Bug 1398951

Summary: [abrt] webkitgtk4: WTF::GRefPtr<_GInputStream>::operator!(): WebKitNetworkProcess killed by SIGSEGV
Product: [Fedora] Fedora Reporter: Mike Hinz <mike.hinz>
Component: webkitgtk4Assignee: Tomas Popela <tpopela>
Status: CLOSED UPSTREAM QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 25CC: edelgado81, fedorabugs, mcatanzaro+wrong-account-do-not-cc, mikhail.v.gavrilov, sanjay.ankur, tpopela
Target Milestone: ---   
Target Release: ---   
Hardware: x86_64   
OS: Unspecified   
URL: https://retrace.fedoraproject.org/faf/reports/bthash/fa48f1d1ddd763a338c749dd4a3bc4c1e9e71539
Whiteboard: abrt_hash:b5dda48cfdff57f28e18dc8d1f543ff4133fb685;VARIANT_ID=workstation;
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-11-27 15:27:22 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
File: backtrace
none
File: cgroup
none
File: core_backtrace
none
File: dso_list
none
File: environ
none
File: exploitable
none
File: limits
none
File: maps
none
File: mountinfo
none
File: namespaces
none
File: open_fds
none
File: proc_pid_status
none
File: var_log_messages none

Description Mike Hinz 2016-11-27 15:08:14 UTC 
Description of problem:
Simply opened an email within Evolution and the crash occured.  I think the email contained HTML elements.  

Version-Release number of selected component:
webkitgtk4-2.14.1-2.fc25

Additional info:
reporter:       libreport-2.8.0
backtrace_rating: 4
cmdline:        /usr/libexec/webkit2gtk-4.0/WebKitNetworkProcess 38
crash_function: WTF::GRefPtr<_GInputStream>::operator!
executable:     /usr/libexec/webkit2gtk-4.0/WebKitNetworkProcess
global_pid:     8497
kernel:         4.8.8-300.fc25.x86_64
pkg_fingerprint: 4089 D8F2 FDB1 9C98
pkg_vendor:     Fedora Project
runlevel:       N 5
type:           CCpp
uid:            1000

Truncated backtrace:
Thread no. 1 (10 frames)
 #0 WTF::GRefPtr<_GInputStream>::operator! at /usr/src/debug/webkitgtk-2.14.1/Source/WTF/wtf/glib/GRefPtr.h:109
 #1 WebKit::CustomProtocolManagerImpl::didFailWithError at /usr/src/debug/webkitgtk-2.14.1/Source/WebKit2/NetworkProcess/CustomProtocols/soup/CustomProtocolManagerImpl.cpp:123
 #2 IPC::callMemberFunctionImpl<WebKit::CustomProtocolManager, void (WebKit::CustomProtocolManager::*)(unsigned long, WebCore::ResourceError const&), std::tuple<unsigned long, WebCore::ResourceError>, 0ul, 1ul>(WebKit::CustomProtocolManager*, void (WebKit::CustomProtocolManager::*)(unsigned long, WebCore::ResourceError const&), std::tuple<unsigned long, WebCore::ResourceError>&&, std::integer_sequence<unsigned long, 0ul, 1ul>) at /usr/src/debug/webkitgtk-2.14.1/Source/WebKit2/Platform/IPC/HandleMessage.h:13
 #3 IPC::callMemberFunction<WebKit::CustomProtocolManager, void (WebKit::CustomProtocolManager::*)(unsigned long, WebCore::ResourceError const&), std::tuple<unsigned long, WebCore::ResourceError>, std::integer_sequence<unsigned long, 0ul, 1ul> >(std::tuple<unsigned long, WebCore::ResourceError>&&, WebKit::CustomProtocolManager*, void (WebKit::CustomProtocolManager::*)(unsigned long, WebCore::ResourceError const&)) at /usr/src/debug/webkitgtk-2.14.1/Source/WebKit2/Platform/IPC/HandleMessage.h:19
 #4 IPC::handleMessage<Messages::CustomProtocolManager::DidFailWithError, WebKit::CustomProtocolManager, void (WebKit::CustomProtocolManager::*)(unsigned long, WebCore::ResourceError const&)> at /usr/src/debug/webkitgtk-2.14.1/Source/WebKit2/Platform/IPC/HandleMessage.h:99
 #5 WebKit::CustomProtocolManager::didReceiveMessage at /usr/src/debug/webkitgtk-2.14.1/x86_64-redhat-linux-gnu/DerivedSources/WebKit2/CustomProtocolManagerMessageReceiver.cpp:45
 #6 IPC::Connection::dispatchWorkQueueMessageReceiverMessage at /usr/src/debug/webkitgtk-2.14.1/Source/WebKit2/Platform/IPC/Connection.cpp:285
 #7 WTF::Function<void ()>::operator()() const at /usr/src/debug/webkitgtk-2.14.1/Source/WTF/wtf/Function.h:50
 #8 WTF::RunLoop::performWork at /usr/src/debug/webkitgtk-2.14.1/Source/WTF/wtf/RunLoop.cpp:105
 #9 WTF::RunLoop::<lambda(gpointer)>::operator() at /usr/src/debug/webkitgtk-2.14.1/Source/WTF/wtf/glib/RunLoopGLib.cpp:66
Comment 1 Mike Hinz 2016-11-27 15:08:20 UTC 
Created attachment 1224865 [details]
File: backtrace
Comment 2 Mike Hinz 2016-11-27 15:08:23 UTC 
Created attachment 1224866 [details]
File: cgroup
Comment 3 Mike Hinz 2016-11-27 15:08:24 UTC 
Created attachment 1224867 [details]
File: core_backtrace
Comment 4 Mike Hinz 2016-11-27 15:08:26 UTC 
Created attachment 1224868 [details]
File: dso_list
Comment 5 Mike Hinz 2016-11-27 15:08:28 UTC 
Created attachment 1224869 [details]
File: environ
Comment 6 Mike Hinz 2016-11-27 15:08:30 UTC 
Created attachment 1224870 [details]
File: exploitable
Comment 7 Mike Hinz 2016-11-27 15:08:31 UTC 
Created attachment 1224871 [details]
File: limits
Comment 8 Mike Hinz 2016-11-27 15:08:32 UTC 
Created attachment 1224872 [details]
File: maps
Comment 9 Mike Hinz 2016-11-27 15:08:34 UTC 
Created attachment 1224873 [details]
File: mountinfo
Comment 10 Mike Hinz 2016-11-27 15:08:36 UTC 
Created attachment 1224874 [details]
File: namespaces
Comment 11 Mike Hinz 2016-11-27 15:08:38 UTC 
Created attachment 1224875 [details]
File: open_fds
Comment 12 Mike Hinz 2016-11-27 15:08:39 UTC 
Created attachment 1224876 [details]
File: proc_pid_status
Comment 13 Mike Hinz 2016-11-27 15:08:41 UTC 
Created attachment 1224877 [details]
File: var_log_messages
Comment 14 Erick Omar Delgado 2016-12-07 02:17:54 UTC 
*** Bug 1402191 has been marked as a duplicate of this bug. ***
Comment 15 Michael Catanzaro 2017-01-03 12:49:08 UTC 
Anyone know how to reproduce this crash? We're getting tons of reports, but the backtrace is confusing.
Comment 16 Michael Catanzaro 2017-01-05 01:21:55 UTC 
Nevermind, there's a patch upstream now.
Comment 17 Erick Omar Delgado 2017-02-05 22:57:36 UTC 
*** Bug 1419362 has been marked as a duplicate of this bug. ***