173271 2017-06-12 13:58:45 -0700 Null dereference under WebProcessPool::pageRemovedFromProcess() 2017-06-12 14:32:04 -0700 1 1 1 Unclassified WebKit WebKit2 WebKit Nightly Build Unspecified Unspecified RESOLVED FIXED InRadar P2 Normal --- 1 cdumez cdumez achristensen beidson commit-queue ggaren rniwa webkit-bug-importer oldest_to_newest 1318353 0 cdumez 2017-06-12 13:58:45 -0700 Null dereference under WebProcessPool::pageRemovedFromProcess(): Exception Type: EXC_BAD_ACCESS (SIGSEGV) Exception Subtype: KERN_INVALID_ADDRESS at 0x0000000000000028 Thread 0 name: Dispatch queue: com.apple.main-thread Thread 0 Crashed: 0 WebKit 0x000000018da454b8 WebKit::ChildProcessProxy::sendMessage(std::__1::unique_ptr<IPC::Encoder, std::__1::default_delete<IPC::Encoder> >, WTF::OptionSet<IPC::SendOption>) + 16 (RefPtr.h:80) 1 WebKit 0x000000018dc5025c bool WebKit::ChildProcessProxy::send<Messages::NetworkProcess::DestroySession>(Messages::NetworkProcess::DestroySession&&, unsigned long long, WTF::OptionSet<IPC::SendOption>) + 116 (ChildProcessProxy.h:110) 2 WebKit 0x000000018dc5025c bool WebKit::ChildProcessProxy::send<Messages::NetworkProcess::DestroySession>(Messages::NetworkProcess::DestroySession&&, unsigned long long, WTF::OptionSet<IPC::SendOption>) + 116 (ChildProcessProxy.h:110) 3 WebKit 0x000000018dc52264 WebKit::WebProcessPool::pageRemovedFromProcess(WebKit::WebPageProxy&) + 152 (WebProcessPool.cpp:968) 4 WebKit 0x000000018dc5c7b0 WebKit::WebProcessProxy::removeWebPage(WebKit::WebPageProxy&, unsigned long long) + 112 (WebProcessProxy.cpp:298) 5 WebKit 0x000000018dbddf40 WebKit::WebPageProxy::reattachToWebProcess() + 44 (WebPageProxy.cpp:710) 6 WebKit 0x000000018dbde328 WebKit::WebPageProxy::reattachToWebProcessForReload() + 52 (WebPageProxy.cpp:749) 7 WebKit 0x000000018dbe090c WebKit::WebPageProxy::reload(WTF::OptionSet<WebCore::ReloadOption>) + 328 (WebPageProxy.cpp:1172) 8 WebKit 0x000000018dd004a4 -[WKWebView reload] + 52 (WKWebView.mm:846) 9 SafariServices 0x000000018bcb346c -[_SFBrowserContentViewController webViewControllerWebProcessDidCrash:] + 468 (_SFBrowserContentViewController.mm:1715) 10 SafariServices 0x000000018bc771ac -[SFWebViewController _webViewWebProcessDidCrash:] + 76 (SFWebViewController.mm:293) 11 WebKit 0x000000018da8af44 WebKit::NavigationState::NavigationClient::processDidCrash(WebKit::WebPageProxy&) + 92 (NavigationState.mm:729) 12 WebKit 0x000000018dbeefb4 WebKit::WebPageProxy::processDidCrash() + 460 (WebPageProxy.cpp:0) 13 WebKit 0x000000018dc5dd0c WebKit::WebProcessProxy::didClose(IPC::Connection&) + 264 (WebProcessProxy.cpp:603) 14 JavaScriptCore 0x00000001889c0450 WTF::RunLoop::performWork() + 344 (Function.h:50) 15 JavaScriptCore 0x00000001889c0680 WTF::RunLoop::performWork(void*) + 36 (RunLoopCF.cpp:38) 16 CoreFoundation 0x0000000185582d10 __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ + 24 (CFRunLoop.c:1960) 17 CoreFoundation 0x00000001855825f4 __CFRunLoopDoSources0 + 452 (CFRunLoop.c:2025) 18 CoreFoundation 0x000000018558016c __CFRunLoopRun + 844 (CFRunLoop.c:2842) 19 CoreFoundation 0x000000018549ad2c CFRunLoopRunSpecific + 436 (CFRunLoop.c:3146) 20 GraphicsServices 0x0000000196125f94 GSEventRunModal + 100 (GSEvent.c:2245) 21 UIKit 0x000000018c5c3404 UIApplicationMain + 208 (UIApplication.m:3833) 22 SafariViewService 0x0000000103f2295c main + 244 (main.m:56) 23 libdyld.dylib 0x00000001a93bdd48 start + 4 1318354 1 cdumez 2017-06-12 13:59:09 -0700 <rdar://problem/32038814> 1318357 2 312691 cdumez 2017-06-12 14:01:00 -0700 Created attachment 312691 Patch 1318369 3 312691 commit-queue 2017-06-12 14:32:02 -0700 Comment on attachment 312691 Patch Clearing flags on attachment: 312691 Committed r218138: <http://trac.webkit.org/changeset/218138> 1318370 4 commit-queue 2017-06-12 14:32:04 -0700 All reviewed patches have been landed. Closing bug. 312691 2017-06-12 14:01:00 -0700 2017-06-12 14:32:02 -0700 Patch bug-173271-20170612140059.patch text/plain 1960 cdumez U3VidmVyc2lvbiBSZXZpc2lvbjogMjE4MTIxCmRpZmYgLS1naXQgYS9Tb3VyY2UvV2ViS2l0Mi9D aGFuZ2VMb2cgYi9Tb3VyY2UvV2ViS2l0Mi9DaGFuZ2VMb2cKaW5kZXggNjE2MmQ3OGMwYWRiZWJk MWEzODEyOTA1NDc5NWRiODAyNmJhNzY5My4uOTkxZDUyMjg4MDM2MWFjZDhhNTNiNTllOTcyNTQ5 NjdiMjUwOThhOSAxMDA2NDQKLS0tIGEvU291cmNlL1dlYktpdDIvQ2hhbmdlTG9nCisrKyBiL1Nv dXJjZS9XZWJLaXQyL0NoYW5nZUxvZwpAQCAtMSw1ICsxLDIwIEBACiAyMDE3LTA2LTEyICBDaHJp cyBEdW1leiAgPGNkdW1lekBhcHBsZS5jb20+CiAKKyAgICAgICAgTnVsbCBkZXJlZmVyZW5jZSB1 bmRlciBXZWJQcm9jZXNzUG9vbDo6cGFnZVJlbW92ZWRGcm9tUHJvY2VzcygpCisgICAgICAgIGh0 dHBzOi8vYnVncy53ZWJraXQub3JnL3Nob3dfYnVnLmNnaT9pZD0xNzMyNzEKKyAgICAgICAgPHJk YXI6Ly9wcm9ibGVtLzMyMDM4ODE0PgorCisgICAgICAgIFJldmlld2VkIGJ5IE5PQk9EWSAoT09Q UyEpLgorCisgICAgICAgIE51bGwtY2hlY2sgbmV0d29ya1Byb2Nlc3MoKSBiZWZvcmUgZGVyZWZl cmVuY2luZyBpdCBpbiBXZWJQcm9jZXNzUG9vbDo6cGFnZVJlbW92ZWRGcm9tUHJvY2VzcygpLgor ICAgICAgICBUaGlzIGlzIHRoZSBvbmx5IHBsYWNlIGluIHRoaXMgY2xhc3Mgd2hlcmUgd2UgZmFp bGVkIHRvIG51bGwgY2hlY2sgYmVmb3JlIGRlcmVmZXJlbmNpbmcKKyAgICAgICAgbmV0d29ya1By b2Nlc3MoKS4gVG8gbXkga25vd2xlZGdlLCB0aGVyZSBpcyBubyBndWFyYW50ZWUgdGhlcmUgaXMg YSBuZXR3b3JrIHByb2Nlc3MuCisKKyAgICAgICAgKiBVSVByb2Nlc3MvV2ViUHJvY2Vzc1Bvb2wu Y3BwOgorICAgICAgICAoV2ViS2l0OjpXZWJQcm9jZXNzUG9vbDo6cGFnZVJlbW92ZWRGcm9tUHJv Y2Vzcyk6CisKKzIwMTctMDYtMTIgIENocmlzIER1bWV6ICA8Y2R1bWV6QGFwcGxlLmNvbT4KKwog ICAgICAgICBSZWdyZXNzaW9uKHIyMTc4NjcpOiBMZWdhY3kgU2Vzc2lvbkhpc3RvcnlFbnRyeURh dGEgZm9ybWF0IHNob3VsZCBub3QgY2hhbmdlCiAgICAgICAgIGh0dHBzOi8vYnVncy53ZWJraXQu b3JnL3Nob3dfYnVnLmNnaT9pZD0xNzMyNjcKICAgICAgICAgPHJkYXI6Ly9wcm9ibGVtLzMyNzAx MjU3PgpkaWZmIC0tZ2l0IGEvU291cmNlL1dlYktpdDIvVUlQcm9jZXNzL1dlYlByb2Nlc3NQb29s LmNwcCBiL1NvdXJjZS9XZWJLaXQyL1VJUHJvY2Vzcy9XZWJQcm9jZXNzUG9vbC5jcHAKaW5kZXgg MjJiMDQ2ZjliMmZiOTg4YjhhNGYzYzhhMjJlMTIzNzZjOGIwODU2Mi4uYWZjNDc2ODMxNTk2Y2Q3 ODYxNjI0MWU4YmFkZjM0YzQ3ZjA3OWFjNyAxMDA2NDQKLS0tIGEvU291cmNlL1dlYktpdDIvVUlQ cm9jZXNzL1dlYlByb2Nlc3NQb29sLmNwcAorKysgYi9Tb3VyY2UvV2ViS2l0Mi9VSVByb2Nlc3Mv V2ViUHJvY2Vzc1Bvb2wuY3BwCkBAIC05NzQsNyArOTc0LDggQEAgdm9pZCBXZWJQcm9jZXNzUG9v bDo6cGFnZVJlbW92ZWRGcm9tUHJvY2VzcyhXZWJQYWdlUHJveHkmIHBhZ2UpCiAgICAgICAgICAg ICByZXR1cm47CiAKICAgICAgICAgLy8gVGhlIGxhc3QgdXNlciBvZiB0aGlzIG5vbi1kZWZhdWx0 IFNlc3Npb25JRCBpcyBnb25lLCBzbyBjbGVhbiBpdCB1cCBpbiB0aGUgY2hpbGQgcHJvY2Vzc2Vz LgotICAgICAgICBuZXR3b3JrUHJvY2VzcygpLT5zZW5kKE1lc3NhZ2VzOjpOZXR3b3JrUHJvY2Vz czo6RGVzdHJveVNlc3Npb24oc2Vzc2lvbklEKSwgMCk7CisgICAgICAgIGlmIChuZXR3b3JrUHJv Y2VzcygpKQorICAgICAgICAgICAgbmV0d29ya1Byb2Nlc3MoKS0+c2VuZChNZXNzYWdlczo6TmV0 d29ya1Byb2Nlc3M6OkRlc3Ryb3lTZXNzaW9uKHNlc3Npb25JRCksIDApOwogICAgICAgICBwYWdl LnByb2Nlc3MoKS5zZW5kKE1lc3NhZ2VzOjpXZWJQcm9jZXNzOjpEZXN0cm95U2Vzc2lvbihzZXNz aW9uSUQpLCAwKTsKICAgICB9CiB9Cg==