[Webkit-unassigned] [Bug 242235] New: [iOS 15.3+]Crash at -[UIViewController presentViewController:withAnimationController:completion:]

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Fri Jul 1 01:36:31 PDT 2022 

https://bugs.webkit.org/show_bug.cgi?id=242235

            Bug ID: 242235
           Summary: [iOS 15.3+]Crash at -[UIViewController
                    presentViewController:withAnimationController:completi
                    on:]
           Product: WebKit
           Version: Other
          Hardware: Unspecified
                OS: iOS 15
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit2
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: 894110476 at qq.com
                CC: kkinnunen at apple.com

I found an crash that webcore call UI API not on main thread, this maybe happened from iOS15.3, the call stack like this:

Thread 29(Crashed)
1       CoreFoundation  __exceptionPreprocess (in CoreFoundation) + 220
2       libobjc.A.dylib objc_exception_throw (in libobjc.A.dylib) + 60
3       Foundation      _userInfoForFileAndLine (in Foundation) + 0
4       UIKitCore       -[_UISimpleFenceProvider trackSystemAnimationFence:] (in UIKitCore) + 204
5       UIKitCore       -[UIApplication _trackSystemAnimationFence:] (in UIKitCore) + 88
6       UIKitCore       +[UIWindow _synchronizeDrawingWithFence:preCommitHandler:] (in UIKitCore) + 92
7       UIKitCore       -[UIScene _synchronizeDrawingWithFence:] (in UIKitCore) + 76
8       UIKitCore       -[_UIRemoteKeyboards prepareToMoveKeyboard:withIAV:isIAVRelevant:showing:notifyRemote:forScene:] (in UIKitCore) + 1216
9       UIKitCore       -[UIKeyboardSceneDelegate prepareToMoveKeyboardForInputViewSet:animationStyle:] (in UIKitCore) + 488
10      UIKitCore       -[UIKeyboardSceneDelegate setKeyWindowSceneInputViews:animationStyle:] (in UIKitCore) + 660
11      UIKitCore       -[UIKeyboardSceneDelegate setInputViews:animationStyle:] (in UIKitCore) + 256
12      UIKitCore       -[UIKeyboardSceneDelegate setInputViews:animated:] (in UIKitCore) + 100
13      UIKitCore       -[UIKeyboardSceneDelegate setInputViews:] (in UIKitCore) + 80
14      UIKitCore       __71-[UIKeyboardSceneDelegate _reloadInputViewsForKeyWindowSceneResponder:]_block_invoke.713 (in UIKitCore) + 40
15      UIKitCore       -[UIKeyboardSceneDelegate _reloadInputViewsForKeyWindowSceneResponder:] (in UIKitCore) + 3936
16      UIKitCore       -[UIKeyboardSceneDelegate _reloadInputViewsForResponder:] (in UIKitCore) + 164
17      UIKitCore       -[UIKeyboardSceneDelegate _preserveInputViewsWithId:animated:reset:] (in UIKitCore) + 140
18      UIKitCore       -[UIViewController _presentViewController:modalSourceViewController:presentationController:animationController:interactionController:completion:] (in UIKitCore) + 1292
19      UIKitCore       -[UIViewController _presentViewController:withAnimationController:completion:] (in UIKitCore) + 3972
20      UIKitCore       __63-[UIViewController _presentViewController:animated:completion:]_block_invoke (in UIKitCore) + 108
21      UIKitCore       -[UIViewController _performCoordinatedPresentOrDismiss:animated:] (in UIKitCore) + 536
22      UIKitCore       -[UIViewController _presentViewController:animated:completion:] (in UIKitCore) + 208
23      UIKitCore       -[UIViewController presentViewController:animated:completion:] (in UIKitCore) + 188
24      WebKit  WebKit::alertForPermission(WebKit::WebPageProxy&, WebKit::MediaPermissionReason, WebCore::SecurityOriginData const&, WTF::CompletionHandler<void (bool)>&&) (in WebKit) + 1764
25      WebKit  WebKit::UserMediaPermissionRequestProxy::promptForGetUserMedia() (in WebKit) + 216
26      WebKit  WTF::Detail::CallableWrapper<WebKit::UserMediaPermissionRequestManagerProxy::processUserMediaPermissionValidRequest(WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::String&&)::$_10, void, bool>::call(bool) (in WebKit) + 324
27      WebKit  WTF::CompletionHandler<void (bool)>::operator()(bool) (in WebKit) + 72
28      WebKit  WTF::Detail::CallableWrapper<WebKit::UserMediaPermissionRequestManagerProxy::processUserMediaPermissionRequest()::$_0::operator()(WTF::String&&)::'lambda'(WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::String&&), void, WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::String&&>::call(WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::String&&) (in WebKit) + 3172
29      WebCore WebCore::RealtimeMediaSourceCenter::validateRequestConstraintsAfterEnumeration(WTF::Function<void (WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::Vector<WebCore::CaptureDevice, 0ul, WTF::CrashOnOverflow, 16ul, WTF::FastMalloc>&&, WTF::String&&)>&&, WTF::Function<void (WTF::String const&)>&&, WebCore::MediaStreamRequest const&, WTF::String&&) (in WebCore) + 820
30      WebCore WTF::Detail::CallableWrapper<WebCore::RealtimeMediaSourceCenter::enumerateDevices(bool, bool, bool, bool, WTF::CompletionHandler<void ()>&&)::$_42, void>::~CallableWrapper() (in WebCore) + 168
31      WebCore HandleRunSource(void*) (in WebCore) + 660
32      CoreFoundation  __CFRUNLOOP_IS_CALLING_OUT_TO_A_SOURCE0_PERFORM_FUNCTION__ (in CoreFoundation) + 28
33      CoreFoundation  __CFRunLoopDoSource0 (in CoreFoundation) + 208
34      CoreFoundation  __CFRunLoopDoSources0 (in CoreFoundation) + 268
35      CoreFoundation  __CFRunLoopRun (in CoreFoundation) + 828
36      CoreFoundation  CFRunLoopRunSpecific (in CoreFoundation) + 600
37      WebCore RunWebThread(void*) (in WebCore) + 760
38      libsystem_pthread.dylib _pthread_start (in libsystem_pthread.dylib) + 148
39      libsystem_pthread.dylib thread_start (in libsystem_pthread.dylib) + 8

I'm sorry that I can't attach an standard crash report since we used a custom crash report system, hope related people can check your internal crash logs for this crash!

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20220701/343e905d/attachment.htm>

More information about the webkit-unassigned mailing list