[Webkit-unassigned] [Bug 153193] New: Reproducible "Unhanded web process message 'WebUserContentController:AddUserScripts'" and friends

Sun Jan 17 00:26:40 PST 2016

https://bugs.webkit.org/show_bug.cgi?id=153193

            Bug ID: 153193
           Summary: Reproducible "Unhanded web process message
                    'WebUserContentController:AddUserScripts'" and friends
    Classification: Unclassified
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit2
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: thorton at apple.com

Created attachment 269188
  --> https://bugs.webkit.org/attachment.cgi?id=269188&action=review
API test that reproduces the problem (and asserts/crashes later too)

Steps to Reproduce:

1. Apply the attached test patch and run the API test.

Notes:

The WebPageProxy constructor assumes that if the process is already running, it can add itself to the existing WebUserContentController(Proxy) and all will be well.

However, if the API client constructs a different WKUserContentController for two views, and forces them both into the same process (by setting the process cap to 1), when WebPageProxy's constructor goes to use the existing WebUserContentController, it sends a message with a WebUserContentController ID that doesn't exist yet on the WebProcess side (because createWebPage, which usually brings it up, hasn't happened yet), and we lose the message.

This also means that we'll crash and burn horribly if we later try to remove e.g. a UserScriptHandler that was lost in the lost Add messages.

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.webkit.org/pipermail/webkit-unassigned/attachments/20160117/1d5ee296/attachment.html>