Bug 247035

Summary: Shader crashes Safari
Product: WebKit Reporter: markus
Component: WebGLAssignee: Nobody <webkit-unassigned>
Status: NEW ---    
Severity: Normal CC: crispygoti, dino, kbr, kkinnunen, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: Safari 16   
Hardware: Unspecified   
OS: Unspecified   

Description markus 2022-10-25 17:41:26 PDT 
This shader crashes Safari 16.1: https://www.shadertoy.com/view/dsXGWS
Comment 1 Alexey Proskuryakov 2022-10-26 10:24:43 PDT 
I can reproduce with Safari 16.1 on macOS Monterey 12.6.

Thread 0 Crashed::  Dispatch queue: com.apple.main-thread
0   AGXMetal13_3                  	       0x20820e45c 0x207f62000 + 2802780
1   libANGLE-shared.dylib         	       0x101293e4c rx::mtl::RenderCommandEncoder::endEncodingImpl(bool) + 520
2   libANGLE-shared.dylib         	       0x101293e4c rx::mtl::RenderCommandEncoder::endEncodingImpl(bool) + 520
3   libANGLE-shared.dylib         	       0x101162efc rx::ContextMtl::endRenderEncoding(rx::mtl::RenderCommandEncoder*) + 52
4   libANGLE-shared.dylib         	       0x101162fe8 rx::ContextMtl::endEncoding(bool) + 156
5   libANGLE-shared.dylib         	       0x101163ba8 rx::ContextMtl::onDrawFrameBufferChangedState(gl::Context const*, rx::FramebufferMtl*, bool) + 160
6   libANGLE-shared.dylib         	       0x10123fc00 rx::FramebufferMtl::syncState(gl::Context const*, unsigned int, angle::BitSetT<29ul, unsigned long long, unsigned long> const&, gl::Command) + 1096
7   libANGLE-shared.dylib         	       0x1012379ec gl::Framebuffer::syncState(gl::Context const*, unsigned int, gl::Command) const + 88
8   libANGLE-shared.dylib         	       0x10114badc gl::Context::syncState(angle::BitSetT<64ul, unsigned long long, unsigned long> const&, angle::BitSetT<12ul, unsigned long long, unsigned long> const&, gl::Command) + 120
9   libANGLE-shared.dylib         	       0x10114bcbc gl::Context::blitFramebuffer(int, int, int, int, int, int, int, int, unsigned int, unsigned int) + 284
10  libANGLE-shared.dylib         	       0x1011e0600 GL_BlitFramebufferANGLE + 292
11  WebCore                       	       0x10cc8b598 WebCore::GraphicsContextGLANGLE::prepareTexture() + 176
Comment 2 Radar WebKit Bug Importer 2022-10-26 10:24:58 PDT 
<rdar://problem/101593913>
Comment 3 crispygoti 2022-11-03 03:06:00 PDT 
We've received several complaints by users of our website because this regression lets our website crash on their Safari browsers

Test page: https://www.weatherandradar.co.uk/weather/london/16047584