[Webkit-unassigned] [Bug 174161] New: GtkWebKit crashes when source file of drag is unavailable

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Jul 5 10:08:19 PDT 2017 

https://bugs.webkit.org/show_bug.cgi?id=174161

            Bug ID: 174161
           Summary: GtkWebKit crashes when source file of drag is
                    unavailable
           Product: WebKit
           Version: Other
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit Gtk
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: benjamin at sipsolutions.net
                CC: bugs-noreply at webkitgtk.org

When I start dragging a large attachment in evolution the file corresponding to the drag will be unavailable at first (I guess it is downloaded/extracted on the fly in the background). Simply dragging over Epiphany (not even dropping) will cause the below backtrace.

(gdb) bt
#0  0x00007ffff415a8bc in WTFCrash() () at /usr/src/debug/webkitgtk-2.16.3/Source/WTF/wtf/Assertions.cpp:323
#1  0x00007ffff5b18037 in WTF::CrashOnOverflow::crash() () at /usr/src/debug/webkitgtk-2.16.3/Source/WTF/wtf/CheckedArithmetic.h:85
#2  0x00007ffff5b18037 in WTF::CrashOnOverflow::overflowed() () at /usr/src/debug/webkitgtk-2.16.3/Source/WTF/wtf/CheckedArithmetic.h:78
#3  0x00007ffff5b18037 in WTF::Vector<WTF::String, 0ul, WTF::CrashOnOverflow, 16ul>::at(unsigned long) (i=0, this=0x7fffffffc9d0)
    at /usr/src/debug/webkitgtk-2.16.3/Source/WTF/wtf/Vector.h:655
#4  0x00007ffff5b18037 in WTF::Vector<WTF::String, 0ul, WTF::CrashOnOverflow, 16ul>::operator[](unsigned long) (i=0, this=0x7fffffffc9d0)
    at /usr/src/debug/webkitgtk-2.16.3/Source/WTF/wtf/Vector.h:675
#5  0x00007ffff5b18037 in WebCore::PasteboardHelper::fillSelectionData(_GtkSelectionData*, unsigned int, WebCore::SelectionData&) (this=<optimized out>, data=data at entry=0x7fffffffd6f0, selection=...) at /usr/src/debug/webkitgtk-2.16.3/Source/WebCore/platform/gtk/PasteboardHelper.cpp:229
#6  0x00007ffff4b955c8 in WebKit::DragAndDropHandler::dropDataSelection(_GdkDragContext*, _GtkSelectionData*, unsigned int, WebCore::IntPoint&) (this=this at entry=0x555556695600, context=context at entry=0x5555558a0820, selectionData=0x7fffffffd6f0, info=4, position=...) at /usr/src/debug/webkitgtk-2.16.3/Source/WebKit2/UIProcess/gtk/DragAndDropHandler.cpp:193
#7  0x00007ffff4b95644 in WebKit::DragAndDropHandler::dragEntered(_GdkDragContext*, _GtkSelectionData*, unsigned int, unsigned int) (this=0x555556695600, context=0x5555558a0820, selectionData=<optimized out>, info=<optimized out>, time=0) at /usr/src/debug/webkitgtk-2.16.3/Source/WebKit2/UIProcess/gtk/DragAndDropHandler.cpp:208
#8  0x00007ffff1dffab4 in _gtk_marshal_VOID__OBJECT_INT_INT_BOXED_UINT_UINT () at /lib64/libgtk-3.so.0
#12 0x00007ffff00748eb in <emit signal 0x7ffff1f9a580 "drag-data-received" on instance 0x5555565338c0 [EphyWebView]> (instance=0x5555565338c0, detailed_signal=0x7ffff1f9a580 "drag-data-received") at gsignal.c:3487
    #9  0x00007ffff00593e5 in g_closure_invoke (closure=closure at entry=0x555555860550, return_value=return_value at entry=0x0, n_param_values=7, param_values=param_values at entry=0x7fffffffcd90, invocation_hint=invocation_hint at entry=0x7fffffffcd10) at gclosure.c:804
    #10 0x00007ffff006b82d in signal_emit_unlocked_R (node=node at entry=0x5555558601e0, detail=detail at entry=0, instance=instance at entry=0x5555565338c0, emission_return=emission_return at entry=0x0, instance_and_params=instance_and_params at entry=0x7fffffffcd90) at gsignal.c:3673
    #11 0x00007ffff007405f in g_signal_emit_valist (instance=instance at entry=0x5555565338c0, signal_id=signal_id at entry=107, detail=detail at entry=0, var_args=var_args at entry=0x7fffffffd028)
    at gsignal.c:3391
#13 0x00007ffff1f729bd in gtk_drag_selection_received () at /lib64/libgtk-3.so.0
#17 0x00007ffff00748eb in <emit signal 0x7ffff1ff4344 "selection-received" on instance 0x555555871780 [GtkWindow]> (instance=0x555555871780, detailed_signal=0x7ffff1ff4344 "selection-received") at gsignal.c:3487
    #14 0x00007ffff00593e5 in g_closure_invoke (closure=0x5555566dd2e0, return_value=return_value at entry=0x0, n_param_values=3, param_values=param_values at entry=0x7fffffffd380, invocation_hint=invocation_hint at entry=0x7fffffffd300) at gclosure.c:804
    #15 0x00007ffff006b432 in signal_emit_unlocked_R (node=node at entry=0x5555558a4150, detail=detail at entry=0, instance=instance at entry=0x555555871780, emission_return=emission_return at entry=0x0, instance_and_params=instance_and_params at entry=0x7fffffffd380) at gsignal.c:3635
    #16 0x00007ffff007405f in g_signal_emit_valist (instance=instance at entry=0x555555871780, signal_id=signal_id at entry=95, detail=detail at entry=0, var_args=var_args at entry=0x7fffffffd5b8)
    at gsignal.c:3391
#18 0x00007ffff1e85f33 in gtk_selection_retrieval_report () at /lib64/libgtk-3.so.0
#19 0x00007ffff1e89fed in _gtk_selection_notify () at /lib64/libgtk-3.so.0
#20 0x00007ffff1df9091 in _gtk_marshal_BOOLEAN__BOXEDv () at /lib64/libgtk-3.so.0
---Type <return> to continue, or q <return> to quit---
#21 0x00007ffff0059614 in _g_closure_invoke_va (closure=closure at entry=0x555555898f90, return_value=return_value at entry=0x7fffffffd960, instance=instance at entry=0x555555871780, args=args at entry=0x7fffffffda30, n_params=<optimized out>, param_types=0x555555872020) at gclosure.c:867
#22 0x00007ffff00738b3 in g_signal_emit_valist (instance=0x555555871780, signal_id=<optimized out>, detail=0, var_args=var_args at entry=0x7fffffffda30) at gsignal.c:3300
#23 0x00007ffff007443f in g_signal_emit (instance=<optimized out>, signal_id=<optimized out>, detail=<optimized out>) at gsignal.c:3447
#24 0x00007ffff1f4634c in gtk_widget_event_internal () at /lib64/libgtk-3.so.0
#25 0x00007ffff1df7fc4 in gtk_main_do_event () at /lib64/libgtk-3.so.0
#26 0x00007ffff190d5c5 in _gdk_event_emit () at /lib64/libgdk-3.so.0
#27 0x00007ffff19691d2 in gdk_event_source_dispatch () at /lib64/libgdk-3.so.0
#28 0x00007fffefd80e52 in g_main_dispatch (context=0x55555584e3a0) at gmain.c:3203
#29 0x00007fffefd80e52 in g_main_context_dispatch (context=context at entry=0x55555584e3a0) at gmain.c:3856
#30 0x00007fffefd811d0 in g_main_context_iterate (context=context at entry=0x55555584e3a0, block=block at entry=1, dispatch=dispatch at entry=1, self=<optimized out>) at gmain.c:3929
#31 0x00007fffefd8127c in g_main_context_iteration (context=context at entry=0x55555584e3a0, may_block=may_block at entry=1) at gmain.c:3990
#32 0x00007ffff0339b9d in g_application_run (application=0x5555558d6270 [EphyShell], argc=1, argv=0x7fffffffde98) at gapplication.c:2381
#33 0x0000555555586bf4 in main ()
(gdb)

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20170705/3cf35a27/attachment-0001.html>

More information about the webkit-unassigned mailing list