search

brave / brave-browser

Brave browser for Android, iOS, Linux, macOS, Windows.
https://brave.com
Mozilla Public License 2.0
17.58k stars 2.28k forks source link

Crash when dragging a tab group #29866

Closed wknapik closed 4 months ago

wknapik commented 1 year ago

Brave Version: 1.50.119 Chromium: 112.0.5615.121 Operating System: Linux 6.1.21-hardened1-1-hardened

URL (if applicable) where crash occurred: n/a

Can you reproduce this crash? Yes

What steps will reproduce this crash? (If it's not reproducible, what were you doing just before the crash?)

  1. Start the browser with a new profile
  2. Add the new tab to a new group and name it
  3. Open a new tab
  4. Drag the tab group to the right

f1280000-a435-f609-0000-000000000000 292f0000-a435-f609-0000-000000000000

In my main profile this is 100% reproducible and the browser crashes entirely, but it seems in fresh profiles, across channels, this doesn't reproduce as easily and also the browser windows disappear, but some browser processes stick around, have to be killed manually.

https://bravesoftware.slack.com/archives/C01826CM3J9/p1681925022878289

DO NOT CHANGE BELOW THIS LINE Crash ID: crash/292f0000-a435-f609-0000-000000000000

bsclifton commented 1 year ago

Couldn't reproduce on Windows 11 (x64)- I tried Release (1.50.119) and Nightly (1.52.57)

@fallaciousreasoning can you try to reproduce this please?

Backtrace links:

wknapik commented 1 year ago

I have the following flags enabled in my main profile:

fallaciousreasoning commented 1 year ago

I enabled those flags @wknapik and tested on 1.50.114 and couldn't reproduce. Weirdly, when I dragged the grouped tabs it ungrouped them (no crash though).

Without the flags it still ungroups on drag - maybe it's intentional?

bsclifton commented 1 year ago

@fallaciousreasoning can you try updating to 1.50.119? Maybe the latest Chromium bump introduced something? Thanks for checking BTW! 😄

fallaciousreasoning commented 1 year ago

Upgraded to 1.50.121 - still doesn't repro with or without the flags :/

wknapik commented 1 year ago

Upgraded to v1.50.125, still fully reproducible (af090700-f270-ff09-0000-000000000000, 760e0700-f270-ff09-0000-000000000000)

% brave
[1553546:1553546:0501/162742.954724:ERROR:chrome_browser_cloud_management_controller.cc(162)] Cloud management controller initialization aborted as CBCM is not enabled.
[0501/162752.609649:ERROR:elf_dynamic_array_reader.h(64)] tag not found
[0501/162752.610114:ERROR:elf_dynamic_array_reader.h(64)] tag not found
[1]    1553546 floating point exception (core dumped)  brave
%

Also still the same behavior in fresh profiles (windows disappear, but processes stick around)

wknapik commented 1 year ago

I'm using Arch Linux with a hardened kernel, if you'd like to try and reproduce this in a more similar environment

wknapik commented 1 year ago

Just tried dragging a tab between two windows in 1.51.118 and the whole browser crashed

wknapik commented 1 year ago

It looks like the custom flags are the cause, specifically #scrollable-tabstrip-overflow. Tested on 1.52.117, Linux.

Crashes:

No crashes:

When flags are changed, a button to relaunch the browser shows up, but it just kills the browser, doesn't relaunch.

Each time the browser crashed, I started the browser, went to brave://crashes and had to click to upload the crash info. The page would then say "upload requested by user" and it would take exactly 15min before the actual upload would happen, every time.

Screenshot ![image](https://github.com/brave/brave-browser/assets/1129003/2dc8588b-a03a-4a65-8994-0d53fd69ca37)
fallaciousreasoning commented 1 year ago

Wow, good find!

iefremov commented 4 months ago

@wknapik i guess we really do not guarantee stable work with all combos of upstream flags