[Webkit-unassigned] [Bug 279981] New: REGRESSION(iOS 18): Crash in IPC::Connection::dispatchToClient

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Thu Sep 19 08:04:41 PDT 2024 

https://bugs.webkit.org/show_bug.cgi?id=279981

            Bug ID: 279981
           Summary: REGRESSION(iOS 18): Crash in
                    IPC::Connection::dispatchToClient
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit Misc.
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: ajuma at chromium.org
                CC: kkinnunen at apple.com, simon.fraser at apple.com

Created attachment 472598

  --> https://bugs.webkit.org/attachment.cgi?id=472598&action=review

Crash log

Chrome for iOS is getting reports of a high-volume crash in IPC::Connection::dispatchToClient, on iOS 18.0 and 18.1 beta.

We don't have steps to reproduce, but top crashing URL by far is https://kip-kuliah.kemdikbud.go.id/siswa/auth/login

Is this the bug fixed by https://bugs.webkit.org/show_bug.cgi?id=279188?

I've attached a crash log.

The crash stack is:

Thread 34 Crashed:
0   libsystem_platform.dylib            0x0000000220f050c8 _os_unfair_lock_recursive_abort + 36 (lock.c:515)
1   libsystem_platform.dylib            0x0000000220f022d8 _os_unfair_lock_lock_slow + 308 (lock.c:597)
2   WebKit                              0x00000001b029a5f0 void IPC::Connection::dispatchToClient<IPC::Connection::enqueueIncomingMessage(WTF::UniqueRef<IPC::Decoder>)::$_0>(IPC::Connection::enqueueIncomingMessage(WTF::UniqueRef<IPC::Decoder>)::$_0&&) + 44 (Connection.cpp:1650)
3   WebKit                              0x00000001b029a264 IPC::Connection::enqueueIncomingMessage(WTF::UniqueRef<IPC::Decoder>) + 320 (Connection.cpp:1338)
4   WebKit                              0x00000001b0299b24 IPC::Connection::processIncomingMessage(WTF::UniqueRef<IPC::Decoder>) + 304 (Connection.cpp:1110)
5   WebKit                              0x00000001af48d8fc invocation function for block in IPC::Connection::platformOpen() + 740 (ConnectionCocoa.mm:201)
6   libdispatch.dylib                   0x00000001a1b490d0 _dispatch_client_callout + 20 (object.m:576)
7   libdispatch.dylib                   0x00000001a1b4c580 _dispatch_continuation_pop + 596 (queue.c:325)
8   libdispatch.dylib                   0x00000001a1b6053c _dispatch_source_latch_and_call + 420 (source.c:596)
9   libdispatch.dylib                   0x00000001a1b5f104 _dispatch_source_invoke + 836 (source.c:961)
10  libdispatch.dylib                   0x00000001a1b50560 _dispatch_lane_serial_drain + 368 (queue.c:3934)
11  libdispatch.dylib                   0x00000001a1b511e0 _dispatch_lane_invoke + 380 (queue.c:4025)
12  libdispatch.dylib                   0x00000001a1b5c258 _dispatch_root_queue_drain_deferred_wlh + 288 (queue.c:7193)
13  libdispatch.dylib                   0x00000001a1b5baa4 _dispatch_workloop_worker_thread + 540 (queue.c:6787)
14  libsystem_pthread.dylib             0x0000000220fb1c7c _pthread_wqthread + 288 (pthread.c:2696)
15  libsystem_pthread.dylib             0x0000000220fae488 start_wqthread + 8 (:-1)

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20240919/f0031340/attachment.htm>

More information about the webkit-unassigned mailing list