FATAL:DocumentLifecycle.cpp(270)] Check failed: canAdvanceTo(nextState). Cannot advance document lifecycle from VisualUpdatePending to LayoutClean. |
|||||||
Issue descriptionVersion: 51.0.2700.0 (Developer Build) (64-bit) with dcheck_always_on=1 OS: Linux What steps will reproduce the problem? (1) open document on docs.google.com (2) (3) What is the expected output? What do you see instead? renderer crashed with fatal error. [1:1:0405/131528:FATAL:DocumentLifecycle.cpp(270)] Check failed: canAdvanceTo(nextState). Cannot advance document lifecycle from VisualUpdatePending to LayoutClean. #0 0x7ffff7e96e2e base::debug::StackTrace::StackTrace() #1 0x7ffff7eb668b logging::LogMessage::~LogMessage() #2 0x7fffea6aa714 blink::DocumentLifecycle::advanceTo() #3 0x7fffea682580 blink::Document::updateLayout() #4 0x7fffea6b80af blink::Element::offsetWidth() #5 0x7fffea57ba14 blink::HTMLElementV8Internal::offsetWidthAttributeGetterCallback() #6 0x7ffff4589d2e v8::internal::FunctionCallbackArguments::Call() #7 0x7ffff45df0d4 v8::internal::(anonymous namespace)::HandleApiCallHelper<>() #8 0x7ffff45decf7 v8::internal::Builtins::InvokeApiFunction() #9 0x7ffff48ba419 v8::internal::Object::GetPropertyWithAccessor() #10 0x7ffff48b9abf v8::internal::Object::GetProperty() #11 0x7ffff486d211 v8::internal::LoadIC::Load() #12 0x7ffff487357f v8::internal::Runtime_LoadIC_Miss() #13 0x032d686092a7 <unknown> Received signal 6 #0 0x7ffff7e969cb base::debug::(anonymous namespace)::StackDumpSignalHandler() #1 0x7ffff03d2340 <unknown> #2 0x7fffeed95cc9 gsignal #3 0x7fffeed990d8 abort #4 0x7ffff7e955f2 base::debug::BreakDebugger() #5 0x7ffff7eb694a logging::LogMessage::~LogMessage() #6 0x7fffea6aa714 blink::DocumentLifecycle::advanceTo() #7 0x7fffea682580 blink::Document::updateLayout() #8 0x7fffea6b80af blink::Element::offsetWidth() #9 0x7fffea57ba14 blink::HTMLElementV8Internal::offsetWidthAttributeGetterCallback() #10 0x7ffff4589d2e v8::internal::FunctionCallbackArguments::Call() #11 0x7ffff45df0d4 v8::internal::(anonymous namespace)::HandleApiCallHelper<>() #12 0x7ffff45decf7 v8::internal::Builtins::InvokeApiFunction() #13 0x7ffff48ba419 v8::internal::Object::GetPropertyWithAccessor() #14 0x7ffff48b9abf v8::internal::Object::GetProperty() #15 0x7ffff486d211 v8::internal::LoadIC::Load() #16 0x7ffff487357f v8::internal::Runtime_LoadIC_Miss() #17 0x032d686092a7 <unknown> r8: ffffa4e58ff75318 r9: ffffa4e58ff75308 r10: 0000000000000008 r11: 0000000000000202 r12: 00000000fbadbeef r13: 00007fffebb08370 r14: 00007fffffff9d60 r15: 00007fffffff9d50 di: 0000000000000001 si: 0000000000000001 bp: 000000000000000a bx: 0000000000000000 dx: 0000000000000006 ax: 0000000000000000 cx: ffffffffffffffff sp: 00007fffffff97b8 ip: 00007fffeed95cc9 efl: 0000000000000202 cgf: 0000000000000033 erf: 0000000000000000 trp: 0000000000000001 msk: 0000000000000000 cr2: 0000000000000000 [end of stack trace] Please use labels and text to provide additional information. https://chromium.googlesource.com/chromium/src/+/f32b99d3b806b471ccb249d14c1c41070f39da02
,
Apr 5 2016
Unable to reproduce I'm afraid. If you can reproduce this reliably would you mind trying a debug build?
,
Apr 5 2016
,
Apr 21 2016
,
Dec 10 2016
I can deterministically reproduce this issue on ToT Chromium on with simple repro steps: """ [54837:775:1209/171246.060061:FATAL:DocumentLifecycle.cpp(336)] Check failed: canAdvanceTo(nextState). Cannot advance document lifecycle from "VisualUpdatePending" to "LayoutClean". 0 libbase.dylib 0x00000001102a801e _ZN4base5debug10StackTraceC2Ev + 30 1 libbase.dylib 0x00000001102a8085 _ZN4base5debug10StackTraceC1Ev + 21 2 libbase.dylib 0x0000000110340630 _ZN7logging10LogMessageD2Ev + 80 3 libbase.dylib 0x000000011033e135 _ZN7logging10LogMessageD1Ev + 21 4 libblink_core.dylib 0x00000001241aa727 _ZN5blink17DocumentLifecycle9advanceToENS0_14LifecycleStateE + 471 5 libblink_core.dylib 0x0000000124129abb _ZN5blink8Document20updateStyleAndLayoutEv + 603 6 libblink_core.dylib 0x0000000124129825 _ZN5blink8Document44updateStyleAndLayoutIgnorePendingStylesheetsENS0_18RunPostLayoutTasksE + 37 7 libblink_core.dylib 0x00000001241297d4 _ZN5blink8Document51updateStyleAndLayoutIgnorePendingStylesheetsForNodeEPNS_4NodeE + 276 8 libblink_core.dylib 0x00000001241cf760 _ZN5blink7Element11clientQuadsERN3WTF6VectorINS_9FloatQuadELm0ENS1_18PartitionAllocatorEEE + 64 9 libblink_core.dylib 0x00000001241cfba0 _ZN5blink7Element21getBoundingClientRectEv + 80 10 libblink_core.dylib 0x0000000124c21bdb _ZN5blink12_GLOBAL__N_116buildElementInfoEPNS_7ElementE + 1323 11 libblink_core.dylib 0x0000000124c20b31 _ZN5blink18InspectorHighlightC2EPNS_4NodeERKNS_24InspectorHighlightConfigEb + 513 12 libblink_core.dylib 0x0000000124c21eb4 _ZN5blink18InspectorHighlightC1EPNS_4NodeERKNS_24InspectorHighlightConfigEb + 52 13 libblink_web.dylib 0x0000000122aa0cb6 _ZN5blink16InspectorOverlay17drawNodeHighlightEv + 1974 14 libblink_web.dylib 0x0000000122a9c569 _ZN5blink16InspectorOverlay18rebuildOverlayPageEv + 409 15 libblink_web.dylib 0x0000000122a9c21b _ZN5blink16InspectorOverlay24updateAllLifecyclePhasesEv + 123 16 libblink_web.dylib 0x0000000122c20455 _ZN5blink11WebViewImpl24updateAllLifecyclePhasesEv + 485 17 libblink_web.dylib 0x0000000122c11cf1 _ZN5blink18WebViewFrameWidget24updateAllLifecyclePhasesEv + 33 18 libcontent.dylib 0x0000000117275867 _ZN7content12RenderWidget17UpdateVisualStateEv + 39 19 libcontent.dylib 0x0000000116ff74da _ZN7content22RenderWidgetCompositor19UpdateLayerTreeHostEv + 26 20 libcc.dylib 0x000000011d305a3a _ZN2cc22LayerTreeHostInProcess22RequestMainFrameUpdateEv + 26 21 libcc.dylib 0x000000011d3b2f90 _ZN2cc9ProxyMain14BeginMainFrameENSt3__110unique_ptrINS_28BeginMainFrameAndCommitStateENS1_14default_deleteIS3_EEEE + 3184 22 libcc.dylib 0x000000011d3aecb8 _ZN4base8internal13FunctorTraitsIMN2cc9ProxyMainEFvNSt3__110unique_ptrINS2_28BeginMainFrameAndCommitStateENS4_14default_deleteIS6_EEEEEvE6InvokeIRKNS_7WeakPtrIS3_EEJS9_EEEvSB_OT_DpOT0_ + 536 23 libcc.dylib 0x000000011d3aea15 _ZN4base8internal12InvokeHelperILb1EvE8MakeItSoIRKMN2cc9ProxyMainEFvNSt3__110unique_ptrINS4_28BeginMainFrameAndCommitStateENS6_14default_deleteIS8_EEEEERKNS_7WeakPtrIS5_EEJSB_EEEvOT_OT0_DpOT1_ + 117 24 libcc.dylib 0x000000011d3ae8b0 _ZN4base8internal7InvokerINS0_9BindStateIMN2cc9ProxyMainEFvNSt3__110unique_ptrINS3_28BeginMainFrameAndCommitStateENS5_14default_deleteIS7_EEEEEJNS_7WeakPtrIS4_EENS0_13PassedWrapperISA_EEEEEFvvEE7RunImplIRKSC_RKNS5_5tupleIJSE_SG_EEEJLm0ELm1EEEEvOT_OT0_NS_13IndexSequenceIJXspT1_EEEE + 160 25 libcc.dylib 0x000000011d3ae79c _ZN4base8internal7InvokerINS0_9BindStateIMN2cc9ProxyMainEFvNSt3__110unique_ptrINS3_28BeginMainFrameAndCommitStateENS5_14default_deleteIS7_EEEEEJNS_7WeakPtrIS4_EENS0_13PassedWrapperISA_EEEEEFvvEE3RunEPNS0_13BindStateBaseE + 44 26 libbase.dylib 0x00000001102a9d2a _ZNO4base8internal8RunMixinINS_8CallbackIFvvELNS0_8CopyModeE0ELNS0_10RepeatModeE0EEEE3RunEv + 90 27 libbase.dylib 0x00000001102a9a7b _ZN4base5debug13TaskAnnotator7RunTaskEPKcPNS_11PendingTaskE + 699 28 libblink_platform.dylib 0x00000001218dc1b1 _ZN5blink9scheduler16TaskQueueManager24ProcessTaskFromWorkQueueEPNS0_8internal9WorkQueueEPNS0_7LazyNowE + 2177 29 libblink_platform.dylib 0x00000001218d8579 _ZN5blink9scheduler16TaskQueueManager6DoWorkEN4base9TimeTicksEb + 1369 30 libblink_platform.dylib 0x00000001218e29db _ZN4base8internal13FunctorTraitsIMN5blink9scheduler16TaskQueueManagerEFvNS_9TimeTicksEbEvE6InvokeIRKNS_7WeakPtrIS4_EEJRKS5_RKbEEEvS7_OT_DpOT0_ + 203 31 libblink_platform.dylib 0x00000001218e27f5 _ZN4base8internal12InvokeHelperILb1EvE8MakeItSoIRKMN5blink9scheduler16TaskQueueManagerEFvNS_9TimeTicksEbERKNS_7WeakPtrIS6_EEJRKS7_RKbEEEvOT_OT0_DpOT1_ + 133 32 libblink_platform.dylib 0x00000001218e276a _ZN4base8internal7InvokerINS0_9BindStateIMN5blink9scheduler16TaskQueueManagerEFvNS_9TimeTicksEbEJNS_7WeakPtrIS5_EES6_bEEEFvvEE7RunImplIRKS8_RKNSt3__15tupleIJSA_S6_bEEEJLm0ELm1ELm2EEEEvOT_OT0_NS_13IndexSequenceIJXspT1_EEEE + 138 33 libblink_platform.dylib 0x00000001218e265c _ZN4base8internal7InvokerINS0_9BindStateIMN5blink9scheduler16TaskQueueManagerEFvNS_9TimeTicksEbEJNS_7WeakPtrIS5_EES6_bEEEFvvEE3RunEPNS0_13BindStateBaseE + 44 34 libbase.dylib 0x00000001102a9d2a _ZNO4base8internal8RunMixinINS_8CallbackIFvvELNS0_8CopyModeE0ELNS0_10RepeatModeE0EEEE3RunEv + 90 35 libbase.dylib 0x00000001102a9a7b _ZN4base5debug13TaskAnnotator7RunTaskEPKcPNS_11PendingTaskE + 699 36 libbase.dylib 0x0000000110393ebb _ZN4base11MessageLoop7RunTaskEPNS_11PendingTaskE + 923 37 libbase.dylib 0x0000000110394434 _ZN4base11MessageLoop21DeferOrRunPendingTaskENS_11PendingTaskE + 68 38 libbase.dylib 0x0000000110394e6d _ZN4base11MessageLoop6DoWorkEv + 669 39 libbase.dylib 0x00000001103a6cd8 _ZN4base24MessagePumpCFRunLoopBase7RunWorkEv + 104 40 libbase.dylib 0x00000001103a6c5c ___ZN4base24MessagePumpCFRunLoopBase13RunWorkSourceEPv_block_invoke + 28 41 libbase.dylib 0x000000011034462a _ZN4base3mac15CallWithEHFrameEU13block_pointerFvvE + 10 42 libbase.dylib 0x00000001103a6245 _ZN4base24MessagePumpCFRunLoopBase13RunWorkSourceEPv + 101 43 CoreFoundation 0x00007fff9a0b37e1 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 17 44 CoreFoundation 0x00007fff9a092f1c __CFRunLoopDoSources0 + 556 45 CoreFoundation 0x00007fff9a09243f __CFRunLoopRun + 927 46 CoreFoundation 0x00007fff9a091e38 CFRunLoopRunSpecific + 296 47 Foundation 0x00007fff8e7dced9 -[NSRunLoop(NSRunLoop) runMode:beforeDate:] + 270 48 libbase.dylib 0x00000001103a77a9 _ZN4base20MessagePumpNSRunLoop5DoRunEPNS_11MessagePump8DelegateE + 137 49 libbase.dylib 0x00000001103a6a2a _ZN4base24MessagePumpCFRunLoopBase3RunEPNS_11MessagePump8DelegateE + 122 50 libbase.dylib 0x0000000110393945 _ZN4base11MessageLoop10RunHandlerEv + 645 51 libbase.dylib 0x0000000110474685 _ZN4base7RunLoop3RunEv + 85 52 libcontent.dylib 0x00000001172aea59 _ZN7content12RendererMainERKNS_18MainFunctionParamsE + 4473 53 libcontent.dylib 0x000000011782ac37 _ZN7content23RunNamedProcessTypeMainERKNSt3__112basic_stringIcNS0_11char_traitsIcEENS0_9allocatorIcEEEERKNS_18MainFunctionParamsEPNS_19ContentMainDelegateE + 599 54 libcontent.dylib 0x000000011782cb26 _ZN7content21ContentMainRunnerImpl3RunEv + 1462 55 libcontent.dylib 0x000000011782a49d _ZN7content11ContentMainERKNS_17ContentMainParamsE + 349 56 libchrome_dll.dylib 0x0000000101a4bfe9 ChromeMain + 105 57 Chromium Helper 0x000000010180fdac main + 780 58 libdyld.dylib 0x00007fff96cbf5ad start + 1 """ ToT: 51fb98171a7eb748033d01a28fa63a89bfcd2388 macOS: 10.11.6 iframe_test.html """ <html> <script type="text/javascript"> function t() { setTimeout(function() { document.getElementById("div1").style.display='none'; setTimeout(function() { document.getElementById("div1").style.display='block'; t(); }, 5000); }, 5000); } t(); </script> <style> #div1 { background-color: red; height: 1600px; width: 1600px; } iframe { height: 800px; width: 800px; display: block; } </style> <body> <div id="div1"> <iframe id="foo" src="http://162.243.129.193/iframe_test2.html"></iframe> </div> </body> </html> """ iframe_test2.html """ <html> <style> body { height: 40px; width: 40px; } #div2 { background-color: green; height: 40px; width: 40px; animation:spin 4s linear infinite; } @keyframes spin { 100% { -webkit-transform: rotate(360deg); transform:rotate(360deg); } } </style> <body> <div id="div2"> </div> </body> </html> """ Repro steps: 1) Launch Chromium and navigate to iframe_test.html. [requires OOPIF to be off]. 2) Open Devtools, go to "Elements panel". 3) Expand all the elements [the tree has no branches]. 4) If the renderer hasn't crashed yet, use arrow keys to navigate up and down the element hierarchy. Observe a crash within a couple of seconds.
,
Jan 17 2017
,
Apr 13 2018
This issue has been Available for over a year. If it's no longer important or seems unlikely to be fixed, please consider closing it out. If it is important, please re-triage the issue. Sorry for the inconvenience if the bug really should have been left as Available. For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
,
Apr 18 2018
|
|||||||
►
Sign in to add a comment |
|||||||
Comment 1 by ukai@chromium.org
, Apr 5 2016