader::finishedParsing (this=0x6c1c48) at ../../Source/WebCore/loader/FrameLoader.cpp:765
#25 0x00007ffff30e4e39 in WebCore::Document::finishedParsing (this=0x61e030) at ../../Source/WebCore/dom/Document.cpp:4615
#26 0x00007ffff343a685 in WebCore::HTMLConstructionSite::finishedParsing (this=0x65d2b8) at ../../Source/WebCore/html/parser/HTMLConstructionSite.cpp:395
#27 0x00007ffff3478109 in WebCore::HTMLTreeBuilder::finished (this=0x65d2a0) at ../../Source/WebCore/html/parser/HTMLTreeBuilder.cpp:2998
#28 0x00007ffff344343a in WebCore::HTMLDocumentParser::end (this=0x787cd0) at ../../Source/WebCore/html/parser/HTMLDocumentParser.cpp:439
#29 0x00007ffff3443525 in WebCore::HTMLDocumentParser::attemptToRunDeferredScriptsAndEnd (this=0x787cd0) at ../../Source/WebCore/html/parser/HTMLDocumentParser.cpp:450
#30 0x00007ffff3441fd3 in WebCore::HTMLDocumentParser::prepareToStopParsing (this=0x787cd0) at ../../Source/WebCore/html/parser/HTMLDocumentParser.cpp:165
#31 0x00007ffff3443568 in WebCore::HTMLDocumentParser::attemptToEnd (this=0x787cd0) at ../../Source/WebCore/html/parser/HTMLDocumentParser.cpp:462
#32 0x00007ffff344361f in WebCore::HTMLDocumentParser::finish (this=0x787cd0) at ../../Source/WebCore/html/parser/HTMLDocumentParser.cpp:490
#33 0x00007ffff35ad1f9 in WebCore::DocumentWriter::end (this=0x6bd6b0) at ../../Source/WebCore/loader/DocumentWriter.cpp:246
#34 0x00007ffff3598f55 in WebCore::DocumentLoader::finishedLoading (this=0x6bd610, finishTime=0) at ../../Source/WebCore/loader/DocumentLoader.cpp:440
#35 0x00007ffff3598cbe in WebCore::DocumentLoader::notifyFinished (this=0x6bd610, resource=0x908fe0) at ../../Source/WebCore/loader/DocumentLoader.cpp:374
#36 0x00007ffff364974c in WebCore::CachedResource::checkNotify (this=0x908fe0) at ../../Source/WebCore/loader/cache/CachedResource.cpp:293
#37 0x00007ffff364984a in WebCore::CachedResource::finishLoading (this=0x908fe0) at ../../Source/WebCore/loader/cache/CachedResource.cpp:309
#38 0x00007ffff3645f3f in WebCore::CachedRawResource::finishLoading (this=0x908fe0, data=0x611280) at ../../Source/WebCore/loader/cache/CachedRawResource.cpp:104
#39 0x00007ffff35f9c5a in WebCore::SubresourceLoader::didFinishLoading (this=0x9096a0, finishTime=0) at ../../Source/WebCore/loader/SubresourceLoader.cpp:307
#40 0x00007ffff35f5a3f in WebCore::ResourceLoader::didFinishLoading (this=0x9096a0, finishTime=0) at ../../Source/WebCore/loader/ResourceLoader.cpp:502
#41 0x00007ffff3f9e209 in WebCore::readCallback (asyncResult=0x74c1d0, data=0x909d20) at ../../Source/WebCore/platform/network/soup/ResourceHandleSoup.cpp:1300
#42 0x00007fffeb8997d6 in async_ready_callback_wrapper (source_object=0x7c66d0, res=0x74c1d0, user_data=user_data@entry=0x909d20) at ginputstream.c:523
#43 0x00007fffeb8bf0d5 in g_task_return_now (task=0x74c1d0) at gtask.c:1077
#44 0x00007fffeb8bf0f9 in complete_in_idle_cb (task=0x74c1d0) at gtask.c:1086
#45 0x00007fffeaafea2d in g_main_dispatch (context=0x478020) at gmain.c:3064
#46 g_main_context_dispatch (context=context@entry=0x478020) at gmain.c:3663
#47 0x00007fffeaafed98 in g_main_context_iterate (context=0x478020, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at gmain.c:3734
#48 0x00007fffeaaff05a in g_main_loop_run (loop=0x9015b0) at gmain.c:3928
#49 0x00007ffff464b42e in WTF::RunLoop::run () at ../../Source/WTF/wtf/gtk/RunLoopGtk.cpp:59
#50 0x00007ffff2bb8250 in WebKit::ChildProcessMain<WebKit::WebProcess, WebKit::WebProcessMain> (argc=2, argv=0x7fffffffd968) at ../../Source/WebKit2/Shared/unix/ChildProcessMain.h:61
#51 0x00007ffff2bb80b5 in WebKit::WebProcessMainUnix (argc=2, argv=0x7fffffffd968) at ../../Source/WebKit2/WebProcess/gtk/WebProcessMainGtk.cpp:73
#52 0x0000000000400891 in main (argc=2, argv=0x7fffffffd968) at ../../Source/WebKit2/WebProcess/EntryPoint/unix/WebProcessMain.cpp:44
Comment 1 Simon Fraser (smfr) 2014-12-01 10:59:54 PST 
Which property is it asserting about?
Comment 2 Renata Hodovan 2014-12-03 02:04:37 PST 
(In reply to comment #1)
> Which property is it asserting about?

According to gdb, the property in the failing assertion is evaluated as CSSPropertyInvalid.
Comment 3 Brent Fulgham 2016-08-04 10:40:37 PDT 
This issue no longer happens in r204037 under GuardMalloc or ASAN. If you believe there is still an issue, please reopen this bug with a revised test case.
Comment 4 Renata Hodovan 2016-08-05 10:05:54 PDT 
Using the attached test case the issue still seems valid in r204165 with debug GTK build (but not with EFL).
Comment 5 Antoine Quint 2023-05-10 02:12:34 PDT 
This ASSERT() is now gone, so I expect this bug is no longer valid.