Bug 169021

Summary: [GTK] WebProcess from WebKitGtk+ 2.15.90 SIGSEVs in JSC::Heap::markListSet() at Source/JavaScriptCore/heap/HeapInlines.h:241
Product: WebKit Reporter: Andres Gomez Garcia <agomez>
Component: WebKitGTKAssignee: Nobody <webkit-unassigned>
Status: RESOLVED FIXED    
Severity: Normal CC: bugs-noreply
Priority: P2    
Version: WebKit Nightly Build   
Hardware: PC   
OS: Linux   
See Also: https://bugs.webkit.org/show_bug.cgi?id=169020
https://bugs.webkit.org/show_bug.cgi?id=169022
Attachments:
Description Flags
BT from gdb for the WebProcess none

Description Andres Gomez Garcia 2017-03-01 00:52:38 PST 
Created attachment 303050 [details]
BT from gdb for the WebProcess

Created attachment 303048 [details]
BT from gdb for the WebProcess

I'm using WebKitGtk+ with my own JHBuild setting:
https://github.com/tanty/jhbuild-epiphany/tree/master

Epiphany 3.22.6 and WebKit 2.15.90.

However, the rest of the dependencies, but mesa and its dependencies, and evince, are all provided from Debian Testing.

The compilation was done with CMake args:

'-DPORT=GTK -DCMAKE_BUILD_TYPE=Release -DENABLE_MINIBROWSER=ON -DCMAKE_C_FLAGS_RELEASE="-O0 -g -DNDEBUG  -DG_DISABLE_CAST_CHECKS" -DCMAKE_CXX_FLAGS_RELEASE="-O0 -g -DNDEBUG -DG_DISABLE_CAST_CHECKS"'

After visiting several pages, eventually, the WebProcess hits a SIGSEV.

This bug is not reproducible in a predictable way.
Comment 1 Andres Gomez Garcia 2017-03-01 00:53:10 PST 
This SIGSEV is not difficult to hit, although not in a predictable way.
Comment 2 Andres Gomez Garcia 2017-03-01 05:12:44 PST 
Fixed in 2.15.91