[Webkit-unassigned] [Bug 239429] [GTK][Wayland] Evolution crashes when closing the message compose window

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Apr 20 23:56:48 PDT 2022 

https://bugs.webkit.org/show_bug.cgi?id=239429

Milan Crha <mcrha at redhat.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |mcrha at redhat.com

--- Comment #3 from Milan Crha <mcrha at redhat.com> ---
A downstream bug report:
https://gitlab.gnome.org/GNOME/evolution/-/issues/1878
contains a valgrind log snippet:

==100312== Invalid read of size 8
==100312==    at 0x6986536: webkitWebViewBaseMakeGLContextCurrent(_WebKitWebViewBase*) (WebKitWebViewBase.cpp:2572)
==100312==    by 0x6A0FD2A: WebKit::WaylandCompositor::Surface::setWebPage(WebKit::WebPageProxy*) (WaylandCompositor.cpp:184)
==100312==    by 0x6A1138F: WebKit::WaylandCompositor::unregisterWebPage(WebKit::WebPageProxy&) (WaylandCompositor.cpp:597)
==100312==    by 0x6A06157: WebKit::AcceleratedBackingStoreWayland::~AcceleratedBackingStoreWayland() (AcceleratedBackingStoreWayland.cpp:246)
==100312==    by 0x6A061BC: WebKit::AcceleratedBackingStoreWayland::~AcceleratedBackingStoreWayland() (AcceleratedBackingStoreWayland.cpp:251)
==100312==    by 0x69842BA: operator() (unique_ptr.h:85)
==100312==    by 0x69842BA: reset (unique_ptr.h:182)
==100312==    by 0x69842BA: reset (unique_ptr.h:456)
==100312==    by 0x69842BA: operator= (unique_ptr.h:397)
==100312==    by 0x69842BA: webkitWebViewBaseDispose(_GObject*) (WebKitWebViewBase.cpp:707)
==100312==    by 0x55A1D30: UnknownInlinedFun (gobject.c:3636)
==100312==    by 0x55A1D30: g_object_unref (gobject.c:3553)
==100312==    by 0x4C84BD5: gtk_container_remove (in /usr/lib/x86_64-linux-gnu/libgtk-3.so.0.2404.29)
==100312==    by 0x4DEB4F7: ??? (in /usr/lib/x86_64-linux-gnu/libgtk-3.so.0.2404.29)
==100312==    by 0x5592744: g_cclosure_marshal_VOID__OBJECTv (gmarshal.c:1910)
==100312==    by 0x55B163F: UnknownInlinedFun (gclosure.c:893)
==100312==    by 0x55B163F: g_signal_emit_valist (gsignal.c:3406)
==100312==    by 0x55B17A2: g_signal_emit (gsignal.c:3553)
==100312==  Address 0x0 is not stack'd, malloc'd or (recently) free'd
==100312== 
==100312== 
==100312== Process terminating with default action of signal 11 (SIGSEGV)
==100312==  Access not within mapped region at address 0x0
==100312==    at 0x6986536: webkitWebViewBaseMakeGLContextCurrent(_WebKitWebViewBase*) (WebKitWebViewBase.cpp:2572)
==100312==    by 0x6A0FD2A: WebKit::WaylandCompositor::Surface::setWebPage(WebKit::WebPageProxy*) (WaylandCompositor.cpp:184)
==100312==    by 0x6A1138F: WebKit::WaylandCompositor::unregisterWebPage(WebKit::WebPageProxy&) (WaylandCompositor.cpp:597)
==100312==    by 0x6A06157: WebKit::AcceleratedBackingStoreWayland::~AcceleratedBackingStoreWayland() (AcceleratedBackingStoreWayland.cpp:246)
==100312==    by 0x6A061BC: WebKit::AcceleratedBackingStoreWayland::~AcceleratedBackingStoreWayland() (AcceleratedBackingStoreWayland.cpp:251)
==100312==    by 0x69842BA: operator() (unique_ptr.h:85)
==100312==    by 0x69842BA: reset (unique_ptr.h:182)
==100312==    by 0x69842BA: reset (unique_ptr.h:456)
==100312==    by 0x69842BA: operator= (unique_ptr.h:397)
==100312==    by 0x69842BA: webkitWebViewBaseDispose(_GObject*) (WebKitWebViewBase.cpp:707)
==100312==    by 0x55A1D30: UnknownInlinedFun (gobject.c:3636)
==100312==    by 0x55A1D30: g_object_unref (gobject.c:3553)
==100312==    by 0x4C84BD5: gtk_container_remove (in /usr/lib/x86_64-linux-gnu/libgtk-3.so.0.2404.29)
==100312==    by 0x4DEB4F7: ??? (in /usr/lib/x86_64-linux-gnu/libgtk-3.so.0.2404.29)
==100312==    by 0x5592744: g_cclosure_marshal_VOID__OBJECTv (gmarshal.c:1910)
==100312==    by 0x55B163F: UnknownInlinedFun (gclosure.c:893)
==100312==    by 0x55B163F: g_signal_emit_valist (gsignal.c:3406)
==100312==    by 0x55B17A2: g_signal_emit (gsignal.c:3553)

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20220421/25006be9/attachment-0001.htm>

More information about the webkit-unassigned mailing list