RESOLVED FIXED 184040
[GTK] WebProcess from WebKitGtk+ 2.19.92 SIGSEVs in WebCore::TextureMapperGL::~TextureMapperGL 
https://bugs.webkit.org/show_bug.cgi?id=184040
Summary [GTK] WebProcess from WebKitGtk+ 2.19.92 SIGSEVs in WebCore::TextureMapperGL:...
Andres Gomez Garcia
Reported 2018-03-27 07:07:15 PDT
Created attachment 336584 [details] BT from gdb for the WebProcess I'm using epiphany 3.27.90-38-gdb76a7f with WebKitGtk+ 2.19.92 from gnome-nightly's flatpak. I see often crashed tabs. When inspecting in my system with coredumpctl I've found several cores. In this case, the WebProcess is SIGSEVing. I do not know the conditions for this.
Attachments
BT from gdb for the WebProcess (154.62 KB, text/plain)
2018-03-27 07:07 PDT, Andres Gomez Garcia 		no flags
Details
Patch (2.31 KB, patch)
2018-04-27 05:07 PDT, Carlos Garcia Campos 		no flags
DetailsFormatted DiffDiff
Patch (2.31 KB, patch)
2018-04-27 05:15 PDT, Carlos Garcia Campos 		mcatanzaro: review+
DetailsFormatted DiffDiff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.
Miguel Gomez
Comment 1 2018-03-27 07:34:28 PDT
This is the same as https://bugs.webkit.org/show_bug.cgi?id=182760 I gave it a look, but despite I know why it crashes, I haven't found how we are reaching the crashing situation. But this bt is more complete, maybe I can get more info from it.
Miguel Gomez
Comment 2 2018-03-27 07:40:03 PDT
*** Bug 182760 has been marked as a duplicate of this bug. ***
Miguel Gomez
Comment 3 2018-04-04 03:21:49 PDT
A comment that may help: "just 1 quick comment regarding what I saw in the CoordinatedGraphicsScene.cpp::purgeGLResources code, the for loop calling the proxy->invalidate destroys the platformLayer which hold the unique pointer to the glContext and that happens just before we destroy de texturemapper which needs this context" This could mean that the destruction of the proxies is somehow changing the current context in the compositing thread, and it's not putting back the appropriate one (the one created by the ThreadedCompositor). As the replaced one is destroyed, there's no current one when destroying the TextureMapperGL.
Michael Catanzaro
Comment 4 2018-04-19 09:23:59 PDT
*** Bug 180369 has been marked as a duplicate of this bug. ***
Michael Catanzaro
Comment 5 2018-04-19 09:26:00 PDT
You also wrote a long comment on this bug at https://bugs.webkit.org/show_bug.cgi?id=182760#c3
Michael Catanzaro
Comment 6 2018-04-20 07:52:18 PDT
*** Bug 184818 has been marked as a duplicate of this bug. ***
Michael Catanzaro
Comment 7 2018-04-20 07:53:24 PDT
From bug #184818: """I believe the crash is due to the clicking on the basket in the top right while the basket's contents popup is still being faded in at: http://fr.farnell.com/chip-quik/smd1/kit-extraction-cms/dp/1850214?st=chipquik"""
Tomas Popela
Comment 8 2018-04-24 03:16:06 PDT
From https://bugzilla.redhat.com/show_bug.cgi?id=1569629 1. Open Epiphany 2. Browse various webapps (e.g.; tuleap.org, ring.cx) 3. Observe for failed loads, errors
Carlos Garcia Campos
Comment 9 2018-04-27 05:07:12 PDT
Created attachment 338983 [details] Patch
Carlos Garcia Campos
Comment 10 2018-04-27 05:09:31 PDT
*** Bug 183199 has been marked as a duplicate of this bug. ***
Carlos Garcia Campos
Comment 11 2018-04-27 05:15:25 PDT
Created attachment 338984 [details] Patch Fix typo in changelog
Carlos Garcia Campos
Comment 12 2018-04-28 02:49:28 PDT
Committed r231132: <https://trac.webkit.org/changeset/231132>
Note You need to log in before you can comment on or make changes to this bug.