[Webkit-unassigned] [Bug 188568] [GTK][WPE] Implement subprocess sandboxing

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sun Sep 2 09:56:59 PDT 2018 

https://bugs.webkit.org/show_bug.cgi?id=188568

--- Comment #30 from Michael Catanzaro <mcatanzaro at igalia.com> ---
I know downloading files is not expected to work yet. My favorite download test is to visit https://www.google.com/, right click on the Google logo, and Save As. If you then click the folder icon in the download popover, gnome-shell crashes in meta_window_wayland_needs_move_resize(). This is going to be a blocker, so you can either report it to the mutter developers, or use it as an opportunity to do some mutter hacking:

#0  0x00007f180d450138 in meta_window_wayland_needs_move_resize (window=window at entry=0x0) at wayland/meta-window-wayland.c:923
        wl_window = 0x0
#1  0x00007f180d452302 in meta_wayland_xdg_toplevel_commit (surface_role=0x55e0430c7d60 [MetaWaylandXdgToplevel], pending=0x55e04212e6e0 [MetaWaylandPendingState]) at wayland/meta-wayland-xdg-shell.c:630
        xdg_toplevel = 0x55e0430c7d60 [MetaWaylandXdgToplevel]
        xdg_surface = 0x55e0430c7d60 [MetaWaylandXdgToplevel]
        xdg_surface_priv = 0x55e0430c7d20
        surface_role_class = <optimized out>
        surface = 0x55e04307b4c0 [MetaWaylandSurface]
        window = 0x0
        old_geometry = {x = 0, y = 0, width = 0, height = 0}
        geometry_changed = <optimized out>
#2  0x00007f180d449c78 in meta_wayland_surface_role_commit (pending=0x55e04212e6e0 [MetaWaylandPendingState], surface_role=<optimized out>)
    at wayland/meta-wayland-surface.h:45
        __func__ = "meta_wayland_surface_apply_pending_state"
#3  0x00007f180d449c78 in meta_wayland_surface_apply_pending_state (surface=0x55e04307b4c0 [MetaWaylandSurface], pending=0x55e04212e6e0 [MetaWaylandPendingState]) at wayland/meta-wayland-surface.c:720
        __func__ = "meta_wayland_surface_apply_pending_state"
#4  0x00007f1809c3a03e in ffi_call_unix64 () at ../src/x86/unix64.S:76
#5  0x00007f1809c399ff in ffi_call (cif=<optimized out>, fn=<optimized out>, rvalue=<optimized out>, avalue=<optimized out>) at ../src/x86/ffi64.c:525
        classes = {X86_64_INTEGER_CLASS, X86_64_NO_CLASS, 1082533168, 21984}
        stack = <optimized out>
        argp = <optimized out>
        arg_types = <optimized out>
        gprcount = <optimized out>
        ssecount = <optimized out>
        ngpr = 1
        nsse = 0
        i = <optimized out>
        avn = <optimized out>
        ret_in_memory = <optimized out>
        reg_args = <optimized out>
#6  0x00007f1803213f2d in wl_closure_invoke (closure=closure at entry=0x55e042f9be00, flags=flags at entry=2, target=<optimized out>, 
    target at entry=0x55e040862530, opcode=opcode at entry=6, data=<optimized out>, 
    data at entry=0x55e042e1c6a0) at src/connection.c:996
        count = <optimized out>
        cif = 
          {abi = FFI_UNIX64, nargs = 2, arg_types = 0x7ffdc3b83cb0, rtype = 0x7f1809c3a430 <ffi_type_void>, bytes = 0, flags = 0}
        ffi_types = 
          {0x7f1809c3a310 <ffi_type_pointer>, 0x7f1809c3a310 <ffi_type_pointer>, 0x7f1809c3a390 <ffi_type_uint32>, 0x7f1809c3a370 <ffi_type_sint32>, 0x7f1809c3a370 <ffi_type_sint32>, 0x7f1809c3a370 <ffi_type_sint32>, 0x7f1809c3a370 <ffi_type_sint32>, 0x7f1809c3a390 <ffi_type_uint32>, 0x217e37896, 0x1, 0x7ffdc3b83d30, 0x7f1803212248 <wl_buffer_put+72>, 0x0, 0x7ffdc3b83d90, 0x7ffdc3b83d30, 0x7f1803212874 <wl_connection_read+372>, 0x0, 0x200000000, 0x7ffdc3b83d70, 0x2, 0x7ffdc3b83d90, 0x7f18084af0d0 <wl_surface_requests+144>}
        ffi_args = 
          {0x7ffdc3b83c80, 0x7ffdc3b83c88, 0x7f18084af0d0 <wl_surface_requests+144>, 0x7f1803212c80 <wl_closure_init+224>, 0x55e04309b4e8, 0x55e040862530, 0x8, 0x55e042e1c6d0, 0x6, 0x7f1803213780 <wl_connection_demarshal+144>, 0x55e042f9bed8, 0x55e0407ab800, 0x55e04309b590, 0x55e042f9be00, 0x55e04309b59c, 0x55e042e1c6d0, 0x8402fd0f0, 0x7f1803213c1b <wl_closure_lookup_objects+171>, 0x55e0407ad810, 0x7f180320e977 <log_closure+71>, 0x7f18084af0d0 <wl_surface_requests+144>, 0x3212d7d}
        implementation = <optimized out>
#7  0x00007f18032103df in wl_client_connection_data (fd=<optimized out>, mask=<optimized out>, data=0x55e042e1c6a0) at src/wayland-server.c:420
        client = 0x55e042e1c6a0
        connection = 0x55e0407ab800
        resource = 0x55e040862530
        object = 0x55e040862530
        closure = 0x55e042f9be00
        message = 0x7f18084af0d0 <wl_surface_requests+144>
        p = {29, 524294}
        resource_flags = <optimized out>
        opcode = 6
        size = <optimized out>
        since = <optimized out>
        len = <optimized out>
#8  0x00007f1803211f02 in wl_event_loop_dispatch (loop=0x55e040101c70, timeout=timeout at entry=0) at src/event-loop.c:641
        ep = 
              {{events = 1, data = {ptr = 0x7f17e00220f0, fd = -536731408, u32 = 3758235888, u64 = 139740519211248}}, {events = 0, data = {ptr = 0x7ffdc3b83ed0, fd = -1011335472, u32 = 3283631824, u64 = 140727887085264}}, {events = 1, data = {ptr = 0xc3b83f2000000000, fd = 0, u32 = 0, u64 = 14103091639782211584}}, {events = 32765, data = {ptr = 0x50, fd = 80, u32 = 80, u64 = 80}}, {events = 0, data = {ptr = 0xef02e3800000000, fd = 0, u32 = 0, u64 = 1076411128994594816}}, {events = 32536, data = {ptr = 0x0, fd = 0, u32 = 0, u64 = 0}}, {events = 0, data = {ptr = 0x430dcad000000000, fd = 0, u32 = 0, u64 = 4831740969940418560}}, {events = 21984, data = {ptr = 0x7f180ef31fd1 <g_slice_alloc+33>, fd = 250814417, u32 = 250814417, u64 = 139741306757073}}, {events = 1077581824, data = {ptr = 0xef02e38000055e0, fd = 21984, u32 = 21984, u64 = 1076411128994616800}}, {events = 32536, data = {ptr = 0x55e0403a9800, fd = 1077581824, u32 = 1077581824, u64 = 94421638617088}}, {events = 1124971328, data = {ptr = 0x17e37896000055e0, fd = 21984, u32 = 21984, u64 = 1721352068226110944}}, {events = 2, data = {ptr = 0x0, fd = 0, u32 = 0, u64 = 0}}, {events = 1124977360, data = {ptr = 0x8a3a7400000055e0, fd = 21984, u32 = 21984, u64 = 9960401069232117216}}, {events = 277936694, data = {ptr = 0x55e0403a9800, fd = 1077581824, u32 = 1077581824, u64 = 94421638617088}}, {events = 1101317360, data = {ptr = 0x2000055e0, fd = 21984, u32 = 21984, u64 = 8589956576}}, {events = 0, data = {ptr = 0x1090fa368a3a7400, fd = -1975880704, u32 = 2319086592, u64 = 1193729013407446016}}, {events = 3283632344, data = {ptr = 0x41a4c4f000007ffd, fd = 32765, u32 = 32765, u64 = 4730122043717091325}}, {events = 21984, data = {ptr = 0x2, fd = 2, u32 = 2, u64 = 2}}, {events = 3283632352, data = {ptr = 0xc3b840d800007ffd, fd = 32765, u32 = 32765, u64 = 14103093529567854589}}, {events = 32765, data = {ptr = 0x7fffffff, fd = 2147483647, u32 = 2147483647, u64 = 2147483647}}, {events = 2351699200, data = {ptr = 0x6e2d90100007f17, fd = 32535, u32 = 32535, u64 = 496197507282403095}}, {events = 32536, data = {ptr = 0x7ffdc3b84020, fd = -1011335136, u32 = 3283632160, u64 = 140727887085600}}, {events = 2319086592, data = {ptr = 0xc3b840301090fa36, fd = 277936694, u32 = 277936694, u64 = 14103092808291252790}}, {events = 32765, data = {ptr = 0x7ffdc3bd5bcc <clock_gettime+476>, fd = -1011000372, u32 = 3283966924, u64 = 140727887420364}}, {events = 3283632224, data = {ptr = 0x8a3a740000007ffd, fd = 32765, u32 = 32765, u64 = 9960401069232127997}}, {events = 1, data = {ptr = 0x1, fd = 1, u32 = 1, u64 = 1}}, {events = 2147483647, data = {ptr = 0xc3b840d800000000, fd = 0, u32 = 0, u64 = 14103093529567821824}}, {events = 32765, data = {ptr = 0x0, fd = 0, u32 = 0, u64 = 0}}, {events = 3283632224, data = {ptr = 0xd13a9bc00007ffd, fd = 32765, u32 = 32765, u64 = 942283371969544189}}, {events = 32536, data = {ptr = 0x20, fd = 32, u32 = 32, u64 = 32}}, {events = 8, data = {ptr = 0x4010664000000000, fd = 0, u32 = 0, u64 = 4616302043118698496}}, {events = 21984, data = {ptr = 0x7ffdc3b84070, fd = -1011335056, u32 = 3283632240, u64 = 140727887085680}}}
        source = <optimized out>
        i = <optimized out>
        count = <optimized out>
#9  0x00007f180d43347b in wayland_event_source_dispatch (base=<optimized out>, callback=<optimized out>, data=<optimized out>) at wayland/meta-wayland.c:86
        source = <optimized out>
        loop = <optimized out>
#10 0x00007f180ef148ad in g_main_dispatch (context=0x55e04012b520)
    at gmain.c:3177
        dispatch = 0x7f180d433460 <wayland_event_source_dispatch>
        prev_source = 0x0
        was_in_call = 0
        user_data = 0x0
        callback = 0x0
        cb_funcs = 0x0
        cb_data = 0x0
        need_destroy = <optimized out>
        source = 0x55e040402950
        current = 0x55e040143d30
        i = 0
        __func__ = "g_main_dispatch"
#11 0x00007f180ef148ad in g_main_context_dispatch (context=context at entry=0x55e04012b520) at gmain.c:3830
#12 0x00007f180ef14c78 in g_main_context_iterate (context=0x55e04012b520, block=block at entry=1, dispatch=dispatch at entry=1, self=<optimized out>) at gmain.c:3903
        max_priority = 2147483647
        timeout = 989
        some_ready = 1
        nfds = <optimized out>
        allocated_nfds = 16
        fds = 0x7f17e001b8d0
#13 0x00007f180ef14fa2 in g_main_loop_run (loop=0x55e0403e1700) at gmain.c:4099
        __func__ = "g_main_loop_run"
#14 0x00007f180d3f9f70 in meta_run () at core/main.c:664
#15 0x000055e03ee164d8 in main (argc=<optimized out>, argv=<optimized out>)
    at ../src/main.c:525
        ctx = <optimized out>
        error = 0x0
        ecode = <optimized out>

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20180902/64ee5207/attachment.html>

More information about the webkit-unassigned mailing list