[Webkit-unassigned] [Bug 237917] New: [WPE][GTK] Fix a crash after r290360

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Tue Mar 15 13:15:02 PDT 2022 

https://bugs.webkit.org/show_bug.cgi?id=237917

            Bug ID: 237917
           Summary: [WPE][GTK] Fix a crash after r290360
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Linux
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKitGTK
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: psaavedra at igalia.com
                CC: bugs-noreply at webkitgtk.org

When navigating from one website to another with a different domain with `JS location.replace("https://other.domain.foo")` there is chances to get this crash:


```
was generated by `/usr/libexec/wpe-webkit-1.0/WPEWebProcess 17 75'.
Program terminated with signal SIGSEGV, Segmentation fault.
#0  0x74eeb448 in WebKit::WebProcess::terminate() () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
[Current thread is 1 (LWP 115)]
(gdb) bt
#0  0x74eeb448 in WebKit::WebProcess::terminate() () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#1  0x74eeb2dc in WebKit::WebProcess::removeWebPage(WTF::ObjectIdentifier<WebCore::PageIdentifierType>) () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#2  0x74f75554 in WebKit::WebPage::close() () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#3  0x74f94c96 in WebKit::WebProcess::stopRunLoop() () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#4  0x74d62986 in IPC::Connection::dispatchMessage(std::unique_ptr<IPC::Decoder, std::default_delete<IPC::Decoder> >) () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#5  0x74d62c22 in IPC::Connection::dispatchOneIncomingMessage() () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#6  0x7686b89a in WTF::RunLoop::performWork() () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#7  0x768a6f70 in WTF::RunLoop::RunLoop()::$_1::__invoke(void*) () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#8  0x768a6664 in WTF::RunLoop::$_0::__invoke(_GSource*, int (*)(void*), void*) () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#9  0x7453d7b6 in g_main_dispatch (context=0x19948c8) at ../glib-2.62.6/glib/gmain.c:3216
#10 g_main_context_dispatch (context=context at entry=0x19948c8) at ../glib-2.62.6/glib/gmain.c:3908
#11 0x7453da4c in g_main_context_iterate (context=0x19948c8, block=block at entry=1, dispatch=dispatch at entry=1, self=<optimized out>) at ../glib-2.62.6/glib/gmain.c:3981
#12 0x7453dcb8 in g_main_loop_run (loop=0x1995e58) at ../glib-2.62.6/glib/gmain.c:4175
#13 0x768a6ab0 in WTF::RunLoop::run() () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#14 0x74f95620 in int WebKit::AuxiliaryProcessMain<WebKit::WebProcessMainWPE>(int, char**) () from /webkit/usr/lib/libWPEWebKit-1.0.so.3.16.8
#15 0x748309fa in __libc_start_main (main=0x456fe0, argc=0, argv=0x0, init=<optimized out>, fini=0x455655 <__libc_csu_fini>, rtld_fini=0x76f13029 <_dl_fini>, stack_end=0x7eb164d4) at libc-start.c:308
#16 0x00455508 in _start () at start.S:112
Backtrace stopped: previous frame identical to this frame (corrupt stack?)
```

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20220315/b0b2bb53/attachment-0001.htm>

More information about the webkit-unassigned mailing list