NEW304644
[Debug][GTK] inspector/unit-tests/editing-support.html crashes 
https://bugs.webkit.org/show_bug.cgi?id=304644
Summary [Debug][GTK] inspector/unit-tests/editing-support.html crashes
Claudio Saavedra
Reported 2025-12-23 08:28:48 PST
In the bot it looks like a timeout, but it's actually an assertion crash. For this reason it also crashes (timeouts) in EWS with assertions enabled. #0 WTFCrash () at ../../../Source/WTF/wtf/Assertions.cpp:380 #1 0x00007ff544800960 in WTFCrashWithInfo () at WTF/Headers/wtf/Assertions.h:985 #2 0x00007ff54c843fa1 in WebCore::VisiblePosition::previous (this=0x7ffc8721f620, rule=WebCore::CanCrossEditingBoundary, reachedBoundary=0x0) at ../../../Source/WebCore/editing/VisiblePosition.cpp:111 #3 0x00007ff54c8406a3 in WebCore::TypingCommand::markMisspellingsAfterTyping (this=0x7ff51e611140, commandType=WebCore::TypingCommand::Type::InsertText) at ../../../Source/WebCore/editing/TypingCommand.cpp:467 #4 0x00007ff54c840b74 in WebCore::TypingCommand::typingAddedToOpenCommand (this=0x7ff51e611140, commandTypeForAddedTyping=WebCore::TypingCommand::Type::InsertText) at ../../../Source/WebCore/editing/TypingCommand.cpp:527 #5 0x00007ff54c840f4e in WebCore::TypingCommand::insertTextRunWithoutNewlines (this=0x7ff51e611140, text=..., selectInsertedText=false) at ../../../Source/WebCore/editing/TypingCommand.cpp:563 #6 0x00007ff54c83e8ec in WebCore::TypingCommandLineOperation::operator() (this=0x7ffc8721f840, lineOffset=0, lineLength=6, isLastLine=true) at ../../../Source/WebCore/editing/TypingCommand.cpp:73 #7 0x00007ff54c85d30f in WebCore::forEachLineInString<WebCore::TypingCommandLineOperation> (string=..., operation=...) at ../../../Source/WebCore/editing/TextInsertionBaseCommand.h:60 #8 0x00007ff54c840c2f in WebCore::TypingCommand::insertText (this=0x7ff51e611140, text=..., selectInsertedText=false) at ../../../Source/WebCore/editing/TypingCommand.cpp:540 #9 0x00007ff54c840d30 in WebCore::TypingCommand::insertTextAndNotifyAccessibility (this=0x7ff51e611140, text=..., selectInsertedText=false) at ../../../Source/WebCore/editing/TypingCommand.cpp:548 #10 0x00007ff54c8402f1 in WebCore::TypingCommand::doApply (this=0x7ff51e611140) at ../../../Source/WebCore/editing/TypingCommand.cpp:395 #11 0x00007ff54c720cc6 in WebCore::CompositeEditCommand::apply (this=0x7ff51e611140) at ../../../Source/WebCore/editing/CompositeEditCommand.cpp:418 #12 0x00007ff54c803cb9 in WebCore::TextInsertionBaseCommand::applyTextInsertionCommand (frame=0x7ff51e0614a0, command=..., selectionForInsertion=..., endingSelection=...) at ../../../Source/WebCore/editing/TextInsertionBaseCommand.cpp:50 #13 0x00007ff54c83f947 in WebCore::TypingCommand::insertText (document=..., text=..., triggeringEvent=0x0, selectionForInsertion=..., options=..., compositionType=WebCore::TypingCommand::TextCompositionType::None) at ../../../Source/WebCore/editing/TypingCommand.cpp:274 #14 0x00007ff54c83f53a in WebCore::TypingCommand::insertText (document=..., text=..., triggeringEvent=0x0, options=..., composition=WebCore::TypingCommand::TextCompositionType::None) at ../../../Source/WebCore/editing/TypingCommand.cpp:234 #15 0x00007ff54c785565 in WebCore::executeInsertText (frame=..., event=0x0, value=...) at ../../../Source/WebCore/editing/EditorCommand.cpp:539 #16 0x00007ff54c78d94f in WebCore::Editor::Command::execute (this=0x7ffc8721fbf0, parameter=..., triggeringEvent=0x0) at ../../../Source/WebCore/editing/EditorCommand.cpp:1925 #17 0x00007ff54c31e869 in WebCore::Document::execCommand (this=0x7ff51c0c6000, commandName=..., userInterface=false, value=...) at ../../../Source/WebCore/dom/Document.cpp:8010 #18 0x00007ff5483cf6b0 in WebCore::jsDocumentPrototypeFunction_execCommandBody (lexicalGlobalObject=0x7ff51c122088, callFrame=0x7ffc8721fec0, castedThis=0x7ff51e017748) at WebCore/DerivedSources/JSDocument.cpp:7003 #19 0x00007ff548403563 in WebCore::IDLOperation<WebCore::JSDocument>::call<WebCore::jsDocumentPrototypeFunction_execCommandBody> (lexicalGlobalObject=..., callFrame=..., operationName=0x7ff53a1c628c "execCommand") at WebCore/PrivateHeaders/WebCore/JSDOMOperation.h:63 #20 0x00007ff5483cf7b9 in WebCore::jsDocumentPrototypeFunction_execCommand (lexicalGlobalObject=0x7ff51c122088, callFrame=0x7ffc8721fec0) at WebCore/DerivedSources/JSDocument.cpp:7008 #21 0x00007ff4db40c038 in ??? () #22 0x00007ffc8721ffa0 in ??? () #23 0x00007ff53212af1b in llint_op_call_ignore_result () at /host/home/claudio/git/webkit/WebKit/WebKitBuild/GTK/Debug/lib/libjavascriptcoregtk-6.0.so.1 #24 0x0000000000000000 in ??? ()
Attachments
Add attachment proposed patch, testcase, etc.
Claudio Saavedra
Comment 1 2025-12-23 08:54:47 PST
Pull request: https://github.com/WebKit/WebKit/pull/55830
EWS
Comment 2 2025-12-23 08:58:46 PST
Test gardening commit 304902@main (8ba7854ee96a): <https://commits.webkit.org/304902@main> Reviewed commits have been landed. Closing PR #55830 and removing active labels.
Note You need to log in before you can comment on or make changes to this bug.