RESOLVED FIXED196600
AX: Crash under WebCore::AccessibilityRenderObject::computeAccessibilityIsIgnored() 
https://bugs.webkit.org/show_bug.cgi?id=196600
Summary AX: Crash under WebCore::AccessibilityRenderObject::computeAccessibilityIsIgn...
chris fleizach
Reported 2019-04-04 07:42:38 PDT
Crash detected during stress cycling Exception Type: EXC_BAD_ACCESS (SIGSEGV) Exception Subtype: KERN_INVALID_ADDRESS at 0x0000000000000030 VM Region Info: 0x30 is not in any region. Bytes before following region: 4295655376 REGION TYPE START - END [ VSIZE] PRT/MAX SHRMOD REGION DETAIL UNUSED SPACE AT START ---> __TEXT 00000001000a8000-00000001000ac000 [ 16K] r-x/r-x SM=COW ...it.WebContent Termination Signal: Segmentation fault: 11 Termination Reason: Namespace SIGNAL, Code 0xb Terminating Process: exc handler [1346] Triggered by Thread: 0 Thread 0 name: Dispatch queue: com.apple.main-thread Thread 0 Crashed: 0 WebCore 0x00000001c44007a4 WebCore::AccessibilityRenderObject::computeAccessibilityIsIgnored() const + 184 (/BuildRoot/Library/Caches/com.apple.xbs/Sources/WebCore/WebCore-7607.2.2/rendering/RenderObject.h:932) 1 WebCore 0x00000001c44007a4 WebCore::AccessibilityRenderObject::computeAccessibilityIsIgnored() const + 184 (./accessibility/AccessibilityRenderObject.cpp:1197) 2 WebCore 0x00000001c43fb460 WebCore::AccessibilityObject::accessibilityIsIgnored() const + 92 (./accessibility/AccessibilityObject.cpp:3342) 3 WebCore 0x00000001c43d1274 WebCore::AXObjectCache::getOrCreate(WebCore::RenderObject*) + 784 (./accessibility/AXObjectCache.cpp:637) 4 WebCore 0x00000001c43d4110 WebCore::AXObjectCache::frameLoadingEventNotification(WebCore::Frame*, WebCore::AXObjectCache::AXLoadingEvent) + 48 (./accessibility/AXObjectCache.cpp:1352) 5 WebCore 0x00000001c4a3f8bc WebCore::FrameLoader::prepareForLoadStart() + 292 (./loader/FrameLoader.cpp:1229) 6 WebCore 0x00000001c4a55390 WTF::Function<void ()>::CallableWrapper<WebCore::FrameLoader::continueLoadAfterNavigationPolicy(WebCore::ResourceRequest const&, WebCore::FormState*, WebCore::NavigationPolicyDecision, WebCore::AllowNavigationToInvalidURL)::$_11>::call() + 52 (./loader/FrameLoader.cpp:3432) 7 WebCore 0x00000001c4a42a08 WebCore::FrameLoader::continueLoadAfterNavigationPolicy(WebCore::ResourceRequest const&, WebCore::FormState*, WebCore::NavigationPolicyDecision, WebCore::AllowNavigationToInvalidURL) + 1788 (/BuildRoot/Applications/Xcode.app/Contents/Developer/Platforms/iPhoneOS.platform/Developer/SDKs/iPhoneOS12.3.Internal.sdk/usr/local/include/wtf/Function.h:56) 8 WebCore 0x00000001c4a5493c WTF::Function<void (WebCore::ResourceRequest&&, WTF::WeakPtr<WebCore::FormState>&&, WebCore::NavigationPolicyDecision)>::CallableWrapper<WebCore::FrameLoader::loadWithDocumentLoader(WebCore::DocumentLoader*, WebCore::FrameLoadType, WTF::RefPtr<WebCore::FormState, WTF::DumbPtrTraits<WebCore::FormState> >&&, WebCore::AllowNavigationToInvalidURL, WebCore::ShouldTreatAsContinuingLoad, WTF::CompletionHandler<void ()>&&)::$_8>::call(WebCore::ResourceRequest&&, WTF::WeakPtr<WebCore::FormState>&&, WebCore::NavigationPolicyDecision) + 48 (./loader/FrameLoader.cpp:1639)
Attachments
patch (2.07 KB, patch)
2019-04-04 07:47 PDT, chris fleizach 		no flags
DetailsFormatted DiffDiff
View All Add attachment proposed patch, testcase, etc.
chris fleizach
Comment 1 2019-04-04 07:42:54 PDT
<rdar://problem/49572996>
chris fleizach
Comment 2 2019-04-04 07:47:41 PDT
Created attachment 366710 [details] patch
WebKit Commit Bot
Comment 3 2019-04-04 13:31:39 PDT
Comment on attachment 366710 [details] patch Clearing flags on attachment: 366710 Committed r243894: <https://trac.webkit.org/changeset/243894>
WebKit Commit Bot
Comment 4 2019-04-04 13:31:40 PDT
All reviewed patches have been landed. Closing bug.
Note You need to log in before you can comment on or make changes to this bug.