Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-67232

Segfault in QtWebEngineCore::DelegatedNodeTreeUpdater::setupTextureContentNode

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • P1: Critical
    • 5.11.0 Beta 3
    • 5.9.3, 5.10.1, 5.11.0 Beta 2
    • WebEngine
    • None
    • Archlinux, Ubuntu, macOS

    Description

      When clicking the "aria-valuenow = '90%'" buttons on https://tympanus.net/Tutorials/CSSProgress/ there's a segfault - Qt 5.7.1 and 5.8 seem to be okay, 5.9/5.10/5.11 crash here:

      #0  0x0000000000000071 in  ()
#1  0x00007fffe6e421ee in QtWebEngineCore::DelegatedNodeTreeUpdater::setupTextureContentNode(QSGTexture*, QRect const&, QRectF const&, QSGTexture::Filtering, QFlags<QSGImageNode::TextureCoordinatesTransformFlag>, QSGNode*) (this=<optimized out>, texture=
    0x55555a14b070, rect=..., sourceRect=..., filtering=QSGTexture::Linear, texCoordTransForm=...) at ../delegated_frame_node.cpp:235
#2  0x00007fffe6e3c610 in QtWebEngineCore::DelegatedFrameNode::handleQuad(viz::DrawQuad const*, QSGNode*, QtWebEngineCore::DelegatedNodeTreeHandler*, QHash<unsigned int, QSharedPointer<QtWebEngineCore::ResourceHolder> >&, QtWebEngineCore::RenderWidgetHostViewQtDelegate*) (this=this@entry=0x555558278110, quad=quad@entry=0x55555a208100, currentLayerChain=currentLayerChain@entry=0x0, nodeHandler=nodeHandler@entry=0x55555a1c53b0, resourceCandidates=..., apiDelegate=apiDelegate@entry=0x555555ad1270)
    at ../delegated_frame_node.cpp:1102
#3  0x00007fffe6e3fea1 in QtWebEngineCore::DelegatedFrameNode::commit(QtWebEngineCore::ChromiumCompositorData*, std::__debug::vector<viz::ReturnedResource, std::allocator<viz::ReturnedResource> >*, QtWebEngineCore::RenderWidgetHostViewQtDelegate*) (this=this@entry=0x555558278110, chromiumCompositorData=<optimized out>, resourcesToRelease=resourcesToRelease@entry=0x555555ba8d88, apiDelegate=<optimized out>) at ../delegated_frame_node.cpp:978
#4  0x00007fffe6e82523 in QtWebEngineCore::RenderWidgetHostViewQt::updatePaintNode(QSGNode*) (this=0x555555ba8860, oldNode=<optimized out>) at ../render_widget_host_view_qt.cpp:959
#5  0x00007ffff7fe1f04 in QtWebEngineCore::RenderWidgetHostViewQuickItem::updatePaintNode(QSGNode*, QQuickItem::UpdatePaintNodeData*) (this=<optimized out>, oldNode=<optimized out>) at render_widget_host_view_qt_delegate_widget.cpp:94
#6  0x00007fffe5a78019 in QQuickWindowPrivate::updateDirtyNode(QQuickItem*) (this=this@entry=0x555555abfd10, item=item@entry=0x555555a36230) at items/qquickwindow.cpp:3432
#7  0x00007fffe5a7874b in QQuickWindowPrivate::updateDirtyNodes() (this=this@entry=0x555555abfd10) at items/qquickwindow.cpp:3177
#8  0x00007fffe5a788d0 in QQuickWindowPrivate::syncSceneGraph() (this=0x555555abfd10) at items/qquickwindow.cpp:431
#9  0x00007fffe5b4484b in QQuickRenderControl::sync() (this=<optimized out>) at items/qquickrendercontrol.cpp:286
#10 0x00007ffff7e30bcd in QQuickWidgetPrivate::render(bool) (this=this@entry=0x555555a94ed0, needsSync=needsSync@entry=true) at qquickwidget.cpp:285
#11 0x00007ffff7e30d06 in QQuickWidgetPrivate::renderSceneGraph() (this=this@entry=0x555555a94ed0) at qquickwidget.cpp:339
#12 0x00007ffff7e3158f in QQuickWidget::timerEvent(QTimerEvent*) (this=<optimized out>, e=<optimized out>) at qquickwidget.cpp:1122
#13 0x00007fffe42964e2 in QObject::event(QEvent*) (this=this@entry=0x555555ad1240, e=e@entry=0x7fffffffd850) at kernel/qobject.cpp:1230
#14 0x00007fffe52db762 in QWidget::event(QEvent*) (this=this@entry=0x555555ad1240, event=event@entry=0x7fffffffd850) at kernel/qwidget.cpp:9343
#15 0x00007ffff7e350e9 in QQuickWidget::event(QEvent*) (this=0x555555ad1240, e=0x7fffffffd850) at qquickwidget.cpp:1503
#16 0x00007ffff7fe1e38 in QtWebEngineCore::RenderWidgetHostViewQtDelegateWidget::event(QEvent*) (this=0x555555ad1240, event=0x7fffffffd850) at render_widget_host_view_qt_delegate_widget.cpp:476
#17 0x00007fffe52932a5 in QApplicationPrivate::notify_helper(QObject*, QEvent*) (this=this@entry=0x5555555ba530, receiver=receiver@entry=0x555555ad1240, e=e@entry=0x7fffffffd850) at kernel/qapplication.cpp:3713
#18 0x00007fffe529c570 in QApplication::notify(QObject*, QEvent*) (this=0x7fffffffdb60, receiver=0x555555ad1240, e=0x7fffffffd850) at kernel/qapplication.cpp:3676
#19 0x00007fffe4263fab in QCoreApplication::notifyInternal2(QObject*, QEvent*) (receiver=0x555555ad1240, event=event@entry=0x7fffffffd850) at kernel/qcoreapplication.cpp:1048
#20 0x00007fffe42c0443 in QCoreApplication::sendEvent(QObject*, QEvent*) (event=0x7fffffffd850, receiver=<optimized out>) at ../../include/QtCore/../../src/corelib/kernel/qcoreapplication.h:234
#21 0x00007fffe42c0443 in QTimerInfoList::activateTimers() (this=0x5555555f3290) at kernel/qtimerinfo_unix.cpp:643
#22 0x00007fffe42c0cb3 in timerSourceDispatch(GSource*, GSourceFunc, gpointer) (source=<optimized out>) at kernel/qeventdispatcher_glib.cpp:182
#23 0x00007fffe2179e38 in g_main_context_dispatch () at /usr/lib/libglib-2.0.so.0
#24 0x00007fffe217a081 in  () at /usr/lib/libglib-2.0.so.0
#25 0x00007fffe217a10e in g_main_context_iteration () at /usr/lib/libglib-2.0.so.0
#26 0x00007fffe42c105e in QEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (this=0x5555555f1110, flags=...) at kernel/qeventdispatcher_glib.cpp:423
#27 0x00007fffd71f16c9 in QPAEventDispatcherGlib::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (this=0x5555555f1110, flags=...) at qeventdispatcher_glib.cpp:69
#28 0x00007fffe4261ee9 in QEventLoop::processEvents(QFlags<QEventLoop::ProcessEventsFlag>) (this=this@entry=0x7fffffffdad0, flags=..., flags@entry=...) at kernel/qeventloop.cpp:136
#29 0x00007fffe4262337 in QEventLoop::exec(QFlags<QEventLoop::ProcessEventsFlag>) (this=this@entry=0x7fffffffdad0, flags=flags@entry=...) at kernel/qeventloop.cpp:214
#30 0x00007fffe426c1d8 in QCoreApplication::exec() () at kernel/qcoreapplication.cpp:1336
#31 0x00007fffe4c9dcfa in QGuiApplication::exec() () at kernel/qguiapplication.cpp:1729
#32 0x00007fffe5293185 in QApplication::exec() () at kernel/qapplication.cpp:2898
#33 0x000055555556f47e in main(int, char**) (argc=<optimized out>, argv=<optimized out>) at main.cpp:83

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            allan.jensen Allan Sandfeld Jensen
            the compiler Florian Bruhin
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes