Created attachment 314566 [details] Test Load the attached test with debug WebKitTestRunner: Checked version: 52ec9f7 OS: macOS Sierra (10.12.5) <textarea></textarea> <br></br> <img height="360"></a><br></br><br></br><br></br><br></br><br></br> <select autofocus=-></select> <legend style="position: fixed"></legend> <TABLE style="-webkit-writing-mode: vertical-lr" height="2147483647"></TABLE> <svg opacity="0.2"></svg> <video> Backtrace: ASSERTION FAILED: !m_hasComputedRepaintRect || m_outlineBox == renderer().outlineBoundsForRepaint(renderer().containerForRepaint()) WebKit/Source/WebCore/rendering/RenderLayer.cpp(893) : void WebCore::RenderLayer::updateLayerPositionsAfterScroll(WebCore::RenderGeometryMap *, UpdateLayerPositionsAfterScrollFlags) 1 0x134d41f11 WTFCrash 2 0x11bbc2d83 WebCore::RenderLayer::updateLayerPositionsAfterScroll(WebCore::RenderGeometryMap*, unsigned int) 3 0x11bbc2dc7 WebCore::RenderLayer::updateLayerPositionsAfterScroll(WebCore::RenderGeometryMap*, unsigned int) 4 0x11bbc2dc7 WebCore::RenderLayer::updateLayerPositionsAfterScroll(WebCore::RenderGeometryMap*, unsigned int) 5 0x11bbc1fcf WebCore::RenderLayer::updateLayerPositionsAfterDocumentScroll() 6 0x117b9be94 WebCore::FrameView::updateLayerPositionsAfterScrolling() 7 0x11c57da67 WebCore::ScrollView::completeUpdatesAfterScrollTo(WebCore::IntSize const&) 8 0x11c57e2f2 WebCore::ScrollView::scrollTo(WebCore::IntPoint const&) 9 0x117ba9153 WebCore::FrameView::scrollTo(WebCore::IntPoint const&) 10 0x11c57cedf WebCore::ScrollView::setScrollOffset(WebCore::IntPoint const&) 11 0x11c57cfdc non-virtual thunk to WebCore::ScrollView::setScrollOffset(WebCore::IntPoint const&) 12 0x11c47f96f WebCore::ScrollableArea::scrollPositionChanged(WebCore::IntPoint const&) 13 0x11c47f325 WebCore::ScrollableArea::notifyScrollPositionChanged(WebCore::IntPoint const&) 14 0x116241a01 WebCore::AsyncScrollingCoordinator::reconcileScrollingState(WebCore::FrameView&, WebCore::FloatPoint const&, WTF::Variant<std::optional<WebCore::FloatPoint>, std::optional<WebCore::FloatRect> > const&, bool, bool, WebCore::ScrollingLayerPositionAction) 15 0x11623f6bb WebCore::AsyncScrollingCoordinator::updateScrollPositionAfterAsyncScroll(unsigned long long, WebCore::FloatPoint const&, std::optional<WebCore::FloatPoint>, bool, WebCore::ScrollingLayerPositionAction) 16 0x11623efa1 WebCore::AsyncScrollingCoordinator::requestScrollPositionUpdate(WebCore::FrameView&, WebCore::IntPoint const&) 17 0x117b9e675 WebCore::FrameView::requestScrollPositionUpdate(WebCore::IntPoint const&) 18 0x117b9e79c non-virtual thunk to WebCore::FrameView::requestScrollPositionUpdate(WebCore::IntPoint const&) 19 0x11c57fe74 WebCore::ScrollView::setScrollPosition(WebCore::IntPoint const&) 20 0x117b9b4b3 WebCore::FrameView::setScrollPosition(WebCore::IntPoint const&) 21 0x11bbda287 WebCore::RenderLayer::scrollRectToVisible(WebCore::SelectionRevealMode, WebCore::LayoutRect const&, bool, WebCore::ScrollAlignment const&, WebCore::ScrollAlignment const&) 22 0x11bbda470 WebCore::RenderLayer::scrollRectToVisible(WebCore::SelectionRevealMode, WebCore::LayoutRect const&, bool, WebCore::ScrollAlignment const&, WebCore::ScrollAlignment const&) 23 0x11be2592e WebCore::RenderObject::scrollRectToVisible(WebCore::SelectionRevealMode, WebCore::LayoutRect const&, bool, WebCore::ScrollAlignment const&, WebCore::ScrollAlignment const&) 24 0x11757817c WebCore::Element::updateFocusAppearance(WebCore::SelectionRestorationMode, WebCore::SelectionRevealMode) 25 0x11757743b WebCore::Element::focus(bool, WebCore::FocusDirection) 26 0x118039dcf WebCore::HTMLFormControlElement::didAttachRenderers()::$_1::operator()() const 27 0x118039c89 WTF::Function<void ()>::CallableWrapper<WebCore::HTMLFormControlElement::didAttachRenderers()::$_1>::call() 28 0x11604a2f1 WTF::Function<void ()>::operator()() const 29 0x11cbd726d WebCore::Style::PostResolutionCallbackDisabler::~PostResolutionCallbackDisabler() 30 0x11cbd7385 WebCore::Style::PostResolutionCallbackDisabler::~PostResolutionCallbackDisabler() 31 0x11716a61a WebCore::Document::resolveStyle(WebCore::Document::ResolveStyleType) ASAN:DEADLYSIGNAL ================================================================= ==20115==ERROR: AddressSanitizer: SEGV on unknown address 0x0000bbadbeef (pc 0x000134d41f49 bp 0x7fff529174b0 sp 0x7fff529174a0 T0) #0 0x134d41f48 in WTFCrash (WebKit/WebKitBuild/Debug/JavaScriptCore.framework/Versions/A/JavaScriptCore+0x3554f48) #1 0x11bbc2d82 in WebCore::RenderLayer::updateLayerPositionsAfterScroll(WebCore::RenderGeometryMap*, unsigned int) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x5c6ad82) #2 0x11bbc2dc6 in WebCore::RenderLayer::updateLayerPositionsAfterScroll(WebCore::RenderGeometryMap*, unsigned int) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x5c6adc6) #3 0x11bbc2dc6 in WebCore::RenderLayer::updateLayerPositionsAfterScroll(WebCore::RenderGeometryMap*, unsigned int) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x5c6adc6) #4 0x11bbc1fce in WebCore::RenderLayer::updateLayerPositionsAfterDocumentScroll() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x5c69fce) #5 0x117b9be93 in WebCore::FrameView::updateLayerPositionsAfterScrolling() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1c43e93) #6 0x11c57da66 in WebCore::ScrollView::completeUpdatesAfterScrollTo(WebCore::IntSize const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x6625a66) #7 0x11c57e2f1 in WebCore::ScrollView::scrollTo(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x66262f1) #8 0x117ba9152 in WebCore::FrameView::scrollTo(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1c51152) #9 0x11c57cede in WebCore::ScrollView::setScrollOffset(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x6624ede) #10 0x11c57cfdb in non-virtual thunk to WebCore::ScrollView::setScrollOffset(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x6624fdb) #11 0x11c47f96e in WebCore::ScrollableArea::scrollPositionChanged(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x652796e) #12 0x11c47f324 in WebCore::ScrollableArea::notifyScrollPositionChanged(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x6527324) #13 0x116241a00 in WebCore::AsyncScrollingCoordinator::reconcileScrollingState(WebCore::FrameView&, WebCore::FloatPoint const&, WTF::Variant<std::optional<WebCore::FloatPoint>, std::optional<WebCore::FloatRect> > const&, bool, bool, WebCore::ScrollingLayerPositionAction) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x2e9a00) #14 0x11623f6ba in WebCore::AsyncScrollingCoordinator::updateScrollPositionAfterAsyncScroll(unsigned long long, WebCore::FloatPoint const&, std::optional<WebCore::FloatPoint>, bool, WebCore::ScrollingLayerPositionAction) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x2e76ba) #15 0x11623efa0 in WebCore::AsyncScrollingCoordinator::requestScrollPositionUpdate(WebCore::FrameView&, WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x2e6fa0) #16 0x117b9e674 in WebCore::FrameView::requestScrollPositionUpdate(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1c46674) #17 0x117b9e79b in non-virtual thunk to WebCore::FrameView::requestScrollPositionUpdate(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1c4679b) #18 0x11c57fe73 in WebCore::ScrollView::setScrollPosition(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x6627e73) #19 0x117b9b4b2 in WebCore::FrameView::setScrollPosition(WebCore::IntPoint const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1c434b2) #20 0x11bbda286 in WebCore::RenderLayer::scrollRectToVisible(WebCore::SelectionRevealMode, WebCore::LayoutRect const&, bool, WebCore::ScrollAlignment const&, WebCore::ScrollAlignment const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x5c82286) #21 0x11bbda46f in WebCore::RenderLayer::scrollRectToVisible(WebCore::SelectionRevealMode, WebCore::LayoutRect const&, bool, WebCore::ScrollAlignment const&, WebCore::ScrollAlignment const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x5c8246f) #22 0x11be2592d in WebCore::RenderObject::scrollRectToVisible(WebCore::SelectionRevealMode, WebCore::LayoutRect const&, bool, WebCore::ScrollAlignment const&, WebCore::ScrollAlignment const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x5ecd92d) #23 0x11757817b in WebCore::Element::updateFocusAppearance(WebCore::SelectionRestorationMode, WebCore::SelectionRevealMode) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x162017b) #24 0x11757743a in WebCore::Element::focus(bool, WebCore::FocusDirection) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x161f43a) #25 0x118039dce in WebCore::HTMLFormControlElement::didAttachRenderers()::$_1::operator()() const (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x20e1dce) #26 0x118039c88 in WTF::Function<void ()>::CallableWrapper<WebCore::HTMLFormControlElement::didAttachRenderers()::$_1>::call() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x20e1c88) #27 0x11604a2f0 in WTF::Function<void ()>::operator()() const (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0xf22f0) #28 0x11cbd726c in WebCore::Style::PostResolutionCallbackDisabler::~PostResolutionCallbackDisabler() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x6c7f26c) #29 0x11cbd7384 in WebCore::Style::PostResolutionCallbackDisabler::~PostResolutionCallbackDisabler() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x6c7f384) #30 0x11716a619 in WebCore::Document::resolveStyle(WebCore::Document::ResolveStyleType) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1212619) #31 0x11714e8ca in WebCore::Document::updateStyleIfNeeded() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x11f68ca) #32 0x11719deb0 in WebCore::Document::finishedParsing() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1245eb0) #33 0x117f54f95 in WebCore::HTMLConstructionSite::finishedParsing() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1ffcf95) #34 0x11826bf27 in WebCore::HTMLTreeBuilder::finished() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x2313f27) #35 0x117fcf83b in WebCore::HTMLDocumentParser::end() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x207783b) #36 0x117fc9f06 in WebCore::HTMLDocumentParser::attemptToRunDeferredScriptsAndEnd() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x2071f06) #37 0x117fc9abd in WebCore::HTMLDocumentParser::prepareToStopParsing() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x2071abd) #38 0x117fcf95b in WebCore::HTMLDocumentParser::attemptToEnd() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x207795b) #39 0x117fcfa97 in WebCore::HTMLDocumentParser::finish() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x2077a97) #40 0x1173747af in WebCore::DocumentWriter::end() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x141c7af) #41 0x1172bf696 in WebCore::DocumentLoader::finishedLoading() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1367696) #42 0x1172bf092 in WebCore::DocumentLoader::notifyFinished(WebCore::CachedResource&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x1367092) #43 0x1165722e3 in WebCore::CachedResource::checkNotify() (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x61a2e3) #44 0x116572973 in WebCore::CachedResource::finishLoading(WebCore::SharedBuffer*) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x61a973) #45 0x116563401 in WebCore::CachedRawResource::finishLoading(WebCore::SharedBuffer*) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x60b401) #46 0x11cc0b7e1 in WebCore::SubresourceLoader::didFinishLoading(WebCore::NetworkLoadMetrics const&) (WebKit/WebKitBuild/Debug/WebCore.framework/Versions/A/WebCore+0x6cb37e1) #47 0x10f23256b in WebKit::WebResourceLoader::didFinishResourceLoad(WebCore::NetworkLoadMetrics const&) (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x1f3956b) #48 0x10f23f2b9 in void IPC::callMemberFunctionImpl<WebKit::WebResourceLoader, void (WebKit::WebResourceLoader::*)(WebCore::NetworkLoadMetrics const&), std::__1::tuple<WebCore::NetworkLoadMetrics>, 0ul>(WebKit::WebResourceLoader*, void (WebKit::WebResourceLoader::*)(WebCore::NetworkLoadMetrics const&), std::__1::tuple<WebCore::NetworkLoadMetrics>&&, std::__1::integer_sequence<unsigned long, 0ul>) (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x1f462b9) #49 0x10f23eec4 in void IPC::callMemberFunction<WebKit::WebResourceLoader, void (WebKit::WebResourceLoader::*)(WebCore::NetworkLoadMetrics const&), std::__1::tuple<WebCore::NetworkLoadMetrics>, std::__1::integer_sequence<unsigned long, 0ul> >(std::__1::tuple<WebCore::NetworkLoadMetrics>&&, WebKit::WebResourceLoader*, void (WebKit::WebResourceLoader::*)(WebCore::NetworkLoadMetrics const&)) (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x1f45ec4) #50 0x10f23bf68 in void IPC::handleMessage<Messages::WebResourceLoader::DidFinishResourceLoad, WebKit::WebResourceLoader, void (WebKit::WebResourceLoader::*)(WebCore::NetworkLoadMetrics const&)>(IPC::Decoder&, WebKit::WebResourceLoader*, void (WebKit::WebResourceLoader::*)(WebCore::NetworkLoadMetrics const&)) (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x1f42f68) #51 0x10f23a12a in WebKit::WebResourceLoader::didReceiveWebResourceLoaderMessage(IPC::Connection&, IPC::Decoder&) (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x1f4112a) #52 0x10dbb02ac in WebKit::NetworkProcessConnection::didReceiveMessage(IPC::Connection&, IPC::Decoder&) (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x8b72ac) #53 0x10d504aaa in IPC::Connection::dispatchMessage(IPC::Decoder&) (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x20baaa) #54 0x10d4e9104 in IPC::Connection::dispatchMessage(std::__1::unique_ptr<IPC::Decoder, std::__1::default_delete<IPC::Decoder> >) (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x1f0104) #55 0x10d505795 in IPC::Connection::dispatchOneMessage() (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x20c795) #56 0x10d54439c in IPC::Connection::enqueueIncomingMessage(std::__1::unique_ptr<IPC::Decoder, std::__1::default_delete<IPC::Decoder> >)::$_14::operator()() (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x24b39c) #57 0x10d5442c8 in WTF::Function<void ()>::CallableWrapper<IPC::Connection::enqueueIncomingMessage(std::__1::unique_ptr<IPC::Decoder, std::__1::default_delete<IPC::Decoder> >)::$_14>::call() (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/WebKit+0x24b2c8) #58 0x134dcca30 in WTF::Function<void ()>::operator()() const (WebKit/WebKitBuild/Debug/JavaScriptCore.framework/Versions/A/JavaScriptCore+0x35dfa30) #59 0x134e1b7d0 in WTF::RunLoop::performWork() (WebKit/WebKitBuild/Debug/JavaScriptCore.framework/Versions/A/JavaScriptCore+0x362e7d0) #60 0x134e1c801 in WTF::RunLoop::performWork(void*) (WebKit/WebKitBuild/Debug/JavaScriptCore.framework/Versions/A/JavaScriptCore+0x362f801) #61 0x7fffabc81320 in __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ (/System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation+0xa7320) #62 0x7fffabc6221c in __CFRunLoopDoSources0 (/System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation+0x8821c) #63 0x7fffabc61715 in __CFRunLoopRun (/System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation+0x87715) #64 0x7fffabc61113 in CFRunLoopRunSpecific (/System/Library/Frameworks/CoreFoundation.framework/Versions/A/CoreFoundation+0x87113) #65 0x7fffab1c2ebb in RunCurrentEventLoopInMode (/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/HIToolbox.framework/Versions/A/HIToolbox+0x30ebb) #66 0x7fffab1c2cf0 in ReceiveNextEventCommon (/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/HIToolbox.framework/Versions/A/HIToolbox+0x30cf0) #67 0x7fffab1c2b25 in _BlockUntilNextEventMatchingListInModeWithFilter (/System/Library/Frameworks/Carbon.framework/Versions/A/Frameworks/HIToolbox.framework/Versions/A/HIToolbox+0x30b25) #68 0x7fffa975ba53 in _DPSNextEvent (/System/Library/Frameworks/AppKit.framework/Versions/C/AppKit+0x46a53) #69 0x7fffa9ed77ed in -[NSApplication(NSEvent) _nextEventMatchingEventMask:untilDate:inMode:dequeue:] (/System/Library/Frameworks/AppKit.framework/Versions/C/AppKit+0x7c27ed) #70 0x7fffa97503da in -[NSApplication run] (/System/Library/Frameworks/AppKit.framework/Versions/C/AppKit+0x3b3da) #71 0x7fffa971ae0d in NSApplicationMain (/System/Library/Frameworks/AppKit.framework/Versions/C/AppKit+0x5e0d) #72 0x7fffc16348c6 in _xpc_objc_main (/usr/lib/system/libxpc.dylib+0x108c6) #73 0x7fffc16332e3 in xpc_main (/usr/lib/system/libxpc.dylib+0xf2e3) #74 0x10d2def22 in main (WebKit/WebKitBuild/Debug/WebKit.framework/Versions/A/XPCServices/com.apple.WebKit.WebContent.xpc/Contents/MacOS/com.apple.WebKit.WebContent.Development+0x100001f22) #75 0x7fffc13db234 in start (/usr/lib/system/libdyld.dylib+0x5234) AddressSanitizer can not provide additional info. SUMMARY: AddressSanitizer: SEGV (WebKit/WebKitBuild/Debug/JavaScriptCore.framework/Versions/A/JavaScriptCore+0x3554f48) in WTFCrash ==20115==ABORTING #CRASHED - com.apple.WebKit.WebContent.Development (pid 20115) LEAK: 1 WebProcessPool LEAK: 1 WebPageProxy
I am unable to reproduce this assert failure in WebKit Debug Build ToT (260676@main) [MiniBrowser - WK2 window] using attached test case. Do we need to track this any more?
Yeah this still happens sometimes.