Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8184448

Crash while loading gif images with more frames

    Details

    • Subcomponent:
      web
    • CPU:
      generic
    • OS:
      generic

      Backports

        Description

        WebView crashes while browsing wikipedia page which has gif images.


        Current thread (0x00007faa7c803000): JavaThread "JavaFX Application Thread" [_thread_in_native, id=1295, stack(0x00007fff5e1f4000,0x00007fff5e9f4000)]

        Stack: [0x00007fff5e1f4000,0x00007fff5e9f4000], sp=0x00007fff5e9ec670, free space=8161k
        Native frames: (J=compiled Java code, A=aot compiled Java code, j=interpreted, Vv=VM code, C=native code)
        C [libjfxwebkit.dylib+0xb2d9c4] WebCore::ImageDecoder::frameIsCompleteAtIndex(unsigned long) const+0x14
        C [libjfxwebkit.dylib+0x719566] WebCore::ImageFrameCache::setFrameMetadataAtIndex(unsigned long, WebCore::SubsamplingLevel, std::optional<WebCore::IntSize> const&)+0x46
        C [libjfxwebkit.dylib+0x71a03c] WebCore::ImageFrameCache::frameAtIndexCacheIfNeeded(unsigned long, WebCore::ImageFrame::Caching, std::optional<WebCore::SubsamplingLevel> const&, std::optional<WebCore::IntSize> const&)+0xcc
        C [libjfxwebkit.dylib+0x71a68b] WebCore::ImageFrameCache::frameDurationAtIndex(unsigned long)+0x2b
        C [libjfxwebkit.dylib+0x6e4e49] WebCore::BitmapImage::internalStartAnimation()+0x1a9
        C [libjfxwebkit.dylib+0x6e4a70] WebCore::BitmapImage::draw(WebCore::GraphicsContext&, WebCore::FloatRect const&, WebCore::FloatRect const&, WebCore::CompositeOperator, WebCore::BlendMode, WebCore::ImageOrientationDescription)+0x80
        C [libjfxwebkit.dylib+0x70c978] WebCore::GraphicsContext::drawImage(WebCore::Image&, WebCore::FloatRect const&, WebCore::FloatRect const&, WebCore::ImagePaintingOptions const&)+0x88
        C [libjfxwebkit.dylib+0x70ca5e] WebCore::GraphicsContext::drawImage(WebCore::Image&, WebCore::FloatRect const&, WebCore::ImagePaintingOptions const&)+0x4e
        C [libjfxwebkit.dylib+0x86b916] WebCore::RenderImage::paintIntoRect(WebCore::GraphicsContext&, WebCore::FloatRect const&)+0x2b6
        C [libjfxwebkit.dylib+0x86adcf] WebCore::RenderImage::paintReplaced(WebCore::PaintInfo&, WebCore::LayoutPoint const&)+0x67f
        C [libjfxwebkit.dylib+0x8ded72] WebCore::RenderReplaced::paint(WebCore::PaintInfo&, WebCore::LayoutPoint const&)+0x3d2
        C [libjfxwebkit.dylib+0x86b978] WebCore::RenderImage::paint(WebCore::PaintInfo&, WebCore::LayoutPoint const&)+0x18
        C [libjfxwebkit.dylib+0x8411f7] WebCore::RenderElement::paintAsInlineBlock(WebCore::PaintInfo&, WebCore::LayoutPoint const&)+0xa7
        C [libjfxwebkit.dylib+0x7c32e1] WebCore::InlineElementBox::paint(WebCore::PaintInfo&, WebCore::LayoutPoint const&, WebCore::LayoutUnit, WebCore::LayoutUnit)+0xe1
        C [libjfxwebkit.dylib+0x7c7fd3] WebCore::InlineFlowBox::paint(WebCore::PaintInfo&, WebCore::LayoutPoint const&, WebCore::LayoutUnit, WebCore::LayoutUnit)+0x593
        C [libjfxwebkit.dylib+0x92f3c6] WebCore::RootInlineBox::paint(WebCore::PaintInfo&, WebCore::LayoutPoint const&, WebCore::LayoutUnit, WebCore::LayoutUnit)+0x56
        C [libjfxwebkit.dylib+0x8b2ce0] WebCore::RenderLineBoxList::paint(WebCore::RenderBoxModelObject*, WebCore::PaintInfo&, WebCore::LayoutPoint const&) const+0x370
        C [libjfxwebkit.dylib+0x7d89cc] WebCore::RenderBlock::paintObject(WebCore::PaintInfo&, WebCore::LayoutPoint const&)+0x30c
        C [libjfxwebkit.dylib+0x7d7eb5] WebCore::RenderBlock::paint(WebCore::PaintInfo&, WebCore::LayoutPoint const&)+0x135
        C [libjfxwebkit.dylib+0x7d84a3] WebCore::RenderBlock::paintChild(WebCore::RenderBox&, WebCore::PaintInfo&, WebCore::LayoutPoint const&, WebCore::PaintInfo&, bool, WebCore::RenderBlock::PaintBlockType)+0x243
        C [libjfxwebkit.dylib+0x7d823f] WebCore::RenderBlock::paintChildren(WebCore::PaintInfo&, WebCore::LayoutPoint const&, WebCore::PaintInfo&, bool)+0x4f
        C [libjfxwebkit.dylib+0x7d89ef] WebCore::RenderBlock::paintObject(WebCore::PaintInfo&, WebCore::LayoutPoint const&)+0x32f
        C [libjfxwebkit.dylib+0x7d7eb5] WebCore::RenderBlock::paint(WebCore::PaintInfo&, WebCore::LayoutPoint const&)+0x135
        C [libjfxwebkit.dylib+0x890d1d] WebCore::RenderLayer::paintForegroundForFragmentsWithPhase(WebCore::PaintPhase, WTF::Vector<WebCore::LayerFragment, 1ul, WTF::CrashOnOverflow, 16ul> const&, WebCore::GraphicsContext&, WebCore::RenderLayer::LayerPaintingInfo const&, unsigned int, WebCore::RenderObject*)+0x1ad
        C [libjfxwebkit.dylib+0x88dfe5] WebCore::RenderLayer::paintForegroundForFragments(WTF::Vector<WebCore::LayerFragment, 1ul, WTF::CrashOnOverflow, 16ul> const&, WebCore::GraphicsContext&, WebCore::GraphicsContext&, WebCore::LayoutRect const&, bool, WebCore::RenderLayer::LayerPaintingInfo const&, unsigned int, WebCore::RenderObject*, bool)+0x1a5
        C [libjfxwebkit.dylib+0x88a923] WebCore::RenderLayer::paintLayerContents(WebCore::GraphicsContext&, WebCore::RenderLayer::LayerPaintingInfo const&, unsigned int)+0xbb3
        C [libjfxwebkit.dylib+0x88aa74] WebCore::RenderLayer::paintLayerContents(WebCore::GraphicsContext&, WebCore::RenderLayer::LayerPaintingInfo const&, unsigned int)+0xd04
        C [libjfxwebkit.dylib+0x888191] WebCore::RenderLayer::paint(WebCore::GraphicsContext&, WebCore::LayoutRect const&, WebCore::LayoutSize const&, unsigned int, WebCore::RenderObject*, unsigned int, WebCore::RenderLayer::SecurityOriginPaintPolicy)+0x111
        C [libjfxwebkit.dylib+0x62ad95] WebCore::FrameView::paintContents(WebCore::GraphicsContext&, WebCore::IntRect const&, WebCore::Widget::SecurityOriginPaintPolicy)+0x225
        C [libjfxwebkit.dylib+0x6ad152] WebCore::ScrollView::paint(WebCore::GraphicsContext&, WebCore::IntRect const&, WebCore::Widget::SecurityOriginPaintPolicy)+0x2b2
        C [libjfxwebkit.dylib+0xb1d810] WebCore::WebPage::paint(_jobject*, int, int, int, int)+0x150
        J 3407 com.sun.webkit.WebPage.twkUpdateContent(JLcom/sun/webkit/graphics/WCRenderQueue;IIII)V javafx.web@9 (0 bytes) @ 0x0000000114e10d96 [0x0000000114e10cc0+0x00000000000000d6]
        j com.sun.webkit.WebPage.updateDirty(Lcom/sun/webkit/graphics/WCRectangle;)V+218 javafx.web@9
        j com.sun.webkit.WebPage.updateContent(Lcom/sun/webkit/graphics/WCRectangle;)V+48 javafx.web@9
        J 3524 c1 com.sun.javafx.sg.prism.web.NGWebView.update()V javafx.web@9 (72 bytes) @ 0x000000010de5a224 [0x000000010de59980+0x00000000000008a4]
        j javafx.scene.web.WebView.handleStagePulse()V+40 javafx.web@9
        j javafx.scene.web.WebView.lambda$new$0()V+1 javafx.web@9
        j javafx.scene.web.WebView$$Lambda$214.pulse()V+4 javafx.web@9
        J 2551 c1 com.sun.javafx.tk.Toolkit$$Lambda$235.run()Ljava/lang/Object; javafx.graphics@9 (8 bytes) @ 0x000000010dc6a19c [0x000000010dc6a060+0x000000000000013c]
        v ~StubRoutines::call_stub
        V [libjvm.dylib+0x3a28cd] JavaCalls::call_helper(JavaValue*, methodHandle const&, JavaCallArguments*, Thread*)+0x2b5
        V [libjvm.dylib+0x412323] JVM_DoPrivileged+0x466
        J 2209 java.security.AccessController.doPrivileged(Ljava/security/PrivilegedAction;Ljava/security/AccessControlContext;)Ljava/lang/Object; java.base@9 (0 bytes) @ 0x0000000114d6df15 [0x0000000114d6de40+0x00000000000000d5]
        J 2441 c1 com.sun.javafx.tk.Toolkit.runPulse(Lcom/sun/javafx/tk/TKPulseListener;Ljava/security/AccessControlContext;)V javafx.graphics@9 (26 bytes) @ 0x000000010dc2df04 [0x000000010dc2db20+0x00000000000003e4]
        j com.sun.javafx.tk.Toolkit.firePulse()V+129 javafx.graphics@9
        J 3397 c1 com.sun.javafx.tk.quantum.QuantumToolkit.pulse(Z)V javafx.graphics@9 (152 bytes) @ 0x000000010de1284c [0x000000010de12220+0x000000000000062c]
        J 3182 c1 com.sun.javafx.tk.quantum.QuantumToolkit$$Lambda$75.run()V javafx.graphics@9 (8 bytes) @ 0x000000010dd94834 [0x000000010dd94580+0x00000000000002b4]
        J 2814 c1 com.sun.glass.ui.InvokeLaterDispatcher$Future.run()V javafx.graphics@9 (91 bytes) @ 0x000000010dcc8e0c [0x000000010dcc8d00+0x000000000000010c]
        v ~StubRoutines::call_stub
        V [libjvm.dylib+0x3a28cd] JavaCalls::call_helper(JavaValue*, methodHandle const&, JavaCallArguments*, Thread*)+0x2b5
        V [libjvm.dylib+0x3d5255] jni_invoke_nonstatic(JNIEnv_*, JavaValue*, _jobject*, JNICallType, _jmethodID*, JNI_ArgumentPusher*, Thread*)+0x2b4
        V [libjvm.dylib+0x3d87de] jni_CallVoidMethod+0x197
        C [libglass.dylib+0x50fb] -[GlassRunnable run]+0x6b
        C [Foundation+0x76fde] __NSThreadPerformPerform+0x117
        C [CoreFoundation+0xaa7e1] __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__+0x11
        C [CoreFoundation+0x89f1c] __CFRunLoopDoSources0+0x22c
        C [CoreFoundation+0x8943f] __CFRunLoopRun+0x39f
        C [CoreFoundation+0x88e38] CFRunLoopRunSpecific+0x128
        C [HIToolbox+0x30935] RunCurrentEventLoopInMode+0xeb
        C [HIToolbox+0x3076f] ReceiveNextEventCommon+0x1b0
        C [HIToolbox+0x305af] _BlockUntilNextEventMatchingListInModeWithFilter+0x47
        C [AppKit+0x48df6] _DPSNextEvent+0x42b
        C [AppKit+0x48226] -[NSApplication _nextEventMatchingEventMask:untilDate:inMode:dequeue:]+0x1c6
        C [AppKit+0x3cd80] -[NSApplication run]+0x2aa
        C [libglass.dylib+0x716b] -[GlassApplication runLoop:]+0x78b
        C [Foundation+0x76fde] __NSThreadPerformPerform+0x117
        C [CoreFoundation+0xaa7e1] __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__+0x11
        C [CoreFoundation+0x89f1c] __CFRunLoopDoSources0+0x22c
        C [CoreFoundation+0x8943f] __CFRunLoopRun+0x39f
        C [CoreFoundation+0x88e38] CFRunLoopRunSpecific+0x128
        C [java+0x6b2e] CreateExecutionEnvironment+0x35c
        C [java+0x2c65] JLI_Launch+0x5a9
        C [java+0x1b62] main+0x186
        C [java+0x19d4] start+0x34
        C 0x0000000000000007

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  arajkumar Arunprasad Rajkumar
                  Reporter:
                  arajkumar Arunprasad Rajkumar
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  5 Start watching this issue

                  Dates

                  • Due:
                    Created:
                    Updated:
                    Resolved: