Crash on address 0x88 in mozilla::AnimationEventInfo::AnimationEventInfo
Categories
(Core :: Gecko Profiler, defect, P2)
Tracking
()
Tracking | Status | |
---|---|---|
firefox-esr78 | --- | unaffected |
firefox87 | --- | unaffected |
firefox88 | --- | unaffected |
firefox89 | --- | fixed |
People
(Reporter: sfink, Assigned: mozbugz)
References
(Regression)
Details
(Keywords: regression)
Attachments
(1 file)
(copied from bug 1701524 comment 4)
I think I might be getting a crash from bug 1701524 on try [1] when I push with --gecko-profile. My guess is that aAnimation->GetOwner() is returning nullptr when generating a profile marker [2]?
[1] https://treeherder.mozilla.org/logviewer?job_id=335748921&repo=try&lineNumber=2311
[2] https://searchfox.org/mozilla-central/source/dom/animation/AnimationEventDispatcher.h#65
Updated•4 years ago
|
Assignee | ||
Comment 1•4 years ago
|
||
Thank you for the report. I'll prepare a fix.
Assignee | ||
Comment 2•4 years ago
|
||
Comment 4•4 years ago
|
||
Sorry, and thanks for reporting and fixing it!
Comment 5•4 years ago
|
||
How can we be in a situation where we have an animation tick but the animation doesn't have an owner window? Is it just unlucky timing with a window that has already been closed, or could this be pointing to a more serious bug? We have seen multiple times profiles where composition happens at 60Hz as if there was an animation, but there's no animation (ie. bug 1690673), and the only way to get out of this state is to close the browser window. Unfortunately, no known steps to reproduce.
Comment 6•4 years ago
|
||
bugherder |
Comment 7•4 years ago
|
||
Looking a bit at the code, it seems it may happen if the page is detached from the docshell or the page is navigated away. Seems this should be trivially hittable if you window.close() during a refresh driver tick or somesuch.
bug 1690673 is about the compositor and not main-thread ticks, if I'm reading bug 1690673 comment 2 correctly.
Comment 8•4 years ago
|
||
Set release status flags based on info from the regressing bug 1701524
Updated•4 years ago
|
Description
•