Bug 176834

Summary: Crashes right after adding a new Facebook account in GNOME
Product: WebKit Reporter: Debarshi Ray <rishi.is>
Component: WebKitGTKAssignee: Nobody <webkit-unassigned>
Status: RESOLVED WONTFIX    
Severity: Normal CC: aperez, bugs-noreply, mcatanzaro, thisiskatewinslet
Priority: P2    
Version: Other   
Hardware: Unspecified   
OS: Unspecified   

Description Debarshi Ray 2017-09-13 06:57:44 PDT 
I don't know if this is Mesa or WebKit, so I'll take a random guess start with WebKit.


I am running the GNOME Wayland session on Fedora 26 x86_64. The machine is a ThinkPad x1 Carbon (2nd gen.) with Haswell Mobile graphics. I have:

control-center-3.24.3-1.fc26.x86_64
gnome-online-accounts-3.24.2-1.fc26.x86_64

webkitgtk4-2.16.6-1.fc26.x86_64
gtk3-3.22.19-1.fc26.x86_64

mesa-libxatracker-17.1.7-1.fc26.x86_64
mesa-libgbm-devel-17.1.7-1.fc26.x86_64
mesa-libOpenCL-17.1.7-1.fc26.x86_64
mesa-libglapi-17.1.7-1.fc26.x86_64
mesa-libGLES-17.1.7-1.fc26.x86_64
mesa-libGLU-9.0.0-11.fc26.x86_64
mesa-libwayland-egl-17.1.7-1.fc26.x86_64
mesa-filesystem-17.1.7-1.fc26.x86_64
mesa-libEGL-devel-17.1.7-1.fc26.x86_64
mesa-libgbm-17.1.7-1.fc26.x86_64
mesa-libwayland-egl-devel-17.1.7-1.fc26.x86_64
mesa-libGL-17.1.7-1.fc26.x86_64
mesa-libGL-devel-17.1.7-1.fc26.x86_64
mesa-libGLES-devel-17.1.7-1.fc26.x86_64
mesa-dri-drivers-17.1.7-1.fc26.x86_64
mesa-libGLU-devel-9.0.0-11.fc26.x86_64
mesa-debuginfo-17.1.7-1.fc26.x86_64
mesa-libEGL-17.1.7-1.fc26.x86_64
wayland-devel-1.13.0-1.fc26.x86_64
libwayland-client-1.13.0-1.fc26.x86_64
libwayland-cursor-1.13.0-1.fc26.x86_64
xorg-x11-server-Xwayland-1.19.3-4.fc26.x86_64
mesa-libwayland-egl-17.1.7-1.fc26.x86_64
wayland-protocols-devel-1.9-1.fc26.noarch
mesa-libwayland-egl-devel-17.1.7-1.fc26.x86_64
libwayland-server-1.13.0-1.fc26.x86_64


Steps to reproduce:

(a) Revoke GNOME's access to your Facebook account (if any). Go to www.facebook.com -> Settings -> Apps. Hover over GNOME, if it's there, click the x button, followed by remove.

(b) Delete any cookies help by GOA at ~/.cache/goa-1.0/ [1]

(c) In GNOME, go to Settings -> Online Accounts.

(d) Remove any existing Facebook account. Close the undo notification to ensure that the account is really gone.

(e) Try to add a new Facebook account. Since you revoked GNOME access in (a), you'll have to click through a few more pages than usual.

(f) gnome-control-center crashes right after the final "ok".



This doesn't happen in the X session. It also doesn't happen if you skip (a).


[1] Works around https://bugs.webkit.org/show_bug.cgi?id=175265
Comment 1 Debarshi Ray 2017-09-13 06:59:31 PDT 
Program terminated with signal SIGSEGV, Segmentation fault.
#0  0x00007fc9e8634d8b in update_buffers (dri2_surf=dri2_surf@entry=0x55f7bae1ac10) at drivers/dri2/platform_wayland.c:467
467	   if (dri2_surf->base.Width != dri2_surf->wl_win->width ||
[Current thread is 1 (Thread 0x7fca1b17dac0 (LWP 3076))]
(gdb) thread apply all bt full

Thread 12 (Thread 0x7fc9e9051700 (LWP 3086)):
#0  0x00007fca0f8b1acd in poll () at /lib64/libc.so.6
#1  0x00007fca0fddf569 in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2  0x00007fca0fddf902 in g_main_loop_run () at /lib64/libglib-2.0.so.0
#3  0x00007fca103c4cb6 in gdbus_shared_thread_func () at /lib64/libgio-2.0.so.0
#4  0x00007fca0fe06536 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#5  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#6  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 11 (Thread 0x7fc9897f8700 (LWP 3600)):
#0  0x00007fca0f8b1acd in poll () at /lib64/libc.so.6
#1  0x00007fca0fddf569 in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2  0x00007fca0fddf902 in g_main_loop_run () at /lib64/libglib-2.0.so.0
#3  0x00007fca0c873850 in WTF::RunLoop::run() () at /lib64/libjavascriptcoregtk-4.0.so.18
#4  0x00007fca0c8726c1 in std::_Function_handler<void (), WTF::WorkQueue::platformInitialize(char const*, WTF::WorkQueue::Type, WTF::WorkQueue::QOS)::{lambda()#1}>::_M_invoke(std::_Any_data const&) () at /lib64/libjavascriptcoregtk-4.0.so.18
#5  0x00007fca0c84c3a8 in WTF::threadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#6  0x00007fca0c8712da in WTF::wtfThreadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#7  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#8  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 10 (Thread 0x7fc98b7fc700 (LWP 3704)):
#0  0x00007fca0f8b8559 in syscall () at /lib64/libc.so.6
#1  0x00007fca0fe246fa in g_cond_wait_until () at /lib64/libglib-2.0.so.0
#2  0x00007fca0fdb3b31 in g_async_queue_pop_intern_unlocked () at /lib64/libglib-2.0.so.0
#3  0x00007fca0fe06ed4 in g_thread_pool_thread_proxy () at /lib64/libglib-2.0.so.0
#4  0x00007fca0fe06536 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#5  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#6  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 9 (Thread 0x7fc98a7fa700 (LWP 3598)):
#0  0x00007fca0f8b1acd in poll () at /lib64/libc.so.6
#1  0x00007fca0fddf569 in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2  0x00007fca0fddf902 in g_main_loop_run () at /lib64/libglib-2.0.so.0
#3  0x00007fca0c873850 in WTF::RunLoop::run() () at /lib64/libjavascriptcoregtk-4.0.so.18
#4  0x00007fca0c8726c1 in std::_Function_handler<void (), WTF::WorkQueue::platformInitialize(char const*, WTF::WorkQueue::Type, WTF::WorkQueue::QOS)::{lambda()#1}>::_M_invoke(std::_Any_data const&) () at /lib64/libjavascriptcoregtk-4.0.so.18
#5  0x00007fca0c84c3a8 in WTF::threadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#6  0x00007fca0c8712da in WTF::wtfThreadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#7  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#8  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 8 (Thread 0x7fc98bffd700 (LWP 3591)):
#0  0x00007fca16d12eb6 in pthread_cond_timedwait@@GLIBC_2.3.2 () at /lib64/libpthread.so.0
#1  0x00007fca0c8718ca in WTF::ThreadCondition::timedWait(WTF::Mutex&, double) () at /lib64/libjavascriptcoregtk-4.0.so.18
#2  0x00007fca0c849893 in WTF::ParkingLot::parkConditionallyImpl(void const*, WTF::ScopedLambda<bool ()> const&, WTF::ScopedLambda<void ()> const&, WTF::TimeWithDynamicClockType const&) () at /lib64/libjavascriptcoregtk-4.0.so.18
#3  0x00007fca0c83b70a in WTF::sleep(double) () at /lib64/libjavascriptcoregtk-4.0.so.18
#4  0x00007fca0d23456d in std::_Function_handler<void (), WebKit::MemoryPressureMonitor::MemoryPressureMonitor()::{lambda()#1}>::_M_invoke(std::_Any_data const&) () at /lib64/libwebkit2gtk-4.0.so.37
#5  0x00007fca0c84c3a8 in WTF::threadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#6  0x00007fca0c8712da in WTF::wtfThreadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#7  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#8  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 7 (Thread 0x7fc9d10f5700 (LWP 3588)):
#0  0x00007fca0f8b1acd in poll () at /lib64/libc.so.6
#1  0x00007fca0fddf569 in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2  0x00007fca0fddf902 in g_main_loop_run () at /lib64/libglib-2.0.so.0
#3  0x00007fca0c873850 in WTF::RunLoop::run() () at /lib64/libjavascriptcoregtk-4.0.so.18
#4  0x00007fca0c8726c1 in std::_Function_handler<void (), WTF::WorkQueue::platformInitialize(char const*, WTF::WorkQueue::Type, WTF::WorkQueue::QOS)::{lambda()#1}>::_M_invoke(std::_Any_data const&) () at /lib64/libjavascriptcoregtk-4.0.so.18
#5  0x00007fca0c84c3a8 in WTF::threadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#6  0x00007fca0c8712da in WTF::wtfThreadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#7  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#8  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 6 (Thread 0x7fc9d9555700 (LWP 3587)):
#0  0x00007fca0f8b1acd in poll () at /lib64/libc.so.6
#1  0x00007fca0fddf569 in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2  0x00007fca0fddf902 in g_main_loop_run () at /lib64/libglib-2.0.so.0
#3  0x00007fca0c873850 in WTF::RunLoop::run() () at /lib64/libjavascriptcoregtk-4.0.so.18
#4  0x00007fca0c8726c1 in std::_Function_handler<void (), WTF::WorkQueue::platformInitialize(char const*, WTF::WorkQueue::Type, WTF::WorkQueue::QOS)::{lambda()#1}>::_M_invoke(std::_Any_data const&) () at /lib64/libjavascriptcoregtk-4.0.so.18
#5  0x00007fca0c84c3a8 in WTF::threadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#6  0x00007fca0c8712da in WTF::wtfThreadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#7  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#8  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 5 (Thread 0x7fc9d9d56700 (LWP 3586)):
#0  0x00007fca0f8b1acd in poll () at /lib64/libc.so.6
#1  0x00007fca0fddf569 in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2  0x00007fca0fddf902 in g_main_loop_run () at /lib64/libglib-2.0.so.0
#3  0x00007fca0c873850 in WTF::RunLoop::run() () at /lib64/libjavascriptcoregtk-4.0.so.18
#4  0x00007fca0c8726c1 in std::_Function_handler<void (), WTF::WorkQueue::platformInitialize(char const*, WTF::WorkQueue::Type, WTF::WorkQueue::QOS)::{lambda()#1}>::_M_invoke(std::_Any_data const&) () at /lib64/libjavascriptcoregtk-4.0.so.18
#5  0x00007fca0c84c3a8 in WTF::threadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#6  0x00007fca0c8712da in WTF::wtfThreadEntryPoint(void*) () at /lib64/libjavascriptcoregtk-4.0.so.18
#7  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#8  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 4 (Thread 0x7fc9e9852700 (LWP 3085)):
#0  0x00007fca0f8b1acd in poll () at /lib64/libc.so.6
#1  0x00007fca0fddf569 in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2  0x00007fca0fddf67c in g_main_context_iteration () at /lib64/libglib-2.0.so.0
#3  0x00007fca0fddf6c1 in glib_worker_main () at /lib64/libglib-2.0.so.0
#4  0x00007fca0fe06536 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#5  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#6  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 3 (Thread 0x7fc9ea053700 (LWP 3084)):
#0  0x00007fca0f8b1acd in poll () at /lib64/libc.so.6
#1  0x00007fca0fddf569 in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#2  0x00007fca0fddf67c in g_main_context_iteration () at /lib64/libglib-2.0.so.0
#3  0x00007fc9ea05af3d in dconf_gdbus_worker_thread () at /usr/lib64/gio/modules/libdconfsettings.so
#4  0x00007fca0fe06536 in g_thread_proxy () at /lib64/libglib-2.0.so.0
#5  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#6  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 2 (Thread 0x7fc9f19d7700 (LWP 3083)):
#0  0x00007fca16d1290b in pthread_cond_wait@@GLIBC_2.3.2 () at /lib64/libpthread.so.0
#1  0x00007fc9fc4a3cec in std::condition_variable::wait(std::unique_lock<std::mutex>&) () at /lib64/libstdc++.so.6
#2  0x00007fca0c8796d7 in bmalloc::AsyncTask<bmalloc::Heap, void (bmalloc::Heap::*)()>::threadRunLoop() ()
    at /lib64/libjavascriptcoregtk-4.0.so.18
#3  0x00007fca0c879819 in  () at /lib64/libjavascriptcoregtk-4.0.so.18
#4  0x00007fc9fc4aa02f in  () at /lib64/libstdc++.so.6
#5  0x00007fca16d0c36d in start_thread () at /lib64/libpthread.so.0
#6  0x00007fca0f8bdbbf in clone () at /lib64/libc.so.6

Thread 1 (Thread 0x7fca1b17dac0 (LWP 3076)):
#0  0x00007fc9e8634d8b in update_buffers (dri2_surf=dri2_surf@entry=0x55f7bae1ac10) at drivers/dri2/platform_wayland.c:467
        dri2_dpy = 0x55f7ba669a70
#1  0x00007fc9e8634e84 in image_get_buffers (driDrawable=driDrawable@entry=0x55f7bae4fa10, format=<optimized out>, stamp=stamp@entry=0x55f7bae4fa40, loaderPrivate=loaderPrivate@entry=0x55f7bae1ac10, buffer_mask=buffer_mask@entry=1, buffers=buffers@entry=0x7ffdd3b96bd0)
    at drivers/dri2/platform_wayland.c:597
        dri2_surf = 0x55f7bae1ac10
#2  0x00007fc9db252a0d in intel_update_image_buffers (drawable=0x55f7bae4fa10, brw=0x55f7bb177e00) at brw_context.c:1763
        fb = <optimized out>
        dri_screen = <optimized out>
        front_rb = <optimized out>
        images = {image_mask = 0, back = 0x7fc9db292689 <intel_finalize_mipmap_tree+185>, front = 0x55f7bcb67438}
        buffer_mask = 1
        ret = <optimized out>
        back_rb = <optimized out>
        format = 82
        brw = 0x55f7bb177e00
        dri_screen = <optimized out>
        __func__ = "intel_update_renderbuffers"
#3  0x00007fc9db252a0d in intel_update_renderbuffers (context=context@entry=0x55f7bb124850, drawable=drawable@entry=0x55f7bae4fa10)
    at brw_context.c:1477
        brw = 0x55f7bb177e00
        dri_screen = <optimized out>
        __func__ = "intel_update_renderbuffers"
#4  0x00007fc9db252d01 in intel_prepare_render (brw=brw@entry=0x55f7bb177e00) at brw_context.c:1498
        ctx = 0x55f7bb177e00
        driContext = 0x55f7bb124850
        drawable = 0x55f7bae4fa10
#5  0x00007fc9db253cd1 in brw_try_draw_prims (indirect=0x0, stream=0, xfb_obj=0x0, max_index=5, min_index=0, index_bounds_valid=<optimized out>, ib=0x0, nr_prims=1, prims=0x7ffdd3b96d30, arrays=0x55f7bbc241e8, ctx=0x55f7bb177e00) at brw_draw.c:478
        brw = 0x55f7bb177e00
        i = <optimized out>
        fail_next = false
        _warned = false
        msg_id = 0
        brw = 0x55f7bb177e00
        arrays = 0x55f7bbc241e8
        xfb_obj = 0x0
#6  0x00007fc9db253cd1 in brw_draw_prims (ctx=0x55f7bb177e00, prims=0x7ffdd3b96d30, nr_prims=1, ib=0x0, index_bounds_valid=<optimized out>, min_index=<optimized out>, max_index=<optimized out>, gl_xfb_obj=0x0, stream=0, indirect=0x0) at brw_draw.c:688
        brw = 0x55f7bb177e00
        arrays = 0x55f7bbc241e8
        xfb_obj = 0x0
#7  0x00007fc9dafd00a3 in vbo_draw_arrays (ctx=ctx@entry=0x55f7bb177e00, mode=mode@entry=4, start=start@entry=0, count=count@entry=6, numInstances=numInstances@entry=1, baseInstance=baseInstance@entry=0, drawID=0) at vbo/vbo_exec_array.c:429
        vbo = 0x55f7bbc20d40
        prim = 
            {{mode = 4, indexed = 0, begin = 1, end = 1, weak = 0, no_current_update = 0, is_indirect = 0, pad = 0, start = 0, count = 6, basevertex = 0, num_instances = 1, base_instance = 0, draw_id = 0, indirect_offset = 0}, {mode = 0, indexed = 0, begin = 0, end = 0, weak = 0, no_current_update = 0, is_indirect = 0, pad = 0, start = 0, count = 0, basevertex = 0, num_instances = 0, base_instance = 0, draw_id = 0, indirect_offset = 0}}
#8  0x00007fc9dafd026a in vbo_exec_DrawArrays (mode=4, start=0, count=6) at vbo/vbo_exec_array.c:577
        ctx = 0x55f7bb177e00
#9  0x00007fca114a71ac in gdk_gl_texture_quads (paint_context=paint_context@entry=0x55f7bab42190, texture_target=texture_target@entry=3553, n_quads=n_quads@entry=1, quads=quads@entry=0x7ffdd3b96f60, flip_colors=flip_colors@entry=1) at gdkgl.c:286
        paint_data = <optimized out>
        program = <optimized out>
        window = <optimized out>
        window_scale = <optimized out>
        w = 872
        h = 666
        i = <optimized out>
        vertex_buffer_data = 0x55f7bb00f290

#10 0x00007fca114a750c in gdk_gl_texture_from_surface (surface=0x55f7bb6342f0, region=region@entry=0x55f7baeef7a0) at gdkgl.c:809
        quad = {x1 = 0, y1 = 666, x2 = 872, y2 = 0, u1 = 0, v1 = 0, u2 = 1, v2 = 1}
        paint_context = 0x55f7bab42190
        image = 0x55f7bc334fe0
        device_x_offset = 0
        device_y_offset = 0
        rect = {x = 0, y = 0, width = 436, height = 333}
        e = {x = 0, y = 0, width = 872, height = 666}
        i = 0
        window = <optimized out>
        unscaled_window_height = 666
        texture_id = 152
        window_scale = 2
        sx = 2
        sy = 2
        umax = <optimized out>
        vmax = <optimized out>
        use_texture_rectangle = 0
        target = 3553
#11 0x00007fca114bddec in gdk_window_end_paint_internal (window=window@entry=0x55f7bad99330) at gdkwindow.c:3038
        opaque_region = 0x55f7baeef7a0
        surface = <optimized out>
        composited = <optimized out>
        impl_class = <optimized out>
        clip_box = {x = 0, y = 0, width = 436, height = 333}
        cr = <optimized out>
        __func__ = "gdk_window_end_paint_internal"
#12 0x00007fca114bdfc8 in gdk_window_end_draw_frame (window=0x55f7bad99330, context=0x55f7bcd41ed0) at gdkwindow.c:3289
        impl_class = <optimized out>
        __func__ = "gdk_window_end_draw_frame"
#13 0x00007fca11af23f3 in gtk_widget_render (widget=widget@entry=0x55f7badafca0, window=0x55f7bad99330, region=<optimized out>)
    at gtkwidget.c:17513
        priv = <optimized out>
        context = 0x55f7bcd41ed0
        do_clip = 1
        cr = 0x55f7bad34b00
        x = 0
        y = 0
        is_double_buffered = <optimized out>
#14 0x00007fca119930c9 in gtk_main_do_event (event=<optimized out>) at gtkmain.c:1834
        window_group = 0x7fc9e001ed30
        device = 0x0
        tmp_list = <optimized out>
        event_widget = 0x55f7badafca0
        event = 0x7ffdd3b97110
#15 0x00007fca114a4685 in _gdk_event_emit (event=event@entry=0x7ffdd3b97110) at gdkevents.c:73
#16 0x00007fca114b49c5 in _gdk_window_process_updates_recurse_helper (window=0x55f7bad99330, expose_region=<optimized out>)
    at gdkwindow.c:3852
        event = 
            {type = GDK_EXPOSE, any = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000'}, expose = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', area = {x = 0, y = 0, width = 436, height = 333}, region = 0x55f7baff3d00, count = 0}, visibility = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', state = GDK_VISIBILITY_UNOBSCURED}, motion = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', time = 0, x = 9.2519016486085873e-312, y = 1.645238600651351e-321, axes = 0x55f7baff3d00, state = 0, is_hint = 22007, device = 0x55f7ba5cf000, x_root = 4.6700310530723681e-310, y_root = 6.9419113815691415e-310}, button = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', time = 0, x = 9.2519016486085873e-312, y = 1.645238600651351e-321, axes = 0x55f7baff3d00, state = 0, button = 22007, device = 0x55f7ba5cf000, x_root = 4.6700310530723681e-310, y_root = 6.9419113815691415e-310}, touch = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', time = 0, x = 9.2519016486085873e-312, y = 1.645238600651351e-321, axes = 0x55f7baff3d00, state = 0, sequence = 0x55f7ba5cf000, emulating_pointer = -1159434672, device = 0x7fca11502efe, x_root = 4.6700322186981264e-310, y_root = 4.6700322120626272e-310}, scroll = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', time = 0, x = 9.2519016486085873e-312, y = 1.645238600651351e-321, state = 3137289472, direction = 22007, device = 0x55f700000000, x_root = 4.6700306143570942e-310, y_root = 4.6700310530723681e-310, delta_x = 6.9419113815691415e-310, delta_y = 4.6700322186981264e-310, is_stop = 0}, key = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', time = 0, state = 0, keyval = 436, length = 333, string = 0x55f7baff3d00 "\002", hardware_keycode = 0, group = 0 '\0---Type <return> to continue, or q <return> to quit---
00', is_modifier = 0}, crossing = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', subwindow = 0x1b400000000, time = 333, x = 4.6700311398721922e-310, y = 4.6698761371772748e-310, x_root = 4.6700306143570942e-310, y_root = 4.6700310530723681e-310, mode = 290467582, detail = 32714, focus = -1135842144, state = 22007}, focus_change = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', in = 0}, configure = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', x = 0, y = 0, width = 436, height = 333}, property = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', atom = 0x1b400000000, time = 333, state = 0}, selection = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', selection = 0x1b400000000, target = 0x14d, property = 0x55f7baff3d00, time = 0, requestor = 0x55f7ba5cf000}, owner_change = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', owner = 0x1b400000000, reason = (GDK_OWNER_CHANGE_DESTROY | unknown: 332), selection = 0x55f7baff3d00, time = 0, selection_time = 22007}, proximity = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', time = 0, device = 0x1b400000000}, dnd = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', context = 0x1b400000000, time = 333, x_root = 0, y_root = 0}, window_state = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', changed_mask = (unknown: 0), new_window_state = (unknown: 0)}, setting = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', action = GDK_SETTING_ACTION_NEW, name = 0x1b400000000 <error: Cannot access memory at address 0x1b400000000>}, grab_broken = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', keyboard = 0, implicit = 0, grab_window = 0x14d}, touchpad_swipe = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', phase = 0 '\000', n_fingers = 0 '\000', time = 0, x = 9.2519016486085873e-312, y = 1.645238600651351e-321, dx = 4.6700311398721922e-310, dy = 4.6698761371772748e-310, x_root = 4.6700306143570942e-310, y_root = 4.6700310530723681e-310, state = 290467582}, touchpad_pinch = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', phase = 0 '\000', n_fingers = 0 '\000', time = 0, x = 9.2519016486085873e-312, y = 1.645238600651351e-321, dx = 4.6700311398721922e-310, dy = 4.6698761371772748e-310, angle_delta = 4.6700306143570942e-310, scale = 4.6700310530723681e-310, x_root = 6.9419113815691415e-310, y_root = 4.6700322186981264e-310, state = 3158990848}, pad_button = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', time = 0, group = 0, button = 436, mode = 333}, pad_axis = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', time = 0, group = 0, index = 436, mode = 333, value = 4.6700311398721922e-310}, pad_group_mode = {type = GDK_EXPOSE, window = 0x55f7bad99330, send_event = 0 '\000', time = 0, group = 0, mode = 436}}
        child = <optimized out>
        clipped_expose_region = 0x55f7baff3d00
        children = <optimized out>
        i = <optimized out>
        n_children = <optimized out>
        l = <optimized out>
        last_link = <optimized out>
#17 0x00007fca114b5bc6 in gdk_window_process_updates_internal (window=0x55f7bad99330) at gdkwindow.c:3998
        expose_region = 0x55f7bae46e50
        impl_class = 0x55f7ba5d2910
        toplevel = <optimized out>
        display = <optimized out>
        __func__ = "gdk_window_process_updates_internal"
#18 0x00007fca114b5dc0 in gdk_window_process_updates_with_mode (window=<optimized out>, recurse_mode=<optimized out>) at gdkwindow.c:4192
        impl_window = 0x55f7bad99330
        list = 0x55f7bc4c6ca0
        i = <optimized out>
        __func__ = "gdk_window_process_updates_with_mode"
#19 0x00007fca100b730d in g_closure_invoke () at /lib64/libgobject-2.0.so.0
#20 0x00007fca100c998e in signal_emit_unlocked_R () at /lib64/libgobject-2.0.so.0
#21 0x00007fca100d21a5 in g_signal_emit_valist () at /lib64/libgobject-2.0.so.0
#22 0x00007fca100d2b0f in g_signal_emit () at /lib64/libgobject-2.0.so.0
#23 0x00007fca114ad4af in _gdk_frame_clock_emit_paint (frame_clock=<optimized out>) at gdkframeclock.c:640
#24 0x00007fca114adbe1 in gdk_frame_clock_paint_idle (data=0x55f7ba61db10) at gdkframeclockidle.c:430
        clock = 0x55f7ba61db10
        clock_idle = 0x55f7ba61db10
        priv = 0x55f7ba61da30
        skip_to_resume_events = 0
        timings = 0x55f7badfa0c0
        __func__ = "gdk_frame_clock_paint_idle"
#25 0x00007fca11498d50 in gdk_threads_dispatch (data=0x55f7bc4bf860) at gdk.c:743
        dispatch = 0x55f7bc4bf860
        ret = 0
#26 0x00007fca0fddfcad in g_timeout_dispatch () at /lib64/libglib-2.0.so.0
#27 0x00007fca0fddf247 in g_main_context_dispatch () at /lib64/libglib-2.0.so.0
#28 0x00007fca0fddf5e8 in g_main_context_iterate.isra () at /lib64/libglib-2.0.so.0
#29 0x00007fca0fddf67c in g_main_context_iteration () at /lib64/libglib-2.0.so.0
#30 0x00007fca10398ebd in g_application_run () at /lib64/libgio-2.0.so.0
#31 0x000055f7b98cf7e1 in main ()
(gdb)
Comment 2 Adrian Perez 2018-05-02 14:39:14 PDT 
Is this still happening with WebKitGTK+ 2.20.1? It would be great
if you could check it. Thanks!
Comment 3 Michael Catanzaro 2018-05-21 18:22:29 PDT 
This is *really* deep inside mesa, rishi. I'm going to say not our bug. In the off chance the mesa developers think it's not them, then it should go to the GTK+  developers since there isn't even any WebKit function anywhere on the crashing thread.
Comment 4 Debarshi Ray 2018-05-22 09:12:16 PDT 
This didn't reproduce on the GNOME Wayland session on Fedora 27 x86_64 with Intel Sandybridge.  I had:

control-center-3.26.2-2.fc27.x86_64
gnome-online-accounts-3.26.2-2.fc27.x86_64

webkitgtk4-2.20.1-1.fc27.x86_64
gtk3-3.22.26-2.fc27.x86_64

wayland-protocols-devel-1.12-1.fc27.noarch
libwayland-client-1.14.0-2.fc27.x86_64
libwayland-server-1.14.0-2.fc27.x86_64
mesa-libwayland-egl-17.3.6-1.fc27.x86_64
wayland-devel-1.14.0-2.fc27.x86_64
xorg-x11-server-Xwayland-1.19.6-7.fc27.x86_64
mesa-libwayland-egl-devel-17.3.6-1.fc27.x86_64
ibus-wayland-1.5.17-6.fc27.x86_64
gnome-session-wayland-session-3.26.1-1.fc27.x86_64
libwayland-cursor-1.14.0-2.fc27.x86_64