RESOLVED FIXED264313
Regression(270013@main) RELEASE_ASSERT(!m_count); in WebCore::Font::~Font() 
https://bugs.webkit.org/show_bug.cgi?id=264313
Summary Regression(270013@main) RELEASE_ASSERT(!m_count); in WebCore::Font::~Font()
Chris Dumez
Reported 2023-11-06 20:22:25 PST
RELEASE_ASSERT(!m_count); in WebCore::Font::~Font(): ``` Thread 0 Crashed:: Dispatch queue: com.apple.main-thread 0 WebCore 0x1102b5574 WTFCrashWithInfo(int, char const*, char const*, int) + 20 (Assertions.h:778) 1 WebCore 0x1119cd328 WTF::CanMakeCheckedPtrBase<WTF::SingleThreadIntegralWrapper<unsigned int>, unsigned int>::~CanMakeCheckedPtrBase() + 28 (CheckedRef.h:324) [inlined] 2 WebCore 0x1119cd328 WebCore::Font::~Font() (.cold.2) + 40 (Font.cpp:174) 3 WebCore 0x110f7a738 compilerFenceForCrash() + 4 (Assertions.h:802) [inlined] 4 WebCore 0x110f7a738 WTF::CanMakeCheckedPtrBase<WTF::SingleThreadIntegralWrapper<unsigned int>, unsigned int>::~CanMakeCheckedPtrBase() + 4 (CheckedRef.h:324) [inlined] 5 WebCore 0x110f7a738 WebCore::Font::~Font() + 396 (Font.cpp:174) 6 WebCore 0x10fffbbe0 std::__1::default_delete<WebCore::Font>::operator()[abi:v160006](WebCore::Font*) const + 4 (unique_ptr.h:65) [inlined] 7 WebCore 0x10fffbbe0 WTF::RefCounted<WebCore::Font, std::__1::default_delete<WebCore::Font>>::deref() const + 40 (RefCounted.h:190) [inlined] 8 WebCore 0x10fffbbe0 WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>::~Ref() + 40 (Ref.h:61) [inlined] 9 WebCore 0x10fffbbe0 WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>::~Ref() + 88 (Ref.h:55) 10 WebCore 0x1119cc1b8 WTF::VectorDestructor<true, WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>>::destruct(WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>*, WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>*) + 8 (Vector.h:70) [inlined] 11 WebCore 0x1119cc1b8 WTF::VectorTypeOperations<WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>>::destruct(WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>*, WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>*) + 8 (Vector.h:253) [inlined] 12 WebCore 0x1119cc1b8 WTF::Vector<WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>, 20ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>::~Vector() + 76 (Vector.h:766) 13 WebCore 0x1119ca66c WTF::Vector<WTF::Ref<WebCore::Font, WTF::RawPtrTraits<WebCore::Font>>, 20ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>::~Vector() + 8 (Vector.h:764) [inlined] 14 WebCore 0x1119ca66c WebCore::FontCache::purgeInactiveFontData(unsigned int) + 284 (FontCache.cpp:318) 15 WebCore 0x110efe59c WebCore::ThreadTimers::sharedTimerFiredInternal() + 204 (ThreadTimers.cpp:125) ```
Attachments
Add attachment proposed patch, testcase, etc.
Chris Dumez
Comment 1 2023-11-06 20:22:39 PST
<rdar://117847851>
Chris Dumez
Comment 2 2023-11-06 20:27:57 PST
Pull request: https://github.com/WebKit/WebKit/pull/20082
EWS
Comment 3 2023-11-07 07:53:06 PST
Committed 270320@main (647046ce608e): <https://commits.webkit.org/270320@main> Reviewed commits have been landed. Closing PR #20082 and removing active labels.
Note You need to log in before you can comment on or make changes to this bug.