Bug 146399

Summary:

AX: iOS: Crash at accessibilityObjectForMainFramePlugin()

Product:

WebKit

Reporter:

chris fleizach <cfleizach>

Component:

Accessibility

Assignee:

chris fleizach <cfleizach>

Status:

RESOLVED FIXED

Severity:

Normal

CC:

andersca, beidson, commit-queue, ddkilzer, sam, webkit-bug-importer

Priority:

Keywords:

InRadar

Version:

528+ (Nightly build)

Hardware:

All

OS:

All

Attachments:

Description	Flags
patch	none
patch	none

Description chris fleizach 2015-06-28 15:15:11 PDT

Exception Type:  EXC_BAD_ACCESS (SIGSEGV)
Exception Subtype: KERN_INVALID_ADDRESS at 0x00000018
Triggered by Thread:  0

Thread 0 name:  Dispatch queue: com.apple.main-thread
Thread 0 Crashed ↩:
0   WebKit                        	0x2bef7704 WebKit::WebPage::accessibilityObjectForMainFramePlugin() + 4 (memory:2644)
1   WebKit                        	0x2bf74a46 -[WKAccessibilityWebPageObjectBase accessibilityRootObjectWrapper] + 42 (WKAccessibilityWebPageObjectBase.mm:57)
2   Foundation                    	0x27ddec20 -[NSObject(NSKeyValueCoding) valueForKey:] + 220 (NSKeyValueCoding.m:380)
3   AccessibilityUtilities        	0x2c4cb8ea __57-[NSObject(UIAccessibilitySafeCategory) safeValueForKey:]_block_invoke + 26 (AXSafeValue.m:288)
4   AccessibilityUtilities        	0x2c4cbd24 -[NSObject(UIAccessibilitySafeCategory) _accessibilityPerformSafeValueKeyBlock:withKey:onClass:] + 84 (AXSafeValue.m:341)
5   AccessibilityUtilities        	0x2c4cb5f2 -[NSObject(UIAccessibilitySafeCategory) safeValueForKey:] + 230 (AXSafeValue.m:287)
6   WebProcess                    	0x252d7dae -[WKAccessibilityWebPageObjectAccessibility _initializeRootIfNecessary] + 30 (WKAccessibilityWebPageObjectAccessibility.m:141)
7   WebProcess                    	0x252d7b6e -[WKAccessibilityWebPageObjectAccessibility accessibilityHitTest:] + 26 (WKAccessibilityWebPageObjectAccessibility.m:80)
8   WebProcess                    	0x252d8bae -[WKNSObjectAccessibility accessibilityHitTest:] + 234 (NSObject+AXWebProcess.m:33)
9   AXRuntime                     	0x2c3de9c6 _copyElementAtPositionCallback + 126 (AXSimpleRuntimeManager.m:114)
10  AXRuntime                     	0x2c3e53fa _AXXMIGCopyElementAtPosition + 178 (AccessibilityPriv.m:1129)


<rdar://problem/19604231>

Comment 1 chris fleizach 2015-06-28 15:16:54 PDT

Created attachment 255730 [details]
patch

Comment 2 chris fleizach 2015-06-28 16:07:05 PDT

Created attachment 255731 [details]
patch

Comment 3 WebKit Commit Bot 2015-06-28 22:06:32 PDT

Comment on attachment 255731 [details]
patch

Clearing flags on attachment: 255731

Committed r186063: <http://trac.webkit.org/changeset/186063>

Comment 4 WebKit Commit Bot 2015-06-28 22:06:36 PDT

All reviewed patches have been landed.  Closing bug.