167296 – [GTK] WebProcess from WebKitGtk+ 2.15.3 SIGSEVs in WebCore::GraphicsContext3D::drawArrays(unsigned int, int, int) at Source/WebCore/platform/graphics/opengl/GraphicsContext3DOpenGLCommon.cpp:740

Bug 167296 - [GTK] WebProcess from WebKitGtk+ 2.15.3 SIGSEVs in WebCore::GraphicsContext3D::drawArrays(unsigned int, int, int) at Source/WebCore/platform/graphics/opengl/GraphicsContext3DOpenGLCommon.cpp:740

Summary: [GTK] WebProcess from WebKitGtk+ 2.15.3 SIGSEVs in WebCore::GraphicsContext3D...

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	WebKitGTK (show other bugs)
Version:	WebKit Nightly Build
Hardware:	PC Linux

Importance:	P2 Normal
Assignee:	Miguel Gomez

URL:
Keywords:

Duplicates (1):	167470 (view as bug list)
Depends on:
Blocks:

Reported:	2017-01-22 14:59 PST by Andres Gomez Garcia
Modified:	2017-02-18 16:16 PST (History)
CC List:	12 users (show)

See Also:	https://bugzilla.gnome.org/show_bug.cgi?id=777925 https://bugzilla.redhat.com/show_bug.cgi?id=1418448 https://bugzilla.gnome.org/show_bug.cgi?id=777947 https://bugzilla.redhat.com/show_bug.cgi?id=1424732

Attachments
BT from gdb for the WebProcess (212.33 KB, text/plain) 2017-01-22 14:59 PST, Andres Gomez Garcia	no flags	Details
Patch (2.63 KB, patch) 2017-01-25 07:06 PST, Miguel Gomez	no flags	Details \| Formatted Diff \| Diff
Archive of layout-test-results from ews101 for mac-elcapitan (728.99 KB, application/zip) 2017-01-25 08:07 PST, Build Bot	no flags	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Andres Gomez Garcia 2017-01-22 14:59:39 PST

Created attachment 299487 [details]
BT from gdb for the WebProcess

I'm using WebKitGtk+ with my own JHBuild setting:
https://github.com/tanty/jhbuild-epiphany/tree/master

Epiphany 3.20.6 and WebKit 2.15.3

I'm running Epiphany with the dconf key:

"process-model" = "shared-secondary-process"

And the env variable:

"export LIBGL_DRI3_DISABLE=1"

The compilation was done with CMake args:

'-DPORT=GTK -DCMAKE_BUILD_TYPE=Release -DENABLE_MINIBROWSER=ON -DCMAKE_C_FLAGS_RELEASE="-O0 -g -DNDEBUG -DG_DEBUG=fatal-criticals -DG_DISABLE_CAST_CHECKS" -DCMAKE_CXX_FLAGS_RELEASE="-O0 -g -DNDEBUG -DG_DEBUG=fatal-criticals -DG_DISABLE_CAST_CHECKS"'

After visiting several pages, eventually, the WebProcess hits a SIGSEV.

This bug is not reproducible in a predictable way.

Comment 1 Miguel Gomez 2017-01-25 07:06:22 PST

Created attachment 299700 [details]
Patch

Comment 2 Sergio Villar Senin 2017-01-25 07:56:35 PST

Comment on attachment 299700 [details]
Patch

View in context: https://bugs.webkit.org/attachment.cgi?id=299700&action=review

> Source/WebCore/platform/graphics/texmap/TextureMapperGL.cpp:691
> +    Platform3DObject vbo = data().getStaticVBO(GraphicsContext3D::ARRAY_BUFFER, sizeof(GC3Dfloat) * 8, unitRect);

I think you can use sizeof(uniRect) instead of the magic number 8.

Comment 3 Build Bot 2017-01-25 08:07:07 PST

Comment on attachment 299700 [details]
Patch

Attachment 299700 [details] did not pass mac-ews (mac):
Output: http://webkit-queues.webkit.org/results/2947032

New failing tests:
imported/w3c/web-platform-tests/html/browsers/history/the-location-interface/location-protocol-setter-non-broken.html

Comment 4 Build Bot 2017-01-25 08:07:11 PST

Created attachment 299706 [details]
Archive of layout-test-results from ews101 for mac-elcapitan

The attached test failures were seen while running run-webkit-tests on the mac-ews.
Bot: ews101  Port: mac-elcapitan  Platform: Mac OS X 10.11.6

Comment 5 WebKit Commit Bot 2017-01-26 01:06:20 PST

Comment on attachment 299700 [details]
Patch

Clearing flags on attachment: 299700

Committed r211204: <http://trac.webkit.org/changeset/211204>

Comment 6 WebKit Commit Bot 2017-01-26 01:06:24 PST

All reviewed patches have been landed.  Closing bug.

Comment 7 Michael Catanzaro 2017-01-30 07:24:01 PST

*** Bug 167470 has been marked as a duplicate of this bug. ***