NEW 202448
Crash in ShadowBlur::drawRectShadow 
https://bugs.webkit.org/show_bug.cgi?id=202448
Summary Crash in ShadowBlur::drawRectShadow
rc_reding
Reported 2019-10-02 02:09:47 PDT
Hi, I've submitted a scientific paper to a journal through the website https://cts.sciencemag.org/ The web loads up just fine, but when I have to write in the fields for username/password webkit just crashes. I normally use gnome-web (epiphany 3.34.0), which uses webkit2gtk (2.26.1). I tried a different browser, Eolie, that uses the same engine and it also crashes. Chromium or Firefox, on the other hand, don't crash. So I'm guessing the problem is more to do with webkit2gtk than the browsers themselves (apologies if I'm wrong!). I attach the log from journalctl. There's quite a bit of references to libjavascriptcoregtk so I thought I'd tag it as a component in the bug---apologies if it's not. Oct 02 10:00:32 alienware epiphany[11507]: Web process crashed Oct 02 10:00:33 alienware systemd-coredump[11935]: Process 11860 (WebKitWebProces) of user 1000 dumped core. Stack trace of thread 2: #0 0x00007f906b4d9755 raise (libc.so.6) #1 0x00007f906b4c4851 abort (libc.so.6) #2 0x00007f906bd17e94 n/a (libwebkit2gtk-4.0.so.37) #3 0x00007f906d56904c n/a (libwebkit2gtk-4.0.so.37) #4 0x00007f906d5691b1 n/a (libwebkit2gtk-4.0.so.37) #5 0x00007f906d6e85c7 n/a (libwebkit2gtk-4.0.so.37) #6 0x00007f906d6e8770 n/a (libwebkit2gtk-4.0.so.37) #7 0x00007f906d6e89a2 n/a (libwebkit2gtk-4.0.so.37) #8 0x00007f906d6e8d17 n/a (libwebkit2gtk-4.0.so.37) #9 0x00007f906d6e8f34 n/a (libwebkit2gtk-4.0.so.37) #10 0x00007f906d6db399 n/a (libwebkit2gtk-4.0.so.37) #11 0x00007f906d6e2412 n/a (libwebkit2gtk-4.0.so.37) #12 0x00007f906d6ab760 n/a (libwebkit2gtk-4.0.so.37) #13 0x00007f906d6abb3b n/a (libwebkit2gtk-4.0.so.37) #14 0x00007f906d693ead n/a (libwebkit2gtk-4.0.so.37) #15 0x00007f906d6db387 n/a (libwebkit2gtk-4.0.so.37) #16 0x00007f906d6e2412 n/a (libwebkit2gtk-4.0.so.37) #17 0x00007f906d6ab760 n/a (libwebkit2gtk-4.0.so.37) #18 0x00007f906d6abb3b n/a (libwebkit2gtk-4.0.so.37) #19 0x00007f906d693ead n/a (libwebkit2gtk-4.0.so.37) #20 0x00007f906d6db387 n/a (libwebkit2gtk-4.0.so.37) #21 0x00007f906d6e2412 n/a (libwebkit2gtk-4.0.so.37) #22 0x00007f906d6ab760 n/a (libwebkit2gtk-4.0.so.37) #23 0x00007f906d6abb3b n/a (libwebkit2gtk-4.0.so.37) #24 0x00007f906d693ead n/a (libwebkit2gtk-4.0.so.37) #25 0x00007f906d6db387 n/a (libwebkit2gtk-4.0.so.37) #26 0x00007f906d6e2412 n/a (libwebkit2gtk-4.0.so.37) #27 0x00007f906d76beea n/a (libwebkit2gtk-4.0.so.37) #28 0x00007f906d7746a6 n/a (libwebkit2gtk-4.0.so.37) #29 0x00007f906d790172 n/a (libwebkit2gtk-4.0.so.37) #30 0x00007f906d790ef9 n/a (libwebkit2gtk-4.0.so.37) #31 0x00007f906d7916e6 n/a (libwebkit2gtk-4.0.so.37) #32 0x00007f906d78fd42 n/a (libwebkit2gtk-4.0.so.37) #33 0x00007f906d790ef9 n/a (libwebkit2gtk-4.0.so.37) #34 0x00007f906d7916e6 n/a (libwebkit2gtk-4.0.so.37) #35 0x00007f906d78fd42 n/a (libwebkit2gtk-4.0.so.37) #36 0x00007f906d790ef9 n/a (libwebkit2gtk-4.0.so.37) #37 0x00007f906d791472 n/a (libwebkit2gtk-4.0.so.37) #38 0x00007f906d3b5d30 n/a (libwebkit2gtk-4.0.so.37) #39 0x00007f906d4b4d82 n/a (libwebkit2gtk-4.0.so.37) #40 0x00007f906c334d34 n/a (libwebkit2gtk-4.0.so.37) #41 0x00007f906c3547fd n/a (libwebkit2gtk-4.0.so.37) #42 0x00007f906c355044 n/a (libwebkit2gtk-4.0.so.37) #43 0x00007f906bf44bd4 n/a (libwebkit2gtk-4.0.so.37) #44 0x00007f906c1b1a98 n/a (libwebkit2gtk-4.0.so.37) #45 0x00007f906bf3e320 n/a (libwebkit2gtk-4.0.so.37) #46 0x00007f906bf3f966 n/a (libwebkit2gtk-4.0.so.37) #47 0x00007f906bf40b52 n/a (libwebkit2gtk-4.0.so.37) #48 0x00007f9069da2c95 _ZN3WTF7RunLoop11performWorkEv (libjavascriptcoregtk-4.0.so.18) #49 0x00007f9069e02c5a n/a (libjavascriptcoregtk-4.0.so.18) #50 0x00007f906a4736bc g_main_context_dispatch (libglib-2.0.so.0) #51 0x00007f906a4755f1 n/a (libglib-2.0.so.0) #52 0x00007f906a476503 g_main_loop_run (libglib-2.0.so.0) #53 0x00007f9069e037a2 _ZN3WTF7RunLoop3runEv (libjavascriptcoregtk-4.0.so.18) #54 0x00007f906c36199d WebProcessMainUnix (libwebkit2gtk-4.0.so.37) #55 0x00007f906b4c5ee3 __libc_start_main (libc.so.6) #56 0x000055fb34ef36ee n/a (WebKitWebProcess) Stack trace of thread 9: #0 0x00007f906b590667 __poll (libc.so.6) #1 0x00007f906a475560 n/a (libglib-2.0.so.0) #2 0x00007f906a476503 g_main_loop_run (libglib-2.0.so.0) #3 0x00007f9069e037a2 _ZN3WTF7RunLoop3runEv (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 6: #0 0x00007f906b590667 __poll (libc.so.6) #1 0x00007f906a475560 n/a (libglib-2.0.so.0) #2 0x00007f906a476503 g_main_loop_run (libglib-2.0.so.0) #3 0x00007f9069e037a2 _ZN3WTF7RunLoop3runEv (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 4: #0 0x00007f906b590667 __poll (libc.so.6) #1 0x00007f906a475560 n/a (libglib-2.0.so.0) #2 0x00007f906a476503 g_main_loop_run (libglib-2.0.so.0) #3 0x00007f906a5e4e28 n/a (libgio-2.0.so.0) #4 0x00007f906a452041 n/a (libglib-2.0.so.0) #5 0x00007f9067e2457f start_thread (libpthread.so.0) #6 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 5: #0 0x00007f9067e2a7ca pthread_cond_timedwait@@GLIBC_2.3.2 (libpthread.so.0) #1 0x00007f9069e12172 _ZN7bmalloc9Scavenger13threadRunLoopEv (libjavascriptcoregtk-4.0.so.18) #2 0x00007f9069e122ba _ZN7bmalloc9Scavenger16threadEntryPointEPS0_ (libjavascriptcoregtk-4.0.so.18) #3 0x00007f90677aacd4 execute_native_thread_routine (libstdc++.so.6) #4 0x00007f9067e2457f start_thread (libpthread.so.0) #5 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 11: #0 0x00007f9067e2a415 pthread_cond_wait@@GLIBC_2.3.2 (libpthread.so.0) #1 0x00007f905901cf5c n/a (i965_dri.so) #2 0x00007f905901cb58 n/a (i965_dri.so) #3 0x00007f9067e2457f start_thread (libpthread.so.0) #4 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 3: #0 0x00007f906b590667 __poll (libc.so.6) #1 0x00007f906a475560 n/a (libglib-2.0.so.0) #2 0x00007f906a475631 g_main_context_iteration (libglib-2.0.so.0) #3 0x00007f906a475682 n/a (libglib-2.0.so.0) #4 0x00007f906a452041 n/a (libglib-2.0.so.0) #5 0x00007f9067e2457f start_thread (libpthread.so.0) #6 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 10: #0 0x00007f9067e2a415 pthread_cond_wait@@GLIBC_2.3.2 (libpthread.so.0) #1 0x00007f905901cf5c n/a (i965_dri.so) #2 0x00007f905901cb58 n/a (i965_dri.so) #3 0x00007f9067e2457f start_thread (libpthread.so.0) #4 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 12: #0 0x00007f906b595e3d syscall (libc.so.6) #1 0x00007f906a426272 g_cond_wait_until (libglib-2.0.so.0) #2 0x00007f906a4a4913 n/a (libglib-2.0.so.0) #3 0x00007f906a4a4b14 g_async_queue_timeout_pop (libglib-2.0.so.0) #4 0x00007f906a44b52a n/a (libglib-2.0.so.0) #5 0x00007f906a452041 n/a (libglib-2.0.so.0) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 18: #0 0x00007f9067e2a7ca pthread_cond_timedwait@@GLIBC_2.3.2 (libpthread.so.0) #1 0x00007f9069e04616 _ZN3WTF15ThreadCondition9timedWaitERNS_5MutexENS_8WallTimeE (libjavascriptcoregtk-4.0.so.18) #2 0x00007f9069d9ffc5 _ZN3WTF10ParkingLot21parkConditionallyImplEPKvRKNS_12ScopedLambdaIFbvEEERKNS3_IFvvEEERKNS_24TimeWithDynamicClockTypeE (libja> #3 0x00007f9069d89858 n/a (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 13: #0 0x00007f906b590667 __poll (libc.so.6) #1 0x00007f906a475560 n/a (libglib-2.0.so.0) #2 0x00007f906a476503 g_main_loop_run (libglib-2.0.so.0) #3 0x00007f9069e037a2 _ZN3WTF7RunLoop3runEv (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 16: #0 0x00007f906b590667 __poll (libc.so.6) #1 0x00007f906a475560 n/a (libglib-2.0.so.0) #2 0x00007f906a476503 g_main_loop_run (libglib-2.0.so.0) #3 0x00007f9069e037a2 _ZN3WTF7RunLoop3runEv (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 15: #0 0x00007f9067e2a7ca pthread_cond_timedwait@@GLIBC_2.3.2 (libpthread.so.0) #1 0x00007f9069e04616 _ZN3WTF15ThreadCondition9timedWaitERNS_5MutexENS_8WallTimeE (libjavascriptcoregtk-4.0.so.18) #2 0x00007f9069d9ffc5 _ZN3WTF10ParkingLot21parkConditionallyImplEPKvRKNS_12ScopedLambdaIFbvEEERKNS3_IFvvEEERKNS_24TimeWithDynamicClockTypeE (libja> #3 0x00007f9069d89858 n/a (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 19: #0 0x00007f9067e2a7ca pthread_cond_timedwait@@GLIBC_2.3.2 (libpthread.so.0) #1 0x00007f9069e04616 _ZN3WTF15ThreadCondition9timedWaitERNS_5MutexENS_8WallTimeE (libjavascriptcoregtk-4.0.so.18) #2 0x00007f9069d9ffc5 _ZN3WTF10ParkingLot21parkConditionallyImplEPKvRKNS_12ScopedLambdaIFbvEEERKNS3_IFvvEEERKNS_24TimeWithDynamicClockTypeE (libja> #3 0x00007f9069d89858 n/a (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 20: #0 0x00007f9067e2a7ca pthread_cond_timedwait@@GLIBC_2.3.2 (libpthread.so.0) #1 0x00007f9069e04616 _ZN3WTF15ThreadCondition9timedWaitERNS_5MutexENS_8WallTimeE (libjavascriptcoregtk-4.0.so.18) #2 0x00007f9069d9ffc5 _ZN3WTF10ParkingLot21parkConditionallyImplEPKvRKNS_12ScopedLambdaIFbvEEERKNS3_IFvvEEERKNS_24TimeWithDynamicClockTypeE (libja> #3 0x00007f9069d89858 n/a (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 17: #0 0x00007f9067e2a7ca pthread_cond_timedwait@@GLIBC_2.3.2 (libpthread.so.0) #1 0x00007f9069e04616 _ZN3WTF15ThreadCondition9timedWaitERNS_5MutexENS_8WallTimeE (libjavascriptcoregtk-4.0.so.18) #2 0x00007f9069d9ffc5 _ZN3WTF10ParkingLot21parkConditionallyImplEPKvRKNS_12ScopedLambdaIFbvEEERKNS3_IFvvEEERKNS_24TimeWithDynamicClockTypeE (libja> #3 0x00007f9069d89858 n/a (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 8: #0 0x00007f906b590667 __poll (libc.so.6) #1 0x00007f906a475560 n/a (libglib-2.0.so.0) #2 0x00007f906a476503 g_main_loop_run (libglib-2.0.so.0) #3 0x00007f9069e037a2 _ZN3WTF7RunLoop3runEv (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 7: #0 0x00007f906b590667 __poll (libc.so.6) #1 0x00007f906a475560 n/a (libglib-2.0.so.0) #2 0x00007f906a476503 g_main_loop_run (libglib-2.0.so.0) #3 0x00007f9069e037a2 _ZN3WTF7RunLoop3runEv (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6) Stack trace of thread 14: #0 0x00007f9067e2a7ca pthread_cond_timedwait@@GLIBC_2.3.2 (libpthread.so.0) #1 0x00007f9069e04616 _ZN3WTF15ThreadCondition9timedWaitERNS_5MutexENS_8WallTimeE (libjavascriptcoregtk-4.0.so.18) #2 0x00007f9069d9ffc5 _ZN3WTF10ParkingLot21parkConditionallyImplEPKvRKNS_12ScopedLambdaIFbvEEERKNS3_IFvvEEERKNS_24TimeWithDynamicClockTypeE (libja> #3 0x00007f9069d89858 n/a (libjavascriptcoregtk-4.0.so.18) #4 0x00007f9069da43f9 _ZN3WTF6Thread10entryPointEPNS0_16NewThreadContextE (libjavascriptcoregtk-4.0.so.18) #5 0x00007f9069e03bea n/a (libjavascriptcoregtk-4.0.so.18) #6 0x00007f9067e2457f start_thread (libpthread.so.0) #7 0x00007f906b59b0e3 __clone (libc.so.6)
Attachments
Backtrace (92.56 KB, text/plain)
2019-10-03 17:20 PDT, Michael Catanzaro 		no flags
Details
View All Add attachment proposed patch, testcase, etc.
Michael Catanzaro
Comment 1 2019-10-03 17:19:03 PDT
To get an acceptable crash report you'll need to use gdb to generate the backtrace -- the stack trace from journalctl is not good enough -- and install all needed debug symbols. See https://wiki.gnome.org/Community/GettingInTouch/Bugzilla/GettingTraces for help with this. You can see the stack trace you provided (look at thread 2) is almost all empty frames: nothing actionable there. Anyway, I was able to reproduce it easily, so I'll attach a backtrace. Still I recommend you try to generate the same backtrace yourself to learn how to do this, for future bug reports. P.S. Normally it's good to select the WebKitGTK component to ensure the right developers look at the bug report, but this one is actually a cross-platform problem so no need to do that this time.
Michael Catanzaro
Comment 2 2019-10-03 17:20:25 PDT
Created attachment 380170 [details] Backtrace
rc_reding
Comment 3 2019-10-04 01:13:53 PDT
Nice! Thanks Michael, a hell of a difference between both reports. I'll have a play with gdb. Cheers!
Note You need to log in before you can comment on or make changes to this bug.