[Webkit-unassigned] [Bug 254117] New: [GTK] UI process crash in AcceleratedBackingStoreWayland::tryEnsureTexture

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Sat Mar 18 10:35:55 PDT 2023 

https://bugs.webkit.org/show_bug.cgi?id=254117

            Bug ID: 254117
           Summary: [GTK] UI process crash in
                    AcceleratedBackingStoreWayland::tryEnsureTexture
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKitGTK
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: mcatanzaro at gnome.org
                CC: bugs-noreply at webkitgtk.org, psaavedra at igalia.com

Since updating to WebKitGTK 2.40.0 and wpebackend-fdo 1.14.1, we have a somewhat frequent UI process crash that occurs when switching between tabs in Epiphany. I'll attach the full backtrace, but the top of the backtrace looks like this:

(gdb) bt
#0  0x00007fc8b057acf9 in wl_resource_post_event () at /usr/lib/x86_64-linux-gnu/libwayland-server.so.0
#1  0x00007fc8b29bfd3c in wl_buffer_send_release (resource_=0xaaaaaaaaaaaaaaaa)
    at /usr/include/wayland-server-protocol.h:1721
#2  ViewBackend::releaseBuffer(wl_resource*) (this=<optimized out>, buffer_resource=0xaaaaaaaaaaaaaaaa)
    at ../src/view-backend-private.cpp:115
#3  0x00007fc8b62ad9a3 in WebKit::AcceleratedBackingStoreWayland::tryEnsureTexture(unsigned int&, WebCore::IntSize&)
    (this=0x7fc896de0180, texture=@0x7ffd345134dc: 32712, textureSize=...)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebKit/UIProcess/gtk/AcceleratedBackingStoreWayland.cpp:408
#4  0x00007fc8b62add33 in WebKit::AcceleratedBackingStoreWayland::snapshot(_GdkSnapshot*)
    (this=0x7fc896de0180, gtkSnapshot=0x55d09de571e0 [GtkSnapshot])
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebKit/UIProcess/gtk/AcceleratedBackingStoreWayland.cpp:485
#5  0x00007fc8b6212b3a in webkitWebViewBaseSnapshot(_GtkWidget*, _GdkSnapshot*)
    (widget=0x55d09c442fb0 [EphyWebView], snapshot=0x55d09de68600 [GtkSnapshot])
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebKit/UIProcess/API/gtk/WebKitWebViewBase.cpp:757
#6  0x00007fc8ba299688 in gtk_widget_create_render_node
    (widget=widget at entry=0x55d09c442fb0 [EphyWebView], snapshot=snapshot at entry=0x55d09de68600 [GtkSnapshot])
    at ../gtk/gtkwidget.c:11777

I think only the top three frames matter, because the parameters to tryEnsureTexture are both out parameters.

I wonder if https://github.com/Igalia/WPEBackend-fdo/pull/178 might be to blame, because I do not see any suspicious commits between WebKitGTK 2.39.91 and 2.40.0, and notably, AcceleratedBackingStoreWayland::tryEnsureTexture calls wpe_view_backend_exportable_fdo_egl_dispatch_release_exported_image(). Suspect something is wrong there.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20230318/bd523322/attachment-0001.htm>

More information about the webkit-unassigned mailing list