RESOLVED CONFIGURATION CHANGED71172
fullscreen/full-screen-keyboard-enabled.html hits assertion intermittently on Snow Leopard 
https://bugs.webkit.org/show_bug.cgi?id=71172
Summary fullscreen/full-screen-keyboard-enabled.html hits assertion intermittently on...
Ryosuke Niwa
Reported 2011-10-29 00:24:27 PDT
http://test-results.appspot.com/dashboards/flakiness_dashboard.html#tests=fullscreen%2Ffull-screen-keyboard-enabled.html&group=%40ToT%20-%20webkit.org Exception Type: EXC_BAD_ACCESS (SIGSEGV) Exception Codes: KERN_INVALID_ADDRESS at 0x00000000bbadbeef Crashed Thread: 0 Dispatch queue: com.apple.main-thread Thread 0 Crashed: Dispatch queue: com.apple.main-thread 0 com.apple.WebCore 0x000000010172e0fb WebCore::FontCache::getCachedFontData(WebCore::FontPlatformData const*, WebCore::FontCache::ShouldRetain) + 121 (FontCache.cpp:280) 1 com.apple.WebCore 0x000000010173921e WebCore::FontCache::getFontDataForCharacters(WebCore::Font const&, unsigned short const*, int) + 1462 (FontCacheMac.mm:166) 2 com.apple.WebCore 0x000000010173e5fd WebCore::Font::glyphDataAndPageForCharacter(int, bool, WebCore::FontDataVariant) const + 2325 (FontFastPath.cpp:201) 3 com.apple.WebCore 0x000000010173e8bd WebCore::Font::glyphDataForCharacter(int, bool, WebCore::FontDataVariant) const + 47 (FontFastPath.cpp:47) 4 com.apple.WebCore 0x000000010173e9b2 WebCore::Font::getEmphasisMarkGlyphData(WTF::AtomicString const&, WebCore::GlyphData&) const + 220 (FontFastPath.cpp:280) 5 com.apple.WebCore 0x000000010173ea0c WebCore::Font::emphasisMarkHeight(WTF::AtomicString const&) const + 52 (FontFastPath.cpp:315) 6 com.apple.WebCore 0x00000001018f11d0 WebCore::InlineFlowBox::computeOverAnnotationAdjustment(int) const + 742 (InlineFlowBox.cpp:1417) 7 com.apple.WebCore 0x0000000102072cd9 WebCore::RootInlineBox::selectionTop() const + 95 (RootInlineBox.cpp:419) 8 com.apple.WebCore 0x0000000101f6375b WebCore::RenderLineBoxList::lineIntersectsDirtyRect(WebCore::RenderBoxModelObject*, WebCore::InlineFlowBox*, WebCore::PaintInfo const&, WebCore::IntPoint const&) const + 51 (RenderLineBoxList.cpp:197) 9 com.apple.WebCore 0x0000000101f6424a WebCore::RenderLineBoxList::paint(WebCore::RenderBoxModelObject*, WebCore::PaintInfo&, WebCore::IntPoint const&) const + 1310 (RenderLineBoxList.cpp:260) 10 com.apple.WebCore 0x0000000101e97e23 WebCore::RenderBlock::paintContents(WebCore::PaintInfo&, WebCore::IntPoint const&) + 135 (RenderBlock.cpp:2505) 11 com.apple.WebCore 0x0000000101ea2b73 WebCore::RenderBlock::paintObject(WebCore::PaintInfo&, WebCore::IntPoint const&) + 477 (RenderBlock.cpp:2620) 12 com.apple.WebCore 0x0000000101e98c56 WebCore::RenderBlock::paint(WebCore::PaintInfo&, WebCore::IntPoint const&) + 256 (RenderBlock.cpp:2365) 13 com.apple.WebCore 0x0000000101f4ad3e WebCore::RenderLayer::paintLayer(WebCore::RenderLayer*, WebCore::GraphicsContext*, WebCore::IntRect const&, unsigned int, WebCore::RenderObject*, WebCore::RenderRegion*, WTF::HashMap<WebCore::OverlapTestRequestClient*, WebCore::IntRect, WTF::PtrHash<WebCore::OverlapTestRequestClient*>, WTF::HashTraits<WebCore::OverlapTestRequestClient*>, WTF::HashTraits<WebCore::IntRect> >*, unsigned int) + 2814 (RenderLayer.cpp:2807) 14 com.apple.WebCore 0x0000000101f4bb16 WebCore::RenderLayer::paintList(WTF::Vector<WebCore::RenderLayer*, 0ul>*, WebCore::RenderLayer*, WebCore::GraphicsContext*, WebCore::IntRect const&, unsigned int, WebCore::RenderObject*, WebCore::RenderRegion*, WTF::HashMap<WebCore::OverlapTestRequestClient*, WebCore::IntRect, WTF::PtrHash<WebCore::OverlapTestRequestClient*>, WTF::HashTraits<WebCore::OverlapTestRequestClient*>, WTF::HashTraits<WebCore::IntRect> >*, unsigned int) + 156 (RenderLayer.cpp:2865)
Attachments
Add attachment proposed patch, testcase, etc.
Ryosuke Niwa
Comment 1 2011-10-30 21:05:52 PDT
Now it's hitting a different assertion: 0 com.apple.WebCore 0x0000000101f3c08f WebCore::RenderLayer::hasVisibleDescendant() const + 71 (RenderLayer.h:390) 1 com.apple.WebCore 0x0000000101f35c82 WebCore::RenderLayerBacking::hasVisibleNonCompositingDescendants() const + 418 (RenderLayerBacking.cpp:875) 2 com.apple.WebCore 0x0000000101f37993 WebCore::RenderLayerBacking::isSimpleContainerCompositingLayer() const + 547 (RenderLayerBacking.cpp:834) 3 com.apple.WebCore 0x0000000101f37a01 WebCore::RenderLayerBacking::containsPaintedContent() const + 21 (RenderLayerBacking.cpp:903) 4 com.apple.WebCore 0x0000000101f37b4a WebCore::RenderLayerBacking::updateDrawsContent() + 52 (RenderLayerBacking.cpp:550) 5 com.apple.WebCore 0x0000000101f3d8b6 WebCore::RenderLayerCompositor::rootLayerAttachmentChanged() + 86 (RenderLayerCompositor.cpp:1922) 6 com.apple.WebCore 0x0000000101f3da36 WebCore::RenderLayerCompositor::detachRootLayer() + 382 (RenderLayerCompositor.cpp:1908) 7 com.apple.WebCore 0x0000000101f3da7a WebCore::RenderLayerCompositor::willMoveOffscreen() + 66 (RenderLayerCompositor.cpp:1198) 8 com.apple.WebCore 0x000000010201e2b9 WebCore::RenderView::willMoveOffscreen() + 63 (RenderView.cpp:800) 9 com.apple.WebCore 0x0000000101565a70 WebCore::Document::documentWillBecomeInactive() + 48 (Document.cpp:3832) 10 com.apple.WebCore 0x0000000101569193 WebCore::Document::detach() + 303 (Document.cpp:1795) 11 com.apple.WebCore 0x000000010173b707 WebCore::Frame::setView(WTF::PassRefPtr<WebCore::FrameView>) + 221
mitz
Comment 2 2011-10-30 23:41:04 PDT
Looks like earlier memory corruption: the branch into emphasisMarkHeight() should only be taken if text emphasis is used, which does not appear to be the case in the test.
Ryosuke Niwa
Comment 3 2011-10-30 23:46:28 PDT
(In reply to comment #2) > Looks like earlier memory corruption: the branch into emphasisMarkHeight() should only be taken if text emphasis is used, which does not appear to be the case in the test. Should this be a security bug then?
Alexey Proskuryakov
Comment 4 2011-11-02 15:36:52 PDT
Is this the same as bug 71377?
mitz
Comment 5 2011-11-02 16:04:27 PDT
(In reply to comment #4) > Is this the same as bug 71377? It’s hard to be sure without the full backtrace, but if the backtrace really corresponds to the test in the title of this bug, then I still don’t understand how we got into that code.
Alexey Proskuryakov
Comment 6 2011-11-02 16:28:22 PDT
NRWT is not very good at uploading correct crash logs, bug 71380.
Ahmad Saleem
Comment 7 2024-04-17 08:02:28 PDT
searching this test case via 'full-screen-keyboard-enabled.html' (test name) on searchfox.org (wubkat) seems to suggest that it is working fine and don't have any platform specific expectations (in short working fine on debug build as well without causing any assert failure). So I am marking this as 'RESOLVED CONFIGURATION CHANGED'.
Note You need to log in before you can comment on or make changes to this bug.