Bug 303963

Summary: Regression(303516@main) Crash under CachedFontLoadRequest::fontLoaded
Product: WebKit Reporter: Chris Dumez <cdumez>
Component: TextAssignee: Chris Dumez <cdumez>
Status: RESOLVED FIXED    
Severity: Normal CC: fantasai.bugs, vitor.roriz, webkit-bug-importer
Priority: P2 Keywords: InRadar
Version: WebKit Nightly Build   
Hardware: Unspecified   
OS: Unspecified   

Chris Dumez
Reported 2025-12-10 17:57:26 PST
Crash under CachedFontLoadRequest::fontLoaded: ``` 9 WTFCrashWithInfo(int, char const*, char const*, int) (WebCore) 9 WTF::CanMakeCheckedPtrBase<WTF::SingleThreadIntegralWrapper<unsigned int>, unsigned int, bool, (WTF::CheckedPtrDeleteCheckException)0>::decrementCheckedPtrCount() const (WebCore) 9 WTF::CheckedPtr<WebCore::FontLoadRequestClient, WTF::RawPtrTraits<WebCore::FontLoadRequestClient>>::derefIfNotNull() (WebCore) 9 WTF::CheckedPtr<WebCore::FontLoadRequestClient, WTF::RawPtrTraits<WebCore::FontLoadRequestClient>>::~CheckedPtr() (WebCore) 9 WTF::CheckedPtr<WebCore::FontLoadRequestClient, WTF::RawPtrTraits<WebCore::FontLoadRequestClient>>::~CheckedPtr() (WebCore) ==> 10 WebCore::CachedFontLoadRequest::fontLoaded(WebCore::CachedFont&) (WebCore) <== 10 WebCore::CachedFont::checkNotify(WebCore::NetworkLoadMetrics const&, WebCore::LoadWillContinueInAnotherProcess) (WebCore) 10 WebCore::SubresourceLoader::didFinishLoading(WebCore::NetworkLoadMetrics const&) (WebCore) 10 WebKit::WebResourceLoader::didFinishResourceLoad(WebCore::NetworkLoadMetrics&&) (WebKit) 9 auto void IPC::callMemberFunction<WebKit::WebResourceLoader, WebKit::WebResourceLoader, void (WebCore::NetworkLoadMetrics&&), std::__1::tuple<WebCore::NetworkLoadMetrics>>(WebKit::WebResourceLoader*, void (WebKit::WebResourceLoader::*)(WebCore::NetworkLoadMetrics&&), std::__1::tuple<WebCore::NetworkLoadMetrics>&&)::'lambda'(auto&&...)::operator()<WebCore::NetworkLoadMetrics>(auto&&...) const (WebKit) ```
Attachments
Add attachment proposed patch, testcase, etc.
Chris Dumez
Comment 1 2025-12-10 17:57:34 PST
<rdar://166072004>
Chris Dumez
Comment 2 2025-12-10 18:00:07 PST
Pull request: https://github.com/WebKit/WebKit/pull/55218
EWS
Comment 3 2025-12-11 14:33:35 PST
Committed 304322@main (bfec65f58317): <https://commits.webkit.org/304322@main> Reviewed commits have been landed. Closing PR #55218 and removing active labels.
Note You need to log in before you can comment on or make changes to this bug.