274389 – REGRESSION(2.45.1/2.45.2): [GTK] UI process crash in Nicosia::AcceleratedBuffer::~AcceleratedBuffer: Couldn't find current GLX or EGL context

Bug 274389 - REGRESSION(2.45.1/2.45.2): [GTK] UI process crash in Nicosia::AcceleratedBuffer::~AcceleratedBuffer: Couldn't find current GLX or EGL context

Summary: REGRESSION(2.45.1/2.45.2): [GTK] UI process crash in Nicosia::AcceleratedBuff...

Status:	RESOLVED FIXED

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	WebKitGTK (show other bugs)
Version:	WebKit Nightly Build
Hardware:	PC Linux

Importance:	P2 Normal
Assignee:	Carlos Garcia Campos

URL:
Keywords:

Depends on:
Blocks:

Reported:	2024-05-20 06:20 PDT by Michael Catanzaro
Modified:	2024-05-30 04:54 PDT (History)
CC List:	3 users (show)

See Also:	260856

Attachments
Full backtrace (21.33 KB, text/plain) 2024-05-20 06:20 PDT, Michael Catanzaro	no flags	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Michael Catanzaro 2024-05-20 06:20:39 PDT

Created attachment 471442 [details]
Full backtrace

This UI process crash (Ephy Tech Preview with WebKitGTK 2.45.2) is very similar to bug #260856, but it's happening in a completely different place:

(gdb) bt
#0  __pthread_kill_implementation (threadid=<optimized out>, signo=signo@entry=6, no_tid=no_tid@entry=0) at pthread_kill.c:44
#1  0x00007f34d52a3e83 in __pthread_kill_internal (signo=6, threadid=<optimized out>) at pthread_kill.c:78
#2  0x00007f34d5251dce in __GI_raise (sig=sig@entry=6) at ../sysdeps/posix/raise.c:26
#3  0x00007f34d523983f in __GI_abort () at abort.c:79
#4  0x00007f34d523975b in __assert_fail_base
    (fmt=0x7f34d53beb88 "%s%s%s:%u: %s%sAssertion `%s' failed.\n%n", assertion=assertion@entry=0x7f34d9cdaec8 "0 && \"Couldn't find current GLX or EGL context.\\n\"", file=file@entry=0x7f34d9cdafcd "../src/dispatch_common.c", line=line@entry=872, function=function@entry=0x7f34d9ce5ca0 <__PRETTY_FUNCTION__.0.lto_priv.0> "epoxy_get_proc_address") at assert.c:92
#5  0x00007f34d524a207 in __assert_fail
    (assertion=assertion@entry=0x7f34d9cdaec8 "0 && \"Couldn't find current GLX or EGL context.\\n\"", file=file@entry=0x7f34d9cdafcd "../src/dispatch_common.c", line=line@entry=872, function=function@entry=0x7f34d9ce5ca0 <__PRETTY_FUNCTION__.0.lto_priv.0> "epoxy_get_proc_address") at assert.c:101
#6  0x00007f34d9cc1e3b in epoxy_get_proc_address (name=0x7f34d9ccc2a5 <entrypoint_strings.lto_priv+10181> "glDeleteSync") at ../src/dispatch_common.c:872
#7  0x00007f34d9c7050a in epoxy_glDeleteSync_resolver () at src/gl_generated_dispatch.c:81898
#8  epoxy_glDeleteSync_global_rewrite_ptr (sync=0x556e524d3440) at src/gl_generated_dispatch.c:115010
#9  0x00007f34d7c517bf in std::default_delete<WebCore::GLFence>::operator() (this=<optimized out>, __ptr=0x7f34be1b3910)
    at /usr/bin/../lib/gcc/x86_64-unknown-linux-gnu/13.2.0/../../../../include/c++/13.2.0/bits/unique_ptr.h:99
#10 std::unique_ptr<WebCore::GLFence, std::default_delete<WebCore::GLFence> >::~unique_ptr (this=0x7f34be1927e0)
    at /usr/bin/../lib/gcc/x86_64-unknown-linux-gnu/13.2.0/../../../../include/c++/13.2.0/bits/unique_ptr.h:404
#11 Nicosia::AcceleratedBuffer::~AcceleratedBuffer (this=0x7f34be1927c0)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaBuffer.cpp:145
#12 0x00007f34d7c51812 in Nicosia::AcceleratedBuffer::~AcceleratedBuffer (this=0x2)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaBuffer.cpp:145
#13 0x00007f34d5e92260 in WTF::ThreadSafeRefCounted<Nicosia::Buffer, (WTF::DestructionThread)0>::deref() const::{lambda()#1}::operator()() const
    (this=<optimized out>) at WTF/Headers/wtf/ThreadSafeRefCounted.h:144
#14 WTF::ThreadSafeRefCounted<Nicosia::Buffer, (WTF::DestructionThread)0>::deref (this=0xa) at WTF/Headers/wtf/ThreadSafeRefCounted.h:156
#15 WTF::DefaultRefDerefTraits<Nicosia::Buffer>::derefIfNotNull (ptr=0x2) at WTF/Headers/wtf/Ref.h:62

I think the stuff above does not actually matter, because in frame #15 ptr is dangling, so we've already lost. Here's the rest:

#16 WTF::Ref<Nicosia::Buffer, WTF::RawPtrTraits<Nicosia::Buffer>, WTF::DefaultRefDerefTraits<Nicosia::Buffer> >::~Ref (this=0x7f34be171f08)
    at WTF/Headers/wtf/Ref.h:82
#17 Nicosia::BackingStore::TileUpdate::UpdateData::~UpdateData (this=0x7f34be171ee0)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaBackingStore.h:60
#18 WTF::VectorDestructor<true, Nicosia::BackingStore::TileUpdate::UpdateData>::destruct (begin=0x7f34be171ee0, end=<optimized out>)
    at WTF/Headers/wtf/Vector.h:70
#19 WTF::VectorTypeOperations<Nicosia::BackingStore::TileUpdate::UpdateData>::destruct (begin=0x7f34be171ee0, end=<optimized out>)
    at WTF/Headers/wtf/Vector.h:253
#20 WTF::Vector<Nicosia::BackingStore::TileUpdate::UpdateData, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>::~Vector (this=0x7f34be014e70)
    at WTF/Headers/wtf/Vector.h:781
#21 Nicosia::BackingStore::TileUpdate::~TileUpdate (this=0x7f34be014e60)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaBackingStore.h:47
#22 Nicosia::BackingStore::{unnamed type#1}::~BackingStore() (this=0x7f34be014e58)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaBackingStore.h:120
#23 Nicosia::BackingStore::~BackingStore (this=0x7f34be014e00)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaBackingStore.h:39
#24 0x00007f34d621e909 in WTF::ThreadSafeRefCounted<Nicosia::BackingStore, (WTF::DestructionThread)0>::deref() const::{lambda()#1}::operator()() const
    (this=<optimized out>) at WTF/Headers/wtf/ThreadSafeRefCounted.h:144
#25 WTF::ThreadSafeRefCounted<Nicosia::BackingStore, (WTF::DestructionThread)0>::deref (this=0x7f34be014e08) at WTF/Headers/wtf/ThreadSafeRefCounted.h:156
#26 WTF::DefaultRefDerefTraits<Nicosia::BackingStore>::derefIfNotNull (ptr=0x7f34be014e00) at WTF/Headers/wtf/Ref.h:62
#27 WTF::RefPtr<Nicosia::BackingStore, WTF::RawPtrTraits<Nicosia::BackingStore>, WTF::DefaultRefDerefTraits<Nicosia::BackingStore> >::~RefPtr
    (this=0x7f346a121440) at WTF/Headers/wtf/RefPtr.h:60
c
#28 Nicosia::CompositionLayer::LayerState::~LayerState (this=0x7f346a121030)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:57
#29 0x00007f34d621e4df in Nicosia::CompositionLayer::{unnamed type#1}::~CompositionLayer() (this=0x7f346a121030)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:279
#30 Nicosia::CompositionLayer::~CompositionLayer (this=0x7f346a121000)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:50
#31 Nicosia::CompositionLayer::~CompositionLayer (this=0x7f346a121000)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:50
#32 0x00007f34d621e7a0 in WTF::ThreadSafeRefCounted<Nicosia::PlatformLayer, (WTF::DestructionThread)0>::deref() const::{lambda()#1}::operator()() const
    (this=<optimized out>) at WTF/Headers/wtf/ThreadSafeRefCounted.h:144
#33 WTF::ThreadSafeRefCounted<Nicosia::PlatformLayer, (WTF::DestructionThread)0>::deref (this=0xa) at WTF/Headers/wtf/ThreadSafeRefCounted.h:156
#34 WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer>::derefIfNotNull (ptr=0x2) at WTF/Headers/wtf/Ref.h:62
#35 WTF::RefPtr<Nicosia::CompositionLayer, WTF::RawPtrTraits<Nicosia::CompositionLayer>, WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer> >::~RefPtr
    (this=0x7f34be1b38e0) at WTF/Headers/wtf/RefPtr.h:60
#36 WTF::VectorDestructor<true, WTF::RefPtr<Nicosia::CompositionLayer, WTF::RawPtrTraits<Nicosia::CompositionLayer>, WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer> > >::destruct (begin=0x7f34be1b38e0, end=<optimized out>) at WTF/Headers/wtf/Vector.h:70
#37 WTF::VectorTypeOperations<WTF::RefPtr<Nicosia::CompositionLayer, WTF::RawPtrTraits<Nicosia::CompositionLayer>, WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer> > >::destruct (begin=0x7f34be1b38e0, end=<optimized out>) at WTF/Headers/wtf/Vector.h:253
#38 WTF::Vector<WTF::RefPtr<Nicosia::CompositionLayer, WTF::RawPtrTraits<Nicosia::CompositionLayer>, WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer> >, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>::~Vector (this=0x7f346a01e3e0) at WTF/Headers/wtf/Vector.h:781
#39 Nicosia::CompositionLayer::LayerState::~LayerState (this=0x7f346a01e030)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:57
#40 0x00007f34d621e4df in Nicosia::CompositionLayer::{unnamed type#1}::~CompositionLayer() (this=0x7f346a01e030)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:279
#41 Nicosia::CompositionLayer::~CompositionLayer (this=0x7f346a01e000)
--Type <RET> for more, q to quit, c to continue without paging--c
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:50
#42 Nicosia::CompositionLayer::~CompositionLayer (this=0x7f346a01e000)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:50
#43 0x00007f34d621e7a0 in WTF::ThreadSafeRefCounted<Nicosia::PlatformLayer, (WTF::DestructionThread)0>::deref() const::{lambda()#1}::operator()() const
    (this=<optimized out>) at WTF/Headers/wtf/ThreadSafeRefCounted.h:144
#44 WTF::ThreadSafeRefCounted<Nicosia::PlatformLayer, (WTF::DestructionThread)0>::deref (this=0xa) at WTF/Headers/wtf/ThreadSafeRefCounted.h:156
#45 WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer>::derefIfNotNull (ptr=0x2) at WTF/Headers/wtf/Ref.h:62
#46 WTF::RefPtr<Nicosia::CompositionLayer, WTF::RawPtrTraits<Nicosia::CompositionLayer>, WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer> >::~RefPtr
    (this=0x7f34be1b38d0) at WTF/Headers/wtf/RefPtr.h:60
#47 WTF::VectorDestructor<true, WTF::RefPtr<Nicosia::CompositionLayer, WTF::RawPtrTraits<Nicosia::CompositionLayer>, WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer> > >::destruct (begin=0x7f34be1b38d0, end=<optimized out>) at WTF/Headers/wtf/Vector.h:70
#48 WTF::VectorTypeOperations<WTF::RefPtr<Nicosia::CompositionLayer, WTF::RawPtrTraits<Nicosia::CompositionLayer>, WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer> > >::destruct (begin=0x7f34be1b38d0, end=<optimized out>) at WTF/Headers/wtf/Vector.h:253
#49 WTF::Vector<WTF::RefPtr<Nicosia::CompositionLayer, WTF::RawPtrTraits<Nicosia::CompositionLayer>, WTF::DefaultRefDerefTraits<Nicosia::CompositionLayer> >, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>::~Vector (this=0x7f346a0193e0) at WTF/Headers/wtf/Vector.h:781
#50 Nicosia::CompositionLayer::LayerState::~LayerState (this=0x7f346a019030)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:57
#51 0x00007f34d621e4df in Nicosia::CompositionLayer::{unnamed type#1}::~CompositionLayer() (this=0x7f346a019030)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:279
#52 Nicosia::CompositionLayer::~CompositionLayer (this=0x7f346a019000)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:50
#53 Nicosia::CompositionLayer::~CompositionLayer (this=0x7f346a019000)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/platform/graphics/nicosia/NicosiaCompositionLayer.h:50
#54 0x00007f34d7a32f50 in WebCore::LayerRepresentation::~LayerRepresentation (this=0x7f34be0799f0)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/page/scrolling/ScrollingStateNode.h:95
#55 WebCore::ScrollingTreeScrollingNode::~ScrollingTreeScrollingNode (this=0x7f34be0798c0)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/page/scrolling/ScrollingTreeScrollingNode.cpp:49
#56 0x00007f34d7a3cb32 in WebCore::ScrollingTreeFrameScrollingNodeNicosia::~ScrollingTreeFrameScrollingNodeNicosia (this=0x2)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/page/scrolling/nicosia/ScrollingTreeFrameScrollingNodeNicosia.cpp:54
#57 0x00007f34d7a23893 in WTF::ThreadSafeWeakPtrControlBlock::strongDeref<WebCore::ScrollingTreeNode, (WTF::DestructionThread)0>() const::{lambda()#1}::operator()() const (this=<optimized out>) at WTF/Headers/wtf/ThreadSafeWeakPtr.h:101
#58 WTF::ThreadSafeWeakPtrControlBlock::strongDeref<WebCore::ScrollingTreeNode, (WTF::DestructionThread)0> (this=0x7f34be1b77c0)
    at WTF/Headers/wtf/ThreadSafeWeakPtr.h:107
#59 WTF::ThreadSafeRefCountedAndCanMakeThreadSafeWeakPtr<WebCore::ScrollingTreeNode, (WTF::DestructionThread)0>::deref (this=<optimized out>)
    at WTF/Headers/wtf/ThreadSafeWeakPtr.h:170
#60 WTF::DefaultRefDerefTraits<WebCore::ScrollingTreeFrameScrollingNode>::derefIfNotNull (ptr=<optimized out>) at WTF/Headers/wtf/Ref.h:62
#61 WTF::RefPtr<WebCore::ScrollingTreeFrameScrollingNode, WTF::RawPtrTraits<WebCore::ScrollingTreeFrameScrollingNode>, WTF::DefaultRefDerefTraits<WebCore::ScrollingTreeFrameScrollingNode> >::~RefPtr (this=<optimized out>) at WTF/Headers/wtf/RefPtr.h:60
#62 WebCore::ScrollingTree::~ScrollingTree (this=<optimized out>)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/page/scrolling/ScrollingTree.cpp:75
#63 0x00007f34d7a3e7f2 in WebCore::ScrollingTreeNicosia::~ScrollingTreeNicosia (this=0x2)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/page/scrolling/nicosia/ScrollingTreeNicosia.h:36
#64 0x00007f34d7a3a68a in WTF::ThreadSafeRefCounted<WebCore::ScrollingTree, (WTF::DestructionThread)0>::deref() const::{lambda()#1}::operator()() const
    (this=<optimized out>) at WTF/Headers/wtf/ThreadSafeRefCounted.h:144
#65 WTF::ThreadSafeRefCounted<WebCore::ScrollingTree, (WTF::DestructionThread)0>::deref (this=0xa) at WTF/Headers/wtf/ThreadSafeRefCounted.h:156
#66 WTF::DefaultRefDerefTraits<WebCore::ThreadedScrollingTree>::derefIfNotNull (ptr=0x2) at WTF/Headers/wtf/Ref.h:62
#67 WTF::RefPtr<WebCore::ThreadedScrollingTree, WTF::RawPtrTraits<WebCore::ThreadedScrollingTree>, WTF::DefaultRefDerefTraits<WebCore::ThreadedScrollingTree> >::~RefPtr (this=0x7f34be058378) at WTF/Headers/wtf/RefPtr.h:60
#68 WebCore::ThreadedScrollingCoordinator::pageDestroyed()::$_0::~$_0() (this=0x7f34be058378)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WebCore/page/scrolling/ThreadedScrollingCoordinator.cpp:51
#69 WTF::Detail::CallableWrapper<WebCore::ThreadedScrollingCoordinator::pageDestroyed()::$_0, void>::~CallableWrapper() (this=0x7f34be058370)
    at WTF/Headers/wtf/Function.h:47
#70 WTF::Detail::CallableWrapper<WebCore::ThreadedScrollingCoordinator::pageDestroyed()::$_0, void>::~CallableWrapper() (this=0x7f34be058370)
    at WTF/Headers/wtf/Function.h:47
#71 0x00007f34d4b90fe4 in std::default_delete<WTF::Detail::CallableWrapperBase<void> >::operator() (__ptr=0x7f34be058370, this=<optimized out>)
    at /usr/bin/../lib/gcc/x86_64-unknown-linux-gnu/13.2.0/../../../../include/c++/13.2.0/bits/unique_ptr.h:99
#72 std::unique_ptr<WTF::Detail::CallableWrapperBase<void>, std::default_delete<WTF::Detail::CallableWrapperBase<void> > >::~unique_ptr
    (this=<optimized out>) at /usr/bin/../lib/gcc/x86_64-unknown-linux-gnu/13.2.0/../../../../include/c++/13.2.0/bits/unique_ptr.h:404
#73 WTF::Function<void ()>::~Function() (this=<optimized out>) at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/Forward.h:85
#74 WTF::RunLoop::performWork (this=0x7f34be1c40e0) at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/RunLoop.cpp:148
#75 0x00007f34d4bf6acd in WTF::RunLoop::RunLoop()::$_0::operator()(void*) const (userData=0x2, userData@entry=0x7f34be1c40e0, this=<optimized out>)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/glib/RunLoopGLib.cpp:80
#76 WTF::RunLoop::RunLoop()::$_0::__invoke(void*) (userData=0x2) at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/glib/RunLoopGLib.cpp:79
#77 0x00007f34d4bf5c31 in WTF::RunLoop::$_0::operator()
    (source=0x7f32d8000dd0, callback=0x7f34d4bf6ac0 <WTF::RunLoop::RunLoop()::$_0::__invoke(void*)>, userData=0x7f34be1c40e0, this=<optimized out>)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/glib/RunLoopGLib.cpp:53
#78 WTF::RunLoop::$_0::__invoke (source=0x7f32d8000dd0, callback=0x7f34d4bf6ac0 <WTF::RunLoop::RunLoop()::$_0::__invoke(void*)>, userData=0x7f34be1c40e0)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/glib/RunLoopGLib.cpp:45
#79 0x00007f34d0f18767 in g_main_dispatch (context=context@entry=0x7f32d8000b70) at ../glib/gmain.c:3348
#80 0x00007f34d0f1a907 in g_main_context_dispatch_unlocked (context=0x7f32d8000b70) at ../glib/gmain.c:4197
#81 g_main_context_iterate_unlocked (context=0x7f32d8000b70, block=block@entry=1, dispatch=dispatch@entry=1, self=<optimized out>) at ../glib/gmain.c:4262
#82 0x00007f34d0f1b3a7 in g_main_loop_run (loop=0x7f32d8000db0) at ../glib/gmain.c:4464
#83 0x00007f34d4bf6211 in WTF::RunLoop::run () at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/glib/RunLoopGLib.cpp:108
#84 0x00007f34d4b948d7 in WTF::Function<void ()>::operator()() const (this=<optimized out>)
    at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/Function.h:82
#85 WTF::Thread::entryPoint (newThreadContext=0x7f34be1bc1d0) at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/Threading.cpp:259
#86 0x00007f34d4bf9d6d in WTF::wtfThreadEntryPoint (context=0x2) at /buildstream/gnome/sdk/webkitgtk-6.0.bst/Source/WTF/wtf/posix/ThreadingPOSIX.cpp:245
#87 0x00007f34d52a1e39 in start_thread (arg=<optimized out>) at pthread_create.c:444
#88 0x00007f34d53299c4 in clone () at ../sysdeps/unix/sysv/linux/x86_64/clone.S:100

Comment 1 Michael Catanzaro 2024-05-20 06:23:01 PDT

Astoundingly, I hit this crash a second time immediately after reporting this bug, when trying to close the browser tab that I had used to report this bug. I had assumed it was random, but now I'm wondering. I don't believe I've seen it prior to today.

Comment 2 Michael Catanzaro 2024-05-21 08:30:13 PDT

(In reply to Michael Catanzaro from comment #1)
> Astoundingly, I hit this crash a second time

And again today. I assume this is a regression from 2.45.1/2.45.2 because I haven't seen it until recently.

Comment 3 Michael Catanzaro 2024-05-28 09:31:10 PDT

Found a reproducer: copy any URL, then press Ctrl+T and then Ctrl+V in quick succession. Crash!

Comment 4 Carlos Garcia Campos 2024-05-29 21:14:31 PDT

Is it a UI or web process crash? The bt is from the async scrolling thread in the web process.

Comment 5 Carlos Garcia Campos 2024-05-29 22:36:44 PDT

Pull request: https://github.com/WebKit/WebKit/pull/29289

Comment 6 EWS 2024-05-30 03:23:00 PDT

Committed 279507@main (a04bd30787a2): <https://commits.webkit.org/279507@main>

Reviewed commits have been landed. Closing PR #29289 and removing active labels.

Comment 7 Michael Catanzaro 2024-05-30 04:54:17 PDT

(In reply to Carlos Garcia Campos from comment #4)
> Is it a UI or web process crash? The bt is from the async scrolling thread
> in the web process.

Uhhh, huh, you're right. That's weird. So it seems the UI process is not crashing. Only the web process crashes; at least, I have only web process core dumps in coredumpctl.

But the UI process definitely *quits*. So it's quitting without crashing in response to a web process crash. That's weird.