NEW 281198
JavaScriptCore Crashed in iOS17 and above system 
https://bugs.webkit.org/show_bug.cgi?id=281198
Summary JavaScriptCore Crashed in iOS17 and above system
fenglishuai
Reported 2024-10-09 22:09:29 PDT
Created attachment 472891 [details] The attachment is from the user crash log collected by XCode After the release of iOS17, our app has collected JavaScriptCore crashes, and the crash has recently appeared in iOS17 and above. The number of crashes collected recently is increasing. It is the crash information of the App Store package obtained from XCode -> Window -> organiser -> Crashes The file attached to the email is the crash log The crash resaon is SEGV_ACCERR - Access Permissions Error JavaScriptCore JSC::MarkedBlock: The crash codebase is 0 JavaScriptCore JSC::MarkedBlock::aboutToMarkSlow(unsigned int) 1 JavaScriptCore JSC::JSObject::visitChildren(JSC::JSCell*, JSC::SlotVisitor&) 2 JavaScriptCore JSC::JSObject::visitChildren(JSC::JSCell*, JSC::SlotVisitor&) 3 JavaScriptCore JSC::SlotVisitor::drain(WTF::MonotonicTime) 4 JavaScriptCore JSC::SlotVisitor::drainFromShared(JSC::SlotVisitor::SharedDrainMode, WTF::MonotonicTime) 5 JavaScriptCore WTF::SharedTaskFunctor<void (), JSC::Heap::runBeginPhase(JSC::GCConductor)::$_15>::run() 6 JavaScriptCore WTF::ParallelHelperClient::runTask(WTF::RefPtr<WTF::SharedTask<void ()>, WTF::RawPtrTraits<WTF::SharedTask<void ()> >, WTF::DefaultRefDerefTraits<WTF::SharedTask<void ()> > > const&) 7 JavaScriptCore WTF::ParallelHelperPool::Thread::work() 8 JavaScriptCore WTF::Detail::CallableWrapper<WTF::AutomaticThread::start(WTF::AbstractLocker const&)::$_0, void>::call() 9 JavaScriptCore WTF::Thread::entryPoint(WTF::Thread::NewThreadContext*) 10 JavaScriptCore WTF::wtfThreadEntryPoint(void*) 11 libsystem_pthread.dylib __pthread_start Please help us analyze how to solve this problem Thank you
Attachments
The attachment is from the user crash log collected by XCode (45.96 KB, application/zip)
2024-10-09 22:09 PDT, fenglishuai 		no flags
Details
View All Add attachment proposed patch, testcase, etc.
Alexey Proskuryakov
Comment 1 2024-10-10 09:04:45 PDT
Thank you for the report. This is a very generic crash trace that can be caused by any kinds by memory corruption or threading mistakes. It is possible that people working on JavaScriptCore will be able to glean something actionable from the attached crash logs.
Mark Lam
Comment 2 2024-10-10 09:19:13 PDT
Hello. Thanks for the report. Would you have any reliable ways to reproduce this crash? If not, can you help find reliable reproduction steps using your app (even if the repro steps only produce a crash once in a 100 runs)? We will need reproduction steps in order to diagnose this issue. Thanks.
fenglishuai
Comment 3 2024-10-10 20:12:03 PDT
The complete crash log exported from XCode can be downloaded from this address https://storage.jd.com/animation/CLQ6w-o7pljWK5eiTPbbZY.xccrashpoint.zip We have not reproduced the crash path, these are the crash logs of online users.
fenglishuai
Comment 4 2024-10-10 20:12:25 PDT
(In reply to Mark Lam from comment #2) > Hello. Thanks for the report. Would you have any reliable ways to > reproduce this crash? If not, can you help find reliable reproduction steps > using your app (even if the repro steps only produce a crash once in a 100 > runs)? We will need reproduction steps in order to diagnose this issue. > Thanks. The complete crash log exported from XCode can be downloaded from this address https://storage.jd.com/animation/CLQ6w-o7pljWK5eiTPbbZY.xccrashpoint.zip We have not reproduced the crash path, these are the crash logs of online users
Mark Lam
Comment 5 2024-10-16 06:18:27 PDT
Without repro steps, this issue is not actionable.
Mark Lam
Comment 6 2024-10-16 06:21:01 PDT
To clarify, the crash log indicates that memory corruption has occurred elsewhere. Hence, the crash log does not point to the cause of the issue (which may or may not be JSC), and a reproduction scenario is really needed to diagnose this bug. Otherwise, it is not actionable.
Radar WebKit Bug Importer
Comment 7 2024-10-16 22:10:14 PDT
<rdar://problem/138090989>
Note You need to log in before you can comment on or make changes to this bug.